$ rpki-client -vvf rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft File: 0pm8o5yZPbgNETe5mbIhhGrPVWs.mft (raw, json) Hash identifier: rEj2eN5l7VmUAEfi09DM1Ms3CTwNy5MAebm6GcSH3d8= Subject key identifier: FA:20:E5:92:6C:98:EB:21:B5:4F:30:2C:F9:BB:07:BD:EC:F1:13:A7 Authority key identifier: D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B Certificate issuer: /CN=A9115C2E/serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Certificate serial: 04EC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft Manifest number: 04E6 Signing time: Sun 20 Jul 2025 20:02:39 +0000 Manifest this update: Sun 20 Jul 2025 20:02:38 +0000 Manifest next update: Sun 27 Jul 2025 20:02:38 +0000 Files and hashes: 1: 0pm8o5yZPbgNETe5mbIhhGrPVWs.crl (hash: nUwvXop46KlBtQx3HKzZxxaVQB1iqxV9BIGyMp03pqw=) 2: F490AE2431D811ECA3C4CE3EC4F9AE02.roa (hash: /oifx1YqYxKOVaxnhM6Z6BMW1b5AcpZK0vDtcYNO6Zg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:22:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1260 (0x4ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115C2E, serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Validity Not Before: Jul 20 20:02:38 2025 GMT Not After : Jul 27 20:02:38 2025 GMT Subject: CN=687d4b5e-9288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:01:bf:b2:a8:39:50:33:dd:17:c1:90:01:61: 31:d1:af:42:3c:c5:ff:f0:f1:4e:09:33:b1:07:76: 97:d8:ec:3a:ef:18:6c:01:1e:b2:54:76:6e:69:82: d7:10:dd:81:bc:8c:c3:67:5f:66:7e:18:fd:77:56: 4f:c5:eb:ff:21:46:02:c9:94:88:0a:69:5c:31:f7: 28:d7:5f:71:8b:47:70:76:35:2a:37:09:24:88:49: c3:10:ef:e7:eb:b2:3d:ce:01:39:76:28:d7:7e:de: 68:7f:2a:69:0e:29:4f:14:1e:f1:02:2f:da:19:a7: 5e:8c:67:34:8f:63:88:48:8f:27:9c:0c:fb:05:43: 9a:15:d0:80:15:28:cd:f8:bb:cd:6f:32:f1:60:1b: 26:10:05:9c:3f:f5:a1:13:c3:a7:82:24:97:e1:1f: 32:a1:d2:56:83:83:8a:c9:4d:6e:b3:ad:6b:69:56: fc:8e:1c:6e:9d:2f:5e:51:b0:51:76:6f:13:3c:23: b4:d5:bc:5a:20:33:59:04:7c:43:e6:6f:a1:a4:9a: fb:c5:44:4d:34:6b:70:e3:55:1c:b0:62:f2:f7:15: f4:be:b3:a3:77:7a:ea:e3:b0:68:b9:c7:f4:d5:dc: 8d:3c:82:88:5e:99:4f:ce:c0:cf:f0:b4:18:f8:7f: 10:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:20:E5:92:6C:98:EB:21:B5:4F:30:2C:F9:BB:07:BD:EC:F1:13:A7 X509v3 Authority Key Identifier: keyid:D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:77:a2:73:a1:31:02:f5:e1:42:95:15:3c:f8:6f:46:1a:41: 7a:b5:09:8b:ab:24:56:4a:77:0c:6d:a1:c5:75:20:b7:72:96: 6d:ed:58:cb:9e:f6:fa:ea:70:56:fb:1c:91:1f:1c:56:88:2e: fe:3d:f3:e4:b7:9e:35:52:41:b4:ee:40:33:66:94:c2:e9:e2: ae:4c:fc:f5:e0:81:59:63:02:c4:2e:3d:3c:2f:8d:cd:b6:06: 22:b4:7a:02:48:f6:13:b7:96:77:d4:fb:c8:6d:ad:40:94:db: d5:5f:a9:ca:9a:6b:63:8f:8a:cc:ee:7b:f6:71:41:c2:f6:6e: 7d:5b:2a:b8:a2:a0:06:ea:78:c8:1c:cb:1b:fb:19:25:4b:e0: 7c:ec:f8:f4:07:75:f4:d7:b1:46:c4:df:e1:e4:8b:ba:40:9c: 06:35:02:7c:f4:01:f7:4a:93:ff:50:3c:f5:1f:2a:8b:1f:2d: c6:b2:90:a4:7a:99:8d:bd:3a:d8:79:b1:b4:e0:64:c9:46:3c: 47:98:07:20:03:ac:1a:46:4f:ab:2c:38:3c:47:bf:a1:d5:1f: 1c:8e:05:9f:8c:85:cf:02:dc:50:0b:34:ea:0f:15:6d:33:08: 1e:ef:1b:60:d4:d2:33:e5:f4:c4:d1:43:01:7a:48:55:65:a1: f8:7f:24:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDMkUxMTAvBgNVBAUTKEQyOTlCQ0EzOUM5OTNEQjgwRDExMzdCOTk5QjIyMTg0 NkFDRjU1NkIwHhcNMjUwNzIwMjAwMjM4WhcNMjUwNzI3MjAwMjM4WjAYMRYwFAYD VQQDEw02ODdkNGI1ZS05Mjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwG/sqg5UDPdF8GQAWEx0a9CPMX/8PFOCTOxB3aX2Ow67xhsAR6yVHZuaYLX EN2BvIzDZ19mfhj9d1ZPxev/IUYCyZSICmlcMfco119xi0dwdjUqNwkkiEnDEO/n 67I9zgE5dijXft5ofyppDilPFB7xAi/aGadejGc0j2OISI8nnAz7BUOaFdCAFSjN +LvNbzLxYBsmEAWcP/WhE8OngiSX4R8yodJWg4OKyU1us61raVb8jhxunS9eUbBR dm8TPCO01bxaIDNZBHxD5m+hpJr7xURNNGtw41UcsGLy9xX0vrOjd3rq47Boucf0 1dyNPIKIXplPzsDP8LQY+H8QbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPog5ZJs mOshtU8wLPm7B73s8ROnMB8GA1UdIwQYMBaAFNKZvKOcmT24DRE3uZmyIYRqz1Vr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUMyRS85NTI3RTZCNDI2 OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBiZ05FVGU1bWJJaGhHclBW V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBwbThvNXlaUGJnTkVUZTVtYkloaEdyUFZXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NUMyRS85NTI3RTZCNDI2OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBi Z05FVGU1bWJJaGhHclBWV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQd6JzoTEC9eFClRU8+G9GGkF6tQmLqyRWSncMbaHFdSC3cpZt7VjL nvb66nBW+xyRHxxWiC7+PfPkt541UkG07kAzZpTC6eKuTPz14IFZYwLELj08L43N tgYitHoCSPYTt5Z31PvIba1AlNvVX6nKmmtjj4rM7nv2cUHC9m59Wyq4oqAG6njI HMsb+xklS+B87Pj0B3X017FGxN/h5Iu6QJwGNQJ89AH3SpP/UDz1HyqLHy3GspCk epmNvTrYebG04GTJRjxHmAcgA6waRk+rLDg8R7+h1R8cjgWfjIXPAtxQCzTqDxVt Mwge7xtg1NIz5fTE0UMBekhVZaH4fyR8 -----END CERTIFICATE-----Generated at Mon Jul 21 02:04:46 2025 by rpki-client