$ rpki-client -vvf rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft File: 9y59Xhu0VCq3_3dzZYg8FgEDTek.mft (raw, json) Hash identifier: ++dgcvqPstDtODpTEqlEQDt/BQX4HdkF1YNRweZB5/0= Subject key identifier: 6D:38:45:A5:C3:CF:0C:69:E1:74:B5:9B:34:69:AC:20:A5:EA:93:22 Authority key identifier: F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 Certificate issuer: /CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Certificate serial: 0ED2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft Manifest number: 0EC5 Signing time: Sun 20 Jul 2025 17:40:54 +0000 Manifest this update: Sun 20 Jul 2025 17:40:54 +0000 Manifest next update: Sun 27 Jul 2025 17:40:54 +0000 Files and hashes: 1: 9y59Xhu0VCq3_3dzZYg8FgEDTek.crl (hash: z/P1cE7ps2CeEFWKI3pnPlSyR6GjkBc6HcYnVbmy35c=) 2: DCB2531AC75911EF979D593BC4F9AE02.roa (hash: az5u8maauMT/Sx2+Phgo1Z/ovh8gwvsYIRukSLKNLEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 17:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3794 (0xed2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919631C, serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Validity Not Before: Jul 20 17:40:54 2025 GMT Not After : Jul 27 17:40:54 2025 GMT Subject: CN=687d2a26-8b17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:77:58:f0:5b:89:5d:30:40:53:e5:6f:0e:9d: 71:c8:86:36:d1:4c:4a:71:7f:c9:3b:62:67:8d:43: ed:cd:1d:66:e5:15:75:46:cb:fc:af:29:2d:46:20: fa:ec:7c:c4:2d:ae:c7:ce:cd:f3:86:c3:ab:56:35: 67:97:f0:00:1b:4d:c8:c0:87:94:b2:69:c6:a6:5f: 76:4b:25:7a:1b:fd:5e:4b:29:4c:b0:14:84:00:77: 1b:f3:db:7e:08:84:db:dc:7c:13:0f:06:a1:f7:7c: 5c:70:1d:69:b6:c0:77:bd:47:df:9c:b4:6b:18:57: b9:97:cb:1a:4f:f7:63:81:77:ef:b0:82:92:2e:9d: 58:7a:b8:17:97:38:f1:3b:f9:2f:fe:de:46:5a:b1: 0f:13:ee:b4:54:c9:30:bc:96:dc:55:a4:cc:ea:76: 97:d3:11:68:77:a1:1d:ee:12:df:ae:e8:5a:aa:76: 22:09:5e:64:52:6e:66:75:36:dc:cb:aa:ed:36:fa: 90:2d:63:2f:65:11:59:60:62:83:4b:92:06:e4:2e: 67:78:25:1e:fb:fe:ee:ee:a0:8f:cd:cb:04:3e:2a: c3:21:14:7b:a5:41:09:8b:74:e6:c7:6f:1b:2e:aa: 55:4e:74:e5:4b:37:63:9d:92:98:7d:0c:be:08:1b: fe:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:38:45:A5:C3:CF:0C:69:E1:74:B5:9B:34:69:AC:20:A5:EA:93:22 X509v3 Authority Key Identifier: keyid:F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:5d:19:21:55:b7:c1:9b:6e:7f:ed:d3:1f:24:4a:a3:75:95: 73:93:19:92:69:05:0f:fd:83:c5:a0:78:85:62:2d:1a:33:cc: 51:b0:d2:fb:6e:41:bc:cf:b8:72:e3:29:74:06:8e:4e:67:04: 03:f5:03:0d:84:3f:3b:69:54:c9:dc:3e:34:db:31:68:74:32: c7:c5:48:d5:49:31:5f:43:9e:f9:4a:8f:74:65:bf:bd:0e:8f: c9:db:79:5c:79:6a:47:0d:32:ff:be:05:70:5b:39:3c:ea:ef: f0:88:ea:3a:8c:fd:fe:5a:27:5b:71:a9:4d:39:ff:a0:0f:ce: 4d:4f:73:72:5e:4a:9f:21:e4:05:eb:af:4a:9b:cc:80:0c:bb: 6f:b9:06:f9:0c:bc:89:72:9c:2f:f6:a0:e2:3c:5f:6a:3b:73: f4:e0:2d:8d:9e:38:53:de:02:be:de:f9:17:fc:db:d0:36:5e: 0e:75:3f:79:75:1b:11:1f:ec:c2:dc:3b:ec:e4:d3:0f:62:fb: 28:cf:c0:8b:ac:38:be:1b:8a:37:3c:7e:5d:a0:a0:1c:fa:0c: 7c:94:a8:5d:77:5b:d5:f0:3b:fb:b2:10:ec:85:dc:f3:32:c9: 17:4a:bf:b9:60:c0:0a:34:fc:fe:92:c8:69:ee:cb:76:bb:ae: 10:b8:86:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYzMUMxMTAvBgNVBAUTKEY3MkU3RDVFMUJCNDU0MkFCN0ZGNzc3MzY1ODgzQzE2 MDEwMzRERTkwHhcNMjUwNzIwMTc0MDU0WhcNMjUwNzI3MTc0MDU0WjAYMRYwFAYD VQQDEw02ODdkMmEyNi04YjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3dY8FuJXTBAU+VvDp1xyIY20UxKcX/JO2JnjUPtzR1m5RV1Rsv8ryktRiD6 7HzELa7Hzs3zhsOrVjVnl/AAG03IwIeUsmnGpl92SyV6G/1eSylMsBSEAHcb89t+ CITb3HwTDwah93xccB1ptsB3vUffnLRrGFe5l8saT/djgXfvsIKSLp1YergXlzjx O/kv/t5GWrEPE+60VMkwvJbcVaTM6naX0xFod6Ed7hLfruhaqnYiCV5kUm5mdTbc y6rtNvqQLWMvZRFZYGKDS5IG5C5neCUe+/7u7qCPzcsEPirDIRR7pUEJi3Tmx28b LqpVTnTlSzdjnZKYfQy+CBv+iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG04RaXD zwxp4XS1mzRprCCl6pMiMB8GA1UdIwQYMBaAFPcufV4btFQqt/93c2WIPBYBA03p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjMxQy9BOUMzMTcwNDhD MjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZDcTNfM2R6WllnOEZnRURU ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5NTlYaHUwVkNxM18zZHpaWWc4RmdFRFRlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjMxQy9BOUMzMTcwNDhDMjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZD cTNfM2R6WllnOEZnRURUZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqXRkhVbfBm25/7dMfJEqjdZVzkxmSaQUP/YPFoHiFYi0aM8xRsNL7 bkG8z7hy4yl0Bo5OZwQD9QMNhD87aVTJ3D402zFodDLHxUjVSTFfQ575So90Zb+9 Do/J23lceWpHDTL/vgVwWzk86u/wiOo6jP3+WidbcalNOf+gD85NT3NyXkqfIeQF 669Km8yADLtvuQb5DLyJcpwv9qDiPF9qO3P04C2NnjhT3gK+3vkX/NvQNl4OdT95 dRsRH+zC3Dvs5NMPYvsoz8CLrDi+G4o3PH5doKAc+gx8lKhdd1vV8Dv7shDshdzz MskXSr+5YMAKNPz+kshp7st2u64QuIYo -----END CERTIFICATE-----Generated at Tue Jul 22 05:11:11 2025 by rpki-client