$ rpki-client -vvf rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft File: 5ufguvNPIMPZye8md2gF84JGO4Y.mft (raw, json) Hash identifier: /ihgL4to9A/iEcUc8f9MiB4rET2TnLGLyVQKvPUvUEs= Subject key identifier: B8:1E:CE:78:AD:F1:16:84:74:25:96:AE:20:0E:F0:F1:AC:68:57:90 Authority key identifier: E6:E7:E0:BA:F3:4F:20:C3:D9:C9:EF:26:77:68:05:F3:82:46:3B:86 Certificate issuer: /CN=A9160BD2/serialNumber=E6E7E0BAF34F20C3D9C9EF26776805F382463B86 Certificate serial: 0681 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft Manifest number: 067C Signing time: Wed 02 Jul 2025 22:36:57 +0000 Manifest this update: Wed 02 Jul 2025 22:36:57 +0000 Manifest next update: Wed 09 Jul 2025 22:36:57 +0000 Files and hashes: 1: 5ufguvNPIMPZye8md2gF84JGO4Y.crl (hash: 9hCDI6CYc/ACmpauPtGfclCV95nEkASxxDRsFJnwcFY=) 2: 159A3C967D7211EBA0A7FF60C4F9AE02.roa (hash: Zxo0mKrJYkISVsqHRZIlLeBZhk5GaXEPMnvmTBTNLew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.crl rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:36:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1665 (0x681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160BD2, serialNumber=E6E7E0BAF34F20C3D9C9EF26776805F382463B86 Validity Not Before: Jul 2 22:36:57 2025 GMT Not After : Jul 9 22:36:57 2025 GMT Subject: CN=6865b489-f2aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1f:1e:fc:b4:f4:f1:98:44:12:c2:4e:db:6b: 74:b8:4c:61:be:f7:1d:19:3d:e6:6f:81:92:5b:d2: 47:58:29:de:64:1e:c2:cc:69:1e:c9:1c:3f:b7:ce: 99:9a:ae:4d:72:4f:aa:54:f9:c4:89:4b:3c:7c:95: b8:89:24:fc:c4:4f:0a:cd:21:79:7a:8e:5c:3a:df: da:78:00:54:ec:4d:eb:73:74:7e:b4:f5:34:4a:6e: 86:2a:b4:bb:d5:8b:c5:e7:30:c2:76:ab:8c:e3:1e: 1c:23:eb:ed:35:54:9d:3b:d8:f7:c6:52:2c:12:7d: 79:8a:ab:d2:71:78:90:a4:16:61:ac:b0:4d:75:47: fc:fc:ad:33:8b:8b:f4:fa:e7:ca:36:c3:03:d2:4e: c8:e6:1a:6c:69:56:69:c2:fd:2d:ad:9a:56:4d:03: ee:fb:7d:e2:35:13:2f:91:a0:d4:fb:b6:c4:bf:d6: 28:77:77:c9:c0:7a:91:f3:ec:4f:3f:94:be:52:3b: 55:c7:9c:5b:3d:9a:31:6e:2c:e3:96:3c:b5:6d:a6: 65:8e:0f:a8:d0:c5:70:04:74:62:d2:6d:d4:88:6a: 2d:de:ba:85:b2:1b:75:10:7e:53:4f:42:8a:fe:40: d7:02:61:10:3c:b6:23:03:58:3d:b6:2c:4c:cd:f8: 00:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:1E:CE:78:AD:F1:16:84:74:25:96:AE:20:0E:F0:F1:AC:68:57:90 X509v3 Authority Key Identifier: keyid:E6:E7:E0:BA:F3:4F:20:C3:D9:C9:EF:26:77:68:05:F3:82:46:3B:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:45:15:c6:ea:55:f5:f0:3a:9a:ac:d1:a0:8c:29:aa:41:82: 