$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft File: emYQUZRc4uj7SubeY7KEeLDO014.mft (raw, json) Hash identifier: VuiujEcAabU1QMwGyPuxLW4pLzYubFu3ftpT7KD/OOc= Subject key identifier: DC:7B:93:82:F4:A7:38:8B:E0:3D:DD:90:B8:98:EA:45:D9:3F:F8:85 Authority key identifier: 7A:66:10:51:94:5C:E2:E8:FB:4A:E6:DE:63:B2:84:78:B0:CE:D3:5E Certificate issuer: /CN=A9165FF3/serialNumber=7A661051945CE2E8FB4AE6DE63B28478B0CED35E Certificate serial: 349E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emYQUZRc4uj7SubeY7KEeLDO014.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft Manifest number: 3499 Signing time: Mon 30 Jun 2025 15:03:35 +0000 Manifest this update: Mon 30 Jun 2025 15:03:35 +0000 Manifest next update: Mon 07 Jul 2025 15:03:35 +0000 Files and hashes: 1: emYQUZRc4uj7SubeY7KEeLDO014.crl (hash: dbx+u1G/PZfwdkcVM9H0jbTpe+NPKViF0Ql5mXur4tw=) 2: 5FBB084EAE6A11ECAA9D756AC4F9AE02.roa (hash: wwzdt+29bN5sRkpJd/eidoVjChYLuUnZj02CyiHrUiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.crl rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emYQUZRc4uj7SubeY7KEeLDO014.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 15:03:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13470 (0x349e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165FF3, serialNumber=7A661051945CE2E8FB4AE6DE63B28478B0CED35E Validity Not Before: Jun 30 15:03:35 2025 GMT Not After : Jul 7 15:03:35 2025 GMT Subject: CN=6862a747-ddb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c0:7b:5b:c8:af:3e:29:b4:61:b1:bb:f2:31: 26:00:ae:94:eb:3e:66:6a:82:61:ad:e4:79:d9:cb: 73:df:6e:f0:24:21:57:22:fa:ba:b5:c1:d9:03:36: e9:62:a8:19:63:86:c8:2c:b7:bb:86:d1:44:3c:9f: 82:70:20:10:70:10:87:0d:e3:87:58:76:c9:57:a9: e9:aa:05:86:e1:d8:a2:7a:be:10:21:e6:2c:70:f6: 41:f5:83:d4:91:5f:6a:15:ab:69:b9:7b:a0:5d:11: e5:02:14:7d:17:7d:6c:eb:4f:f0:00:93:d6:15:5f: a9:be:aa:c9:fa:18:ff:59:6e:da:28:88:c7:75:4b: d2:9a:4d:53:6d:81:fc:d1:89:10:55:7a:7d:16:59: d8:ad:f5:f4:d4:46:84:85:32:f2:93:ef:e1:2a:27: 6f:43:8a:a9:74:12:11:22:77:f9:b5:f2:cd:01:11: d5:55:22:e7:e4:b9:e1:07:33:09:3d:17:37:59:10: 47:cd:14:39:38:42:54:b9:75:9a:d4:35:ed:50:a8: 1e:fb:5a:eb:b3:dc:fd:88:11:be:12:86:a5:73:c7: b2:d0:d3:ff:8b:6d:e9:59:7d:43:52:80:a3:fe:15: 42:ab:62:e0:d8:4d:df:3a:3c:46:5d:d8:74:3f:1f: fe:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:7B:93:82:F4:A7:38:8B:E0:3D:DD:90:B8:98:EA:45:D9:3F:F8:85 X509v3 Authority Key Identifier: keyid:7A:66:10:51:94:5C:E2:E8:FB:4A:E6:DE:63:B2:84:78:B0:CE:D3:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/emYQUZRc4uj7SubeY7KEeLDO014.