$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.mft File: x7Jkc1A4Cmo0404yzv41GZN-l8g.mft (raw, json) Hash identifier: h2n0olDdfZtzls+GqHfZaChU7UiBh2badqtaC1QWKIs= Subject key identifier: D5:8B:FA:C1:68:D2:29:F2:B2:2A:50:FD:E3:7C:C8:54:05:D3:DD:39 Authority key identifier: C7:B2:64:73:50:38:0A:6A:34:E3:4E:32:CE:FE:35:19:93:7E:97:C8 Certificate issuer: /CN=A9144F59/serialNumber=C7B2647350380A6A34E34E32CEFE3519937E97C8 Certificate serial: 16F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.mft Manifest number: 16CB Signing time: Wed 02 Jul 2025 16:48:44 +0000 Manifest this update: Wed 02 Jul 2025 16:48:44 +0000 Manifest next update: Wed 09 Jul 2025 16:48:44 +0000 Files and hashes: 1: x7Jkc1A4Cmo0404yzv41GZN-l8g.crl (hash: O7yPwPmFgWhSxNzMw37PCWm91eUbbWg3nBfZkNUeY2Q=) 2: CCE4818E514D11EEADBDDC4DC4F9AE02.roa (hash: mHHD4iG0u+Xkwk4pjbL/x0UUJaJ5cYa7RlAiU7ksSOM=) 3: 0897E314434811EF8E76757AC4F9AE02.roa (hash: VmGRRamI92gsFHH67DOcSNfpbQCDWa56npBMPnLQFzI=) 4: 453489B8BE6311EE90BF9241C4F9AE02.roa (hash: bqFmiv55QKtXboSAyhppicmxMvI2sf59cazaYPcU9EY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.crl rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:48:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5875 (0x16f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F59, serialNumber=C7B2647350380A6A34E34E32CEFE3519937E97C8 Validity Not Before: Jul 2 16:48:44 2025 GMT Not After : Jul 9 16:48:44 2025 GMT Subject: CN=686562ec-faeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5b:c0:47:97:1b:ac:3d:3d:1d:2a:ff:1f:cb: a7:81:85:f2:67:ed:e4:31:a5:85:d5:1d:d2:f6:bb: e4:da:78:99:5a:a8:0b:cc:0e:d8:4c:c5:0e:0d:af: 6c:58:04:78:7d:d4:d4:37:5b:6a:16:1e:14:22:a5: 77:c9:9f:92:77:13:ea:aa:ca:f7:03:84:12:d7:1c: 8d:92:80:fb:76:c8:6c:c6:f6:60:77:70:0e:e4:12: 03:9d:63:ec:b6:38:06:b4:8b:f1:c8:c5:7a:6e:2d: 95:e4:80:5c:e0:8c:7d:4a:8f:56:18:38:aa:20:42: 0e:9d:86:db:e6:db:03:df:15:91:ea:44:6a:61:5e: 2e:64:2a:9a:88:74:e6:6b:8b:a9:30:e7:e8:3f:8c: 02:71:b9:c4:57:99:10:b9:6c:4a:6d:fe:8b:9f:34: 54:64:6e:55:e4:44:63:1f:12:dd:c1:17:51:81:09: b8:e8:2f:c6:d7:93:74:f0:7a:63:07:55:89:ec:f0: a8:a6:46:c6:47:f9:a2:1d:59:7c:7a:7c:f8:bd:61: 0d:5f:d7:4b:a6:6c:46:5e:69:71:df:ac:70:42:ff: 3d:4b:3b:b5:9a:30:55:ae:45:93:10:1e:f1:bc:e8: 9c:f6:1b:56:8a:e8:7f:1c:b8:c7:4c:82:a8:ba:e0: d4:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:8B:FA:C1:68:D2:29:F2:B2:2A:50:FD:E3:7C:C8:54:05:D3:DD:39 X509v3 Authority Key Identifier: