$ rpki-client -vvf rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft File: 909zX9xaW5M28yTDLLpVjrvSjZc.mft (raw, json) Hash identifier: 7kPsBuZMZwvmKgjVz+iXCH1W/amaWLwNfzAWS63H+bQ= Subject key identifier: F2:CF:90:7C:02:A5:F5:38:D9:9B:B5:20:46:EF:A8:86:7A:5A:75:7B Authority key identifier: F7:4F:73:5F:DC:5A:5B:93:36:F3:24:C3:2C:BA:55:8E:BB:D2:8D:97 Certificate issuer: /CN=A915123C/serialNumber=F74F735FDC5A5B9336F324C32CBA558EBBD28D97 Certificate serial: 1286 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft Manifest number: 1286 Signing time: Wed 02 Jul 2025 17:16:49 +0000 Manifest this update: Wed 02 Jul 2025 17:16:48 +0000 Manifest next update: Wed 09 Jul 2025 17:16:48 +0000 Files and hashes: 1: 909zX9xaW5M28yTDLLpVjrvSjZc.crl (hash: Nt0AZHvy+GHGH8ZnFjJOwHPPjWu3B1KKgL1/wt7lv80=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.crl rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:16:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4742 (0x1286) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915123C, serialNumber=F74F735FDC5A5B9336F324C32CBA558EBBD28D97 Validity Not Before: Jul 2 17:16:48 2025 GMT Not After : Jul 9 17:16:48 2025 GMT Subject: CN=68656980-5c09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:b0:0c:93:f4:0f:86:2a:7b:54:43:07:f2:c7: 7a:25:67:58:34:1f:70:9e:65:09:b8:12:98:06:5c: da:da:f7:a5:b0:24:55:3d:e7:52:14:e8:ec:df:09: 69:64:e3:44:1b:df:ca:1f:87:10:03:71:0a:9e:8b: 99:78:dc:25:b8:02:0e:db:e3:5f:f4:51:00:e0:a8: 8c:22:07:4d:fb:36:3a:b5:17:c9:b3:ac:53:59:f7: a9:f6:a3:eb:73:ce:d6:fa:f2:a9:78:2b:99:c3:5b: aa:82:6a:b7:33:6e:24:b6:88:ab:4a:82:1c:cd:9f: e8:9c:53:47:87:26:0d:a5:5b:a9:87:71:a4:cc:2b: de:f9:86:f7:d4:b7:01:af:f8:a6:29:2f:d1:29:43: a2:43:f0:fb:01:95:6a:f0:1e:0d:d6:4b:01:27:3b: 93:ae:4d:ad:c3:63:c2:88:56:12:d3:31:8c:95:13: 4a:0f:97:71:f6:57:e0:cf:3b:63:cc:ae:3b:59:ee: 53:cf:e8:82:29:3d:9c:4c:8c:b7:3b:66:ea:1a:4d: 50:11:79:ca:b8:1f:4b:d1:d2:d2:e6:0e:c0:6b:4a: 39:91:b6:58:55:97:f2:8c:dd:23:db:b0:1e:6f:5a: 8d:70:4d:c9:b4:fe:c2:19:39:0b:03:0d:1c:b3:fe: 8b:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:CF:90:7C:02:A5:F5:38:D9:9B:B5:20:46:EF:A8:86:7A:5A:75:7B X509v3 Authority Key Identifier: keyid:F7:4F:73:5F:DC:5A:5B:93:36:F3:24:C3:2C:BA:55:8E:BB:D2:8D:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:3c:45:c1:00:fe:3a:59:e9:2e:bc:90:ff:d0:3a:a5:ea:65: 