$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: sl4LnnIJsUOO3masRhWDeFFhBYINXKzuioafFDNgSds= Subject key identifier: 38:C9:F1:4E:AA:03:9A:4D:A2:56:BD:4E:E6:95:63:4D:7B:0C:B9:C8 Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 08C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 0899 Signing time: Wed 02 Jul 2025 20:54:43 +0000 Manifest this update: Wed 02 Jul 2025 20:54:43 +0000 Manifest next update: Wed 09 Jul 2025 20:54:43 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: 8YAHtst/Yam59G9LWVBhm+Kjzh2EKhKTtll5wMVggfw=) 2: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: ulEoG77MrSiwSYhpxeW0HQs0UzURtgxGQwYkMWVPA0Q=) 3: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: fZLciG+K7KBAB8NViLLV71yANJqxZTohTScAC7z2iIU=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: K/SJXrHKSaQpDMVLZJrukFZmfGOIIuOIUDxauUWHXXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:54:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2243 (0x8c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Jul 2 20:54:43 2025 GMT Not After : Jul 9 20:54:43 2025 GMT Subject: CN=68659c93-3af8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:75:cc:7f:88:14:2b:e0:0d:e6:b7:66:26:b0: 48:f5:3d:ab:d9:c1:fd:e7:47:8f:36:44:d7:8b:f7: 89:95:c2:b7:06:a5:ac:30:bc:42:9b:28:ff:3b:fa: 6e:3f:8b:70:9c:8c:d2:c1:91:29:7e:bf:35:a4:a4: dc:95:33:df:b6:d1:0b:e6:cf:8a:89:e4:ee:51:f5: d9:b7:cd:1d:35:f3:ce:e6:92:f6:b4:c8:dc:2f:7a: 6c:18:3b:a7:58:8f:58:d9:c1:6d:a9:73:d9:99:47: 83:24:ed:a3:df:4e:07:0c:f9:a3:0f:75:34:9a:29: 77:f2:1f:df:c0:89:b2:b8:89:09:c3:15:ca:e2:c5: ae:53:2b:d5:78:b3:09:21:5f:71:20:cb:35:6b:fc: 4a:00:e1:6c:b3:84:87:cc:8c:4d:27:5a:5d:7a:18: 7a:a6:45:04:f5:98:2b:db:8e:63:5f:42:5e:ac:f1: 0b:b8:d3:76:00:35:b7:18:a7:35:00:6e:fa:a8:20: 69:7c:3d:6e:a0:44:03:c7:b2:f4:71:19:ed:0e:bb: 27:85:65:50:ab:15:6e:c7:68:78:f9:19:ba:ea:53: c9:7e:5b:aa:3c:f9:99:21:6b:c2:bc:4b:eb:62:38: 5c:69:97:f1:64:72:5e:3e:ae:dc:d8:02:af:a4:da: 3f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C9:F1:4E:AA:03:9A:4D:A2:56:BD:4E:E6:95:63:4D:7B:0C:B9:C8 X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:ac:93:c7:52:01:f0:b0:ab:2e:61:b8:a9:41:98:8e:d4:5c: c4:55:e1:be:f1:54:1e:ca:de:ff:dc:06:0e:c6:12:d5:a6:84: 18:c4:cf:1d:c8:ae:65:08:c1:23:29:42:bd:c3:ce:fe:4e:e9: 7a:8a:47:29:47:e9:cd:43:87:e4:24:35:6e:17:1e:f4:d9:04: 0c:1d:ae:fc:2b:31:6a:14:78:6b:df:13:6c:43:d0:ed:02:5c: b8:bb:2a:cb:bc:4d:dc:49:86:4f:f7:6d:14:6e:af:5c:16:41: 90:99:64:ab:ba:98:63:17:13:aa:a5:e9:89:7f:93:ec:9a:77: 09:b6:a7:84:ee:8b:13:ae:58:72:96:e3:79:69:d8:44:aa:0c: 43:77:21:ce:b2:11:d8:ef:5b:5d:91:01:04:a8:91:44:1b:aa: db:97:59:29:a6:1d:e0:0d:2f:6b:30:ca:23:b7:b3:24:f7:04: 89:0e:28:5d:a6:08:a8:2a:b8:26:d6:fb:c7:7d:13:e8:2d:c7: f4:29:85:ae:f0:ca:44:1c:fb:09:ec:4c:ee:fe:1f:0c:12:62: 0e:24:44:fe:7f:a7:d7:8f:b3:ae:8d:ae:88:20:69:38:d3:3b: 91:2e:4a:bf:2a:cb:ee:f8:bf:a6:01:c2:ac:99:6e:9c:f1:43: 10:7a:57:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjUwNzAyMjA1NDQzWhcNMjUwNzA5MjA1NDQzWjAYMRYwFAYD VQQDEw02ODY1OWM5My0zYWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XXMf4gUK+AN5rdmJrBI9T2r2cH950ePNkTXi/eJlcK3BqWsMLxCmyj/O/pu P4twnIzSwZEpfr81pKTclTPfttEL5s+KieTuUfXZt80dNfPO5pL2tMjcL3psGDun WI9Y2cFtqXPZmUeDJO2j304HDPmjD3U0mil38h/fwImyuIkJwxXK4sWuUyvVeLMJ IV9xIMs1a/xKAOFss4SHzIxNJ1pdehh6pkUE9Zgr245jX0JerPELuNN2ADW3GKc1 AG76qCBpfD1uoEQDx7L0cRntDrsnhWVQqxVux2h4+Rm66lPJfluqPPmZIWvCvEvr YjhcaZfxZHJePq7c2AKvpNo/9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjJ8U6q A5pNola9TuaVY017DLnIMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/rJPHUgHwsKsuYbipQZiO1FzEVeG+8VQeyt7/3AYOxhLVpoQYxM8d yK5lCMEjKUK9w87+Tul6ikcpR+nNQ4fkJDVuFx702QQMHa78KzFqFHhr3xNsQ9Dt Aly4uyrLvE3cSYZP920Ubq9cFkGQmWSruphjFxOqpemJf5PsmncJtqeE7osTrlhy luN5adhEqgxDdyHOshHY71tdkQEEqJFEG6rbl1kpph3gDS9rMMojt7Mk9wSJDihd pgioKrgm1vvHfRPoLcf0KYWu8MpEHPsJ7Ezu/h8MEmIOJET+f6fXj7Ouja6IIGk4 0zuRLkq/Ksvu+L+mAcKsmW6c8UMQeleZ -----END CERTIFICATE-----Generated at Thu Jul 3 12:15:34 2025 by rpki-client