$ rpki-client -vvf rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft File: dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft (raw, json) Hash identifier: sRuEWvgmx0j6/NAzCSQY2lGW/dVdhG28uDMAKodtki0= Subject key identifier: B2:2A:15:28:52:8C:2B:70:99:15:F2:59:3B:F1:DD:16:AC:BD:40:89 Authority key identifier: 74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 Certificate issuer: /CN=A9178424/serialNumber=74A11669C43E53B0F21D4B413F92D9EA91315503 Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft Manifest number: C6 Signing time: Sat 19 Jul 2025 05:59:22 +0000 Manifest this update: Sat 19 Jul 2025 05:59:22 +0000 Manifest next update: Sat 26 Jul 2025 05:59:22 +0000 Files and hashes: 1: dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl (hash: qo4rPgWo0lWRTqvtpKu64NsLFPPNt+nNpc1cGzSFUu8=) 2: D672BC9638E411EF8BF0C15EC4F9AE02.roa (hash: BbrjGfo0UoZCcLf+k7hQstWYPdgNNbc+IXBk8J2BWwE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:59:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178424, serialNumber=74A11669C43E53B0F21D4B413F92D9EA91315503 Validity Not Before: Jul 19 05:59:22 2025 GMT Not After : Jul 26 05:59:22 2025 GMT Subject: CN=687b343a-34a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:94:db:78:b3:b7:7e:ee:6f:ca:04:1a:4f:35: e4:0c:b5:45:65:89:43:72:08:7a:58:08:3d:e8:60: da:b6:1e:14:f9:11:14:9d:53:db:c0:1c:ed:39:09: 7f:82:a6:84:a5:ff:ee:d1:d2:2a:a9:9c:0f:8e:02: 08:f7:c5:4d:f1:f2:d3:c6:90:9f:9e:d6:de:87:2b: 18:5d:aa:42:34:95:d3:27:95:da:1d:8e:da:6b:b1: 1e:5c:32:e9:f9:7d:28:14:90:cc:ef:d8:41:8d:4f: 5d:ce:82:b4:70:f7:75:85:10:e7:13:47:b4:b3:a6: b2:c6:23:54:db:d6:ab:89:67:1a:8f:99:30:ed:2a: 16:ac:1f:5f:74:56:e3:f6:f3:dc:e9:18:cb:79:81: 5f:bd:c6:72:4c:30:50:94:eb:27:ec:2e:6f:11:82: 79:dc:19:45:6c:96:06:91:7d:f1:f6:7c:fe:99:61: 1e:13:45:d2:8e:1a:a4:04:be:89:9d:79:10:49:23: 93:89:4e:00:d9:8a:a9:40:7b:08:3e:91:d8:21:48: 46:50:ab:4c:00:25:db:52:17:0f:0d:68:f2:00:5e: 6a:1b:da:0b:20:62:49:4c:8c:2a:d1:d1:44:50:75: 54:34:07:dc:41:9d:9f:86:22:3e:10:df:e9:d5:4e: 88:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:2A:15:28:52:8C:2B:70:99:15:F2:59:3B:F1:DD:16:AC:BD:40:89 X509v3 Authority Key Identifier: keyid:74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:a5:b5:ac:85:b5:90:de:e0:ea:e5:b7:f3:62:4c:de:37:5c: 51:bb:d5:85:c2:45:6f:07:89:d1:7c:ad:45:0b:94:eb:1d:24: 00:94:87:3b:99:46:86:1c:67:6c:53:c0:be:42:de:11:df:62: 06:21:7b:8c:6b:65:13:a7:8e:34:3c:c5:ca:bc:35:1a:b7:71: 33:a7:ea:7b:fb:0d:18:05:04:ce:b5:84:c0:b6:48:41:a5:ee: a0:27:da:67:1d:e9:e7:43:bb:7c:8b:a4:62:96:a9:c0:e8:7d: 46:5d:e0:85:b5:fd:05:a5:e8:f3:25:c1:ca:da:67:c3:25:27: 08:61:27:b6:1f:f9:d5:e1:7c:b2:c8:41:e7:7d:2e:16:22:e3: 9a:78:3e:bd:07:8f:07:34:d4:3a:6b:13:1f:73:5c:5e:2c:00: 07:f0:ef:3b:5e:bd:ff:69:0b:a5:1d:26:32:63:3f:39:3d:64: 5f:87:31:aa:1c:28:05:3d:3e:81:38:ca:29:28:63:2c:95:bf: a5:60:4e:60:cd:50:ff:c4:03:33:b7:5b:d7:82:51:81:3e:31: d0:a8:85:e3:82:8d:6e:3f:c1:aa:0b:18:a3:45:36:9f:35:30: cc:26:12:75:ea:01:c1:95:f6:57:56:e4:f5:d8:9c:19:a7:04: 1c:66:bf:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg0MjQxMTAvBgNVBAUTKDc0QTExNjY5QzQzRTUzQjBGMjFENEI0MTNGOTJEOUVB OTEzMTU1MDMwHhcNMjUwNzE5MDU1OTIyWhcNMjUwNzI2MDU1OTIyWjAYMRYwFAYD VQQDEw02ODdiMzQzYS0zNGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5TbeLO3fu5vygQaTzXkDLVFZYlDcgh6WAg96GDath4U+REUnVPbwBztOQl/ gqaEpf/u0dIqqZwPjgII98VN8fLTxpCfntbehysYXapCNJXTJ5XaHY7aa7EeXDLp +X0oFJDM79hBjU9dzoK0cPd1hRDnE0e0s6ayxiNU29ariWcaj5kw7SoWrB9fdFbj 9vPc6RjLeYFfvcZyTDBQlOsn7C5vEYJ53BlFbJYGkX3x9nz+mWEeE0XSjhqkBL6J nXkQSSOTiU4A2YqpQHsIPpHYIUhGUKtMACXbUhcPDWjyAF5qG9oLIGJJTIwq0dFE UHVUNAfcQZ2fhiI+EN/p1U6IQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIqFShS jCtwmRXyWTvx3RasvUCJMB8GA1UdIwQYMBaAFHShFmnEPlOw8h1LQT+S2eqRMVUD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODQyNC83OTNFQTZEQTM4 RTMxMUVGOTE0QjJGMzNDNEY5QUUwMi9kS0VXYWNRLVU3RHlIVXRCUDVMWjZwRXhW UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RLRVdhY1EtVTdEeUhVdEJQNUxaNnBFeFZRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODQyNC83OTNFQTZEQTM4RTMxMUVGOTE0QjJGMzNDNEY5QUUwMi9kS0VXYWNRLVU3 RHlIVXRCUDVMWjZwRXhWUU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJpbWshbWQ3uDq5bfzYkzeN1xRu9WFwkVvB4nRfK1FC5TrHSQAlIc7 mUaGHGdsU8C+Qt4R32IGIXuMa2UTp440PMXKvDUat3Ezp+p7+w0YBQTOtYTAtkhB pe6gJ9pnHennQ7t8i6RilqnA6H1GXeCFtf0FpejzJcHK2mfDJScIYSe2H/nV4Xyy yEHnfS4WIuOaeD69B48HNNQ6axMfc1xeLAAH8O87Xr3/aQulHSYyYz85PWRfhzGq HCgFPT6BOMopKGMslb+lYE5gzVD/xAMzt1vXglGBPjHQqIXjgo1uP8GqCxijRTaf NTDMJhJ16gHBlfZXVuT12JwZpwQcZr9N -----END CERTIFICATE-----Generated at Sun Jul 20 18:45:03 2025 by rpki-client