$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft File: cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft (raw, json) Hash identifier: 6tL0aTTs7BqBq36V+jqSDOOsnwBb7bdAzXOJ/0BMIJY= Subject key identifier: 08:E7:AB:E8:DB:FE:A2:75:5A:37:FA:B2:21:AB:7B:A9:0B:25:0F:0C Authority key identifier: 71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 Certificate issuer: /CN=A9125C31/serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Certificate serial: 0C06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft Manifest number: 0BFF Signing time: Fri 04 Jul 2025 19:05:16 +0000 Manifest this update: Fri 04 Jul 2025 19:05:15 +0000 Manifest next update: Fri 11 Jul 2025 19:05:15 +0000 Files and hashes: 1: cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl (hash: fTeYYfHMGsegKXJKgeYtHjeYyVXek1FNTN0/CUT3g5k=) 2: 4697751815B111EA8277BA34C4F9AE02.roa (hash: dxDp9E0tHPQ++XAIde+nxMm3Ga/WWcWY96m0Hl+beDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3078 (0xc06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C31, serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Validity Not Before: Jul 4 19:05:15 2025 GMT Not After : Jul 11 19:05:15 2025 GMT Subject: CN=686825ec-b490 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:25:2b:16:0b:13:06:92:41:d2:89:b7:0b:c5: 00:f0:4a:0a:7d:be:67:18:cd:9c:43:14:76:bd:1f: da:0c:93:7a:fc:6c:53:94:1e:52:76:1e:8c:b2:b6: 8a:c0:e8:1c:32:1f:93:85:ca:89:cd:04:4e:e2:e9: b3:b9:6e:d8:0e:bc:c2:dd:f9:ad:b9:8e:fa:28:3b: 1c:dd:ff:e4:34:db:e1:63:7d:37:29:ae:9a:97:e6: 9c:37:0b:78:97:13:dc:9d:a9:39:62:7c:03:96:f4: ad:9e:aa:9e:fd:d4:6e:9f:0f:20:b1:6c:d4:77:d3: 72:f5:23:0a:9b:0e:7d:3a:1a:64:cc:88:fc:e6:4d: fe:63:11:dc:7e:c0:49:ae:53:01:e9:8f:e1:be:5c: 57:59:39:bf:6c:04:3c:f2:78:ae:59:05:2c:66:cb: a0:62:6a:ea:31:67:18:77:02:51:57:e3:12:d3:c8: 6d:31:a2:34:81:c0:b8:a0:7e:2e:a0:2b:b5:82:d9: d9:8c:d0:bd:14:11:a4:c5:fc:f6:10:92:72:26:c0: 7e:79:3f:e1:68:60:3f:c0:b8:a2:38:a8:42:67:cf: ad:10:6f:ae:f3:bd:2a:5a:c6:19:46:4f:71:3d:90: bc:8c:96:33:b4:0d:04:ab:78:1c:56:8a:20:6e:30: a3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:E7:AB:E8:DB:FE:A2:75:5A:37:FA:B2:21:AB:7B:A9:0B:25:0F:0C X509v3 Authority Key Identifier: keyid:71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:46:17:1f:f9:0e:3f:b2:96:7f:88:81:d8:2f:10:c6:23:97: 85:03:b5:72:f7:eb:0e:39:5d:29:3a:27:f1:5d:e4:f3:29:e7: 1c:4c:97:cb:21:69:d6:aa:20:14:5c:61:e8:15:d6:31:88:50: 83:2f:89:30:dd:f3:56:dc:f3:e4:64:35:8e:55:c7:8d:c2:0f: 56:c9:3e:76:e1:51:25:60:a0:3e:47:86:d6:be:52:68:b0:46: 02:4c:4c:fb:b0:71:36:6a:35:1e:4e:82:39:1c:c1:ac:d3:6f: 6e:d8:7e:e8:31:d6:0b:b1:bd:99:fb:f4:53:24:35:fb:b4:ed: c4:a6:19:2e:98:3f:db:15:3e:e1:2e:14:fc:22:09:d7:be:cc: 88:47:bb:ea:6d:05:20:3a:89:74:64:8a:2c:ce:30:97:b8:bb: 79:16:ea:99:4b:e4:73:25:88:ef:c5:73:2c:bc:b9:bc:16:dd: 76:58:c2:f2:80:74:31:d0:52:af:25:ab:69:de:b4:22:eb:ec: a0:09:e2:69:65:dd:c4:af:1a:23:ec:07:fc:77:fd:36:43:2f: 94:38:76:a6:25:92:ba:3c:33:b7:fe:44:80:d0:68:d8:b8:cd: 22:8c:18:40:73:23:ff:cf:4e:95:b0:80:8a:73:74:1a:1f:a8: 3b:7a:29:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMzExMTAvBgNVBAUTKDcxMDUzNzI0NDZBMjA2NDU0NkQ5NjI5RjQyMUMzNzZG RENFRjIxRDYwHhcNMjUwNzA0MTkwNTE1WhcNMjUwNzExMTkwNTE1WjAYMRYwFAYD VQQDEw02ODY4MjVlYy1iNDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSUrFgsTBpJB0om3C8UA8EoKfb5nGM2cQxR2vR/aDJN6/GxTlB5Sdh6MsraK wOgcMh+ThcqJzQRO4umzuW7YDrzC3fmtuY76KDsc3f/kNNvhY303Ka6al+acNwt4 lxPcnak5YnwDlvStnqqe/dRunw8gsWzUd9Ny9SMKmw59OhpkzIj85k3+YxHcfsBJ rlMB6Y/hvlxXWTm/bAQ88niuWQUsZsugYmrqMWcYdwJRV+MS08htMaI0gcC4oH4u oCu1gtnZjNC9FBGkxfz2EJJyJsB+eT/haGA/wLiiOKhCZ8+tEG+u870qWsYZRk9x PZC8jJYztA0Eq3gcVoogbjCj2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjnq+jb /qJ1Wjf6siGre6kLJQ8MMB8GA1UdIwQYMBaAFHEFNyRGogZFRtlin0IcN2/c7yHW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzMS8zOEJGNDA5QTE1 OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJrVkcyV0tmUWh3M2I5enZJ ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NRVTNKRWFpQmtWRzJXS2ZRaHczYjl6dklkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzMS8zOEJGNDA5QTE1OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJr VkcyV0tmUWh3M2I5enZJZFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABRhcf+Q4/spZ/iIHYLxDGI5eFA7Vy9+sOOV0pOifxXeTzKeccTJfL IWnWqiAUXGHoFdYxiFCDL4kw3fNW3PPkZDWOVceNwg9WyT524VElYKA+R4bWvlJo sEYCTEz7sHE2ajUeToI5HMGs029u2H7oMdYLsb2Z+/RTJDX7tO3EphkumD/bFT7h LhT8IgnXvsyIR7vqbQUgOol0ZIoszjCXuLt5FuqZS+RzJYjvxXMsvLm8Ft12WMLy gHQx0FKvJatp3rQi6+ygCeJpZd3Erxoj7Af8d/02Qy+UOHamJZK6PDO3/kSA0GjY uM0ijBhAcyP/z06VsICKc3QaH6g7einL -----END CERTIFICATE-----Generated at Sat Jul 5 02:47:20 2025 by rpki-client