$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json) Hash identifier: qb8bWGaaiHMuAh9GDvlCgTAOxR1JG7mXV2g3/vK0kao= Subject key identifier: 79:C3:DA:23:70:4D:F6:D3:BD:F3:47:9C:37:A6:22:76:B8:82:BA:48 Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: F5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft Manifest number: F3 Signing time: Wed 23 Jul 2025 05:30:27 +0000 Manifest this update: Wed 23 Jul 2025 05:30:26 +0000 Manifest next update: Wed 30 Jul 2025 05:30:26 +0000 Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: QAcH87EAP62sl4aQMso53vg52wJdFTFcqkH7gP3Cm1c=) 2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: 0a/19rU1zoR8HPG3b9KrbOC4Srzy59tAkTtlFRC+aqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 05:30:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: Jul 23 05:30:26 2025 GMT Not After : Jul 30 05:30:26 2025 GMT Subject: CN=68807373-6499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e3:14:ae:f5:35:d1:4b:f9:3f:e5:ae:3c:10: ae:08:dd:66:c7:5a:32:73:e7:c4:35:66:f5:1c:9f: f0:d1:a6:50:25:81:ea:b3:e5:6b:be:1c:c9:95:04: 3e:88:86:fc:0d:81:8c:81:b7:d7:fd:4e:80:4a:b5: 9a:02:78:d0:56:5c:79:11:1a:75:ca:5d:5a:b3:8c: 4f:a5:54:39:65:e8:62:44:25:c8:40:49:64:e8:84: 32:4e:29:c2:a7:c7:50:fb:57:bf:1c:5a:39:16:77: ab:50:e7:4a:8d:72:73:05:73:9b:fc:c2:b4:69:25: 1a:83:d3:16:ea:d9:c6:fd:c0:05:24:87:f4:db:67: 06:13:cc:24:20:cb:21:da:de:34:03:50:4a:75:48: 22:43:5f:b9:67:99:e3:1c:75:02:e5:39:17:d6:6a: 69:0b:36:e6:4e:dc:4e:fe:8c:d6:7a:f0:c5:7a:51: eb:32:53:4f:51:3c:1f:db:a3:4f:b0:66:93:3c:dc: 90:a6:f9:ea:2c:39:5e:2f:27:90:2d:a1:ae:df:9d: 40:39:23:aa:46:ad:3d:8b:13:9c:d2:3f:30:e4:fd: 66:e1:9a:e6:38:34:75:d3:10:95:f9:c4:95:69:fa: 81:1b:ea:41:d5:f9:98:05:da:25:e3:38:a6:28:15: 52:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:C3:DA:23:70:4D:F6:D3:BD:F3:47:9C:37:A6:22:76:B8:82:BA:48 X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:fe:c0:90:c5:cb:ac:08:e6:45:86:96:8b:87:f3:2a:cd:88: ba:bb:79:ea:55:7e:06:27:3a:22:f1:d1:e9:12:00:03:96:bc: b1:18:a8:24:a2:a0:c0:6b:e0:7a:e9:df:d6:e4:03:b1:da:38: ec:9f:91:7e:fc:0b:95:ca:46:fc:00:03:6f:f7:ec:8d:7c:89: 14:d0:0d:4d:fc:e9:d1:c2:85:51:81:49:fe:8a:0a:50:8a:c7: 02:b9:9a:da:bd:b0:27:1b:65:0b:47:00:18:c9:9f:8d:e6:ce: b9:11:8d:57:34:7e:fb:72:8f:ed:e4:5e:ad:3c:40:71:81:f1: 8a:af:0f:f1:41:ea:e1:7f:be:09:88:53:b2:f5:1f:fb:d1:a2: 54:b2:b9:5e:2c:f6:93:6a:04:f7:fc:89:a1:ed:fc:c5:53:4c: 7c:10:07:4f:44:93:12:38:ed:a9:c8:5f:47:06:2b:9d:f2:d5: dd:a7:93:2b:a5:13:2c:e5:12:54:97:f4:6e:d5:b0:dc:09:2a: 86:94:7f:8c:f0:8f:71:2f:93:f0:5b:e2:47:ee:f5:23:1a:6a: ea:7e:3b:ea:ad:00:ef:7a:f1:dd:5d:22:ae:79:19:26:08:86: c7:b5:32:6e:97:bd:85:76:aa:af:90:18:77:4b:5b:71:cf:a5: ca:ab:f9:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjUwNzIzMDUzMDI2WhcNMjUwNzMwMDUzMDI2WjAYMRYwFAYD VQQDEw02ODgwNzM3My02NDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuMUrvU10Uv5P+WuPBCuCN1mx1oyc+fENWb1HJ/w0aZQJYHqs+VrvhzJlQQ+ iIb8DYGMgbfX/U6ASrWaAnjQVlx5ERp1yl1as4xPpVQ5ZehiRCXIQElk6IQyTinC p8dQ+1e/HFo5FnerUOdKjXJzBXOb/MK0aSUag9MW6tnG/cAFJIf022cGE8wkIMsh 2t40A1BKdUgiQ1+5Z5njHHUC5TkX1mppCzbmTtxO/ozWevDFelHrMlNPUTwf26NP sGaTPNyQpvnqLDleLyeQLaGu351AOSOqRq09ixOc0j8w5P1m4ZrmODR10xCV+cSV afqBG+pB1fmYBdol4zimKBVSnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHnD2iNw TfbTvfNHnDemIna4grpIMB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS81QkMxMjY3QUVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElG d3RSeHlVcUEzdllOa1JKaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0/sCQxcusCOZFhpaLh/MqzYi6u3nqVX4GJzoi8dHpEgADlryxGKgk oqDAa+B66d/W5AOx2jjsn5F+/AuVykb8AANv9+yNfIkU0A1N/OnRwoVRgUn+igpQ iscCuZravbAnG2ULRwAYyZ+N5s65EY1XNH77co/t5F6tPEBxgfGKrw/xQerhf74J iFOy9R/70aJUsrleLPaTagT3/Imh7fzFU0x8EAdPRJMSOO2pyF9HBiud8tXdp5Mr pRMs5RJUl/Ru1bDcCSqGlH+M8I9xL5PwW+JH7vUjGmrqfjvqrQDvevHdXSKueRkm CIbHtTJul72FdqqvkBh3S1txz6XKq/kE -----END CERTIFICATE-----Generated at Thu Jul 24 08:32:14 2025 by rpki-client