$ rpki-client -vvf rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft File: cBB77LhKxM5elcxh0RCmcj-QycM.mft (raw, json) Hash identifier: 3dSQc9j3CWD38405oHJO24m3JmrCBYqdEgM0M/zOB80= Subject key identifier: CC:8F:C7:B1:98:A2:DD:45:56:24:A4:53:4B:4E:CB:4B:60:4F:BD:4D Authority key identifier: 70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3 Certificate issuer: /CN=A916C2B9/serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3 Certificate serial: 0114 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft Manifest number: 0112 Signing time: Mon 21 Jul 2025 05:01:30 +0000 Manifest this update: Mon 21 Jul 2025 05:01:29 +0000 Manifest next update: Mon 28 Jul 2025 05:01:29 +0000 Files and hashes: 1: cBB77LhKxM5elcxh0RCmcj-QycM.crl (hash: ltYLZkhkADdvlRZkoYIPVELPhSrYymM8QGmbgYNFX/Y=) 2: 4FB5C8F4C43D11EE973ADE48C4F9AE02.roa (hash: 1zjPjAAMi/TzSsloil5toyL9PUAMXEmH20tRK4X3XV8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C2B9, serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3 Validity Not Before: Jul 21 05:01:29 2025 GMT Not After : Jul 28 05:01:29 2025 GMT Subject: CN=687dc9aa-e03a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:17:1b:b2:b2:d6:04:a2:aa:67:86:5a:b2:9b: 85:14:1a:ba:6b:5e:c2:13:35:c3:30:a6:f6:38:e6: cf:4b:24:09:b9:2b:b1:45:de:c7:cd:cc:a9:13:b9: 9f:b1:9c:b7:c2:18:e2:cb:58:07:2d:bc:83:7b:9c: 63:cc:b9:d4:6b:e5:2d:ea:1f:48:bf:1b:fc:fe:97: 3d:5d:57:36:51:e1:28:13:8e:6d:62:62:44:00:e0: 90:cd:2c:2b:a8:57:96:db:5f:98:df:1d:ee:6d:7d: 5c:b2:19:dc:7c:77:cd:db:a5:21:69:fb:08:59:69: b0:70:fc:c8:b9:c8:72:c6:d6:b4:08:56:6f:27:33: 37:6a:53:88:03:d4:f9:bc:72:74:fb:5c:bb:c6:04: a1:16:3e:f5:1a:9c:97:ed:7e:6b:11:15:1d:f6:0c: a5:fc:03:7d:dc:32:00:4d:8e:0b:0e:54:ec:46:21: 15:1b:cf:17:ac:80:fc:5d:8f:9e:81:40:e2:aa:21: f0:b7:0d:41:37:de:ac:f1:f7:94:3f:81:37:17:87: 34:de:e8:a1:97:a4:03:21:0b:b7:47:b9:5a:b3:7a: 09:0a:bb:f7:49:89:f2:bb:6e:f7:2d:a1:d0:62:89: 28:95:c8:bf:2d:ef:7b:25:fb:5a:66:2a:48:f1:0a: c9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:8F:C7:B1:98:A2:DD:45:56:24:A4:53:4B:4E:CB:4B:60:4F:BD:4D X509v3 Authority Key Identifier: keyid:70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:3e:8f:bc:e5:43:ea:22:8d:ca:b1:ef:ed:f6:0f:73:89:66: 43:4e:72:ff:91:e8:25:8d:58:3e:75:bd:68:83:e0:59:25:33: f0:8c:56:c5:09:ee:a4:09:00:0b:c2:95:a9:47:b0:10:64:ce: 00:dc:4d:ef:74:a9:70:8e:b5:87:36:6b:0c:4f:00:b1:99:7e: 56:50:45:a4:f1:9e:3f:fe:0c:4a:79:1c:94:35:e6:44:e7:1e: a3:0b:43:5e:34:84:8c:5a:fb:f2:5b:e3:de:6e:f6:5b:40:e9: 24:ec:23:2a:6d:71:ca:44:7b:2e:f2:f8:38:b3:c7:0c:7b:0e: e4:d2:33:77:2b:f6:06:f7:de:cf:dd:91:e7:da:26:0f:af:84: e7:74:f1:3a:26:5f:d0:e4:e3:93:20:e2:f6:b0:ec:fc:3f:6a: ea:98:79:07:4d:d7:e6:a9:41:75:ce:fe:4e:4e:97:4d:49:7a: 35:0c:27:31:50:df:80:2f:83:18:9c:13:44:62:54:92:36:6f: 20:4e:e6:81:5e:c2:35:2c:a1:22:22:59:63:75:0d:a0:a8:81: fc:2e:7d:59:97:1a:9a:91:d1:c7:f1:37:d8:db:67:a8:38:3a: eb:6c:4f:09:6f:ae:dc:9f:ed:ad:9b:e3:4b:56:89:c2:66:da: 68:02:6b:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMyQjkxMTAvBgNVBAUTKDcwMTA3QkVDQjg0QUM0Q0U1RTk1Q0M2MUQxMTBBNjcy M0Y5MEM5QzMwHhcNMjUwNzIxMDUwMTI5WhcNMjUwNzI4MDUwMTI5WjAYMRYwFAYD VQQDEw02ODdkYzlhYS1lMDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4xcbsrLWBKKqZ4ZaspuFFBq6a17CEzXDMKb2OObPSyQJuSuxRd7HzcypE7mf sZy3whjiy1gHLbyDe5xjzLnUa+Ut6h9Ivxv8/pc9XVc2UeEoE45tYmJEAOCQzSwr qFeW21+Y3x3ubX1cshncfHfN26UhafsIWWmwcPzIuchyxta0CFZvJzM3alOIA9T5 vHJ0+1y7xgShFj71GpyX7X5rERUd9gyl/AN93DIATY4LDlTsRiEVG88XrID8XY+e gUDiqiHwtw1BN96s8feUP4E3F4c03uihl6QDIQu3R7las3oJCrv3SYnyu273LaHQ Yokolci/Le97JftaZipI8QrJVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyPx7GY ot1FViSkU0tOy0tgT71NMB8GA1UdIwQYMBaAFHAQe+y4SsTOXpXMYdEQpnI/kMnD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzJCOS8zMDY2OTlDQUMy QTIxMUVFOTFEOTUzNUNDNEY5QUUwMi9jQkI3N0xoS3hNNWVsY3hoMFJDbWNqLVF5 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NCQjc3TGhLeE01ZWxjeGgwUkNtY2otUXljTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzJCOS8zMDY2OTlDQUMyQTIxMUVFOTFEOTUzNUNDNEY5QUUwMi9jQkI3N0xoS3hN NWVsY3hoMFJDbWNqLVF5Y00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+Po+85UPqIo3Kse/t9g9ziWZDTnL/kegljVg+db1og+BZJTPwjFbF Ce6kCQALwpWpR7AQZM4A3E3vdKlwjrWHNmsMTwCxmX5WUEWk8Z4//gxKeRyUNeZE 5x6jC0NeNISMWvvyW+PebvZbQOkk7CMqbXHKRHsu8vg4s8cMew7k0jN3K/YG997P 3ZHn2iYPr4TndPE6Jl/Q5OOTIOL2sOz8P2rqmHkHTdfmqUF1zv5OTpdNSXo1DCcx UN+AL4MYnBNEYlSSNm8gTuaBXsI1LKEiIlljdQ2gqIH8Ln1ZlxqakdHH8TfY22eo ODrrbE8Jb67cn+2tm+NLVonCZtpoAmsF -----END CERTIFICATE-----Generated at Mon Jul 21 12:35:48 2025 by rpki-client