$ rpki-client -vvf rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft File: sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft (raw, json) Hash identifier: XZIncyG8QzszdoVATUFTu+0kHCyUU2L+t/1GAFSutx4= Subject key identifier: CE:2E:40:DC:F1:52:2A:56:AB:84:2C:8A:D6:73:85:E0:3C:C3:10:90 Authority key identifier: B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 Certificate issuer: /CN=A913BF1E/serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Certificate serial: 0F7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft Manifest number: 0F69 Signing time: Wed 02 Jul 2025 17:47:15 +0000 Manifest this update: Wed 02 Jul 2025 17:47:14 +0000 Manifest next update: Wed 09 Jul 2025 17:47:14 +0000 Files and hashes: 1: sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl (hash: +vja4OhNeQSiju+Y7PJI33QZs/Gb9jggLDESEa1b5Bw=) 2: 164B42E2414111F0A098A82DC4F9AE02.roa (hash: dJHoDekjFkpD+HydVswBgGgsUVupPAujnF3OBVrSpKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:47:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3966 (0xf7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BF1E, serialNumber=B14B2EE5C5ED736AB736B2553586759AFCDEC3E2 Validity Not Before: Jul 2 17:47:14 2025 GMT Not After : Jul 9 17:47:14 2025 GMT Subject: CN=686570a3-8333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:44:55:0b:95:ed:c5:1f:17:d7:98:b6:51:e4: c8:00:93:55:0f:11:4a:65:3d:8b:c1:10:b0:a5:ff: 68:10:77:4e:a6:ef:ce:e3:18:37:c4:3d:88:9a:8d: f9:e9:60:9a:01:d5:23:ef:11:7e:73:54:06:69:1a: 3f:0d:bb:18:09:ea:36:70:d9:77:f7:6b:a8:0a:ff: 57:35:f4:39:e9:dc:fb:a5:8f:b0:73:4e:87:28:78: 39:0d:30:36:eb:2c:a9:5b:e7:86:4e:cd:49:bd:81: 24:c9:b7:b9:ec:11:3d:a9:81:a7:23:54:a6:e0:c8: 9f:59:4a:ec:7a:0f:8c:5f:92:b1:ca:90:9f:6d:ab: 74:e2:f6:c6:e4:9b:c1:4b:31:1a:d5:c4:44:ea:c1: ab:ab:e3:c5:d9:92:8a:73:bc:d5:17:41:d2:9c:4f: b2:da:37:c6:5e:cd:8c:d0:7c:8f:1b:09:3e:c6:d9: 8d:69:d0:50:a0:7c:55:d4:2c:7f:6c:ac:f4:d6:a6: 53:20:fe:74:8e:3a:57:00:28:64:37:08:82:ba:97: 31:54:e1:f6:5f:7a:5e:b0:25:f5:87:a9:02:43:4c: 5f:cc:28:b9:b9:d6:7f:37:6b:14:03:d6:82:e6:1a: a1:5a:45:9b:58:a4:70:7b:63:fd:e8:25:39:ee:21: 24:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:2E:40:DC:F1:52:2A:56:AB:84:2C:8A:D6:73:85:E0:3C:C3:10:90 X509v3 Authority Key Identifier: keyid:B1:4B:2E:E5:C5:ED:73:6A:B7:36:B2:55:35:86:75:9A:FC:DE:C3:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sUsu5cXtc2q3NrJVNYZ1mvzew-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BF1E/DBB2BF666E6F11E9AA017C33C4F9AE02/sUsu5cXtc2q3NrJVNYZ1mvzew-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:01:60:02:41:4a:b1:e1:9d:60:b5:97:16:5e:2e:57:5f:c0: 