$ rpki-client -vvf rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft File: a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft (raw, json) Hash identifier: WiMGTv6CHuAvqNdjNx5w91OGaSJL7wOY2AVxsATV17w= Subject key identifier: 48:92:B1:93:05:5A:15:73:6E:95:95:2D:38:A6:39:B3:B7:0D:4B:78 Authority key identifier: 6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E Certificate issuer: /CN=A9165BD7/serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Certificate serial: 01B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft Manifest number: 01AE Signing time: Sat 05 Jul 2025 03:29:08 +0000 Manifest this update: Sat 05 Jul 2025 03:29:07 +0000 Manifest next update: Sat 12 Jul 2025 03:29:07 +0000 Files and hashes: 1: a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl (hash: J5gR9pSIfjACfl2dPCjdiavVicS1K6/bakAAuamm2ic=) 2: A92EC53AC95B11ED9ABE6935C4F9AE02.roa (hash: gnoiGXKkrmhYTwfXU41IB03BpkGU00B0FHz74SrCkdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165BD7, serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Validity Not Before: Jul 5 03:29:07 2025 GMT Not After : Jul 12 03:29:07 2025 GMT Subject: CN=68689c04-88ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:6a:5f:8c:8a:60:fd:a8:fe:c0:9b:fb:68:37: bd:cc:0c:11:48:d2:bd:d0:33:6c:e3:23:e1:1b:ea: 50:84:b0:2a:4e:c0:c7:fc:58:c9:fe:b1:45:34:07: a2:4a:0c:72:59:8c:c7:10:3f:76:c6:33:21:a6:3a: c4:ec:07:b1:86:07:21:26:f6:45:c6:fb:79:6e:55: 34:2e:1d:94:e9:2a:2c:53:ca:e7:24:f8:73:11:dc: 66:12:5c:44:88:3e:c0:d8:fe:f0:07:c6:b8:1c:b8: 71:44:fe:c4:e8:88:b7:5b:39:9b:76:17:e3:95:b9: 2b:55:60:5b:df:c2:dd:83:86:6a:63:b6:7a:68:66: a6:cb:55:42:de:fa:e5:f5:67:25:d8:7c:7b:46:49: 8e:3c:ff:c1:fd:83:df:43:36:9b:1c:ef:e5:75:b1: e8:17:95:6c:c2:66:df:2d:ac:37:12:23:ab:a5:83: a5:4d:6a:f0:0f:13:1d:35:a2:25:2c:90:fa:ea:2d: 15:c8:23:a5:d9:fd:3c:2e:06:4e:fd:c8:cc:4b:33: e6:63:d2:cc:42:58:32:f1:f1:a6:75:67:7f:b0:7a: 2a:ae:13:a0:9c:43:02:47:b1:56:c0:2b:4c:3c:d6: c5:a8:b8:7b:20:f6:98:ec:d1:f2:c1:7f:cf:4a:28: cd:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:92:B1:93:05:5A:15:73:6E:95:95:2D:38:A6:39:B3:B7:0D:4B:78 X509v3 Authority Key Identifier: keyid:6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:c3:df:6f:95:75:9a:ca:e0:2c:bc:1c:fb:72:62:1c:c8:54: 8b:f4:73:6d:b3:52:fb:0f:bc:44:16:97:a7:55:2f:23:39:39: 53:c0:ac:f6:06:82:e2:6a:77:2b:01:51:bd:44:3a:0b:9c:b9: a5:03:7a:86:79:41:0c:b8:d2:c4:59:95:9c:7a:07:53:1c:07: ed:42:d0:79:f6:be:fa:7a:63:7b:83:e9:ee:26:a8:76:8b:3a: 27:13:65:d7:c6:e6:52:18:d8:05:6a:a2:f3:b1:71:2f:97:4d: 3b:4c:57:fb:cf:ad:2e:49:0b:14:22:b9:32:e8:5d:1d:15:8a: a6:d9:89:9b:da:d9:7d:6f:28:62:93:ef:7f:16:65:8f:83:b8: 3f:b7:1f:71:ce:7e:6b:f4:ee:1d:95:c6:c5:4e:54:fd:98:f4: ce:87:dd:b6:33:da:f5:e2:73:0e:b0:54:cc:bf:ca:18:6c:5e: 4d:31:90:9d:13:09:98:72:f2:a2:0d:4f:f1:28:4a:fb:c2:80: a6:74:2c:fc:bf:13:0e:bc:4d:a6:c6:1e:1f:64:d0:64:fb:2e: 9c:11:c6:64:63:b3:1b:49:90:1f:47:3a:69:9c:8c:5d:bf:99: bb:df:06:b4:e2:a7:8a:34:14:30:d3:c9:21:eb:c8:77:c5:3c: af:85:59:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCRDcxMTAvBgNVBAUTKDZCNDk1NzY2MkFENEMyMUJENDIyQTg3REI0MUI4QkNG QzlENkREOEUwHhcNMjUwNzA1MDMyOTA3WhcNMjUwNzEyMDMyOTA3WjAYMRYwFAYD VQQDEw02ODY4OWMwNC04OGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmGpfjIpg/aj+wJv7aDe9zAwRSNK90DNs4yPhG+pQhLAqTsDH/FjJ/rFFNAei SgxyWYzHED92xjMhpjrE7AexhgchJvZFxvt5blU0Lh2U6SosU8rnJPhzEdxmElxE iD7A2P7wB8a4HLhxRP7E6Ii3WzmbdhfjlbkrVWBb38Ldg4ZqY7Z6aGamy1VC3vrl 9Wcl2Hx7RkmOPP/B/YPfQzabHO/ldbHoF5VswmbfLaw3EiOrpYOlTWrwDxMdNaIl LJD66i0VyCOl2f08LgZO/cjMSzPmY9LMQlgy8fGmdWd/sHoqrhOgnEMCR7FWwCtM PNbFqLh7IPaY7NHywX/PSijNMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEiSsZMF WhVzbpWVLTimObO3DUt4MB8GA1UdIwQYMBaAFGtJV2Yq1MIb1CKofbQbi8/J1t2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUJENy84QTYyQzgyQUM5 NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdodlVJcWg5dEJ1THo4blcz WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EwbFhaaXJVd2h2VUlxaDl0QnVMejhuVzNZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUJENy84QTYyQzgyQUM5NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdo dlVJcWg5dEJ1THo4blczWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmw99vlXWayuAsvBz7cmIcyFSL9HNts1L7D7xEFpenVS8jOTlTwKz2 BoLiancrAVG9RDoLnLmlA3qGeUEMuNLEWZWcegdTHAftQtB59r76emN7g+nuJqh2 izonE2XXxuZSGNgFaqLzsXEvl007TFf7z60uSQsUIrky6F0dFYqm2Ymb2tl9byhi k+9/FmWPg7g/tx9xzn5r9O4dlcbFTlT9mPTOh922M9r14nMOsFTMv8oYbF5NMZCd EwmYcvKiDU/xKEr7woCmdCz8vxMOvE2mxh4fZNBk+y6cEcZkY7MbSZAfRzppnIxd v5m73wa04qeKNBQw08kh68h3xTyvhVkA -----END CERTIFICATE-----Generated at Sun Jul 6 01:00:47 2025 by rpki-client