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FF3/CEABB4E61D9D11E28EAF4D8D08B02CD2/emYQUZRc4uj7SubeY7KEeLDO014.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:5f:9e:7d:99:4a:43:13:1f:da:87:f7:51:80:58:3c:05:02: a5:f1:b4:b9:8d:70:df:8e:f6:ea:da:cf:4c:29:09:2e:0c:ea: e5:5d:5c:5d:54:4f:d9:ef:3a:f4:cb:59:d0:ea:bc:53:23:f3: 40:32:1a:16:e2:12:b6:c1:12:48:2f:7f:da:d3:33:00:76:5c: ba:c9:5f:26:87:1f:f1:bf:a6:ff:e8:d0:00:8f:03:68:ec:e9: 3d:f0:77:1d:de:68:57:e1:ca:34:d6:32:f1:a6:0f:09:05:2e: 3c:ba:ed:4e:ca:d3:4c:74:37:8e:d7:38:1c:33:c9:5b:a1:be: 37:25:cd:a8:d2:a8:eb:64:d3:d1:65:7c:81:a8:78:41:02:18: e4:03:42:8f:dc:20:1a:20:47:53:9b:26:99:09:6a:2f:92:7c: 87:65:80:1d:07:23:37:c5:27:1f:72:d1:58:b6:08:cf:66:20: b3:4a:33:73:74:78:9c:f6:58:1a:6a:03:66:dd:63:ff:80:dd: 80:a5:96:c7:94:e9:a2:d7:95:36:83:9a:c4:0b:d9:d2:1f:8c: 06:51:38:e3:0a:f9:72:c0:10:f2:80:d0:c1:7d:ab:72:43:1b: e3:d1:bf:99:da:46:93:46:f0:fa:e9:7a:f5:de:3a:27:6a:2e: bc:7d:97:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVGRjMxMTAvBgNVBAUTKDdBNjYxMDUxOTQ1Q0UyRThGQjRBRTZERTYzQjI4NDc4 QjBDRUQzNUUwHhcNMjUwNjMwMTUwMzM1WhcNMjUwNzA3MTUwMzM1WjAYMRYwFAYD VQQDEw02ODYyYTc0Ny1kZGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAusB7W8ivPim0YbG78jEmAK6U6z5maoJhreR52ctz327wJCFXIvq6tcHZAzbp YqgZY4bILLe7htFEPJ+CcCAQcBCHDeOHWHbJV6npqgWG4diier4QIeYscPZB9YPU kV9qFatpuXugXRHlAhR9F31s60/wAJPWFV+pvqrJ+hj/WW7aKIjHdUvSmk1TbYH8 0YkQVXp9FlnYrfX01EaEhTLyk+/hKidvQ4qpdBIRInf5tfLNARHVVSLn5LnhBzMJ PRc3WRBHzRQ5OEJUuXWa1DXtUKge+1rrs9z9iBG+Eoalc8ey0NP/i23pWX1DUoCj /hVCq2Lg2E3fOjxGXdh0Px/+HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNx7k4L0 pziL4D3dkLiY6kXZP/iFMB8GA1UdIwQYMBaAFHpmEFGUXOLo+0rm3mOyhHiwztNe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUZGMy9DRUFCQjRFNjFE OUQxMUUyOEVBRjREOEQwOEIwMkNEMi9lbVlRVVpSYzR1ajdTdWJlWTdLRWVMRE8w MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VtWVFVWlJjNHVqN1N1YmVZN0tFZUxETzAxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUZGMy9DRUFCQjRFNjFEOUQxMUUyOEVBRjREOEQwOEIwMkNEMi9lbVlRVVpSYzR1 ajdTdWJlWTdLRWVMRE8wMTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiX559mUpDEx/ah/dRgFg8BQKl8bS5jXDfjvbq2s9MKQkuDOrlXVxd VE/Z7zr0y1nQ6rxTI/NAMhoW4hK2wRJIL3/a0zMAdly6yV8mhx/xv6b/6NAAjwNo 7Ok98Hcd3mhX4co01jLxpg8JBS48uu1OytNMdDeO1zgcM8lbob43Jc2o0qjrZNPR ZXyBqHhBAhjkA0KP3CAaIEdTmyaZCWovknyHZYAdByM3xScfctFYtgjPZiCzSjNz dHic9lgaagNm3WP/gN2ApZbHlOmi15U2g5rEC9nSH4wGUTjjCvlywBDygNDBfaty Qxvj0b+Z2kaTRvD66Xr13jonai68fZcx -----END CERTIFICATE-----Generated at Wed Jul 2 01:23:03 2025 by rpki-client