$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft File: 71OR8qIt1l9IQxoyJt3MZbdllqk.mft (raw, json) Hash identifier: ozspxoLxB+kDwruiu6v1gc9SSWiCS9PxSlvOjiivFc8= Subject key identifier: E1:5A:84:2E:A1:A8:F5:80:0E:93:86:6B:62:C2:8B:C8:3E:1B:B0:B2 Authority key identifier: EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 Certificate issuer: /CN=A9157DA9/serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft Manifest number: A8 Signing time: Thu 03 Jul 2025 06:18:13 +0000 Manifest this update: Thu 03 Jul 2025 06:18:13 +0000 Manifest next update: Thu 10 Jul 2025 06:18:13 +0000 Files and hashes: 1: 71OR8qIt1l9IQxoyJt3MZbdllqk.crl (hash: jxr69AHRLpat+NKf7sR+UJwixWAA+tWrI+vNTvAL86U=) 2: 897F96FC5A1811EFAF24E138C4F9AE02.roa (hash: V/66FKVQueBWCxe2q60voG68SskFvIkojTU44XWkp4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA9, serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Validity Not Before: Jul 3 06:18:13 2025 GMT Not After : Jul 10 06:18:13 2025 GMT Subject: CN=686620a5-24af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:89:49:73:a9:2e:c2:38:49:d2:cf:22:a9:22: 2e:48:b0:ef:75:c6:ca:b3:68:70:14:8e:e0:b4:e6: 97:18:79:90:a8:40:fd:16:64:ae:9f:50:7d:02:79: 86:81:07:18:24:8d:74:d0:c7:d7:4f:7c:8d:cf:bc: 26:74:cd:eb:f2:82:00:ec:57:07:62:da:25:e3:0e: da:65:f6:0d:d2:69:db:cc:de:f1:5c:67:f9:d8:ea: 19:32:80:50:84:01:44:ff:cb:a2:84:b2:79:ed:12: 27:d3:9f:10:51:ca:50:4e:fb:4c:31:6d:8f:7a:8a: 23:78:eb:46:70:ef:7e:62:3f:c7:ca:73:4e:19:97: 0f:51:e2:89:86:b9:3b:8b:f3:20:90:e7:be:0a:82: 4d:5c:ec:af:9a:2d:e0:34:db:80:ec:99:20:1a:cc: 5b:55:d8:7c:10:9a:3c:03:10:11:40:1c:bb:c4:18: 27:2f:05:b7:c0:8a:04:e9:fe:ee:5b:82:ae:29:ff: cc:76:3e:81:b3:8c:08:10:3a:ad:bd:dc:c0:ca:ef: 39:8b:10:f6:ea:d2:2c:81:13:fb:c1:dc:65:3c:d1: fe:ff:f0:d8:cb:89:3e:68:05:e9:cb:cc:8c:e8:30: a4:3d:c6:58:2e:12:6b:b5:ab:81:b8:cb:d0:85:a8: b9:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:5A:84:2E:A1:A8:F5:80:0E:93:86:6B:62:C2:8B:C8:3E:1B:B0:B2 X509v3 Authority Key Identifier: keyid:EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:14:28:2a:3f:d0:bb:2e:ca:0f:5a:55:05:61:e6:03:88:9e: d8:68:9f:79:2b:a1:d9:c0:b7:92:24:3f:71:83:e2:3b:f5:d3: 00:61:23:2b:3c:77:ed:61:0c:0d:7c:c4:d4:27:94:07:a8:d1: 57:8d:89:60:8a:10:ea:fa:f3:5f:72:0a:80:0a:37:13:d3:8c: 05:d6:9b:4c:44:82:1f:3d:e4:90:f8:3e:46:f0:9f:48:b0:97: 70:10:ce:5a:2a:05:00:79:77:5d:64:ff:c3:ac:73:53:dd:7f: 00:ad:dd:90:a0:f8:50:ab:37:13:e3:00:db:f3:5b:81:b7:67: 49:b2:a2:29:7b:3c:6c:ed:b2:ac:09:83:c2:5e:27:f9:d9:bd: 15:2c:e4:ba:70:e8:d2:8c:fb:7f:fb:f3:ca:40:b8:81:01:33: e1:22:a3:29:46:c0:70:a6:36:c4:bf:26:55:b5:51:bc:65:39: fa:f6:c0:b3:cf:9b:ce:c9:97:e6:7a:f3:29:ae:66:23:d6:93: cc:a1:e8:f8:aa:c9:db:a7:0a:64:12:87:2d:6b:0e:a5:ac:f0: e2:d8:7a:d2:cd:d5:ae:5d:c9:69:e2:19:db:fe:5c:e5:66:d4: 7f:88:54:dd:cc:26:16:27:54:78:52:7f:8a:5c:64:04:cc:89: 79:11:59:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTkxMTAvBgNVBAUTKEVGNTM5MUYyQTIyREQ2NUY0ODQzMUEzMjI2RERDQzY1 Qjc2NTk2QTkwHhcNMjUwNzAzMDYxODEzWhcNMjUwNzEwMDYxODEzWjAYMRYwFAYD VQQDEw02ODY2MjBhNS0yNGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIlJc6kuwjhJ0s8iqSIuSLDvdcbKs2hwFI7gtOaXGHmQqED9FmSun1B9AnmG gQcYJI100MfXT3yNz7wmdM3r8oIA7FcHYtol4w7aZfYN0mnbzN7xXGf52OoZMoBQ hAFE/8uihLJ57RIn058QUcpQTvtMMW2PeoojeOtGcO9+Yj/HynNOGZcPUeKJhrk7 i/MgkOe+CoJNXOyvmi3gNNuA7JkgGsxbVdh8EJo8AxARQBy7xBgnLwW3wIoE6f7u W4KuKf/Mdj6Bs4wIEDqtvdzAyu85ixD26tIsgRP7wdxlPNH+//DYy4k+aAXpy8yM 6DCkPcZYLhJrtauBuMvQhai5VwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFahC6h qPWADpOGa2LCi8g+G7CyMB8GA1UdIwQYMBaAFO9TkfKiLdZfSEMaMibdzGW3ZZap MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBOS80MjNFMUFENDVB MTgxMUVGQkQ0NzczMzhDNEY5QUUwMi83MU9SOHFJdDFsOUlReG95SnQzTVpiZGxs cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcxT1I4cUl0MWw5SVF4b3lKdDNNWmJkbGxxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBOS80MjNFMUFENDVBMTgxMUVGQkQ0NzczMzhDNEY5QUUwMi83MU9SOHFJdDFs OUlReG95SnQzTVpiZGxscWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFFCgqP9C7LsoPWlUFYeYDiJ7YaJ95K6HZwLeSJD9xg+I79dMAYSMr PHftYQwNfMTUJ5QHqNFXjYlgihDq+vNfcgqACjcT04wF1ptMRIIfPeSQ+D5G8J9I sJdwEM5aKgUAeXddZP/DrHNT3X8Ard2QoPhQqzcT4wDb81uBt2dJsqIpezxs7bKs CYPCXif52b0VLOS6cOjSjPt/+/PKQLiBATPhIqMpRsBwpjbEvyZVtVG8ZTn69sCz z5vOyZfmevMprmYj1pPMoej4qsnbpwpkEoctaw6lrPDi2HrSzdWuXclp4hnb/lzl ZtR/iFTdzCYWJ1R4Un+KXGQEzIl5EVl2 -----END CERTIFICATE-----Generated at Thu Jul 3 18:51:16 2025 by rpki-client