$ rpki-client -vvf rpki.apnic.net/member_repository/A9145519/AD08AF26E45C11E68CEDFA3EC4F9AE02/fWozDw0BJJQnx_yd3dz0qCh2CwY.mft File: fWozDw0BJJQnx_yd3dz0qCh2CwY.mft (raw, json) Hash identifier: EUvpZ+O1TBNZNBr3lu6PoL2JrknhAzNBAmfmmEXSZiQ= Subject key identifier: 3B:2A:A7:18:0F:B6:BB:2E:BA:1E:A2:3B:D7:38:BC:F9:E8:7B:5E:5C Authority key identifier: 7D:6A:33:0F:0D:01:24:94:27:C7:FC:9D:DD:DC:F4:A8:28:76:0B:06 Certificate issuer: /CN=A9145519/serialNumber=7D6A330F0D01249427C7FC9DDDDCF4A828760B06 Certificate serial: 1C77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWozDw0BJJQnx_yd3dz0qCh2CwY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145519/AD08AF26E45C11E68CEDFA3EC4F9AE02/fWozDw0BJJQnx_yd3dz0qCh2CwY.mft Manifest number: 1C66 Signing time: Fri 22 Aug 2025 16:16:11 +0000 Manifest this update: Fri 22 Aug 2025 16:16:11 +0000 Manifest next update: Fri 29 Aug 2025 16:16:11 +0000 Files and hashes: 1: fWozDw0BJJQnx_yd3dz0qCh2CwY.crl (hash: vbap0GOk3wRPiVMLL6dgSKc9VKUR3AKbUOia2U+pC6k=) 2: 78D1DAC8E45E11E681F82341C4F9AE02.roa (hash: 3Dm5ElwPB3NMJf/bLLX77VdgpNnL/LPrpw6YAX3+x3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145519/AD08AF26E45C11E68CEDFA3EC4F9AE02/fWozDw0BJJQnx_yd3dz0qCh2CwY.crl rsync://rpki.apnic.net/member_repository/A9145519/AD08AF26E45C11E68CEDFA3EC4F9AE02/fWozDw0BJJQnx_yd3dz0qCh2CwY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWozDw0BJJQnx_yd3dz0qCh2CwY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7287 (0x1c77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145519, serialNumber=7D6A330F0D01249427C7FC9DDDDCF4A828760B06 Validity Not Before: Aug 22 16:16:11 2025 GMT Not After : Aug 29 16:16:11 2025 GMT Subject: CN=68a897cb-276d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:73:7f:22:96:12:1c:56:7c:e5:1a:2c:2d:7f: 32:d5:86:0a:e7:07:eb:1b:58:3d:27:90:f4:6e:f4: 18:3a:07:9d:71:80:0b:85:c2:8e:01:51:7b:51:f3: 34:a3:3b:dc:31:a8:de:5d:fa:06:a5:92:85:a6:2b: 74:54:2f:44:6f:a5:9a:95:f8:b6:50:44:96:e9:57: ae:a0:9d:0e:a4:a0:aa:9c:49:98:36:1e:f1:a6:b0: 99:34:a7:ec:29:d0:9c:70:53:35:04:75:75:54:f9: 06:e1:f0:75:42:00:60:69:2e:cc:87:90:35:24:47: 4f:5b:7d:f1:9e:d5:5f:7d:10:91:9b:86:d6:3c:85: 54:96:56:a5:46:d1:7d:de:91:77:54:13:49:c7:bd: bf:52:0b:0d:28:f5:1a:a1:46:34:44:12:20:33:3c: 4a:d9:6d:d6:d8:e2:37:de:ff:0a:4d:8f:ad:64:fc: 2f:35:d1:43:58:60:29:55:ce:ec:ba:6d:c5:a2:5d: 69:ab:e5:2b:2e:79:60:d5:c6:b9:5c:dd:69:2e:8a: fc:c3:68:14:4d:1d:aa:63:d3:75:50:1d:16:30:41: 7f:39:4b:0a:53:62:87:8f:ed:09:ea:72:c4:c6:47: d1:24:b2:ae:b3:c4:24:16:4f:fe:47:4c:58:4e:32: 3b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:2A:A7:18:0F:B6:BB:2E:BA:1E:A2:3B:D7:38:BC:F9:E8:7B:5E:5C X509v3 Authority Key Identifier: keyid:7D:6A:33:0F:0D:01:24:94:27:C7:FC:9D:DD:DC:F4:A8:28:76:0B:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145519/AD08AF26E45C11E68CEDFA3EC4F9AE02/fWozDw0BJJQnx_yd3dz0qCh2CwY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWozDw0BJJQnx_yd3dz0qCh2CwY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145519/AD08AF26E45C11E68CEDFA3EC4F9AE02/fWozDw0BJJQnx_yd3dz0qCh2CwY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:db:e6:08:32:60:09:88:ae:f6:03:8d:cf:04:14:34:63:4e: 31:ec:a1:be:76:b7:d4:56:db:fc:62:97:d4:62:41:d1:39:f7: 9b:1c:8d:78:f9:4a:41:8c:33:7a:51:7c:87:c1:0b:9a:9a:fc: 89:9d:41:47:fa:b2:8c:72:5d:52:11:de:10:14:eb:2a:f5:ae: f4:85:22:30:be:a9:b2:0f:01:6f:f6:1b:f1:08:a4:1f:16:5e: 06:23:ec:2b:4e:67:b5:71:64:9b:b8:1d:29:6e:06:51:26:67: dc:40:ff:71:1e:64:5b:ab:52:3c:7c:ab:02:b8:fe:a7:dc:89: aa:cc:d2:e1:cb:31:81:65:92:b7:00:cb:6d:b1:ef:03:03:fe: 1f:48:ac:06:b5:1c:17:9b:8b:98:e3:19:f7:0f:80:dc:95:6a: 1d:11:cc:1f:be:0f:a7:67:d7:3a:4b:25:97:d1:72:5b:fc:c7: 9d:2a:67:58:da:05:5d:bc:68:42:9f:c4:09:f6:1d:ca:11:ea: b7:1b:09:1d:2b:5a:4f:da:80:25:47:f2:ca:83:e0:4c:be:fb: 8a:7c:05:02:2b:a7:53:f6:e6:ba:26:a7:86:25:65:0e:ed:7d: 1a:a0:d2:53:07:83:a4:42:85:b1:af:c4:af:8e:21:ab:f2:3e: 90:20:d4:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU1MTkxMTAvBgNVBAUTKDdENkEzMzBGMEQwMTI0OTQyN0M3RkM5RERERENGNEE4 Mjg3NjBCMDYwHhcNMjUwODIyMTYxNjExWhcNMjUwODI5MTYxNjExWjAYMRYwFAYD VQQDEw02OGE4OTdjYi0yNzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XN/IpYSHFZ85RosLX8y1YYK5wfrG1g9J5D0bvQYOgedcYALhcKOAVF7UfM0 ozvcMajeXfoGpZKFpit0VC9Eb6Walfi2UESW6VeuoJ0OpKCqnEmYNh7xprCZNKfs KdCccFM1BHV1VPkG4fB1QgBgaS7Mh5A1JEdPW33xntVffRCRm4bWPIVUllalRtF9 3pF3VBNJx72/UgsNKPUaoUY0RBIgMzxK2W3W2OI33v8KTY+tZPwvNdFDWGApVc7s um3Fol1pq+UrLnlg1ca5XN1pLor8w2gUTR2qY9N1UB0WMEF/OUsKU2KHj+0J6nLE xkfRJLKus8QkFk/+R0xYTjI78wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDsqpxgP trsuuh6iO9c4vPnoe15cMB8GA1UdIwQYMBaAFH1qMw8NASSUJ8f8nd3c9KgodgsG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTUxOS9BRDA4QUYyNkU0 NUMxMUU2OENFREZBM0VDNEY5QUUwMi9mV296RHcwQkpKUW54X3lkM2R6MHFDaDJD d1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXb3pEdzBCSkpRbnhfeWQzZHowcUNoMkN3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTUxOS9BRDA4QUYyNkU0NUMxMUU2OENFREZBM0VDNEY5QUUwMi9mV296RHcwQkpK UW54X3lkM2R6MHFDaDJDd1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA12+YIMmAJiK72A43PBBQ0Y04x7KG+drfUVtv8YpfUYkHROfebHI14 +UpBjDN6UXyHwQuamvyJnUFH+rKMcl1SEd4QFOsq9a70hSIwvqmyDwFv9hvxCKQf Fl4GI+wrTme1cWSbuB0pbgZRJmfcQP9xHmRbq1I8fKsCuP6n3ImqzNLhyzGBZZK3 AMttse8DA/4fSKwGtRwXm4uY4xn3D4DclWodEcwfvg+nZ9c6SyWX0XJb/MedKmdY 2gVdvGhCn8QJ9h3KEeq3GwkdK1pP2oAlR/LKg+BMvvuKfAUCK6dT9ua6JqeGJWUO 7X0aoNJTB4OkQoWxr8SvjiGr8j6QINTF -----END CERTIFICATE-----Generated at Sat Aug 23 17:04:45 2025 by rpki-client