$ rpki-client -vvf rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft File: AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft (raw, json) Hash identifier: V5Ca8EAHLdTJ1GHY/yV+f+cXND0CnAIITaBfpMpXYnM= Subject key identifier: C3:B1:11:A3:D0:FF:C5:EC:6F:8E:2A:23:AB:A4:F2:32:3A:5E:69:7F Authority key identifier: 00:8F:5D:06:F0:FE:FC:40:FD:83:0B:26:CD:76:60:A3:83:11:0C:91 Certificate issuer: /CN=A915E678/serialNumber=008F5D06F0FEFC40FD830B26CD7660A383110C91 Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft Manifest number: 013E Signing time: Thu 03 Jul 2025 04:33:47 +0000 Manifest this update: Thu 03 Jul 2025 04:33:46 +0000 Manifest next update: Thu 10 Jul 2025 04:33:46 +0000 Files and hashes: 1: AI9dBvD-_ED9gwsmzXZgo4MRDJE.crl (hash: vAMyJQi6kKjLb6xXFZCaxaP9zlYLAze0gS/6vwTqZNw=) 2: D39B04847C4B11EEB4EA3632C4F9AE02.roa (hash: VkMCaNU7sXjTR/CQAkH/z8BpEQbO8jbw+1o8r2q8dPA=) 3: 5694D344791B11EEA64C016BC4F9AE02.roa (hash: cg93R23INGR8fe5V8I1v0XqkWQVYbzGg1oKwaVZnx2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.crl rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E678, serialNumber=008F5D06F0FEFC40FD830B26CD7660A383110C91 Validity Not Before: Jul 3 04:33:46 2025 GMT Not After : Jul 10 04:33:46 2025 GMT Subject: CN=6866082a-84f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:fe:74:b5:15:58:04:d9:56:88:6e:f1:3c:29: a1:d1:ba:76:71:b4:13:bf:f4:29:a1:b1:0a:10:3c: 85:2a:f4:ba:1d:70:4a:7f:8b:72:f3:bb:64:b3:34: c0:b1:7b:09:21:30:89:cb:28:07:dd:8b:1e:8c:74: 0e:50:c4:5c:b9:4b:66:35:a9:f4:b2:4f:21:1e:59: 0b:04:b1:2e:67:5c:e4:36:9a:32:28:a0:fe:70:8e: 61:f0:54:2e:67:d6:a2:9f:63:00:a9:f1:cc:f9:87: d4:27:3e:2b:ec:a5:8c:9d:93:93:97:3a:68:85:30: 27:fb:49:7e:cd:8c:cd:fb:66:49:0a:9b:84:eb:54: 99:0d:45:21:9e:57:94:60:aa:46:db:9b:48:c6:01: 88:2f:b2:d2:40:ae:33:8f:6e:52:73:c9:dc:3f:4e: 8f:d7:7f:c8:a1:1c:7a:aa:96:3c:e4:4f:86:b3:1d: a6:53:77:7d:3f:c5:bf:5b:64:d8:a9:4e:9c:ea:fc: b3:92:68:72:59:9e:17:85:6d:c1:60:52:6e:cc:a8: 0d:59:68:47:dc:18:e1:f9:4d:1b:b7:b7:9e:6f:33: 9b:fa:15:e9:a4:4b:48:b2:43:f8:82:db:3e:93:62: 9e:95:05:67:83:06:42:37:54:aa:a8:07:88:98:70: 30:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:B1:11:A3:D0:FF:C5:EC:6F:8E:2A:23:AB:A4:F2:32:3A:5E:69:7F X509v3 Authority Key Identifier: keyid:00:8F:5D:06:F0:FE:FC:40:FD:83:0B:26:CD:76:60:A3:83:11:0C:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:04:95:7b:fb:5c:62:1d:47:35:cd:ce:c7:97:ab:99:cc:27: 