$ rpki-client -vvf rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft File: 7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft (raw, json) Hash identifier: V02P+QWBdvdLtE8c9UnXsvUcR0aLXx7jMM57poxmFL0= Subject key identifier: AA:00:64:2A:1A:EC:5F:15:F5:E5:3C:9B:EE:7E:90:13:D2:B9:03:25 Authority key identifier: EE:4B:05:61:84:37:F1:94:8D:92:99:F8:A4:F9:29:C1:87:D9:7F:33 Certificate issuer: /CN=A9164B0A/serialNumber=EE4B05618437F1948D9299F8A4F929C187D97F33 Certificate serial: DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft Manifest number: D8 Signing time: Thu 03 Jul 2025 05:46:17 +0000 Manifest this update: Thu 03 Jul 2025 05:46:16 +0000 Manifest next update: Thu 10 Jul 2025 05:46:16 +0000 Files and hashes: 1: 7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl (hash: uPDMQjsa6+eFLwXmsHagf9WA3CU1XeHXJk0l83ZW2iI=) 2: 0913CC14A59911EFBA373D1BC4F9AE02.roa (hash: zLl/IZu0xffl+i5k4Uqz4PGyZN+zw+IO5hcnnTBBL7Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164B0A, serialNumber=EE4B05618437F1948D9299F8A4F929C187D97F33 Validity Not Before: Jul 3 05:46:16 2025 GMT Not After : Jul 10 05:46:16 2025 GMT Subject: CN=68661928-d2ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:fa:01:7a:14:75:48:2f:6b:5f:e6:1d:cc:75: 3a:1c:55:ed:f3:db:f6:ab:46:ea:67:7b:42:f3:f4: 20:b7:9c:2c:e0:ee:d2:09:6f:4c:db:66:67:39:b7: c6:aa:5a:2d:42:95:64:61:c8:1f:10:14:96:07:61: 2f:ba:96:59:d2:c6:16:fc:9f:27:d9:d7:43:ab:ea: 8f:52:89:54:93:56:8e:6b:15:f9:6a:fa:2e:ed:0f: 8e:7a:76:d4:e8:a4:12:0e:cb:ec:53:6b:a5:36:4f: e2:e5:52:90:25:c2:13:5e:5d:66:62:2b:48:39:93: 03:f0:3e:1b:89:03:b5:64:d9:8e:f4:6d:e0:55:e2: 82:7d:3c:6c:0b:96:ce:b0:73:81:fb:30:bd:4c:af: f7:a9:4d:c1:6d:6a:21:6e:15:72:68:53:1b:bf:9a: 84:30:c0:74:f8:e4:3a:ef:80:71:e9:dc:b0:0a:ad: 6d:63:49:67:aa:06:87:e2:90:8f:f9:fa:82:59:18: 31:61:17:23:7d:10:e5:4e:58:44:88:9f:67:ef:3d: 83:c3:04:be:af:17:0e:38:42:d3:30:ef:e1:f7:3f: 35:5d:e1:3f:3f:5d:8d:38:ce:31:6f:f5:5e:13:66: 27:d6:34:b2:18:49:7d:64:89:62:a7:a1:f7:6a:b8: f9:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:00:64:2A:1A:EC:5F:15:F5:E5:3C:9B:EE:7E:90:13:D2:B9:03:25 X509v3 Authority Key Identifier: keyid:EE:4B:05:61:84:37:F1:94:8D:92:99:F8:A4:F9:29:C1:87:D9:7F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:ba:9e:e4:d3:b9:a4:b6:f6:a0:bd:1f:35:7f:33:9e:8a:58: