$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft File: 9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft (raw, json) Hash identifier: 85aYFG6Qa3L0cLF4UXuPjo73hjvYHvKAUT5Tighf7IE= Subject key identifier: 7E:3A:59:39:5F:C5:99:C5:07:0C:85:D3:8C:8A:27:0A:26:2F:D8:50 Authority key identifier: F5:39:83:B7:AB:83:86:C6:99:58:78:4F:FA:F0:E6:97:26:24:57:A7 Certificate issuer: /CN=A919EAAD/serialNumber=F53983B7AB8386C69958784FFAF0E697262457A7 Certificate serial: 0C5F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9TmDt6uDhsaZWHhP-vDmlyYkV6c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft Manifest number: 0C51 Signing time: Tue 22 Jul 2025 18:44:14 +0000 Manifest this update: Tue 22 Jul 2025 18:44:14 +0000 Manifest next update: Tue 29 Jul 2025 18:44:14 +0000 Files and hashes: 1: 9TmDt6uDhsaZWHhP-vDmlyYkV6c.crl (hash: Uy/e4Zwc+HDgj4K1aXguS+GC3sFxPdONTONZfi933ho=) 2: 97DC58040B5B11EAB69DC64FC4F9AE02.roa (hash: IIl+hrMnm94EE997te9hu/Nd32AVZAIsxiVc91AGezY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.crl rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9TmDt6uDhsaZWHhP-vDmlyYkV6c.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 18:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3167 (0xc5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAAD, serialNumber=F53983B7AB8386C69958784FFAF0E697262457A7 Validity Not Before: Jul 22 18:44:14 2025 GMT Not After : Jul 29 18:44:14 2025 GMT Subject: CN=687fdbfe-2f8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:50:a0:26:ae:e2:57:c5:27:b8:62:28:70:4d: 00:e3:40:be:68:71:8e:f4:5b:11:74:03:31:a1:e5: b1:36:f5:b4:43:34:c1:d6:85:50:74:98:bd:c8:81: a5:fc:c3:53:33:b4:c1:51:fe:9d:64:31:1e:b8:aa: bb:27:f4:02:0b:ad:1b:f7:c6:31:f8:90:a3:04:77: 81:75:19:6b:17:06:48:97:99:af:c4:bc:e9:55:85: 50:c1:15:4a:09:1e:91:eb:4d:2e:36:0c:c0:30:21: bc:46:02:ac:fd:db:bc:32:95:00:b6:e9:80:11:54: 28:ff:f8:32:10:43:f0:9b:bc:d6:d7:6d:a7:30:a1: e1:97:0c:f9:e9:57:6f:80:63:8e:3a:f6:bf:3b:bf: 06:9c:da:c8:c5:53:d6:ad:1d:e3:5d:b6:36:25:39: 62:e0:63:c7:d7:19:81:66:ca:6d:40:8e:18:6b:4f: f4:43:7c:b8:56:24:a1:89:f3:6b:51:1d:50:66:86: a6:55:02:52:f6:a7:7d:11:9c:df:60:5f:2f:e2:e9: c9:f9:dc:bb:fc:74:f7:16:9c:38:20:cc:3f:9e:be: 36:b3:67:8b:ab:c7:7d:90:c2:35:80:32:5d:50:9b: a5:95:21:fa:c3:66:ef:ad:68:4a:b4:4e:1d:cc:27: 85:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:3A:59:39:5F:C5:99:C5:07:0C:85:D3:8C:8A:27:0A:26:2F:D8:50 X509v3 Authority Key Identifier: keyid:F5:39:83:B7:AB:83:86:C6:99:58:78:4F:FA:F0:E6:97:26:24:57:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9TmDt6uDhsaZWHhP-vDmlyYkV6c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAAD/87C3168809D511EAB76C7317C4F9AE02/9TmDt6uDhsaZWHhP-vDmlyYkV6c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:f9:90:a0:7e:76:8f:8d:50:a5:cc:ac:be:2a:7d:52:8d:8b: c7:14:48:88:cb:ad:2a:46:f1:c6:c5:a0:e7:88:c8:94:fa:a8: 2f:ca:7e:86:12:c5:05:3a:7e:4f:56:55:e1:7d:b6:09:b2:19: c8:05:4c:0d:44:7d:b4:04:28:69:cf:2c:32:65:f9:8b:f7:b6: 54:c8:02:d5:f3:6a:b8:40:a1:70:2b:43:c3:64:10:31:ac:f8: a9:61:00:26:84:9f:d3:c8:95:ff:8a:c4:44:74:81:71:9b:b8: 47:fb:36:b9:cb:a8:72:64:49:30:b2:69:f3:28:b5:6d:c7:b0: 60:a2:9f:d7:47:c2:8f:34:c5:f8:1b:69:09:62:8c:d1:03:a8: b9:c2:29:07:e8:93:bc:17:44:eb:56:63:ac:a3:a4:a6:51:53: 03:66:8d:c8:08:83:c1:6d:46:8d:ab:3e:41:28:16:6c:68:35: 5c:1c:e7:cc:e5:76:50:0b:25:5f:cb:f4:3b:2b:e1:d4:21:1f: 6d:af:07:ae:1a:83:ee:1f:50:02:cd:cf:8a:8e:c4:d7:1c:6a: 02:13:68:71:f2:4b:c9:8c:3d:ba:47:26:83:8b:c1:11:f6:4d: b9:c9:bc:2a:9f:cc:1c:f6:c0:e4:d6:c4:96:e2:5e:bc:d3:17: 05:9b:75:e3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBQUQxMTAvBgNVBAUTKEY1Mzk4M0I3QUI4Mzg2QzY5OTU4Nzg0RkZBRjBFNjk3 MjYyNDU3QTcwHhcNMjUwNzIyMTg0NDE0WhcNMjUwNzI5MTg0NDE0WjAYMRYwFAYD VQQDEw02ODdmZGJmZS0yZjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplCgJq7iV8UnuGIocE0A40C+aHGO9FsRdAMxoeWxNvW0QzTB1oVQdJi9yIGl /MNTM7TBUf6dZDEeuKq7J/QCC60b98Yx+JCjBHeBdRlrFwZIl5mvxLzpVYVQwRVK CR6R600uNgzAMCG8RgKs/du8MpUAtumAEVQo//gyEEPwm7zW122nMKHhlwz56Vdv gGOOOva/O78GnNrIxVPWrR3jXbY2JTli4GPH1xmBZsptQI4Ya0/0Q3y4ViShifNr UR1QZoamVQJS9qd9EZzfYF8v4unJ+dy7/HT3Fpw4IMw/nr42s2eLq8d9kMI1gDJd UJullSH6w2bvrWhKtE4dzCeF5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH46WTlf xZnFBwyF04yKJwomL9hQMB8GA1UdIwQYMBaAFPU5g7erg4bGmVh4T/rw5pcmJFen MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFBRC84N0MzMTY4ODA5 RDUxMUVBQjc2QzczMTdDNEY5QUUwMi85VG1EdDZ1RGhzYVpXSGhQLXZEbWx5WWtW NmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlUbUR0NnVEaHNhWldIaFAtdkRtbHlZa1Y2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFBRC84N0MzMTY4ODA5RDUxMUVBQjc2QzczMTdDNEY5QUUwMi85VG1EdDZ1RGhz YVpXSGhQLXZEbWx5WWtWNmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR+ZCgfnaPjVClzKy+Kn1SjYvHFEiIy60qRvHGxaDniMiU+qgvyn6G EsUFOn5PVlXhfbYJshnIBUwNRH20BChpzywyZfmL97ZUyALV82q4QKFwK0PDZBAx rPipYQAmhJ/TyJX/isREdIFxm7hH+za5y6hyZEkwsmnzKLVtx7Bgop/XR8KPNMX4 G2kJYozRA6i5wikH6JO8F0TrVmOso6SmUVMDZo3ICIPBbUaNqz5BKBZsaDVcHOfM 5XZQCyVfy/Q7K+HUIR9trweuGoPuH1ACzc+KjsTXHGoCE2hx8kvJjD26RyaDi8ER 9k25ybwqn8wc9sDk1sSW4l680xcFm3Xj -----END CERTIFICATE-----Generated at Wed Jul 23 06:16:42 2025 by rpki-client