$ rpki-client -vvf rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft File: PP5vPrHYknFeQTbpuoVrmPZxR7A.mft (raw, json) Hash identifier: vvWAQ/RlDEd0C0ZFlXRJugZdndkZ3RdUVyQYew1Bid8= Subject key identifier: EE:EA:F2:43:54:14:FB:7E:DE:92:EB:91:02:1C:60:4A:55:B7:BF:F4 Authority key identifier: 3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 Certificate issuer: /CN=A9122D89/serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Certificate serial: 07AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft Manifest number: 07A9 Signing time: Wed 02 Jul 2025 21:32:15 +0000 Manifest this update: Wed 02 Jul 2025 21:32:15 +0000 Manifest next update: Wed 09 Jul 2025 21:32:15 +0000 Files and hashes: 1: PP5vPrHYknFeQTbpuoVrmPZxR7A.crl (hash: n6CP/VRFBtyDu+DrgNIm71+BBHpLsk2W0SyFGALC6MY=) 2: 7E8114F414E611EB82C98471C4F9AE02.roa (hash: J9GQPP4a7clIhGgoBAM9KLX43lz+eBaMPakWPFWVHmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:32:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1967 (0x7af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122D89, serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Validity Not Before: Jul 2 21:32:15 2025 GMT Not After : Jul 9 21:32:15 2025 GMT Subject: CN=6865a55f-e290 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:89:b8:72:c6:3d:14:69:70:2b:9c:e3:58:35: 75:de:27:c2:8c:64:49:da:00:e9:66:35:3a:11:ea: d1:20:43:7e:95:f8:97:71:d7:f2:b4:23:49:ff:83: 37:7c:29:e4:ac:fe:6a:be:a7:bd:dc:e8:a6:6d:53: 8f:0b:ef:bc:f2:0e:7a:35:ed:49:99:ab:25:35:98: be:c9:4c:a9:e3:05:57:87:f1:ea:85:8f:2b:40:89: c0:30:ac:f0:8a:6f:a7:55:7a:8a:74:91:6e:ab:4e: 74:87:5e:eb:f5:ab:2c:50:d5:da:bf:c2:02:b5:df: 22:f9:4a:94:de:92:dd:f0:0f:a3:0d:20:25:b8:b5: 75:34:91:6e:8a:69:bd:02:f5:86:4a:50:ac:0d:c0: 92:42:3f:c0:a4:dc:70:fb:d0:df:76:9e:c4:cf:ec: 9e:d7:cc:c8:f6:e5:5b:bc:d9:28:71:fb:c2:76:ed: 29:59:75:3d:91:a5:a6:a9:68:78:d2:21:74:d9:3a: 83:33:ba:ed:9a:5b:7f:47:e8:cc:a6:a8:15:72:24: 37:b8:d0:60:48:33:e9:be:02:02:bc:db:a7:75:50: a9:36:df:50:a3:3e:bc:c1:77:36:57:5e:98:27:b3: 26:cb:40:fe:e1:db:46:02:3c:19:5f:4c:92:b2:02: 6f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:EA:F2:43:54:14:FB:7E:DE:92:EB:91:02:1C:60:4A:55:B7:BF:F4 X509v3 Authority Key Identifier: keyid:3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:15:cb:db:03:0a:ba:7c:16:74:30:7c:00:b0:01:84:60:3c: 4a:e1:60:f5:6f:19:c2:d0:41:97:f0:2a:8d:a6:56:60:44:93: 89:91:4c:64:01:50:55:b5:4b:04:b3:68:6a:ce:a1:15:bf:3f: 87:83:7a:3a:a5:71:a5:51:38:a2:b6:07:3c:52:c9:d3:64:40: 55:08:f4:04:61:e5:97:b5:74:72:f9:76:2e:8b:0d:df:5c:b3: 91:c4:c1:0a:2a:f3:9e:af:be:1c:52:dc:09:c4:9e:5d:5c:11: ca:d3:f1:6c:b8:cf:f2:08:f7:c1:54:dc:57:1f:d2:3c:64:9b: 9c:95:74:e0:31:c5:de:bf:07:c4:8a:65:8d:25:ab:7b:59:04: c3:c4:6f:97:d1:86:ae:73:da:e9:f8:d8:d5:af:9d:d5:fd:74: a3:2f:52:92:b5:fa:60:08:b3:0a:09:f0:f0:7d:4b:24:59:1c: e6:e2:75:3a:b3:24:00:e5:81:bd:5f:58:b6:02:be:19:4f:c4: a0:2f:00:86:22:c5:aa:08:7f:6d:f1:9b:56:b2:cc:3c:3d:6c: 0b:22:f5:ab:25:4f:8a:e0:74:c0:d9:90:59:7e:15:4c:e6:18: ea:7d:da:90:c3:75:10:8c:a0:66:81:e4:5e:df:31:9f:cb:21: 71:3a:42:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJEODkxMTAvBgNVBAUTKDNDRkU2RjNFQjFEODkyNzE1RTQxMzZFOUJBODU2Qjk4 RjY3MTQ3QjAwHhcNMjUwNzAyMjEzMjE1WhcNMjUwNzA5MjEzMjE1WjAYMRYwFAYD VQQDEw02ODY1YTU1Zi1lMjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Im4csY9FGlwK5zjWDV13ifCjGRJ2gDpZjU6EerRIEN+lfiXcdfytCNJ/4M3 fCnkrP5qvqe93OimbVOPC++88g56Ne1JmaslNZi+yUyp4wVXh/HqhY8rQInAMKzw im+nVXqKdJFuq050h17r9assUNXav8ICtd8i+UqU3pLd8A+jDSAluLV1NJFuimm9 AvWGSlCsDcCSQj/ApNxw+9Dfdp7Ez+ye18zI9uVbvNkocfvCdu0pWXU9kaWmqWh4 0iF02TqDM7rtmlt/R+jMpqgVciQ3uNBgSDPpvgICvNundVCpNt9Qoz68wXc2V16Y J7Mmy0D+4dtGAjwZX0ySsgJvVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7q8kNU FPt+3pLrkQIcYEpVt7/0MB8GA1UdIwQYMBaAFDz+bz6x2JJxXkE26bqFa5j2cUew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkQ4OS9DNkE0QTVFMjA4 NDQxMUVCOUM3MzY1MTRDNEY5QUUwMi9QUDV2UHJIWWtuRmVRVGJwdW9Wcm1QWnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BQNXZQckhZa25GZVFUYnB1b1ZybVBaeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkQ4OS9DNkE0QTVFMjA4NDQxMUVCOUM3MzY1MTRDNEY5QUUwMi9QUDV2UHJIWWtu RmVRVGJwdW9Wcm1QWnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJFcvbAwq6fBZ0MHwAsAGEYDxK4WD1bxnC0EGX8CqNplZgRJOJkUxk AVBVtUsEs2hqzqEVvz+Hg3o6pXGlUTiitgc8UsnTZEBVCPQEYeWXtXRy+XYuiw3f XLORxMEKKvOer74cUtwJxJ5dXBHK0/FsuM/yCPfBVNxXH9I8ZJuclXTgMcXevwfE imWNJat7WQTDxG+X0Yauc9rp+NjVr53V/XSjL1KStfpgCLMKCfDwfUskWRzm4nU6 syQA5YG9X1i2Ar4ZT8SgLwCGIsWqCH9t8ZtWssw8PWwLIvWrJU+K4HTA2ZBZfhVM 5hjqfdqQw3UQjKBmgeRe3zGfyyFxOkI5 -----END CERTIFICATE-----Generated at Thu Jul 3 02:55:53 2025 by rpki-client