$ rpki-client -vvf rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft File: e9PkPRNOUjXpdgPOi6lIa2KpseY.mft (raw, json) Hash identifier: KtDkUTvQxlcSh1PyluJs6rpdkKi5+fWh+J4HBcGZGRs= Subject key identifier: F7:2D:82:7B:BC:0A:83:5F:06:84:4D:C1:F6:6A:20:5F:AF:43:E1:11 Authority key identifier: 7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6 Certificate issuer: /CN=A915C631/serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6 Certificate serial: 033C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft Manifest number: 0328 Signing time: Tue 01 Jul 2025 01:51:38 +0000 Manifest this update: Tue 01 Jul 2025 01:51:38 +0000 Manifest next update: Tue 08 Jul 2025 01:51:38 +0000 Files and hashes: 1: e9PkPRNOUjXpdgPOi6lIa2KpseY.crl (hash: vw5We0z/yR9GhkSJaZ7mJHzkBGi+HVeJhN3AE9/L9AU=) 2: 63F05DE02F1D11EDA3E29B09C4F9AE02.roa (hash: 7ge7oc+Q12aZ6z9y4wrsw9dW7SCxd3kpwR7gaglsC78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.crl rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:51:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 828 (0x33c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C631, serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6 Validity Not Before: Jul 1 01:51:38 2025 GMT Not After : Jul 8 01:51:38 2025 GMT Subject: CN=68633f2a-b684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:62:d1:52:33:39:13:2e:70:62:ce:23:0d:35: 1c:45:d9:3c:c5:a0:86:28:8f:6a:8e:ae:d9:9a:fe: 90:01:97:88:f9:be:41:06:ef:14:cf:8b:f1:70:fe: bd:1f:83:37:d3:f3:1c:b8:4a:65:5f:89:61:55:ca: 92:71:4c:5d:55:fc:f9:ef:cc:3c:7f:d2:05:90:2c: 0b:36:2a:9b:9a:9f:54:81:c1:c8:01:9a:3f:f4:53: 23:da:e5:80:f2:7a:44:3a:dc:80:a8:f7:c3:96:75: 2f:3d:8a:cc:17:4b:19:34:fa:f0:92:51:f5:9e:3d: 1b:22:d9:64:39:dd:7e:91:0c:be:f7:6c:87:0b:89: 90:41:38:4d:84:a3:58:15:29:f4:6b:09:04:99:19: e0:24:4e:5f:f0:5b:35:8a:86:22:b8:b0:f0:f5:66: fb:75:a7:7a:6c:3d:90:54:49:8e:39:b5:3b:12:fc: 0e:f1:03:bb:6a:43:53:e2:f9:b9:1d:50:80:00:e0: 49:62:58:e6:00:2d:5e:d7:47:76:14:fd:08:e0:c1: 4b:2c:5e:58:5d:f1:5f:81:81:55:aa:f3:6c:75:81: b5:46:31:14:06:b7:99:aa:b6:77:c2:97:b4:cd:01: 24:5a:8d:1d:a3:ec:d6:19:e0:a2:a0:cc:05:bb:69: 74:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:2D:82:7B:BC:0A:83:5F:06:84:4D:C1:F6:6A:20:5F:AF:43:E1:11 X509v3 Authority Key Identifier: keyid:7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:33:44:82:8a:cc:40:8c:a6:76:02:30:0b:ec:db:e7:73:cf: e4:a8:ae:fb:b9:cb:16:29:ad:d0:77:9a:76:27:a8:92:7e:dd: 78:d0:38:53:d3:c4:f2:1a:81:9f:38:ec:ab:9a:80:5b:f7:d3: 5b:5e:eb:ed:87:b5:aa:e5:d0:cc:3e:24:65:4d:8c:6c:e6:6d: c5:3b:b9:60:76:69:5f:d4:6d:e9:98:b2:2f:b6:06:95:18:00: 26:95:f1:22:6d:8b:4f:02:41:a1:8f:ae:91:bd:5a:5a:cd:a0: 75:f5:af:9a:c8:16:02:84:bb:b1:fd:3e:e3:cb:e8:7a:ff:f9: 8c:bf:79:5f:f0:5a:21:ed:a5:8f:a7:87:af:1f:93:90:5c:b9: 9a:25:60:ef:a6:12:b0:df:30:c5:ff:33:49:b9:7d:96:5f:cf: da:8f:23:a0:51:53:8c:83:b3:33:03:a8:7b:33:9f:4b:a3:19: 0e:2e:7e:de:40:8e:2b:df:d3:43:30:26:1e:93:08:d4:c0:70: f8:84:0e:b8:00:84:d0:2d:20:65:a9:60:02:0b:47:8d:fd:e7: d2:cc:9c:e5:81:92:b8:d9:8d:da:68:10:c2:98:f2:55:e7:7d: f9:82:df:82:f5:75:ad:e3:9b:eb:ec:43:75:01:ae:e4:85:d5: 4a:b7:49:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MzExMTAvBgNVBAUTKDdCRDNFNDNEMTM0RTUyMzVFOTc2MDNDRThCQTk0ODZC NjJBOUIxRTYwHhcNMjUwNzAxMDE1MTM4WhcNMjUwNzA4MDE1MTM4WjAYMRYwFAYD VQQDEw02ODYzM2YyYS1iNjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomLRUjM5Ey5wYs4jDTUcRdk8xaCGKI9qjq7Zmv6QAZeI+b5BBu8Uz4vxcP69 H4M30/McuEplX4lhVcqScUxdVfz578w8f9IFkCwLNiqbmp9UgcHIAZo/9FMj2uWA 8npEOtyAqPfDlnUvPYrMF0sZNPrwklH1nj0bItlkOd1+kQy+92yHC4mQQThNhKNY FSn0awkEmRngJE5f8Fs1ioYiuLDw9Wb7dad6bD2QVEmOObU7EvwO8QO7akNT4vm5 HVCAAOBJYljmAC1e10d2FP0I4MFLLF5YXfFfgYFVqvNsdYG1RjEUBreZqrZ3wpe0 zQEkWo0do+zWGeCioMwFu2l0vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPctgnu8 CoNfBoRNwfZqIF+vQ+ERMB8GA1UdIwQYMBaAFHvT5D0TTlI16XYDzoupSGtiqbHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYzMS8zOUU0RDdBOERD NzgxMUVDQTRFMzA2MTdDNEY5QUUwMi9lOVBrUFJOT1VqWHBkZ1BPaTZsSWEyS3Bz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2U5UGtQUk5PVWpYcGRnUE9pNmxJYTJLcHNlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzYzMS8zOUU0RDdBOERDNzgxMUVDQTRFMzA2MTdDNEY5QUUwMi9lOVBrUFJOT1Vq WHBkZ1BPaTZsSWEyS3BzZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrM0SCisxAjKZ2AjAL7Nvnc8/kqK77ucsWKa3Qd5p2J6iSft140DhT 08TyGoGfOOyrmoBb99NbXuvth7Wq5dDMPiRlTYxs5m3FO7lgdmlf1G3pmLIvtgaV GAAmlfEibYtPAkGhj66RvVpazaB19a+ayBYChLux/T7jy+h6//mMv3lf8Foh7aWP p4evH5OQXLmaJWDvphKw3zDF/zNJuX2WX8/ajyOgUVOMg7MzA6h7M59LoxkOLn7e QI4r39NDMCYekwjUwHD4hA64AITQLSBlqWACC0eN/efSzJzlgZK42Y3aaBDCmPJV 5335gt+C9XWt45vr7EN1Aa7khdVKt0lB -----END CERTIFICATE-----Generated at Wed Jul 2 15:59:57 2025 by rpki-client