$ rpki-client -vvf rpki.apnic.net/member_repository/A9145519/AD08AF26E45C11E68CEDFA3EC4F9AE02/fWozDw0BJJQnx_yd3dz0qCh2CwY.mft File: fWozDw0BJJQnx_yd3dz0qCh2CwY.mft (raw, json) Hash identifier: 9JQIie+3PJuFkbDP6LJ8UGGXKs1+DglS8EEN+lp7riw= Subject key identifier: CF:B5:24:3C:F1:6C:60:A4:F4:65:DC:8C:9F:E3:31:25:81:BE:60:C9 Authority key identifier: 7D:6A:33:0F:0D:01:24:94:27:C7:FC:9D:DD:DC:F4:A8:28:76:0B:06 Certificate issuer: /CN=A9145519/serialNumber=7D6A330F0D01249427C7FC9DDDDCF4A828760B06 Certificate serial: 1C5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWozDw0BJJQnx_yd3dz0qCh2CwY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145519/AD08AF26E45C11E68CEDFA3EC4F9AE02/fWozDw0BJJQnx_yd3dz0qCh2CwY.mft Manifest number: 1C4C Signing time: Wed 02 Jul 2025 16:19:05 +0000 Manifest this update: Wed 02 Jul 2025 16:19:05 +0000 Manifest next update: Wed 09 Jul 2025 16:19:05 +0000 Files and hashes: 1: fWozDw0BJJQnx_yd3dz0qCh2CwY.crl (hash: MClxzkq4iJm6J26+OUYJ3pSiLYYiJatqiqDHx7yOLuM=) 2: 78D1DAC8E45E11E681F82341C4F9AE02.roa (hash: 3Dm5ElwPB3NMJf/bLLX77VdgpNnL/LPrpw6YAX3+x3w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145519/AD08AF26E45C11E68CEDFA3EC4F9AE02/fWozDw0BJJQnx_yd3dz0qCh2CwY.crl rsync://rpki.apnic.net/member_repository/A9145519/AD08AF26E45C11E68CEDFA3EC4F9AE02/fWozDw0BJJQnx_yd3dz0qCh2CwY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWozDw0BJJQnx_yd3dz0qCh2CwY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:19:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7261 (0x1c5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145519, serialNumber=7D6A330F0D01249427C7FC9DDDDCF4A828760B06 Validity Not Before: Jul 2 16:19:05 2025 GMT Not After : Jul 9 16:19:05 2025 GMT Subject: CN=68655bf9-c440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0f:50:ec:9b:e1:86:ef:5d:e4:f3:fa:a2:e8: 03:fd:53:d9:b2:bc:e1:9e:85:b2:bb:e5:82:a3:8f: 06:27:a1:7e:74:97:97:05:ed:fe:8b:39:b5:16:8d: 6f:b0:9d:ab:97:88:f5:be:93:c5:d5:b3:9f:42:e5: 55:54:7b:83:4f:f6:36:f8:bc:db:a9:7f:b5:81:1d: 93:55:e0:c9:6b:59:2c:f7:bf:a6:84:1b:9f:46:87: b9:22:3f:7b:b6:c6:24:90:35:d7:43:db:12:a6:78: 90:90:94:47:ae:29:a5:e2:d3:05:28:b6:a4:ac:ae: 46:6f:fb:d9:b3:b4:8f:32:5e:e3:d4:f6:2c:e2:80: f5:1c:b7:e8:e1:7c:34:82:23:4c:f8:b4:8b:35:0a: 63:66:23:b6:14:7c:fc:9d:79:42:50:2e:66:dc:67: e7:5a:a9:a1:b0:b1:9a:a1:c6:b1:84:d9:15:59:72: 68:3f:3f:96:5d:f2:ef:74:69:5a:14:ad:bb:79:a7: be:87:89:d7:4c:ce:fc:b4:16:28:7d:f2:15:99:b7: a8:7d:a0:81:61:2f:7a:06:31:89:90:65:27:ae:dd: 56:ad:1d:da:6f:a4:39:09:7a:b1:e7:87:a4:83:ad: f2:5e:4f:fe:71:ea:7e:96:1a:3c:1f:45:4d:bf:d9: 45:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B5:24:3C:F1:6C:60:A4:F4:65:DC:8C:9F:E3:31:25:81:BE:60:C9 X509v3 Authority Key Identifier: keyid:7D:6A:33:0F:0D:01:24:94:27:C7:FC:9D:DD:DC:F4:A8:28:76:0B:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145519/AD08AF26E45C11E68CEDFA3EC4F9AE02/fWozDw0BJJQnx_yd3dz0qCh2CwY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWozDw0BJJQnx_yd3dz0qCh2CwY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145519/AD08AF26E45C11E68CEDFA3EC4F9AE02/fWozDw0BJJQnx_yd3dz0qCh2CwY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:cc:de:fa:c5:7c:92:31:a2:0f:fd:53:ee:86:66:e5:a6:8b: 5e:82:ef:37:c7:b6:8e:69:f6:bf:ea:01:b0:c4:dc:0a:19:7c: 66:7f:50:a0:f7:8d:c5:fe:88:d9:7f:5d:49:ac:0e:2b:ec:d3: 75:4c:cf:1b:6b:a3:8b:3e:7f:34:66:a0:39:c8:70:a7:7e:d1: 8d:c7:84:0f:97:4a:d9:cc:01:70:20:a1:e0:b2:32:9f:70:13: 35:74:ed:c6:e6:52:47:94:c8:70:84:f3:33:19:04:df:0a:e4: d4:94:43:e9:8e:54:20:38:9b:c0:fe:2b:9d:79:73:a3:52:14: d2:f1:cf:34:d3:9d:18:62:a3:61:55:71:98:89:e6:ef:2d:fa: 71:02:d4:fb:b8:68:b7:d5:df:aa:15:88:7b:53:8d:df:93:5a: b5:e0:51:ca:18:73:06:3b:83:07:f6:e7:ff:ea:76:80:c0:7c: f0:e8:37:5a:02:e4:97:e7:a5:b8:37:8b:91:06:c5:9e:7c:03: 2a:2e:3b:56:6b:45:9c:3a:ec:42:7a:39:a8:0d:a7:7b:6e:a7: 6c:d5:49:4f:5a:3c:09:ab:64:3d:2b:ea:43:09:88:af:f3:a0: 6c:d9:52:e9:a9:36:7f:69:16:fa:0b:82:76:26:12:ca:51:e4: 1d:ce:3b:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU1MTkxMTAvBgNVBAUTKDdENkEzMzBGMEQwMTI0OTQyN0M3RkM5RERERENGNEE4 Mjg3NjBCMDYwHhcNMjUwNzAyMTYxOTA1WhcNMjUwNzA5MTYxOTA1WjAYMRYwFAYD VQQDEw02ODY1NWJmOS1jNDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvw9Q7Jvhhu9d5PP6ougD/VPZsrzhnoWyu+WCo48GJ6F+dJeXBe3+izm1Fo1v sJ2rl4j1vpPF1bOfQuVVVHuDT/Y2+LzbqX+1gR2TVeDJa1ks97+mhBufRoe5Ij97 tsYkkDXXQ9sSpniQkJRHriml4tMFKLakrK5Gb/vZs7SPMl7j1PYs4oD1HLfo4Xw0 giNM+LSLNQpjZiO2FHz8nXlCUC5m3GfnWqmhsLGaocaxhNkVWXJoPz+WXfLvdGla FK27eae+h4nXTM78tBYoffIVmbeofaCBYS96BjGJkGUnrt1WrR3ab6Q5CXqx54ek g63yXk/+cep+lho8H0VNv9lFkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+1JDzx bGCk9GXcjJ/jMSWBvmDJMB8GA1UdIwQYMBaAFH1qMw8NASSUJ8f8nd3c9KgodgsG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTUxOS9BRDA4QUYyNkU0 NUMxMUU2OENFREZBM0VDNEY5QUUwMi9mV296RHcwQkpKUW54X3lkM2R6MHFDaDJD d1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXb3pEdzBCSkpRbnhfeWQzZHowcUNoMkN3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTUxOS9BRDA4QUYyNkU0NUMxMUU2OENFREZBM0VDNEY5QUUwMi9mV296RHcwQkpK UW54X3lkM2R6MHFDaDJDd1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2zN76xXySMaIP/VPuhmblpotegu83x7aOafa/6gGwxNwKGXxmf1Cg 943F/ojZf11JrA4r7NN1TM8ba6OLPn80ZqA5yHCnftGNx4QPl0rZzAFwIKHgsjKf cBM1dO3G5lJHlMhwhPMzGQTfCuTUlEPpjlQgOJvA/iudeXOjUhTS8c80050YYqNh VXGYiebvLfpxAtT7uGi31d+qFYh7U43fk1q14FHKGHMGO4MH9uf/6naAwHzw6Dda AuSX56W4N4uRBsWefAMqLjtWa0WcOuxCejmoDad7bqds1UlPWjwJq2Q9K+pDCYiv 86Bs2VLpqTZ/aRb6C4J2JhLKUeQdzju2 -----END CERTIFICATE-----Generated at Thu Jul 3 00:51:26 2025 by rpki-client