33:16:58:56:8a:b5:f6:3e:9c:4f:44:a1:8a:98:a8:c7:b1:74: e5:d5:52:e2:d8:59:b7:9a:63:85:a6:44:3e:76:f8:21:d5:9f: 93:18:0c:56:56:c7:3d:b2:8f:8d:0a:c9:69:0a:73:2d:c9:31: dd:c8:8b:92:55:ed:b3:a6:09:35:6a:04:16:2b:0e:b8:99:88: 29:37:e3:08:f3:0f:09:63:00:ef:0b:28:94:8f:98:b7:c6:77: df:1c:d1:07:73:01:c7:2c:9d:46:f4:ee:a4:0a:33:c1:25:ce: 13:cc:b5:d7:3b:40:2d:3b:4b:60:ab:1e:fa:02:7a:76:42:36: 9a:fd:4d:0a:6b:85:1d:13:07:ac:79:d2:92:4a:b3:31:16:40: 28:0a:52:ae:ec:51:ec:38:0c:c0:93:5a:db:69:bd:c5:b1:dc: f6:49:58:c3:5d:22:7b:67:1c:25:54:6e:2c:04:14:8c:ef:05: 5c:8c:f5:d5:43:53:70:6b:2a:43:76:fb:84:16:82:a8:5d:02: 9a:14:e2:10:2b:22:e5:5e:0f:1a:7b:1b:1c:2d:2b:c5:8b:25: eb:d3:45:e9:fc:7a:aa:c3:81:4d:2f:0b:62:e3:57:7b:62:e4: 93:3d:41:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU2NzgxMTAvBgNVBAUTKDAwOEY1RDA2RjBGRUZDNDBGRDgzMEIyNkNENzY2MEEz ODMxMTBDOTEwHhcNMjUwNzAzMDQzMzQ2WhcNMjUwNzEwMDQzMzQ2WjAYMRYwFAYD VQQDEw02ODY2MDgyYS04NGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2f50tRVYBNlWiG7xPCmh0bp2cbQTv/QpobEKEDyFKvS6HXBKf4ty87tkszTA sXsJITCJyygH3YsejHQOUMRcuUtmNan0sk8hHlkLBLEuZ1zkNpoyKKD+cI5h8FQu Z9ain2MAqfHM+YfUJz4r7KWMnZOTlzpohTAn+0l+zYzN+2ZJCpuE61SZDUUhnleU YKpG25tIxgGIL7LSQK4zj25Sc8ncP06P13/IoRx6qpY85E+Gsx2mU3d9P8W/W2TY qU6c6vyzkmhyWZ4XhW3BYFJuzKgNWWhH3Bjh+U0bt7eebzOb+hXppEtIskP4gts+ k2KelQVngwZCN1SqqAeImHAwSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMOxEaPQ /8Xsb44qI6uk8jI6Xml/MB8GA1UdIwQYMBaAFACPXQbw/vxA/YMLJs12YKODEQyR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTY3OC83QUVFRDg2Mjc5 MUExMUVFQUNBMUFEMkJDNEY5QUUwMi9BSTlkQnZELV9FRDlnd3NtelhaZ280TVJE SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FJOWRCdkQtX0VEOWd3c216WFpnbzRNUkRKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTY3OC83QUVFRDg2Mjc5MUExMUVFQUNBMUFEMkJDNEY5QUUwMi9BSTlkQnZELV9F RDlnd3NtelhaZ280TVJESkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeBJV7+1xiHUc1zc7Hl6uZzCczFlhWirX2PpxPRKGKmKjHsXTl1VLi 2Fm3mmOFpkQ+dvgh1Z+TGAxWVsc9so+NCslpCnMtyTHdyIuSVe2zpgk1agQWKw64 mYgpN+MI8w8JYwDvCyiUj5i3xnffHNEHcwHHLJ1G9O6kCjPBJc4TzLXXO0AtO0tg qx76Anp2Qjaa/U0Ka4UdEwesedKSSrMxFkAoClKu7FHsOAzAk1rbab3Fsdz2SVjD XSJ7ZxwlVG4sBBSM7wVcjPXVQ1NwaypDdvuEFoKoXQKaFOIQKyLlXg8aexscLSvF iyXr00Xp/Hqqw4FNLwti41d7YuSTPUEX -----END CERTIFICATE-----Generated at Fri Jul 4 07:39:06 2025 by rpki-client