$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.mft File: 7TaUIY3LHq89GvXGq8Axptt-bOU.mft (raw, json) Hash identifier: vhXi4Jg3WiZ1H8diMjNKYIky/P2YucmGDvtvZbfnWgI= Subject key identifier: 50:63:10:56:02:D9:03:C2:94:7F:A9:C2:61:EF:46:8C:46:8B:DF:C1 Authority key identifier: ED:36:94:21:8D:CB:1E:AF:3D:1A:F5:C6:AB:C0:31:A6:DB:7E:6C:E5 Certificate issuer: /CN=A919EAF3/serialNumber=ED3694218DCB1EAF3D1AF5C6ABC031A6DB7E6CE5 Certificate serial: 19AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.mft Manifest number: 19A0 Signing time: Tue 22 Jul 2025 16:31:34 +0000 Manifest this update: Tue 22 Jul 2025 16:31:33 +0000 Manifest next update: Tue 29 Jul 2025 16:31:33 +0000 Files and hashes: 1: 7TaUIY3LHq89GvXGq8Axptt-bOU.crl (hash: xdByF8HZxgGsCYyxjm93NWdIsorT17jR8ZoJfhcopqc=) 2: 2958A208394011EF8BFF2329C4F9AE02.roa (hash: Rgcy8bLfZuMZaK0O0JgH1tVB2CHU0nZokr3ybevC1XM=) 3: 545743246D1911E7A4448D81C4F9AE02.roa (hash: 1AEdA1dYtxSEeV6/iG9fPyT5XqCCH+yVS2KSQ0ngLNo=) 4: 361BDEB6315011F0A08FB267C4F9AE02.roa (hash: 8NgyiTZuzWWxeh5N576WOky8V+rwppnwZswDffKQdlc=) 5: DCD75050315011F0BC916269C4F9AE02.roa (hash: OGNOEG5aJszl59fsj3zzGqJO7OxOgebIoETVEbapnbU=) 6: DC5DDACC315011F0BC916269C4F9AE02.roa (hash: elhRBQmgahUV9yLFHRBbf4LwKBDorXGc5+JZSYL3s5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.crl rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 16:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6575 (0x19af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=ED3694218DCB1EAF3D1AF5C6ABC031A6DB7E6CE5 Validity Not Before: Jul 22 16:31:33 2025 GMT Not After : Jul 29 16:31:33 2025 GMT Subject: CN=687fbce5-5190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d6:d6:6e:f4:f4:be:af:eb:73:f1:12:57:79: 38:7a:44:a8:cb:9e:81:15:16:7c:7e:80:30:a5:d9: 6f:2e:c7:84:b0:fd:9e:aa:b4:a4:6d:6e:85:7b:ae: 66:89:68:fd:d3:a6:d7:e7:a8:7d:29:10:fb:aa:9a: eb:ef:ae:a5:96:07:85:bb:9d:8c:6b:36:96:bc:11: d7:52:17:9c:6b:71:fb:d6:c0:d3:77:87:24:ae:a3: 3f:c1:c0:c8:b3:d9:d7:15:1c:dc:d3:95:09:a8:c9: 2a:bc:2c:80:85:86:67:53:9f:02:f0:0d:68:61:73: cf:9e:45:f9:5d:8e:a1:72:59:4b:33:87:94:f0:78: 3f:f0:95:e3:bc:e9:58:46:0d:a5:85:41:18:55:b1: b8:2c:9b:5f:cd:2c:90:df:04:f2:e1:12:97:db:c7: 41:7d:ea:bc:1a:63:92:ae:92:22:72:24:c7:b6:03: ae:14:f5:16:70:e9:45:50:fc:ce:d2:bc:6a:df:0d: f7:f2:22:65:b4:b5:ae:6e:bb:a1:ad:79:ca:ff:d8: 47:e6:87:8a:4a:c5:2e:0d:6b:d7:54:1b:46:1d:00: 4b:01:65:37:ab:10:48:e9:cb:8c:5b:f6:af:3e:86: 76:7f:75:8c:c7:bb:2d:60:29:76:87:d4:f1:b8:85: 94:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:63:10:56:02:D9:03:C2:94:7F:A9:C2:61:EF:46:8C:46:8B:DF:C1 