$ rpki-client -vvf rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft File: U73ibYJfZ3-axChvmmdmH1xJtWk.mft (raw, json) Hash identifier: Svx77sTra1E+uBhgi09kx13RyRVySlWeKlLcZSWEuhA= Subject key identifier: 17:B1:C9:3D:C1:D9:7D:27:5E:BC:43:8C:59:24:9D:90:2D:74:60:DB Authority key identifier: 53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 Certificate issuer: /CN=A919E1AE/serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Certificate serial: 093F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft Manifest number: 091B Signing time: Thu 24 Jul 2025 20:33:27 +0000 Manifest this update: Thu 24 Jul 2025 20:33:27 +0000 Manifest next update: Thu 31 Jul 2025 20:33:27 +0000 Files and hashes: 1: U73ibYJfZ3-axChvmmdmH1xJtWk.crl (hash: KvcH+ryyhqBi7NbZCVoQCLIL/bEmudBjXKhWlf45LVY=) 2: C8DC6BD8EBF311EEAD0C015FC4F9AE02.roa (hash: 3oeXEUMIEBjXRFoc1DLoAMciKLclx2Q5gkQ/3FvZFh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 20:33:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2367 (0x93f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E1AE, serialNumber=53BDE26D825F677F9AC4286F9A67661F5C49B569 Validity Not Before: Jul 24 20:33:27 2025 GMT Not After : Jul 31 20:33:27 2025 GMT Subject: CN=68829897-7f9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5c:c3:e4:c5:21:6d:00:99:84:b4:95:ba:71: 5e:23:5e:bd:4b:9f:b2:d2:64:18:df:64:24:0a:09: a5:d2:0c:b9:37:f4:2c:17:c2:f4:38:2e:74:cd:b2: 52:62:c3:5b:eb:48:ac:08:b1:b4:d9:2c:87:f7:dd: 7f:68:c3:4b:84:36:4d:13:0c:22:f8:2e:39:39:f5: c6:22:cc:6e:ad:68:9c:a6:b9:95:1e:7c:ca:4e:49: eb:a6:4f:75:f2:8c:73:e9:84:9b:b1:8b:cb:7a:1b: 37:5b:b3:34:e4:a1:27:e7:36:f5:ff:d5:4f:49:5e: 61:f3:b0:98:f8:8d:94:76:46:36:e4:35:8c:a3:8a: c9:2a:be:be:52:aa:14:4e:2f:11:de:b2:c0:23:0f: 24:b0:a8:1f:14:48:08:fe:77:34:78:0a:68:0d:d0: df:6a:1b:44:64:a5:5b:73:ad:6b:4b:f2:6e:b3:e3: 16:96:23:c5:77:3a:0a:85:60:c9:96:04:08:82:99: a5:e9:83:bd:f9:f3:3f:dc:69:74:0c:31:2f:96:9c: ae:b5:97:10:e2:f8:74:7f:6c:ff:07:a9:c4:4c:ed: d2:98:67:f0:23:ee:f6:be:24:a3:dc:01:06:30:c2: 08:49:f9:58:71:0d:24:86:7e:f4:c9:91:ff:e6:79: 40:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:B1:C9:3D:C1:D9:7D:27:5E:BC:43:8C:59:24:9D:90:2D:74:60:DB X509v3 Authority Key Identifier: keyid:53:BD:E2:6D:82:5F:67:7F:9A:C4:28:6F:9A:67:66:1F:5C:49:B5:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U73ibYJfZ3-axChvmmdmH1xJtWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E1AE/B40BB1B8B12E11EA9A95B56AC4F9AE02/U73ibYJfZ3-axChvmmdmH1xJtWk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:c4:b1:d1:60:7e:8c:9a:ec:a5:4b:a3:5e:74:91:f0:26:57: d8:fa:f0:cc:20:e0:0c:c8:07:25:4c:60:53:a6:78:ba:9a:c3: 78:bc:ba:a3:37:79:7e:11:ef:f4:f3:af:04:1a:1b:a8:91:16: d3:68:f2:fc:f0:ac:ea:26:18:ec:c6:63:a2:d4:3b:02:28:31: 5d:c6:0b:92:85:a2:91:39:3b:0e:3e:10:d7:1b:73:31:e2:0d: 83:8f:27:11:9d:1b:b5:2b:25:a6:f4:23:34:80:b2:58:c5:94: 3b:9c:00:22:1e:42:50:3f:21:c1:d0:48:13:be:47:c5:1e:cf: a0:98:9c:56:99:38:c4:77:f5:1e:ba:2a:b1:36:38:d9:1d:93: f5:03:96:ed:ec:7d:25:39:21:ae:92:ae:7a:bd:66:1f:d1:07: 6c:8d:70:3c:a0:7b:b8:9b:ce:37:81:9d:97:14:b9:f2:1b:54: 37:ad:31:42:64:d3:9a:47:a3:08:5d:5d:0c:e7:73:96:b5:10: c6:55:d0:d1:ed:25:1c:d6:eb:81:44:b2:55:bd:9a:c8:5d:c7: 4d:f0:2c:46:a7:0f:02:d3:f1:de:a2:2a:7e:78:95:94:55:6c: 08:41:74:a3:b9:13:31:e3:3f:a5:d1:17:60:db:a8:9e:b1:a0: 39:55:3a:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUUxQUUxMTAvBgNVBAUTKDUzQkRFMjZEODI1RjY3N0Y5QUM0Mjg2RjlBNjc2NjFG NUM0OUI1NjkwHhcNMjUwNzI0MjAzMzI3WhcNMjUwNzMxMjAzMzI3WjAYMRYwFAYD VQQDEw02ODgyOTg5Ny03ZjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01zD5MUhbQCZhLSVunFeI169S5+y0mQY32QkCgml0gy5N/QsF8L0OC50zbJS YsNb60isCLG02SyH991/aMNLhDZNEwwi+C45OfXGIsxurWicprmVHnzKTknrpk91 8oxz6YSbsYvLehs3W7M05KEn5zb1/9VPSV5h87CY+I2UdkY25DWMo4rJKr6+UqoU Ti8R3rLAIw8ksKgfFEgI/nc0eApoDdDfahtEZKVbc61rS/Jus+MWliPFdzoKhWDJ lgQIgpml6YO9+fM/3Gl0DDEvlpyutZcQ4vh0f2z/B6nETO3SmGfwI+72viSj3AEG MMIISflYcQ0khn70yZH/5nlAswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBexyT3B 2X0nXrxDjFkknZAtdGDbMB8GA1UdIwQYMBaAFFO94m2CX2d/msQob5pnZh9cSbVp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTFBRS9CNDBCQjFCOEIx MkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZlozLWF4Q2h2bW1kbUgxeEp0 V2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3M2liWUpmWjMtYXhDaHZtbWRtSDF4SnRXay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RTFBRS9CNDBCQjFCOEIxMkUxMUVBOUE5NUI1NkFDNEY5QUUwMi9VNzNpYllKZloz LWF4Q2h2bW1kbUgxeEp0V2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwxLHRYH6MmuylS6NedJHwJlfY+vDMIOAMyAclTGBTpni6msN4vLqj N3l+Ee/0868EGhuokRbTaPL88KzqJhjsxmOi1DsCKDFdxguShaKROTsOPhDXG3Mx 4g2DjycRnRu1KyWm9CM0gLJYxZQ7nAAiHkJQPyHB0EgTvkfFHs+gmJxWmTjEd/Ue uiqxNjjZHZP1A5bt7H0lOSGukq56vWYf0QdsjXA8oHu4m843gZ2XFLnyG1Q3rTFC ZNOaR6MIXV0M53OWtRDGVdDR7SUc1uuBRLJVvZrIXcdN8CxGpw8C0/Heoip+eJWU VWwIQXSjuRMx4z+l0Rdg26iesaA5VTrT -----END CERTIFICATE-----Generated at Sat Jul 26 02:03:17 2025 by rpki-client