$ rpki-client -vvf rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft File: 0pm8o5yZPbgNETe5mbIhhGrPVWs.mft (raw, json) Hash identifier: q9NKkrCxKoOQrZSx7ysQel33ocNq2eHJH9mjbedV7fg= Subject key identifier: F7:D1:28:35:30:F3:5E:C3:55:49:27:12:26:8C:5D:27:92:50:7B:AE Authority key identifier: D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B Certificate issuer: /CN=A9115C2E/serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Certificate serial: 04E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft Manifest number: 04DD Signing time: Wed 02 Jul 2025 20:10:48 +0000 Manifest this update: Wed 02 Jul 2025 20:10:48 +0000 Manifest next update: Wed 09 Jul 2025 20:10:48 +0000 Files and hashes: 1: 0pm8o5yZPbgNETe5mbIhhGrPVWs.crl (hash: FtO18/N+17BHJdAVoJ+/xZWb3xWU5b8YGgQE6iw3tGU=) 2: F490AE2431D811ECA3C4CE3EC4F9AE02.roa (hash: /oifx1YqYxKOVaxnhM6Z6BMW1b5AcpZK0vDtcYNO6Zg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:10:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1251 (0x4e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115C2E, serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Validity Not Before: Jul 2 20:10:48 2025 GMT Not After : Jul 9 20:10:48 2025 GMT Subject: CN=68659248-4b10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8d:2c:43:4a:f7:0f:e7:e0:4a:8a:8d:4b:af: 76:7b:7d:5b:04:3e:ed:c6:c1:ff:1a:ab:b0:42:00: bb:d3:8a:9b:cc:8c:15:b0:51:42:ca:dc:a9:0d:c6: 9f:dc:d6:c7:13:0a:0e:d2:1f:be:43:4d:ec:25:5e: a0:d7:10:db:08:72:62:68:0b:03:89:d7:42:a1:3b: d1:6d:8e:ba:93:79:07:61:b7:46:51:a0:1d:c6:3d: b4:05:e8:04:b6:f6:86:5b:51:b7:01:d2:25:93:4c: 83:71:c7:ac:f1:81:25:6c:54:5f:73:3f:8f:70:1a: 39:4f:1f:8f:d3:6d:a7:5f:2c:f8:b3:06:0f:9b:b4: 1e:e7:a6:3e:af:49:05:d9:d2:34:9e:93:15:48:43: 9a:b8:3e:80:08:3e:34:a9:f7:00:0f:77:76:55:0c: 59:64:ea:22:62:cd:b5:da:4e:cb:49:52:db:6e:b2: aa:32:d2:f3:f7:65:45:be:e6:1a:66:d6:8e:aa:73: 66:40:d2:ea:8f:a9:57:0d:fd:59:aa:15:0b:fc:e8: 52:59:91:83:39:35:d0:df:db:ca:01:6a:83:2c:b4: ee:ce:74:e7:92:89:14:59:4d:cb:b4:a3:f4:36:ba: 2a:ca:6a:1d:02:95:eb:16:2d:ea:1d:9f:8c:05:6d: cc:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D1:28:35:30:F3:5E:C3:55:49:27:12:26:8C:5D:27:92:50:7B:AE X509v3 Authority Key Identifier: keyid:D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:a6:5f:6b:ec:34:71:bc:a2:81:6a:b4:fa:50:0b:93:91:5d: b3:a8:7a:da:59:95:c6:f8:4c:8f:e1:4b:68:9e:90:da:77:17: 77:f4:8b:78:31:de:eb:47:90:cc:5b:17:a5:8e:c8:b1:68:a7: 11:1f:f2:d4:24:32:25:a7:81:6d:a8:30:d3:c5:19:06:7d:e2: d8:1d:7e:c5:c4:8b:a6:b7:7b:3d:d1:a2:d5:02:f5:fa:cc:41: 3d:1b:27:9a:ed:f9:b2:80:67:31:36:45:1e:9e:9f:11:75:5d: 35:6a:6e:a5:9c:82:71:6c:4d:40:20:85:81:9e:50:49:3b:25: 04:1d:1a:e2:dd:5e:3b:f1:11:ef:c0:e0:8a:b4:f0:96:db:22: cc:fd:aa:b3:3b:19:df:55:44:a7:96:fd:a2:82:be:6f:ad:43: 21:3f:c1:54:f3:85:03:1a:cb:bf:2f:c2:0f:bd:e0:f8:18:50: e2:41:5a:5c:cd:68:58:46:34:ec:fe:65:00:0d:6c:04:91:a0: 23:72:77:ee:8c:26:f3:a2:15:3a:b7:61:7b:e7:89:bd:a9:27: 2b:7f:86:92:f9:d4:27:e9:a7:8c:50:c1:a1:82:3f:cd:71:8f: 53:39:85:a7:b2:8c:0a:ea:dd:14:77:03:7a:b0:3b:af:40:03: 2a:93:33:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDMkUxMTAvBgNVBAUTKEQyOTlCQ0EzOUM5OTNEQjgwRDExMzdCOTk5QjIyMTg0 NkFDRjU1NkIwHhcNMjUwNzAyMjAxMDQ4WhcNMjUwNzA5MjAxMDQ4WjAYMRYwFAYD VQQDEw02ODY1OTI0OC00YjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwI0sQ0r3D+fgSoqNS692e31bBD7txsH/GquwQgC704qbzIwVsFFCytypDcaf 3NbHEwoO0h++Q03sJV6g1xDbCHJiaAsDiddCoTvRbY66k3kHYbdGUaAdxj20BegE tvaGW1G3AdIlk0yDcces8YElbFRfcz+PcBo5Tx+P022nXyz4swYPm7Qe56Y+r0kF 2dI0npMVSEOauD6ACD40qfcAD3d2VQxZZOoiYs212k7LSVLbbrKqMtLz92VFvuYa ZtaOqnNmQNLqj6lXDf1ZqhUL/OhSWZGDOTXQ39vKAWqDLLTuznTnkokUWU3LtKP0 NroqymodApXrFi3qHZ+MBW3MrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfRKDUw 817DVUknEiaMXSeSUHuuMB8GA1UdIwQYMBaAFNKZvKOcmT24DRE3uZmyIYRqz1Vr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUMyRS85NTI3RTZCNDI2 OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBiZ05FVGU1bWJJaGhHclBW V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBwbThvNXlaUGJnTkVUZTVtYkloaEdyUFZXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NUMyRS85NTI3RTZCNDI2OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBi Z05FVGU1bWJJaGhHclBWV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6pl9r7DRxvKKBarT6UAuTkV2zqHraWZXG+EyP4UtonpDadxd39It4 Md7rR5DMWxeljsixaKcRH/LUJDIlp4FtqDDTxRkGfeLYHX7FxIumt3s90aLVAvX6 zEE9Gyea7fmygGcxNkUenp8RdV01am6lnIJxbE1AIIWBnlBJOyUEHRri3V478RHv wOCKtPCW2yLM/aqzOxnfVUSnlv2igr5vrUMhP8FU84UDGsu/L8IPveD4GFDiQVpc zWhYRjTs/mUADWwEkaAjcnfujCbzohU6t2F754m9qScrf4aS+dQn6aeMUMGhgj/N cY9TOYWnsowK6t0UdwN6sDuvQAMqkzOR -----END CERTIFICATE-----Generated at Thu Jul 3 22:49:39 2025 by rpki-client