$ rpki-client -vvf rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft File: R2wrlqUY81f22XaCqHHD5Iu54SM.mft (raw, json) Hash identifier: lrJdszJapvJCojDEN529eNzSCxYvM8Tdmp2vQ8JVeFI= Subject key identifier: 92:36:02:ED:65:ED:98:25:01:CF:58:BB:3C:F3:7F:B8:CF:7C:AB:3A Authority key identifier: 47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 Certificate issuer: /CN=A917A442/serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Certificate serial: 01BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft Manifest number: 01B7 Signing time: Thu 03 Jul 2025 03:16:48 +0000 Manifest this update: Thu 03 Jul 2025 03:16:47 +0000 Manifest next update: Thu 10 Jul 2025 03:16:47 +0000 Files and hashes: 1: R2wrlqUY81f22XaCqHHD5Iu54SM.crl (hash: nVIEq9yJJTVY6afwwULUKfrguaq59QzX0K/HcTU458I=) 2: 65E02670C83E11ED9FAAFA22C4F9AE02.roa (hash: QqBINDd+m6GAidQPZDLnjXwqI13nDti3MNbtgoHfQfI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A442, serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Validity Not Before: Jul 3 03:16:47 2025 GMT Not After : Jul 10 03:16:47 2025 GMT Subject: CN=6865f620-07db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:52:8c:6a:60:ce:05:99:85:a9:6e:61:2b:f4: 14:9f:31:19:ac:49:3a:65:be:a3:bf:b9:06:f0:8c: e2:c3:ad:a5:38:02:50:91:7a:d1:53:13:99:85:84: 84:3e:ff:4e:a7:b1:7b:2a:5f:1d:f0:ab:b3:57:ee: 15:76:93:95:94:ea:7a:06:98:dd:90:26:c0:bf:5c: 10:96:1c:7d:be:ef:28:b9:00:42:c5:13:6e:c1:4a: 49:e6:e0:43:6d:da:c0:5d:1b:4e:27:93:31:c5:b8: c8:1a:6a:c6:9c:8e:2b:2d:36:05:96:77:17:f4:5f: 22:37:9d:9a:6a:4d:1b:7a:eb:88:93:d5:c5:8a:92: a9:9f:62:0e:ce:c3:22:b4:24:d6:48:19:e5:ee:a9: 0f:d2:ae:d8:79:13:6d:1c:c6:54:f6:a7:1d:54:b2: 53:8b:00:f6:d5:60:5a:b0:af:a5:4c:35:06:ef:53: e4:04:62:46:1d:be:c6:c5:7b:89:cd:0e:2b:9e:3d: 64:12:92:84:a7:68:86:2d:de:8c:6e:87:11:10:09: 44:56:a5:a3:ea:e1:24:ae:35:ea:10:f2:74:4e:95: f1:5d:41:b2:73:ea:be:bc:cd:68:5b:ca:b7:32:a3: d1:e6:28:1a:4b:b2:8e:57:78:e7:fa:72:19:23:81: f7:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:36:02:ED:65:ED:98:25:01:CF:58:BB:3C:F3:7F:B8:CF:7C:AB:3A X509v3 Authority Key Identifier: keyid:47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:cb:65:2b:db:96:26:3d:a6:9d:38:54:fb:2d:53:a0:ce:17: e9:a3:4e:da:40:23:97:dc:4e:b1:64:cb:a0:a4:10:a1:13:c2: 65:c9:ac:e6:49:33:27:20:59:21:7e:53:88:fc:52:e3:cb:9d: 67:73:16:cb:78:59:53:f4:23:bd:e6:96:fa:f8:6f:b3:db:af: d4:c7:ae:3e:74:da:8b:ff:13:55:09:ad:79:37:08:eb:a1:27: a3:a5:57:94:96:6b:e4:a4:a2:11:66:40:2e:d6:78:ea:0f:94: 71:a5:95:12:15:6a:df:31:ef:4e:7c:c7:c3:42:63:18:cd:70: d5:e6:93:8d:b9:87:e3:e2:8e:f0:48:74:a9:11:0b:4b:33:74: 3a:0a:9c:5c:9e:2c:e6:2c:e3:a8:92:c5:f8:01:67:c7:39:70: 20:86:28:21:cf:a3:66:61:aa:f6:5f:3c:fb:40:d5:14:85:f5: de:98:3b:02:c2:79:35:9b:1a:5c:71:c5:e7:d8:76:59:fb:ca: d8:ce:eb:e7:da:4b:ba:34:17:2d:99:d0:a9:7c:c6:7d:26:ed: 58:95:e0:b8:5e:e4:16:fb:7b:a3:bd:ba:9a:33:86:d7:95:4a: 64:70:5d:5d:f6:93:f7:f8:66:25:51:75:4a:5a:3e:8a:b0:1f: f2:51:e2:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0NDIxMTAvBgNVBAUTKDQ3NkMyQjk2QTUxOEYzNTdGNkQ5NzY4MkE4NzFDM0U0 OEJCOUUxMjMwHhcNMjUwNzAzMDMxNjQ3WhcNMjUwNzEwMDMxNjQ3WjAYMRYwFAYD VQQDEw02ODY1ZjYyMC0wN2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnFKMamDOBZmFqW5hK/QUnzEZrEk6Zb6jv7kG8Iziw62lOAJQkXrRUxOZhYSE Pv9Op7F7Kl8d8KuzV+4VdpOVlOp6BpjdkCbAv1wQlhx9vu8ouQBCxRNuwUpJ5uBD bdrAXRtOJ5MxxbjIGmrGnI4rLTYFlncX9F8iN52aak0beuuIk9XFipKpn2IOzsMi tCTWSBnl7qkP0q7YeRNtHMZU9qcdVLJTiwD21WBasK+lTDUG71PkBGJGHb7GxXuJ zQ4rnj1kEpKEp2iGLd6MbocREAlEVqWj6uEkrjXqEPJ0TpXxXUGyc+q+vM1oW8q3 MqPR5igaS7KOV3jn+nIZI4H3kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJI2Au1l 7ZglAc9Yuzzzf7jPfKs6MB8GA1UdIwQYMBaAFEdsK5alGPNX9tl2gqhxw+SLueEj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTQ0Mi9FMEU3REI1NkM4 MzkxMUVEQUM3MkIxMUNDNEY5QUUwMi9SMndybHFVWTgxZjIyWGFDcUhIRDVJdTU0 U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Iyd3JscVVZODFmMjJYYUNxSEhENUl1NTRTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QTQ0Mi9FMEU3REI1NkM4MzkxMUVEQUM3MkIxMUNDNEY5QUUwMi9SMndybHFVWTgx ZjIyWGFDcUhIRDVJdTU0U00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZy2Ur25YmPaadOFT7LVOgzhfpo07aQCOX3E6xZMugpBChE8Jlyazm STMnIFkhflOI/FLjy51ncxbLeFlT9CO95pb6+G+z26/Ux64+dNqL/xNVCa15Nwjr oSejpVeUlmvkpKIRZkAu1njqD5RxpZUSFWrfMe9OfMfDQmMYzXDV5pONuYfj4o7w SHSpEQtLM3Q6CpxcnizmLOOoksX4AWfHOXAghighz6NmYar2Xzz7QNUUhfXemDsC wnk1mxpcccXn2HZZ+8rYzuvn2ku6NBctmdCpfMZ9Ju1YleC4XuQW+3ujvbqaM4bX lUpkcF1d9pP3+GYlUXVKWj6KsB/yUeJY -----END CERTIFICATE-----Generated at Thu Jul 3 06:10:06 2025 by rpki-client