$ rpki-client -vvf rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.mft File: vJfyb7J4ln3TyjnFndCMaiwjBvk.mft (raw, json) Hash identifier: +3riHIOFiPAozMvyThsi36yZlaltGzj+0KrzNwjPLhs= Subject key identifier: CF:4A:70:EC:59:F2:57:E6:B6:55:4F:C2:6C:DB:C3:94:56:3E:D6:83 Authority key identifier: BC:97:F2:6F:B2:78:96:7D:D3:CA:39:C5:9D:D0:8C:6A:2C:23:06:F9 Certificate issuer: /CN=A9171845/serialNumber=BC97F26FB278967DD3CA39C59DD08C6A2C2306F9 Certificate serial: 04F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.mft Manifest number: 04F1 Signing time: Sat 19 Jul 2025 00:04:53 +0000 Manifest this update: Sat 19 Jul 2025 00:04:52 +0000 Manifest next update: Sat 26 Jul 2025 00:04:52 +0000 Files and hashes: 1: vJfyb7J4ln3TyjnFndCMaiwjBvk.crl (hash: l9s2GVxjRK9sCPQL5stq4i0O/sQXQOpwN8f8gQUCaZQ=) 2: 8B91EDB420CD11EC97292B78C4F9AE02.roa (hash: eIj7A9yHm5UyaDqD5wlEFgtzeqxaYRyGJ855/hLNbFs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.crl rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:04:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1273 (0x4f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171845, serialNumber=BC97F26FB278967DD3CA39C59DD08C6A2C2306F9 Validity Not Before: Jul 19 00:04:52 2025 GMT Not After : Jul 26 00:04:52 2025 GMT Subject: CN=687ae124-226b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:50:5a:5c:79:72:69:ee:35:b9:33:35:54:e1: 52:bc:b3:fb:ee:a2:d2:cd:3e:08:33:8d:02:22:80: 58:9b:b2:06:a1:ad:50:d2:d1:ed:ac:95:43:43:46: 65:eb:e5:1b:57:ad:65:66:85:9b:b4:07:a5:78:4b: cd:4a:38:8d:e8:f9:68:c4:62:b6:ca:fd:94:8f:b4: 88:c3:78:23:05:3a:3d:92:e4:2b:c1:f9:8d:81:9c: 8f:5d:bd:8d:d0:37:cf:a2:e1:4c:41:73:9b:c8:64: 14:8c:bf:7f:2d:bf:33:17:a5:bc:4b:6b:96:3a:5f: a3:48:3c:9f:ae:f3:ca:d4:4e:38:cf:3a:81:d3:14: f0:c5:ae:6e:98:88:8d:36:18:ec:73:d6:79:64:bb: 1a:0a:5f:0a:f6:d7:b0:3a:b2:5c:8a:a8:d1:90:1f: 7e:cc:7a:e6:5b:28:27:5b:8e:5d:ba:64:9f:f5:b5: 78:c6:9f:60:01:6f:ce:34:b3:70:e2:ff:5e:28:79: 5d:5d:ae:11:cc:a9:f4:d8:aa:ff:13:33:13:a5:2e: 7b:3e:26:04:00:4a:9f:5d:5f:90:cb:cf:45:90:9e: a1:48:9f:d7:2c:78:f5:f0:43:96:68:d8:6b:f1:f1: 2b:71:e9:85:7d:ea:56:78:38:78:7a:9a:ee:f8:c5: 39:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:4A:70:EC:59:F2:57:E6:B6:55:4F:C2:6C:DB:C3:94:56:3E:D6:83 X509v3 Authority Key Identifier: keyid:BC:97:F2:6F:B2:78:96:7D:D3:CA:39:C5:9D:D0:8C:6A:2C:23:06:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vJfyb7J4ln3TyjnFndCMaiwjBvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171845/7B62C80820CA11ECB66C1452C4F9AE02/vJfyb7J4ln3TyjnFndCMaiwjBvk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:b5:27:dc:7d:e5:a8:aa:f0:18:36:04:83:a7:68:08:f1:06: 