42:78:c0:2c:54:67:54:cb:2e:d7:44:52:ad:c1:f1:eb:b6:12: 4c:51:2a:20:6f:c3:09:e4:10:77:23:52:3a:27:b4:0f:e3:72: 63:ab:2d:1c:8a:83:61:e3:18:24:e2:3d:c8:65:3c:79:13:aa: e3:97:d1:53:5c:02:85:30:18:50:b1:55:bd:96:ff:b5:99:db: cd:5f:f4:ba:df:af:80:87:64:d2:9e:27:3f:0e:94:dc:f0:7c: 57:df:38:06:5e:3e:4d:a6:4f:3e:71:27:97:ad:29:aa:f6:f8: 55:aa:45:11:e5:87:8f:51:c8:cf:92:f2:74:0c:f8:3c:24:6c: 0b:8f:66:0e:85:59:36:1e:86:1c:d4:a3:90:09:6b:40:02:2d: 99:1e:5a:9c:9e:6b:a4:a3:04:9a:44:d9:ab:f0:65:57:ea:e0: c5:82:54:91:dc:b8:06:c5:8b:be:69:5c:2b:83:26:4f:e0:36: a8:98:59:7a:1d:13:65:16:f7:51:0c:48:14:cf:d9:76:47:5d: 76:95:c9:a1:c9:03:86:43:c1:64:15:b7:6c:0b:88:7a:99:00: 38:1f:a5:af:1a:cf:1a:22:b7:50:cf:18:63:dc:bc:e8:81:14: fd:44:43:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBCRDIxMTAvBgNVBAUTKEU2RTdFMEJBRjM0RjIwQzNEOUM5RUYyNjc3NjgwNUYz ODI0NjNCODYwHhcNMjUwNzAyMjIzNjU3WhcNMjUwNzA5MjIzNjU3WjAYMRYwFAYD VQQDEw02ODY1YjQ4OS1mMmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnB8e/LT08ZhEEsJO22t0uExhvvcdGT3mb4GSW9JHWCneZB7CzGkeyRw/t86Z mq5Nck+qVPnEiUs8fJW4iST8xE8KzSF5eo5cOt/aeABU7E3rc3R+tPU0Sm6GKrS7 1YvF5zDCdquM4x4cI+vtNVSdO9j3xlIsEn15iqvScXiQpBZhrLBNdUf8/K0zi4v0 +ufKNsMD0k7I5hpsaVZpwv0trZpWTQPu+33iNRMvkaDU+7bEv9Yod3fJwHqR8+xP P5S+UjtVx5xbPZoxbizjljy1baZljg+o0MVwBHRi0m3UiGot3rqFsht1EH5TT0KK /kDXAmEQPLYjA1g9tixMzfgAowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgeznit 8RaEdCWWriAO8PGsaFeQMB8GA1UdIwQYMBaAFObn4LrzTyDD2cnvJndoBfOCRjuG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEJEMi9FN0U5MDQwMDdE NkYxMUVCODYxMTExNDdDNEY5QUUwMi81dWZndXZOUElNUFp5ZThtZDJnRjg0SkdP NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV1Zmd1dk5QSU1QWnllOG1kMmdGODRKR080WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEJEMi9FN0U5MDQwMDdENkYxMUVCODYxMTExNDdDNEY5QUUwMi81dWZndXZOUElN UFp5ZThtZDJnRjg0SkdPNFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLRRXG6lX18DqarNGgjCmqQYJCeMAsVGdUyy7XRFKtwfHrthJMUSog b8MJ5BB3I1I6J7QP43Jjqy0cioNh4xgk4j3IZTx5E6rjl9FTXAKFMBhQsVW9lv+1 mdvNX/S636+Ah2TSnic/DpTc8HxX3zgGXj5Npk8+cSeXrSmq9vhVqkUR5YePUcjP kvJ0DPg8JGwLj2YOhVk2HoYc1KOQCWtAAi2ZHlqcnmukowSaRNmr8GVX6uDFglSR 3LgGxYu+aVwrgyZP4DaomFl6HRNlFvdRDEgUz9l2R112lcmhyQOGQ8FkFbdsC4h6 mQA4H6WvGs8aIrdQzxhj3LzogRT9REOW -----END CERTIFICATE-----Generated at Fri Jul 4 18:16:28 2025 by rpki-client