$ rpki-client -vvf rpki.apnic.net/member_repository/A919F9A8/B92306FEEB6A11EE9C03B711C4F9AE02/h7YsNOjcXUAjjA9r3pEVbl0GpEs.mft File: h7YsNOjcXUAjjA9r3pEVbl0GpEs.mft (raw, json) Hash identifier: QfIMa7YU2fkC7vr5ZxeP5K+1DwqXAv7f57uFXdTHO/c= Subject key identifier: 8D:D1:B2:29:59:B4:FA:38:55:33:82:DE:88:12:F5:89:11:36:69:47 Authority key identifier: 87:B6:2C:34:E8:DC:5D:40:23:8C:0F:6B:DE:91:15:6E:5D:06:A4:4B Certificate issuer: /CN=A919F9A8/serialNumber=87B62C34E8DC5D40238C0F6BDE91156E5D06A44B Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7YsNOjcXUAjjA9r3pEVbl0GpEs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F9A8/B92306FEEB6A11EE9C03B711C4F9AE02/h7YsNOjcXUAjjA9r3pEVbl0GpEs.mft Manifest number: 010A Signing time: Mon 21 Jul 2025 05:21:49 +0000 Manifest this update: Mon 21 Jul 2025 05:21:49 +0000 Manifest next update: Mon 28 Jul 2025 05:21:48 +0000 Files and hashes: 1: h7YsNOjcXUAjjA9r3pEVbl0GpEs.crl (hash: I+f5ebhsbM0FkeUeQ0IZXGH4rnOqqg+ceTvIr6izWHw=) 2: F2D5C21216F511F086107D74C4F9AE02.roa (hash: hlb2SfBxJYheUKrpN9mM5swhopWBRQyixAQ28JRvUzI=) 3: 9E54710E16D511F09EF28A4EC4F9AE02.roa (hash: 3XDa5Qvq48RtoRjAw8eS6iGbVpjU9ftFentU+xzbXfk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F9A8/B92306FEEB6A11EE9C03B711C4F9AE02/h7YsNOjcXUAjjA9r3pEVbl0GpEs.crl rsync://rpki.apnic.net/member_repository/A919F9A8/B92306FEEB6A11EE9C03B711C4F9AE02/h7YsNOjcXUAjjA9r3pEVbl0GpEs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7YsNOjcXUAjjA9r3pEVbl0GpEs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F9A8, serialNumber=87B62C34E8DC5D40238C0F6BDE91156E5D06A44B Validity Not Before: Jul 21 05:21:49 2025 GMT Not After : Jul 28 05:21:48 2025 GMT Subject: CN=687dce6d-3e86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8c:4a:62:7e:10:98:37:3c:28:db:a5:f6:d8: 0d:b9:fd:68:86:7a:05:e6:a5:af:0c:fd:39:01:48: 74:4f:ae:cd:34:ba:88:ac:c9:71:29:70:0e:40:a0: 67:5a:63:75:12:37:0d:10:55:3c:1a:2e:da:d6:45: 3c:d1:6a:fd:fc:93:2d:26:89:c1:a5:fb:9a:34:d7: ca:51:2c:69:49:f8:ed:87:00:e0:d7:02:b8:2d:08: 74:ff:fc:e3:51:c8:97:1f:9c:29:22:db:8a:e1:1d: fe:fa:90:70:3a:83:41:b6:e1:4f:ca:74:69:4d:f7: 9f:4e:7c:d6:45:7c:d1:da:5c:c7:f1:b2:e3:fa:66: a6:f3:f7:21:63:25:a8:2f:8d:5a:71:19:7e:7f:01: f5:28:97:6f:a6:9c:36:ec:9c:6b:0b:40:29:d1:44: 05:ed:0c:b1:82:01:d6:47:84:dd:2a:ea:ff:67:95: 77:bd:5e:54:dc:64:b4:02:0c:2e:c6:6a:e4:69:4c: c3:28:ef:f7:12:09:6d:0b:b7:6d:58:06:aa:6f:c5: ef:e7:de:8a:08:50:a3:b4:56:a9:8f:1c:87:cc:0c: 78:5b:76:dd:aa:97:5c:b3:45:62:46:db:4c:d8:73: 79:6a:3e:a0:7a:ce:0e:39:04:af:37:a4:2d:39:d2: 61:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D1:B2:29:59:B4:FA:38:55:33:82:DE:88:12:F5:89:11:36:69:47 X509v3 Authority Key Identifier: keyid:87:B6:2C:34:E8:DC:5D:40:23:8C:0F:6B:DE:91:15:6E:5D:06:A4:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F9A8/B92306FEEB6A11EE9C03B711C4F9AE02/h7YsNOjcXUAjjA9r3pEVbl0GpEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7YsNOjcXUAjjA9r3pEVbl0GpEs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F9A8/B92306FEEB6A11EE9C03B711C4F9AE02/h7YsNOjcXUAjjA9r3pEVbl0GpEs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:da:1c:ea:5f:80:d5:72:63:5e:1b:f6:34:66:10:8e:95:56: 98:2a:74:e4:ea:0b:13:1f:e4:93:20:16:7a:0e:42:ab:5a:ac: 29:11:b6:84:89:8e:92:b6:fa:ed:64:73:8d:6d:61:94:db:1d: 92:4e:ce:43:62:10:2b:0a:52:25:11:9a:70:2f:67:74:cd:22: 90:5e:97:44:12:c5:78:bb:03:f7:eb:aa:b6:da:d3:c7:e6:68: 8e:2f:77:f0:4f:38:b2:f2:73:d0:4e:ba:15:e0:b9:f3:e6:10: 3b:a5:83:3c:2d:5f:d9:42:de:0c:82:5d:7e:e7:4e:a6:d0:5b: bf:81:62:37:e2:6f:aa:3d:0e:3b:63:3f:ac:c8:6a:a8:7f:36: 04:cc:2d:4a:2a:7c:17:8c:02:02:72:2e:27:e4:19:39:3b:ba: a4:15:64:62:01:2a:09:5e:82:45:04:6a:ab:3c:66:7d:ac:bf: 36:45:09:2b:a7:17:c2:80:c9:34:9b:f6:7c:ce:87:c0:f8:50: 10:b7:41:65:6a:3e:aa:be:5b:06:61:aa:fd:eb:5c:64:26:f2: a1:96:7b:59:03:0a:8c:bf:cd:da:e0:20:83:b2:f6:07:99:f0: 9f:ec:e8:98:46:d0:9c:ce:c0:89:e6:88:0c:98:82:55:8a:dd: 26:34:83:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY5QTgxMTAvBgNVBAUTKDg3QjYyQzM0RThEQzVENDAyMzhDMEY2QkRFOTExNTZF NUQwNkE0NEIwHhcNMjUwNzIxMDUyMTQ5WhcNMjUwNzI4MDUyMTQ4WjAYMRYwFAYD VQQDEw02ODdkY2U2ZC0zZTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4IxKYn4QmDc8KNul9tgNuf1ohnoF5qWvDP05AUh0T67NNLqIrMlxKXAOQKBn WmN1EjcNEFU8Gi7a1kU80Wr9/JMtJonBpfuaNNfKUSxpSfjthwDg1wK4LQh0//zj UciXH5wpItuK4R3++pBwOoNBtuFPynRpTfefTnzWRXzR2lzH8bLj+mam8/chYyWo L41acRl+fwH1KJdvppw27JxrC0Ap0UQF7QyxggHWR4TdKur/Z5V3vV5U3GS0Agwu xmrkaUzDKO/3EgltC7dtWAaqb8Xv596KCFCjtFapjxyHzAx4W3bdqpdcs0ViRttM 2HN5aj6ges4OOQSvN6QtOdJhOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3RsilZ tPo4VTOC3ogS9YkRNmlHMB8GA1UdIwQYMBaAFIe2LDTo3F1AI4wPa96RFW5dBqRL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjlBOC9COTIzMDZGRUVC NkExMUVFOUMwM0I3MTFDNEY5QUUwMi9oN1lzTk9qY1hVQWpqQTlyM3BFVmJsMEdw RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3WXNOT2pjWFVBampBOXIzcEVWYmwwR3BFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjlBOC9COTIzMDZGRUVCNkExMUVFOUMwM0I3MTFDNEY5QUUwMi9oN1lzTk9qY1hV QWpqQTlyM3BFVmJsMEdwRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCo2hzqX4DVcmNeG/Y0ZhCOlVaYKnTk6gsTH+STIBZ6DkKrWqwpEbaE iY6StvrtZHONbWGU2x2STs5DYhArClIlEZpwL2d0zSKQXpdEEsV4uwP366q22tPH 5miOL3fwTziy8nPQTroV4Lnz5hA7pYM8LV/ZQt4Mgl1+506m0Fu/gWI34m+qPQ47 Yz+syGqofzYEzC1KKnwXjAICci4n5Bk5O7qkFWRiASoJXoJFBGqrPGZ9rL82RQkr pxfCgMk0m/Z8zofA+FAQt0Flaj6qvlsGYar961xkJvKhlntZAwqMv83a4CCDsvYH mfCf7OiYRtCczsCJ5ogMmIJVit0mNIMU -----END CERTIFICATE-----Generated at Mon Jul 21 13:11:05 2025 by rpki-client