keyid:C7:B2:64:73:50:38:0A:6A:34:E3:4E:32:CE:FE:35:19:93:7E:97:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:9d:ce:ad:cc:81:15:6d:dc:3d:dd:16:75:3e:58:0d:ed:6e: b2:71:62:a2:03:97:59:2f:d4:1b:00:6c:6e:57:da:0f:79:0c: 27:28:9e:49:8e:47:b3:6b:86:0a:b7:fe:4b:a0:8f:78:b6:a2: 6c:60:48:ce:62:8c:2c:25:be:c4:87:b0:74:27:17:50:62:16: 53:ea:60:22:44:9e:ac:f1:b6:4f:cf:ab:34:a3:e7:9b:31:81: be:26:a0:e9:ba:ec:91:ed:6c:4f:26:3a:12:18:9b:30:83:2a: b3:fd:55:78:39:fa:c6:4f:f4:c1:e9:26:a9:8a:d4:94:b6:68: 8b:04:2b:4a:47:7d:e0:d8:7f:ca:3c:b5:6d:4e:ed:ca:b9:54: 21:02:18:7c:5f:fb:20:ac:30:ae:65:c1:4f:de:1f:3d:74:ea: 3f:96:69:fd:63:53:91:38:22:de:ab:da:eb:e9:af:ea:cb:d8: b8:af:33:27:12:0d:da:6c:0e:57:c7:84:f4:06:20:51:42:bd: 33:1c:ca:0e:c6:2c:1f:3f:29:92:5b:2b:a8:d1:16:b3:80:3f: 26:bf:ae:67:90:64:4e:3b:ee:1f:0a:43:cc:d2:84:3b:03:9b: c2:0b:67:4b:1d:1f:40:a3:fa:09:f8:d9:92:98:fa:2b:bc:18: 83:b0:eb:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNTkxMTAvBgNVBAUTKEM3QjI2NDczNTAzODBBNkEzNEUzNEUzMkNFRkUzNTE5 OTM3RTk3QzgwHhcNMjUwNzAyMTY0ODQ0WhcNMjUwNzA5MTY0ODQ0WjAYMRYwFAYD VQQDEw02ODY1NjJlYy1mYWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21vAR5cbrD09HSr/H8ungYXyZ+3kMaWF1R3S9rvk2niZWqgLzA7YTMUODa9s WAR4fdTUN1tqFh4UIqV3yZ+SdxPqqsr3A4QS1xyNkoD7dshsxvZgd3AO5BIDnWPs tjgGtIvxyMV6bi2V5IBc4Ix9So9WGDiqIEIOnYbb5tsD3xWR6kRqYV4uZCqaiHTm a4upMOfoP4wCcbnEV5kQuWxKbf6LnzRUZG5V5ERjHxLdwRdRgQm46C/G15N08Hpj B1WJ7PCopkbGR/miHVl8enz4vWENX9dLpmxGXmlx36xwQv89Szu1mjBVrkWTEB7x vOic9htWiuh/HLjHTIKouuDUHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNWL+sFo 0inysipQ/eN8yFQF0905MB8GA1UdIwQYMBaAFMeyZHNQOApqNONOMs7+NRmTfpfI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY1OS80Qjk1OEJDRTAw Q0IxMUU4QkVCMUVGMTBDNEY5QUUwMi94N0prYzFBNENtbzA0MDR5enY0MUdaTi1s OGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g3SmtjMUE0Q21vMDQwNHl6djQxR1pOLWw4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY1OS80Qjk1OEJDRTAwQ0IxMUU4QkVCMUVGMTBDNEY5QUUwMi94N0prYzFBNENt bzA0MDR5enY0MUdaTi1sOGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsnc6tzIEVbdw93RZ1PlgN7W6ycWKiA5dZL9QbAGxuV9oPeQwnKJ5J jkeza4YKt/5LoI94tqJsYEjOYowsJb7Eh7B0JxdQYhZT6mAiRJ6s8bZPz6s0o+eb MYG+JqDpuuyR7WxPJjoSGJswgyqz/VV4OfrGT/TB6SapitSUtmiLBCtKR33g2H/K PLVtTu3KuVQhAhh8X/sgrDCuZcFP3h89dOo/lmn9Y1OROCLeq9rr6a/qy9i4rzMn Eg3abA5Xx4T0BiBRQr0zHMoOxiwfPymSWyuo0RazgD8mv65nkGROO+4fCkPM0oQ7 A5vCC2dLHR9Ao/oJ+NmSmPorvBiDsOv7 -----END CERTIFICATE-----Generated at Thu Jul 3 15:33:57 2025 by rpki-client