2e:4b:91:2e:ae:fa:c9:1e:c0:5e:2f:86:b9:0f:00:c0:b6:c5: c6:54:d6:dc:60:a5:ab:fc:49:88:8f:da:cd:e4:2c:47:30:d2: 94:ac:ca:52:c8:2f:cb:e3:ab:ae:da:eb:20:d1:8d:d4:4b:47: 4e:d7:32:85:4d:41:de:ec:92:ea:84:93:75:67:fb:0b:d1:0e: 8c:99:dd:4d:ac:cf:1d:86:af:e3:69:4b:df:e3:6f:48:f9:93: c3:25:8c:7d:9f:ea:cc:08:e4:0a:62:8b:85:e9:d5:7d:08:4c: 1c:de:b4:9f:d0:e2:72:5d:ac:d4:6e:ba:7d:c5:0f:7a:8a:ef: d3:57:18:7a:3b:fc:47:32:1e:2f:d7:f6:3d:af:4d:1b:cd:de: 87:2d:51:8f:36:74:7a:bd:cd:81:4b:38:50:21:eb:d7:38:96: ef:68:c9:13:3c:04:0c:e0:8f:80:7a:d5:dc:7e:44:4b:1f:be: 23:a5:74:e5:3f:c2:ab:47:2c:19:b4:b5:6c:96:e4:c0:80:6e: cb:8e:08:e2:be:c9:74:e4:f8:1f:b2:34:f2:ee:a6:54:12:b8: 42:10:9a:8d:d6:4b:ea:3e:fe:09:a8:8a:bd:ac:94:2b:d3:ae: a4:e6:76:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4NDUxMTAvBgNVBAUTKEJDOTdGMjZGQjI3ODk2N0REM0NBMzlDNTlERDA4QzZB MkMyMzA2RjkwHhcNMjUwNzE5MDAwNDUyWhcNMjUwNzI2MDAwNDUyWjAYMRYwFAYD VQQDEw02ODdhZTEyNC0yMjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1VBaXHlyae41uTM1VOFSvLP77qLSzT4IM40CIoBYm7IGoa1Q0tHtrJVDQ0Zl 6+UbV61lZoWbtAeleEvNSjiN6PloxGK2yv2Uj7SIw3gjBTo9kuQrwfmNgZyPXb2N 0DfPouFMQXObyGQUjL9/Lb8zF6W8S2uWOl+jSDyfrvPK1E44zzqB0xTwxa5umIiN Nhjsc9Z5ZLsaCl8K9tewOrJciqjRkB9+zHrmWygnW45dumSf9bV4xp9gAW/ONLNw 4v9eKHldXa4RzKn02Kr/EzMTpS57PiYEAEqfXV+Qy89FkJ6hSJ/XLHj18EOWaNhr 8fErcemFfepWeDh4epru+MU5mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM9KcOxZ 8lfmtlVPwmzbw5RWPtaDMB8GA1UdIwQYMBaAFLyX8m+yeJZ908o5xZ3QjGosIwb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg0NS83QjYyQzgwODIw Q0ExMUVDQjY2QzE0NTJDNEY5QUUwMi92SmZ5YjdKNGxuM1R5am5GbmRDTWFpd2pC dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZKZnliN0o0bG4zVHlqbkZuZENNYWl3akJ2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTg0NS83QjYyQzgwODIwQ0ExMUVDQjY2QzE0NTJDNEY5QUUwMi92SmZ5YjdKNGxu M1R5am5GbmRDTWFpd2pCdmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhtSfcfeWoqvAYNgSDp2gI8QYuS5EurvrJHsBeL4a5DwDAtsXGVNbc YKWr/EmIj9rN5CxHMNKUrMpSyC/L46uu2usg0Y3US0dO1zKFTUHe7JLqhJN1Z/sL 0Q6Mmd1NrM8dhq/jaUvf429I+ZPDJYx9n+rMCOQKYouF6dV9CEwc3rSf0OJyXazU brp9xQ96iu/TVxh6O/xHMh4v1/Y9r00bzd6HLVGPNnR6vc2BSzhQIevXOJbvaMkT PAQM4I+AetXcfkRLH74jpXTlP8KrRywZtLVsluTAgG7Ljgjivsl05PgfsjTy7qZU ErhCEJqN1kvqPv4JqIq9rJQr066k5na8 -----END CERTIFICATE-----Generated at Sun Jul 20 18:49:35 2025 by rpki-client