$ rpki-client -vvf rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.mft File: pu8GtolYGCHHjIgpG731xRKjP0E.mft (raw, json) Hash identifier: txu0lwCih3hgi2JCLPV8PO3hm43U/AJpq8lLAKuOpaY= Subject key identifier: 97:1E:B2:47:88:DA:99:4C:A8:D9:97:78:8E:09:99:2F:15:15:E8:00 Authority key identifier: A6:EF:06:B6:89:58:18:21:C7:8C:88:29:1B:BD:F5:C5:12:A3:3F:41 Certificate issuer: /CN=A9198847/serialNumber=A6EF06B689581821C78C88291BBDF5C512A33F41 Certificate serial: 0DB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.mft Manifest number: 0D7F Signing time: Fri 18 Jul 2025 18:09:57 +0000 Manifest this update: Fri 18 Jul 2025 18:09:57 +0000 Manifest next update: Fri 25 Jul 2025 18:09:57 +0000 Files and hashes: 1: pu8GtolYGCHHjIgpG731xRKjP0E.crl (hash: 7n641Fzbz9Da21dKFbcrTD+CCZM8ZYvEZjNY4g0qWCw=) 2: C40CFBDED7E011EFBC9A924AC4F9AE02.roa (hash: KMP4fS0KJ0rV6tzyJoqXTC8btS2FqftO8fBCSBS+5IE=) 3: 7938B3C66FC111EC91536F62C4F9AE02.roa (hash: eIKfHf/XSmCHqSrtE/mqXSvnhQ2z8uL0Vg+6q1rOPNA=) 4: 13C099EE366711F0B5877C84C4F9AE02.roa (hash: e7UzY1XC0eLBl2c9zPdawS11TdFN1eY25CHBco5Agic=) 5: 7F7231ACE18011EF8702D74DC4F9AE02.roa (hash: WZVD3OFnLCd+Z+EztJUmZvetknrgOnaCpDqtEU+1mk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.crl rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:09:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3508 (0xdb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198847, serialNumber=A6EF06B689581821C78C88291BBDF5C512A33F41 Validity Not Before: Jul 18 18:09:57 2025 GMT Not After : Jul 25 18:09:57 2025 GMT Subject: CN=687a8df5-6264 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:08:73:d0:2f:b7:09:4e:5c:4a:67:46:67:a0: 28:96:5f:89:30:f2:3f:a9:03:1a:5e:42:6f:a8:1c: 15:77:8c:e5:a9:6a:67:f6:34:f1:9e:4a:c5:49:d2: 85:c0:ea:95:0d:0c:12:94:be:23:28:98:8c:bc:3f: 28:7b:ae:db:d1:0d:50:17:48:b7:5e:6b:8b:ca:cf: 8f:a6:3e:12:6b:1e:65:df:00:8f:8f:fe:85:e3:ac: c5:21:60:e2:9c:49:ae:13:fe:5f:db:e2:88:ec:cc: f7:3a:c2:47:8d:77:94:4b:4b:52:30:01:b0:53:8c: 68:20:97:de:d4:d2:d9:1e:48:61:ce:bb:55:e4:ea: ed:90:19:92:bc:00:f3:60:ad:d6:c7:3b:af:28:b9: 88:93:c0:cf:de:a4:6a:f2:e1:fc:7d:0d:21:3e:21: c7:27:9e:2d:a1:be:07:3e:2b:24:66:ac:c9:6d:5e: a1:2e:12:b0:0a:eb:1f:87:54:48:df:c2:df:10:8a: 82:dd:55:35:f0:52:88:0f:79:9c:db:19:6c:5e:f3: c2:2b:43:cc:a0:2b:b8:6c:2f:ab:31:15:6f:51:5e: 4c:65:0e:51:ce:a2:21:7b:1d:72:a9:2a:12:cf:c0: c8:ef:2b:14:88:f7:ac:d2:23:7d:2d:74:9e:8b:f1: d7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:1E:B2:47:88:DA:99:4C:A8:D9:97:78:8E:09:99:2F:15:15:E8:00 X509v3 Authority Key Identifier: keyid:A6:EF:06:B6:89:58:18:21:C7:8C:88:29:1B:BD:F5:C5:12:A3:3F:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pu8GtolYGCHHjIgpG731xRKjP0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198847/DDFBB0B8D78111E9B423AC4BC4F9AE02/pu8GtolYGCHHjIgpG731xRKjP0E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:23:a2:eb:9e:80:70:19:8f:ab:62:7f:fb:fb:00:d7:59:da: 67:17:22:a7:f0:4b:c0:ee:3b:7f:3d:66:fb:91:30:8e:60:22: b9:5c:1b:82:6a:f9:d7:df:c7:65:18:09:db:58:65:8f:5e:e0: 87:d8:3a:95:03:58:e8:65:9a:7f:f0:15:b3:17:ac:7c:52:a4: 4d:16:c3:1a:34:de:63:ea:47:b4:d2:73:65:29:3d:4f:e4:47: 6b:8c:c4:42:40:36:c5:8b:e6:82:72:3e:e6:37:e8:8a:78:d4: 6a:05:7e:3f:e9:a4:87:8a:5a:ed:78:11:5f:69:d5:32:cf:c8: cc:88:a2:03:8d:e9:8f:4b:f7:e1:7e:c3:e6:5e:aa:37:7d:81: f2:3a:aa:4c:16:cf:e2:77:2e:31:94:79:fb:75:11:b3:c2:ab: ec:1d:f6:25:b7:5f:73:05:8b:47:05:72:01:12:15:6e:0b:aa: c5:95:de:29:8b:c1:25:14:ca:98:6b:9a:c4:0a:b8:69:08:a4: d0:59:88:1b:1e:0c:b1:cd:2b:cd:3c:8f:0c:64:e6:40:93:ea: 5d:0a:f3:af:c5:7b:b1:db:d6:7c:ae:77:90:42:22:66:97:7f: 56:6d:cf:c0:22:81:ff:7f:cf:d2:d4:f0:aa:8a:17:54:a2:e4: d7:aa:15:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg4NDcxMTAvBgNVBAUTKEE2RUYwNkI2ODk1ODE4MjFDNzhDODgyOTFCQkRGNUM1 MTJBMzNGNDEwHhcNMjUwNzE4MTgwOTU3WhcNMjUwNzI1MTgwOTU3WjAYMRYwFAYD VQQDEw02ODdhOGRmNS02MjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3whz0C+3CU5cSmdGZ6Aoll+JMPI/qQMaXkJvqBwVd4zlqWpn9jTxnkrFSdKF wOqVDQwSlL4jKJiMvD8oe67b0Q1QF0i3XmuLys+Ppj4Sax5l3wCPj/6F46zFIWDi nEmuE/5f2+KI7Mz3OsJHjXeUS0tSMAGwU4xoIJfe1NLZHkhhzrtV5OrtkBmSvADz YK3WxzuvKLmIk8DP3qRq8uH8fQ0hPiHHJ54tob4HPiskZqzJbV6hLhKwCusfh1RI 38LfEIqC3VU18FKID3mc2xlsXvPCK0PMoCu4bC+rMRVvUV5MZQ5RzqIhex1yqSoS z8DI7ysUiPes0iN9LXSei/HXYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJceskeI 2plMqNmXeI4JmS8VFegAMB8GA1UdIwQYMBaAFKbvBraJWBghx4yIKRu99cUSoz9B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODg0Ny9EREZCQjBCOEQ3 ODExMUU5QjQyM0FDNEJDNEY5QUUwMi9wdThHdG9sWUdDSEhqSWdwRzczMXhSS2pQ MEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B1OEd0b2xZR0NISGpJZ3BHNzMxeFJLalAwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODg0Ny9EREZCQjBCOEQ3ODExMUU5QjQyM0FDNEJDNEY5QUUwMi9wdThHdG9sWUdD SEhqSWdwRzczMXhSS2pQMEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8I6LrnoBwGY+rYn/7+wDXWdpnFyKn8EvA7jt/PWb7kTCOYCK5XBuC avnX38dlGAnbWGWPXuCH2DqVA1joZZp/8BWzF6x8UqRNFsMaNN5j6ke00nNlKT1P 5EdrjMRCQDbFi+aCcj7mN+iKeNRqBX4/6aSHilrteBFfadUyz8jMiKIDjemPS/fh fsPmXqo3fYHyOqpMFs/idy4xlHn7dRGzwqvsHfYlt19zBYtHBXIBEhVuC6rFld4p i8ElFMqYa5rECrhpCKTQWYgbHgyxzSvNPI8MZOZAk+pdCvOvxXux29Z8rneQQiJm l39Wbc/AIoH/f8/S1PCqihdUouTXqhV2 -----END CERTIFICATE-----Generated at Sun Jul 20 15:17:06 2025 by rpki-client