$ rpki-client -vvf rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft File: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft (raw, json) Hash identifier: 0gRalkh6CoGKJ/nZY3brF2TItAMNniLfPmWbwZCn2VM= Subject key identifier: 8E:F0:F9:24:66:F8:E9:E9:9B:BC:73:AE:BE:A1:3E:2B:E6:C4:52:67 Authority key identifier: D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC Certificate issuer: /CN=A914247C/serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC Certificate serial: 0B33 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft Manifest number: 0B26 Signing time: Fri 18 Jul 2025 19:29:32 +0000 Manifest this update: Fri 18 Jul 2025 19:29:32 +0000 Manifest next update: Fri 25 Jul 2025 19:29:32 +0000 Files and hashes: 1: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl (hash: HcvJrKYNdv09MGtW3uDZFJdPqld108Xs74oBTHcofrI=) 2: 9156042083EB11ECB7EC3B76C4F9AE02.roa (hash: dPrx3cF0sDj9FTl2qCoRHJgtgGOLW5ACbJ0tx2wVxmU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:29:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2867 (0xb33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914247C, serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC Validity Not Before: Jul 18 19:29:32 2025 GMT Not After : Jul 25 19:29:32 2025 GMT Subject: CN=687aa09c-1507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a7:e1:dd:f4:de:fb:24:35:bc:59:e4:d6:3e: e9:d8:73:77:b6:0d:3e:71:0f:9a:b1:20:8a:bc:25: 11:71:77:40:8a:c9:53:8e:c3:4c:0a:17:6c:ab:d4: 0b:49:b4:53:d3:3b:70:54:09:70:29:e2:1d:92:65: 88:4c:e8:5f:7b:45:8d:71:3b:a1:38:0f:5d:f5:fb: 38:72:46:bc:33:8c:67:9f:53:8a:46:f0:08:a2:2e: 2d:c3:c2:ca:23:ba:6a:00:1d:6c:be:4e:72:02:eb: 62:9c:21:48:7f:52:f6:c2:38:ed:4f:40:50:14:1b: ce:e8:0f:f3:65:a9:8e:56:19:d6:23:b2:94:d4:d3: 87:45:d1:c1:51:cf:fa:0f:a0:1f:5c:80:e8:cb:67: ca:a0:9e:1b:3a:4a:b5:3a:95:bf:b5:4f:97:04:1c: b2:66:b4:d1:ac:4a:85:1e:62:81:91:4b:41:7a:d1: c6:46:ce:ba:36:b1:1e:aa:db:d8:7c:58:77:b5:8d: 6f:53:2c:78:93:66:93:21:7d:c9:f1:84:62:bc:9c: b4:38:36:7c:20:89:3e:78:88:9f:17:9b:60:31:74: cc:c1:ab:88:24:7b:44:04:b5:98:b7:79:28:b6:c7: a3:3a:02:34:fc:da:00:aa:74:58:20:5e:55:32:61: 1a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:F0:F9:24:66:F8:E9:E9:9B:BC:73:AE:BE:A1:3E:2B:E6:C4:52:67 X509v3 Authority Key Identifier: keyid:D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:4f:e8:54:43:7a:70:bb:c5:8a:d1:89:67:22:4e:22:40:4a: 78:3f:a4:1d:a2:1e:1a:9e:29:a6:4f:27:b0:ed:2c:df:8a:f3: 44:1c:aa:84:85:5b:29:4c:30:96:7b:c9:6e:a1:1f:da:2e:47: 59:e0:56:65:a9:ba:b6:88:a1:f8:8f:1a:95:3e:d6:c7:d2:1f: d2:57:f0:4a:fc:7b:29:65:70:e5:8d:5e:c2:fb:57:8c:1d:c9: fc:be:e3:62:d1:98:9a:8b:69:80:fa:f9:92:20:59:27:bc:66: 09:93:3a:cf:b1:5e:4d:20:b9:0e:87:94:1c:55:e1:6e:e2:68: 7b:15:00:c7:c5:e0:5f:d5:07:e1:74:83:0d:7d:1a:2b:87:39: ed:07:33:36:cf:67:10:72:19:49:08:6f:65:0b:ca:c1:ec:7c: fd:91:e8:30:5f:1b:8d:5f:30:ec:6c:ad:eb:60:1a:3f:a5:95: 59:d2:38:6b:63:41:dd:55:ce:ad:59:12:ed:4b:67:9e:a5:37: 84:48:5a:f4:e1:6d:a7:14:51:92:c4:66:98:42:90:ec:bd:8d: dc:89:22:3d:69:90:ec:3a:93:e5:8f:ec:ad:f3:d5:aa:14:17: 5c:c5:e1:a6:75:31:4c:cc:a5:04:a5:0f:3b:48:ab:c3:cb:c8: 3c:e4:9f:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI0N0MxMTAvBgNVBAUTKEQ1QTAyNTA2MzRERkMwM0RDOUNGQ0FCQTk3OTUxODBG RjA1MTU4RkMwHhcNMjUwNzE4MTkyOTMyWhcNMjUwNzI1MTkyOTMyWjAYMRYwFAYD VQQDEw02ODdhYTA5Yy0xNTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKfh3fTe+yQ1vFnk1j7p2HN3tg0+cQ+asSCKvCURcXdAislTjsNMChdsq9QL SbRT0ztwVAlwKeIdkmWITOhfe0WNcTuhOA9d9fs4cka8M4xnn1OKRvAIoi4tw8LK I7pqAB1svk5yAutinCFIf1L2wjjtT0BQFBvO6A/zZamOVhnWI7KU1NOHRdHBUc/6 D6AfXIDoy2fKoJ4bOkq1OpW/tU+XBByyZrTRrEqFHmKBkUtBetHGRs66NrEeqtvY fFh3tY1vUyx4k2aTIX3J8YRivJy0ODZ8IIk+eIifF5tgMXTMwauIJHtEBLWYt3ko tsejOgI0/NoAqnRYIF5VMmEaTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI7w+SRm +Onpm7xzrr6hPivmxFJnMB8GA1UdIwQYMBaAFNWgJQY038A9yc/KupeVGA/wUVj8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjQ3Qy84QTFDNDYxNjQz MEExMUVBODU4Q0RDNzZDNEY5QUUwMi8xYUFsQmpUZndEM0p6OHE2bDVVWURfQlJX UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFhQWxCalRmd0QzSno4cTZsNVVZRF9CUldQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjQ3Qy84QTFDNDYxNjQzMEExMUVBODU4Q0RDNzZDNEY5QUUwMi8xYUFsQmpUZndE M0p6OHE2bDVVWURfQlJXUHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgT+hUQ3pwu8WK0YlnIk4iQEp4P6Qdoh4animmTyew7SzfivNEHKqE hVspTDCWe8luoR/aLkdZ4FZlqbq2iKH4jxqVPtbH0h/SV/BK/HspZXDljV7C+1eM Hcn8vuNi0Ziai2mA+vmSIFknvGYJkzrPsV5NILkOh5QcVeFu4mh7FQDHxeBf1Qfh dIMNfRorhzntBzM2z2cQchlJCG9lC8rB7Hz9kegwXxuNXzDsbK3rYBo/pZVZ0jhr Y0HdVc6tWRLtS2eepTeESFr04W2nFFGSxGaYQpDsvY3ciSI9aZDsOpPlj+yt89Wq FBdcxeGmdTFMzKUEpQ87SKvDy8g85J/L -----END CERTIFICATE-----Generated at Sun Jul 20 02:58:18 2025 by rpki-client