X509v3 Authority Key Identifier: keyid:ED:36:94:21:8D:CB:1E:AF:3D:1A:F5:C6:AB:C0:31:A6:DB:7E:6C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d6:b1:62:bd:12:86:0f:11:29:bc:b5:42:62:ee:90:39:14:59: 7c:63:94:7a:83:ae:80:bf:26:94:50:ff:0f:b2:48:95:5f:f4: 1d:f0:a1:5c:16:d4:b3:28:3d:3c:0f:ab:e9:aa:83:44:70:46: 26:53:b3:24:ce:38:76:03:78:1a:24:57:52:b3:ee:62:98:4c: b3:8e:af:c7:80:e3:55:8b:df:88:ee:95:e1:2b:e2:00:5f:1f: b0:b2:8c:a4:a1:8c:cf:23:35:9a:b9:97:c8:04:4b:b5:5d:48: a8:ea:f1:28:02:9d:14:b5:db:7b:f4:82:f5:9d:a3:86:35:dc: 66:c5:bc:aa:22:5b:c9:a6:86:11:7a:29:97:7f:51:68:d2:82: e7:d1:68:68:06:90:ab:79:e0:a2:f8:77:72:ea:5f:89:74:e9: 52:b8:04:c8:b7:ee:40:c3:9b:d5:9f:2e:ca:a5:f1:e1:f5:bc: 0e:27:24:63:03:0e:4e:db:d5:0b:cd:0e:ec:e9:da:bb:a7:ec: d8:0d:65:34:5d:c8:3d:bf:28:9c:d8:56:f3:51:0c:a2:36:82: 8b:0f:03:b0:8a:24:6d:f1:ff:12:d5:49:a5:01:50:af:4b:1d: 6c:ff:00:9c:00:55:f8:64:88:05:63:3b:e1:75:1a:45:03:d6: 88:1c:43:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKEVEMzY5NDIxOERDQjFFQUYzRDFBRjVDNkFCQzAzMUE2 REI3RTZDRTUwHhcNMjUwNzIyMTYzMTMzWhcNMjUwNzI5MTYzMTMzWjAYMRYwFAYD VQQDEw02ODdmYmNlNS01MTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3tbWbvT0vq/rc/ESV3k4ekSoy56BFRZ8foAwpdlvLseEsP2eqrSkbW6Fe65m iWj906bX56h9KRD7qprr766llgeFu52MazaWvBHXUheca3H71sDTd4ckrqM/wcDI s9nXFRzc05UJqMkqvCyAhYZnU58C8A1oYXPPnkX5XY6hcllLM4eU8Hg/8JXjvOlY Rg2lhUEYVbG4LJtfzSyQ3wTy4RKX28dBfeq8GmOSrpIiciTHtgOuFPUWcOlFUPzO 0rxq3w338iJltLWubruhrXnK/9hH5oeKSsUuDWvXVBtGHQBLAWU3qxBI6cuMW/av PoZ2f3WMx7stYCl2h9TxuIWUHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBjEFYC 2QPClH+pwmHvRoxGi9/BMB8GA1UdIwQYMBaAFO02lCGNyx6vPRr1xqvAMabbfmzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85RDIwMERCQzZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi83VGFVSVkzTEhxODlHdlhHcThBeHB0dC1i T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUYVVJWTNMSHE4OUd2WEdxOEF4cHR0LWJPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUFGMy85RDIwMERCQzZEMTgxMUU3QTgxNURBODBDNEY5QUUwMi83VGFVSVkzTEhx ODlHdlhHcThBeHB0dC1iT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDWsWK9EoYPESm8tUJi7pA5FFl8Y5R6g66AvyaUUP8PskiVX/Qd8KFc FtSzKD08D6vpqoNEcEYmU7Mkzjh2A3gaJFdSs+5imEyzjq/HgONVi9+I7pXhK+IA Xx+wsoykoYzPIzWauZfIBEu1XUio6vEoAp0Utdt79IL1naOGNdxmxbyqIlvJpoYR eimXf1Fo0oLn0WhoBpCreeCi+Hdy6l+JdOlSuATIt+5Aw5vVny7KpfHh9bwOJyRj Aw5O29ULzQ7s6dq7p+zYDWU0Xcg9vyic2FbzUQyiNoKLDwOwiiRt8f8S1UmlAVCv Sx1s/wCcAFX4ZIgFYzvhdRpFA9aIHEPQ -----END CERTIFICATE-----Generated at Thu Jul 24 08:31:14 2025 by rpki-client