$ rpki-client -vvf rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft File: aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft (raw, json) Hash identifier: 36nl7LsF8+GW7GYyVydQKTVqjicNQs+EH8DLkqW2VcA= Subject key identifier: 21:9A:BB:16:DA:EA:85:D8:5E:A1:52:9B:68:C5:1D:41:A5:61:F0:82 Authority key identifier: 68:C6:11:97:EB:A4:1A:64:D8:5F:25:59:E1:D4:0D:6E:75:FC:B7:10 Certificate issuer: /CN=A9174125/serialNumber=68C61197EBA41A64D85F2559E1D40D6E75FCB710 Certificate serial: 14B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMYRl-ukGmTYXyVZ4dQNbnX8txA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft Manifest number: 14B8 Signing time: Wed 02 Jul 2025 17:01:02 +0000 Manifest this update: Wed 02 Jul 2025 17:01:01 +0000 Manifest next update: Wed 09 Jul 2025 17:01:01 +0000 Files and hashes: 1: aMYRl-ukGmTYXyVZ4dQNbnX8txA.crl (hash: yNJzOG4vQYG+nmWK/oCQ+bDu2LK8tqRjANa7ulvz1jg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.crl rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMYRl-ukGmTYXyVZ4dQNbnX8txA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:01:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5304 (0x14b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174125, serialNumber=68C61197EBA41A64D85F2559E1D40D6E75FCB710 Validity Not Before: Jul 2 17:01:01 2025 GMT Not After : Jul 9 17:01:01 2025 GMT Subject: CN=686565ce-6ad0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0a:4b:6d:87:17:5e:e4:f2:15:07:27:da:40: 77:95:2e:16:0a:02:e1:f7:c0:f4:d6:9f:be:ef:d5: 55:d1:99:2e:fe:65:dd:3e:6a:0e:86:a6:09:85:ca: f1:48:ec:ce:82:c0:6d:ad:83:bf:57:44:cf:fc:fc: bd:0b:49:61:d5:29:b5:15:7c:52:91:bf:e4:64:6e: ea:c4:3e:63:c6:3a:00:11:c9:b2:69:78:86:c7:6d: 07:69:dd:f1:0d:87:d1:e6:3f:3d:dc:1f:df:59:84: a7:90:67:be:5d:3d:19:66:46:7a:99:f2:82:0d:05: 73:78:27:33:53:15:37:6b:f5:3b:78:7a:1d:f2:bf: 64:03:95:8f:75:b2:10:5f:01:03:39:6f:ff:4f:99: c5:7e:d0:1f:2b:41:7f:af:6d:4c:1d:91:ad:d1:a9: c9:89:9e:99:c3:a3:58:f5:be:f1:05:72:4b:bf:c2: dd:ac:a2:0c:b8:b9:a9:39:3b:3d:9e:dd:ed:4b:af: 43:4c:b2:03:3a:21:3c:bb:ff:06:52:d5:86:3e:b8: 62:04:ff:c6:39:bc:9c:40:4a:ad:1b:e3:42:e4:33: 21:c1:0a:c6:e4:9b:d4:0f:59:03:35:a6:ac:37:d4: d4:b9:c1:84:37:70:38:fe:2e:af:89:98:0f:e7:41: ef:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:9A:BB:16:DA:EA:85:D8:5E:A1:52:9B:68:C5:1D:41:A5:61:F0:82 X509v3 Authority Key Identifier: keyid:68:C6:11:97:EB:A4:1A:64:D8:5F:25:59:E1:D4:0D:6E:75:FC:B7:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMYRl-ukGmTYXyVZ4dQNbnX8txA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:21:64:51:b9:f1:c9:55:2f:e1:30:69:f2:1f:54:9c:14:12: 1d:ce:0d:db:5f:45:54:6f:21:50:75:2e:69:70:29:08:3f:22: 9b:85:b8:1f:92:35:4b:21:b5:c0:af:2b:ff:55:06:29:83:f3: 7d:79:90:0e:8d:ff:d9:33:26:85:1b:97:5c:c0:ac:2d:99:1f: b0:45:91:4e:9b:e9:3b:f4:eb:33:4d:c6:93:8b:70:f7:25:28: f7:07:4b:f4:04:85:1c:bb:93:bb:d6:12:32:3d:8e:16:c5:f5: 83:6c:01:14:65:09:96:0f:6a:fe:8d:99:6f:fa:cd:3a:d4:27: 07:d6:e6:3d:b7:87:a9:0a:bd:af:dd:4e:fc:58:3a:30:06:c1: 43:f0:00:0c:07:3d:01:11:ee:c6:13:e0:e7:b4:cc:cb:80:53: cd:c1:28:e5:56:94:c2:5b:9d:de:d8:7c:53:35:ce:61:82:e7: 24:81:b9:54:c3:0c:4c:84:5d:39:39:d7:5f:88:aa:f9:53:3b: 91:2a:75:4e:eb:d4:9d:ac:d5:d7:06:d9:b9:31:4d:7f:0a:52: a2:ae:13:75:49:e5:c6:92:1a:13:b6:f5:d3:83:df:e1:be:66: 89:8b:17:74:be:97:3f:f9:d4:ff:fe:7c:7f:46:92:94:f2:ee: 65:7d:b7:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxMjUxMTAvBgNVBAUTKDY4QzYxMTk3RUJBNDFBNjREODVGMjU1OUUxRDQwRDZF NzVGQ0I3MTAwHhcNMjUwNzAyMTcwMTAxWhcNMjUwNzA5MTcwMTAxWjAYMRYwFAYD VQQDEw02ODY1NjVjZS02YWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgpLbYcXXuTyFQcn2kB3lS4WCgLh98D01p++79VV0Zku/mXdPmoOhqYJhcrx SOzOgsBtrYO/V0TP/Py9C0lh1Sm1FXxSkb/kZG7qxD5jxjoAEcmyaXiGx20Had3x DYfR5j893B/fWYSnkGe+XT0ZZkZ6mfKCDQVzeCczUxU3a/U7eHod8r9kA5WPdbIQ XwEDOW//T5nFftAfK0F/r21MHZGt0anJiZ6Zw6NY9b7xBXJLv8LdrKIMuLmpOTs9 nt3tS69DTLIDOiE8u/8GUtWGPrhiBP/GObycQEqtG+NC5DMhwQrG5JvUD1kDNaas N9TUucGEN3A4/i6viZgP50HvHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCGauxba 6oXYXqFSm2jFHUGlYfCCMB8GA1UdIwQYMBaAFGjGEZfrpBpk2F8lWeHUDW51/LcQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDEyNS9GQUI2QkU4ODVE NjAxMUU4QjM0OUE4MEZDNEY5QUUwMi9hTVlSbC11a0dtVFlYeVZaNGRRTmJuWDh0 eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNWVJsLXVrR21UWVh5Vlo0ZFFOYm5YOHR4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDEyNS9GQUI2QkU4ODVENjAxMUU4QjM0OUE4MEZDNEY5QUUwMi9hTVlSbC11a0dt VFlYeVZaNGRRTmJuWDh0eEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbIWRRufHJVS/hMGnyH1ScFBIdzg3bX0VUbyFQdS5pcCkIPyKbhbgf kjVLIbXAryv/VQYpg/N9eZAOjf/ZMyaFG5dcwKwtmR+wRZFOm+k79OszTcaTi3D3 JSj3B0v0BIUcu5O71hIyPY4WxfWDbAEUZQmWD2r+jZlv+s061CcH1uY9t4epCr2v 3U78WDowBsFD8AAMBz0BEe7GE+DntMzLgFPNwSjlVpTCW53e2HxTNc5hguckgblU wwxMhF05OddfiKr5UzuRKnVO69SdrNXXBtm5MU1/ClKirhN1SeXGkhoTtvXTg9/h vmaJixd0vpc/+dT//nx/RpKU8u5lfbf2 -----END CERTIFICATE-----Generated at Thu Jul 3 09:28:55 2025 by rpki-client