71:71:24:07:ee:f5:fe:be:9c:4d:13:4f:0a:d3:27:69:ae:c5: c0:dc:9e:28:b4:24:bf:20:15:03:b8:c6:23:9b:8f:ba:57:9e: 12:fd:a1:6c:fc:d7:83:c5:85:4a:a6:ae:b3:2a:c9:1f:58:7e: 4e:50:54:55:60:82:40:02:66:4d:2d:15:a7:f0:fe:60:5c:64: 09:90:b7:52:31:50:fc:a1:c0:b7:c6:c4:d4:15:16:be:17:4e: 12:33:84:c8:12:73:95:61:b2:5e:3e:f5:5a:cf:0b:1b:94:2f: 5b:f7:62:b5:79:32:fc:c5:e6:fd:97:70:7f:6f:b5:7a:80:95: c5:fc:82:94:f8:e4:37:56:03:1f:cc:92:46:43:7f:fb:78:58: 76:8b:c1:1a:96:42:23:b8:58:78:1a:ff:38:9e:0e:0b:13:a6: 6d:ad:2e:00:7a:d4:6f:e7:99:f4:67:2a:5a:f3:8c:32:8f:bb: 5a:a8:28:48:08:ef:1d:5b:f0:94:0d:29:4b:a7:2d:ed:43:c6: 61:59:90:3a:17:ca:5d:94:2e:e1:13:f6:e2:f4:e4:01:0e:df: d9:91:de:65:ad:b6:14:77:8c:3e:9f:0e:19:dd:ee:41:57:d1: 83:d0:b8:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JGMUUxMTAvBgNVBAUTKEIxNEIyRUU1QzVFRDczNkFCNzM2QjI1NTM1ODY3NTlB RkNERUMzRTIwHhcNMjUwNzAyMTc0NzE0WhcNMjUwNzA5MTc0NzE0WjAYMRYwFAYD VQQDEw02ODY1NzBhMy04MzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2kRVC5XtxR8X15i2UeTIAJNVDxFKZT2LwRCwpf9oEHdOpu/O4xg3xD2Imo35 6WCaAdUj7xF+c1QGaRo/DbsYCeo2cNl392uoCv9XNfQ56dz7pY+wc06HKHg5DTA2 6yypW+eGTs1JvYEkybe57BE9qYGnI1Sm4MifWUrseg+MX5KxypCfbat04vbG5JvB SzEa1cRE6sGrq+PF2ZKKc7zVF0HSnE+y2jfGXs2M0HyPGwk+xtmNadBQoHxV1Cx/ bKz01qZTIP50jjpXAChkNwiCupcxVOH2X3pesCX1h6kCQ0xfzCi5udZ/N2sUA9aC 5hqhWkWbWKRwe2P96CU57iEk5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4uQNzx UipWq4QsitZzheA8wxCQMB8GA1UdIwQYMBaAFLFLLuXF7XNqtzayVTWGdZr83sPi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkYxRS9EQkIyQkY2NjZF NkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMycTNOckpWTllaMW12emV3 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NVc3U1Y1h0YzJxM05ySlZOWVoxbXZ6ZXctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkYxRS9EQkIyQkY2NjZFNkYxMUU5QUEwMTdDMzNDNEY5QUUwMi9zVXN1NWNYdGMy cTNOckpWTllaMW12emV3LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPAWACQUqx4Z1gtZcWXi5XX8BxcSQH7vX+vpxNE08K0ydprsXA3J4o tCS/IBUDuMYjm4+6V54S/aFs/NeDxYVKpq6zKskfWH5OUFRVYIJAAmZNLRWn8P5g XGQJkLdSMVD8ocC3xsTUFRa+F04SM4TIEnOVYbJePvVazwsblC9b92K1eTL8xeb9 l3B/b7V6gJXF/IKU+OQ3VgMfzJJGQ3/7eFh2i8EalkIjuFh4Gv84ng4LE6ZtrS4A etRv55n0Zypa84wyj7taqChICO8dW/CUDSlLpy3tQ8ZhWZA6F8pdlC7hE/bi9OQB Dt/Zkd5lrbYUd4w+nw4Z3e5BV9GD0LhR -----END CERTIFICATE-----Generated at Fri Jul 4 10:40:32 2025 by rpki-client