$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft File: J7kXbXUBrEb9oBkmur5-vwlfko4.mft (raw, json) Hash identifier: RogMNEF8sGw9LAAGSUTENtNREFCjX3nfGtkC+s80MEY= Subject key identifier: 06:7A:06:DA:F5:64:33:6A:BC:17:62:DF:B3:62:7B:D0:C7:07:AC:16 Authority key identifier: 27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E Certificate issuer: /CN=A9171D35/serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Certificate serial: 0ED7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft Manifest number: 0EC3 Signing time: Fri 04 Jul 2025 17:58:49 +0000 Manifest this update: Fri 04 Jul 2025 17:58:49 +0000 Manifest next update: Fri 11 Jul 2025 17:58:49 +0000 Files and hashes: 1: J7kXbXUBrEb9oBkmur5-vwlfko4.crl (hash: zc0ZR2LlN4B9An60Ce5Jwwu7PKtK29hsi2DOeXARj2A=) 2: C74924EE159F11EEBCFC135CC4F9AE02.roa (hash: 6QYV9FQpqrhneDa4DXvOdtP1INWlFJdLfJWnJ4N05bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3799 (0xed7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D35, serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Validity Not Before: Jul 4 17:58:49 2025 GMT Not After : Jul 11 17:58:49 2025 GMT Subject: CN=68681659-e418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:2f:80:58:66:9f:06:dc:1c:d1:6f:b2:16:5f: f7:8b:86:32:ed:1e:40:6b:ce:0c:3f:a2:3c:59:17: 43:8f:09:3c:26:50:c9:c3:b3:a5:b4:9a:f8:55:20: a2:4c:ed:0c:9b:2f:d7:ca:ee:d0:72:68:3e:35:62: a3:90:ca:69:46:d3:c2:72:85:ba:8d:2b:f3:b6:d6: 4e:cb:da:12:6f:2f:d7:ee:ec:22:ba:c7:00:72:28: 0b:15:85:fb:d9:2f:24:c0:ed:ee:24:e1:b9:00:a3: 43:f8:f2:60:2f:84:33:49:59:9e:64:36:2c:68:98: 9d:f3:42:76:60:86:06:98:fd:1b:4b:ea:02:0f:7c: ca:4e:bb:e3:41:d9:9e:d0:29:10:09:3a:f0:84:6c: 20:9b:00:88:39:2b:e8:ca:74:4c:79:7b:53:cd:eb: 32:85:fc:34:91:26:d0:ca:de:54:33:8a:e5:fd:f8: 8a:fa:1b:3f:ec:e1:7a:a6:76:6e:6a:e2:6a:cc:62: f7:ed:4d:c7:58:76:aa:fb:b2:f8:52:86:16:84:e1: db:66:73:78:6b:0f:c2:b4:b9:a7:23:a4:a0:e5:8b: 95:d8:6a:84:5b:97:b0:31:74:a2:59:60:02:81:b6: b9:fa:ef:76:f4:ea:7e:d5:be:26:fe:60:26:08:e6: c8:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:7A:06:DA:F5:64:33:6A:BC:17:62:DF:B3:62:7B:D0:C7:07:AC:16 X509v3 Authority Key Identifier: keyid:27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:21:3c:80:18:38:59:6e:1f:08:3b:b9:24:b8:dd:00:f3:9f: 39:60:dd:45:f4:d9:aa:21:66:06:61:b1:4e:1f:ca:d0:c8:50: 47:91:0a:e0:32:c8:ff:c7:89:00:35:9d:11:c1:70:ab:48:92: a5:63:68:38:cd:98:f4:d3:35:43:e3:87:e9:cb:e7:16:6a:ad: 2a:d0:09:49:69:5a:35:c5:0e:95:5a:d2:5a:23:57:36:e6:ea: 0d:82:b7:e8:5f:98:18:62:62:ab:9f:d4:28:c1:ae:ff:35:29: ef:0b:db:7e:58:11:13:cb:87:d7:71:6b:14:c1:a6:74:19:9f: 39:78:9e:a7:07:18:f2:ec:ab:6d:e0:95:78:ed:22:6d:6d:35: a7:4e:d6:f2:cf:4f:c0:b1:c7:98:34:d0:ba:57:39:ad:f8:85: ca:83:7b:86:96:12:85:0e:05:4f:3e:68:8f:52:d2:f1:b9:4e: 09:ba:5d:21:87:b9:68:27:cc:22:48:77:bc:78:8c:18:d4:5a: cf:f3:6e:6b:01:bf:e2:a5:f6:06:95:50:92:b4:5d:4b:20:c3: 25:8f:d5:51:fc:8d:69:1b:03:22:76:59:54:64:56:96:59:ef: 3d:e5:eb:42:6d:a5:b1:d4:8b:04:4e:8e:8b:da:61:71:27:95: 84:df:84:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMzUxMTAvBgNVBAUTKDI3QjkxNzZENzUwMUFDNDZGREEwMTkyNkJBQkU3RUJG MDk1RjkyOEUwHhcNMjUwNzA0MTc1ODQ5WhcNMjUwNzExMTc1ODQ5WjAYMRYwFAYD VQQDEw02ODY4MTY1OS1lNDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4S+AWGafBtwc0W+yFl/3i4Yy7R5Aa84MP6I8WRdDjwk8JlDJw7OltJr4VSCi TO0Mmy/Xyu7Qcmg+NWKjkMppRtPCcoW6jSvzttZOy9oSby/X7uwiuscAcigLFYX7 2S8kwO3uJOG5AKND+PJgL4QzSVmeZDYsaJid80J2YIYGmP0bS+oCD3zKTrvjQdme 0CkQCTrwhGwgmwCIOSvoynRMeXtTzesyhfw0kSbQyt5UM4rl/fiK+hs/7OF6pnZu auJqzGL37U3HWHaq+7L4UoYWhOHbZnN4aw/CtLmnI6Sg5YuV2GqEW5ewMXSiWWAC gba5+u929Op+1b4m/mAmCObI8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAZ6Btr1 ZDNqvBdi37Nie9DHB6wWMB8GA1UdIwQYMBaAFCe5F211AaxG/aAZJrq+fr8JX5KO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzNS9FQTREQ0ExQzhF REExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJFYjlvQmttdXI1LXZ3bGZr bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3a1hiWFVCckViOW9Ca211cjUtdndsZmtvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQzNS9FQTREQ0ExQzhFREExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJF YjlvQmttdXI1LXZ3bGZrbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmITyAGDhZbh8IO7kkuN0A8585YN1F9NmqIWYGYbFOH8rQyFBHkQrg Msj/x4kANZ0RwXCrSJKlY2g4zZj00zVD44fpy+cWaq0q0AlJaVo1xQ6VWtJaI1c2 5uoNgrfoX5gYYmKrn9Qowa7/NSnvC9t+WBETy4fXcWsUwaZ0GZ85eJ6nBxjy7Ktt 4JV47SJtbTWnTtbyz0/AsceYNNC6Vzmt+IXKg3uGlhKFDgVPPmiPUtLxuU4Jul0h h7loJ8wiSHe8eIwY1FrP825rAb/ipfYGlVCStF1LIMMlj9VR/I1pGwMidllUZFaW We895etCbaWx1IsETo6L2mFxJ5WE34RZ -----END CERTIFICATE-----Generated at Sat Jul 5 22:20:32 2025 by rpki-client