01:92:9c:dc:bd:59:cd:65:1c:b0:5c:9a:3a:14:f3:0c:d2:5d: d0:da:57:f3:af:58:43:08:76:08:b4:78:82:35:63:47:f8:6c: f6:4d:b7:fe:82:3a:c0:b6:65:28:89:1a:b5:84:80:09:cb:80: 0e:07:d4:b7:e2:6e:1a:e4:31:a6:7b:a7:91:0e:fd:41:46:19: f6:6d:d7:48:3e:5c:d8:41:f3:82:25:4f:d5:2c:8b:46:41:89: fc:e0:6d:15:5a:0b:3d:9b:a9:3f:f2:a1:a2:f7:06:6f:49:d0: e8:34:83:51:0b:f2:78:62:cc:a1:9d:92:e0:72:c5:22:35:2c: 5a:8e:59:9e:ee:5d:23:2f:05:bd:b3:a5:35:3c:6b:4c:aa:e0: e3:b3:6c:39:84:0e:28:90:56:63:80:8a:33:6b:4b:63:5f:f4: e3:b9:a6:df:01:db:97:22:c5:8c:a6:17:da:c9:68:f3:59:59: 11:4e:5b:38:4d:76:38:2c:06:0c:91:67:e2:7a:1c:38:37:ee: a1:a0:ae:30:92:55:fb:8c:85:ff:de:32:a5:50:37:42:39:e8: f0:3f:f5:b4:d9:54:92:95:22:b0:53:a4:49:59:02:42:90:36: f4:d8:9f:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyM0MxMTAvBgNVBAUTKEY3NEY3MzVGREM1QTVCOTMzNkYzMjRDMzJDQkE1NThF QkJEMjhEOTcwHhcNMjUwNzAyMTcxNjQ4WhcNMjUwNzA5MTcxNjQ4WjAYMRYwFAYD VQQDEw02ODY1Njk4MC01YzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxLAMk/QPhip7VEMH8sd6JWdYNB9wnmUJuBKYBlza2velsCRVPedSFOjs3wlp ZONEG9/KH4cQA3EKnouZeNwluAIO2+Nf9FEA4KiMIgdN+zY6tRfJs6xTWfep9qPr c87W+vKpeCuZw1uqgmq3M24ktoirSoIczZ/onFNHhyYNpVuph3GkzCve+Yb31LcB r/imKS/RKUOiQ/D7AZVq8B4N1ksBJzuTrk2tw2PCiFYS0zGMlRNKD5dx9lfgzztj zK47We5Tz+iCKT2cTIy3O2bqGk1QEXnKuB9L0dLS5g7Aa0o5kbZYVZfyjN0j27Ae b1qNcE3JtP7CGTkLAw0cs/6LdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLPkHwC pfU42Zu1IEbvqIZ6WnV7MB8GA1UdIwQYMBaAFPdPc1/cWluTNvMkwyy6VY670o2X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTIzQy82OEY1M0YzMkNC M0UxMUU4ODgyQ0RBM0FDNEY5QUUwMi85MDl6WDl4YVc1TTI4eVRETExwVmpydlNq WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkwOXpYOXhhVzVNMjh5VERMTHBWanJ2U2paYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTIzQy82OEY1M0YzMkNCM0UxMUU4ODgyQ0RBM0FDNEY5QUUwMi85MDl6WDl4YVc1 TTI4eVRETExwVmpydlNqWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWPEXBAP46WekuvJD/0Dql6mUBkpzcvVnNZRywXJo6FPMM0l3Q2lfz r1hDCHYItHiCNWNH+Gz2Tbf+gjrAtmUoiRq1hIAJy4AOB9S34m4a5DGme6eRDv1B Rhn2bddIPlzYQfOCJU/VLItGQYn84G0VWgs9m6k/8qGi9wZvSdDoNINRC/J4Ysyh nZLgcsUiNSxajlme7l0jLwW9s6U1PGtMquDjs2w5hA4okFZjgIoza0tjX/Tjuabf AduXIsWMphfayWjzWVkRTls4TXY4LAYMkWfiehw4N+6hoK4wklX7jIX/3jKlUDdC OejwP/W02VSSlSKwU6RJWQJCkDb02J9a -----END CERTIFICATE-----Generated at Thu Jul 3 07:08:49 2025 by rpki-client