$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft File: -1uWlTzNsR6SaDs-tbekV0lLJfA.mft (raw, json) Hash identifier: 7xxGVsEaSTmG7OWdxeL21jwIy60M8sHmsBvo8hY6cbg= Subject key identifier: 48:AA:D1:0F:66:A5:0E:E1:30:59:AA:5C:51:28:AF:E1:41:A0:7F:24 Authority key identifier: FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 Certificate issuer: /CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft Manifest number: 0146 Signing time: Sun 20 Jul 2025 15:31:40 +0000 Manifest this update: Sun 20 Jul 2025 15:31:39 +0000 Manifest next update: Sun 27 Jul 2025 15:31:39 +0000 Files and hashes: 1: -1uWlTzNsR6SaDs-tbekV0lLJfA.crl (hash: E0H0LS2Jy8X422bQ80QrwwGzK788uJHLTMiUO0GoRHY=) 2: 67B0ACBC8E5011EE95DFC141C4F9AE02.roa (hash: 4RQI+EFj/mJJo3iDsYdl0ustKcpifsqTMWOHIgjxyFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72, serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Validity Not Before: Jul 20 15:31:39 2025 GMT Not After : Jul 27 15:31:39 2025 GMT Subject: CN=687d0bdc-cccf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ac:b2:fd:de:07:bd:27:26:3a:9c:4c:c1:c2: 12:b1:d9:55:6c:b3:9f:e4:cd:12:43:f6:07:f5:19: fc:26:c1:49:f2:0b:7e:f3:29:4c:ab:18:77:82:2c: 52:6b:20:aa:2b:c2:b9:13:9f:84:02:9f:f4:a1:05: da:45:07:ca:a2:3f:d8:19:ad:9b:60:5c:82:93:19: 62:4a:63:32:8b:8b:da:dd:8b:9f:9c:1c:2f:83:79: 57:9b:3e:09:f0:57:e6:dc:8e:48:06:7e:99:79:ac: 7b:5f:8f:16:39:5a:2a:cf:46:5b:d4:6e:28:47:e7: 84:dd:dd:a5:21:94:77:1a:95:1c:7c:f7:b1:ae:49: 6c:f7:6b:ee:60:08:fc:4e:19:3b:3a:f9:94:51:35: fe:62:9f:66:24:ba:03:8c:27:88:b0:27:1e:ff:47: 72:e3:7d:f2:4a:bf:94:86:b3:fb:37:49:be:97:a8: d8:ad:21:a8:9e:f5:da:8b:59:8e:dd:ea:a0:fd:35: 2b:b5:a4:60:ed:fb:01:74:03:84:85:6d:00:02:51: 2b:0f:ef:66:97:1b:74:b6:ad:59:06:38:70:cf:fd: b3:c9:16:55:e6:be:5a:bd:3a:1a:0c:be:0c:29:12: 17:a9:3f:8c:4a:9d:6b:2e:4d:87:5a:7d:4e:83:af: 7b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:AA:D1:0F:66:A5:0E:E1:30:59:AA:5C:51:28:AF:E1:41:A0:7F:24 X509v3 Authority Key Identifier: keyid:FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:6a:af:b2:07:89:4f:9f:98:ba:c4:ca:b1:76:67:87:22:78: 2a:4c:b2:28:14:cb:91:97:aa:95:f1:84:1d:bc:50:6c:2e:3d: 85:d0:b4:fd:f9:19:2d:da:c8:8c:fd:f2:08:81:b4:a3:58:d2: fb:35:8f:82:52:f5:11:fc:79:fe:d2:fc:e7:60:fe:be:3e:71: 40:fc:7c:d9:97:83:2c:5d:84:87:20:73:b5:1b:c2:d9:cf:1e: 21:3a:e0:79:c3:08:80:79:b2:53:69:92:71:d6:bd:18:fe:0e: 77:7e:77:aa:eb:2a:04:52:96:5c:7b:d2:fe:df:d5:cc:de:5c: bf:9f:02:52:94:66:00:21:17:8a:2c:1a:32:54:8a:e7:fd:00: f3:df:c4:02:17:a9:9e:b1:d9:1d:70:e0:0a:38:52:ca:8c:3f: 7a:d4:6d:e7:02:8d:6f:4a:2a:ea:c5:ae:de:a1:39:34:fa:ad: 74:26:43:f5:ff:7d:98:9f:18:33:9b:f7:86:95:87:a4:44:d6: b5:33:6c:a2:6b:90:e1:ef:2a:ed:83:cb:ea:16:a5:09:68:25: b2:8a:c2:ef:89:f9:56:14:f5:9b:d7:c2:d4:c3:a1:db:7b:c5: 60:3b:28:ee:b8:80:e6:2c:76:c3:8e:f7:42:f4:c0:0f:75:61: b1:ab:04:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKEZCNUI5Njk1M0NDREIxMUU5MjY4M0IzRUI1QjdBNDU3 NDk0QjI1RjAwHhcNMjUwNzIwMTUzMTM5WhcNMjUwNzI3MTUzMTM5WjAYMRYwFAYD VQQDEw02ODdkMGJkYy1jY2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Kyy/d4HvScmOpxMwcISsdlVbLOf5M0SQ/YH9Rn8JsFJ8gt+8ylMqxh3gixS ayCqK8K5E5+EAp/0oQXaRQfKoj/YGa2bYFyCkxliSmMyi4va3YufnBwvg3lXmz4J 8Ffm3I5IBn6Zeax7X48WOVoqz0Zb1G4oR+eE3d2lIZR3GpUcfPexrkls92vuYAj8 Thk7OvmUUTX+Yp9mJLoDjCeIsCce/0dy433ySr+UhrP7N0m+l6jYrSGonvXai1mO 3eqg/TUrtaRg7fsBdAOEhW0AAlErD+9mlxt0tq1ZBjhwz/2zyRZV5r5avToaDL4M KRIXqT+MSp1rLk2HWn1Og697YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEiq0Q9m pQ7hMFmqXFEor+FBoH8kMB8GA1UdIwQYMBaAFPtblpU8zbEekmg7PrW3pFdJSyXw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi80RjU2QzAxQzc3 OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNSNlNhRHMtdGJla1YwbExK ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy0xdVdsVHpOc1I2U2FEcy10YmVrVjBsTEpmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi80RjU2QzAxQzc3OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNS NlNhRHMtdGJla1YwbExKZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIaq+yB4lPn5i6xMqxdmeHIngqTLIoFMuRl6qV8YQdvFBsLj2F0LT9 +Rkt2siM/fIIgbSjWNL7NY+CUvUR/Hn+0vznYP6+PnFA/HzZl4MsXYSHIHO1G8LZ zx4hOuB5wwiAebJTaZJx1r0Y/g53fneq6yoEUpZce9L+39XM3ly/nwJSlGYAIReK LBoyVIrn/QDz38QCF6mesdkdcOAKOFLKjD961G3nAo1vSirqxa7eoTk0+q10JkP1 /32Ynxgzm/eGlYekRNa1M2yia5Dh7yrtg8vqFqUJaCWyisLviflWFPWb18LUw6Hb e8VgOyjuuIDmLHbDjvdC9MAPdWGxqwSj -----END CERTIFICATE-----Generated at Sun Jul 20 19:20:41 2025 by rpki-client