e6:30:7c:ee:00:e3:c3:05:8a:96:e3:88:bb:ab:dc:cd:e7:a5: 54:7b:f5:f5:58:c3:d2:78:fa:23:c9:2c:04:a5:1a:cc:4d:25: 23:39:49:45:bc:03:cc:a8:d4:5f:eb:3a:63:a6:0b:b9:76:59: 18:4f:1e:a2:da:07:c6:74:a2:1e:31:33:73:09:6d:39:6e:ab: 96:4f:a0:e3:a9:d2:74:55:c9:5e:31:99:54:c1:ff:28:3c:58: a2:ed:ff:c7:bb:d3:e0:81:dc:0d:e9:2c:ab:6c:09:3e:1a:84: 1f:ab:91:39:69:51:8c:85:4e:6f:e9:ec:01:f8:77:9d:f3:c8: f2:b9:84:3e:ea:20:1b:20:80:e4:de:ec:73:3e:f9:ff:9d:c0: 89:6b:a9:46:9f:f6:25:d6:2b:76:c6:35:a4:0b:48:15:4e:14: 49:9f:32:62:3a:27:c4:58:0d:05:90:a8:9b:48:da:01:b2:a7: a4:18:93:68:49:a3:35:66:af:a5:65:e1:1f:6a:06:a4:da:47: 27:8e:5d:5a:12:3f:50:a7:ca:87:9a:de:ea:ca:3a:3d:64:21: f3:8e:fd:a3:57:21:de:6b:50:9c:e5:c1:c1:bd:5a:3c:2d:1d: bd:88:6f:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRCMEExMTAvBgNVBAUTKEVFNEIwNTYxODQzN0YxOTQ4RDkyOTlGOEE0RjkyOUMx ODdEOTdGMzMwHhcNMjUwNzAzMDU0NjE2WhcNMjUwNzEwMDU0NjE2WjAYMRYwFAYD VQQDEw02ODY2MTkyOC1kMmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/oBehR1SC9rX+YdzHU6HFXt89v2q0bqZ3tC8/Qgt5ws4O7SCW9M22ZnObfG qlotQpVkYcgfEBSWB2EvupZZ0sYW/J8n2ddDq+qPUolUk1aOaxX5avou7Q+OenbU 6KQSDsvsU2ulNk/i5VKQJcITXl1mYitIOZMD8D4biQO1ZNmO9G3gVeKCfTxsC5bO sHOB+zC9TK/3qU3BbWohbhVyaFMbv5qEMMB0+OQ674Bx6dywCq1tY0lnqgaH4pCP +fqCWRgxYRcjfRDlTlhEiJ9n7z2DwwS+rxcOOELTMO/h9z81XeE/P12NOM4xb/Ve E2Yn1jSyGEl9ZIlip6H3arj5HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKoAZCoa 7F8V9eU8m+5+kBPSuQMlMB8GA1UdIwQYMBaAFO5LBWGEN/GUjZKZ+KT5KcGH2X8z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEIwQS80Q0YwRjcwODEy OTIxMUVGQUIxMDY1NjRDNEY5QUUwMi83a3NGWVlRMzhaU05rcG40cFBrcHdZZlpm ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdrc0ZZWVEzOFpTTmtwbjRwUGtwd1lmWmZ6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEIwQS80Q0YwRjcwODEyOTIxMUVGQUIxMDY1NjRDNEY5QUUwMi83a3NGWVlRMzha U05rcG40cFBrcHdZZlpmek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2up7k07mktvagvR81fzOeiljmMHzuAOPDBYqW44i7q9zN56VUe/X1 WMPSePojySwEpRrMTSUjOUlFvAPMqNRf6zpjpgu5dlkYTx6i2gfGdKIeMTNzCW05 bquWT6DjqdJ0VcleMZlUwf8oPFii7f/Hu9PggdwN6SyrbAk+GoQfq5E5aVGMhU5v 6ewB+Hed88jyuYQ+6iAbIIDk3uxzPvn/ncCJa6lGn/Yl1it2xjWkC0gVThRJnzJi OifEWA0FkKibSNoBsqekGJNoSaM1Zq+lZeEfagak2kcnjl1aEj9Qp8qHmt7qyjo9 ZCHzjv2jVyHea1Cc5cHBvVo8LR29iG9r -----END CERTIFICATE-----Generated at Thu Jul 3 09:04:50 2025 by rpki-client