$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft File: 489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json) Hash identifier: CqQE902vBlB/O65bk3N2L3y/VY1sQdhyxM+c7X9464o= Subject key identifier: 16:A4:37:E2:2B:D7:4A:CF:F7:96:9F:CA:29:B2:7E:81:FC:7C:55:11 Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Certificate serial: 02F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft Manifest number: 02DA Signing time: Thu 03 Jul 2025 01:47:49 +0000 Manifest this update: Thu 03 Jul 2025 01:47:49 +0000 Manifest next update: Thu 10 Jul 2025 01:47:49 +0000 Files and hashes: 1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: lQ+UvMmRg3cm7blfnVlIMxp8LlzWfa5JVakXDn30nsk=) 2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: +6obkqNFt0tnKMRz6dRit6ArMoN+fxhvRElw6ROUx6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:47:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 754 (0x2f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197202, serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Validity Not Before: Jul 3 01:47:49 2025 GMT Not After : Jul 10 01:47:49 2025 GMT Subject: CN=6865e145-87a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:36:3a:f4:e3:f3:a3:04:79:64:71:86:94:f1: fc:67:42:8f:18:35:d5:91:3c:7c:25:cc:78:68:bb: 20:82:66:1c:af:53:ef:7e:db:69:06:85:28:e7:d6: 4f:c7:24:79:2a:7e:21:c9:58:41:24:95:76:9f:b5: e1:b5:9d:8a:47:f5:d7:c9:d3:45:d0:5a:85:b8:0a: 0d:a7:84:d1:c8:87:af:7c:76:ef:81:a8:5f:cf:63: f9:89:69:31:68:0c:37:23:19:31:03:5e:08:e4:72: 9e:a9:4a:3c:34:37:a7:48:20:51:49:cd:c0:41:65: fa:50:34:7e:c5:da:a2:e1:34:4a:4e:70:8f:50:ae: c8:8e:c1:e8:4f:4e:cd:62:fd:50:4f:68:8a:61:d0: 38:38:62:07:67:fb:e5:69:1c:8f:3c:b1:28:19:18: 7e:1a:82:bd:94:08:6c:e6:8e:38:8c:c2:65:fe:14: af:96:3b:7e:dd:a1:b8:31:9b:ab:d7:1d:0e:a1:b2: b6:98:67:88:dc:bc:68:b5:0f:01:cd:31:a8:77:85: 62:f4:dd:91:74:ef:7d:57:1c:f7:16:44:6f:da:02: de:81:7b:c9:be:13:09:04:cd:75:c1:ed:ec:09:f7: c9:2c:6e:7a:b7:71:d9:03:90:35:bd:98:20:e4:b9: 7e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:A4:37:E2:2B:D7:4A:CF:F7:96:9F:CA:29:B2:7E:81:FC:7C:55:11 X509v3 Authority Key Identifier: keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:c5:d3:76:72:84:1b:8f:18:76:eb:73:af:88:6d:b6:35:6a: e5:df:0e:fc:63:80:01:27:6d:ad:33:fe:39:b6:97:ed:4f:48: 50:5c:32:5e:6c:1c:52:88:12:84:f7:e0:17:82:b3:59:a9:70: bc:45:b2:62:af:35:59:fe:bc:17:82:57:a2:e1:94:98:b3:87: 67:f7:ef:75:17:42:c1:e5:61:48:4a:c5:5f:dc:a3:33:65:9d: e4:de:30:b5:2b:23:6b:51:45:dc:8a:a0:9a:ab:9f:50:0a:f3: c3:ee:7b:c8:97:35:ff:e8:8a:9f:de:79:9c:e8:7b:13:c5:a2: fc:7b:ca:d6:33:77:bd:2f:46:11:be:62:8d:11:2a:51:db:4a: 6b:d1:12:4c:ba:6e:a0:67:ef:02:09:9d:c4:92:cf:60:49:9c: 09:25:a0:61:b1:17:44:8e:33:23:06:d0:1e:6e:4e:a8:ad:68: 97:4b:d7:c5:d5:b0:1e:d3:93:89:e1:3a:2b:0e:5c:c6:15:f6: 1d:59:31:c4:23:48:5c:2e:ff:f6:55:d3:37:fe:bb:f8:e1:4c: ed:2d:f1:a8:50:7c:d0:09:a5:f1:4c:20:7e:1a:8d:ab:2d:2b: f5:48:94:5c:bf:cf:3a:9f:df:30:84:e7:0c:c2:b5:7d:80:c8: a7:d6:55:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMDIxMTAvBgNVBAUTKEUzQ0Y0NUY4MDUxMDYzQkJEQjMxN0ZERDE1MTEzMkE5 NDAwNEZENUIwHhcNMjUwNzAzMDE0NzQ5WhcNMjUwNzEwMDE0NzQ5WjAYMRYwFAYD VQQDEw02ODY1ZTE0NS04N2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjY69OPzowR5ZHGGlPH8Z0KPGDXVkTx8Jcx4aLsggmYcr1PvfttpBoUo59ZP xyR5Kn4hyVhBJJV2n7XhtZ2KR/XXydNF0FqFuAoNp4TRyIevfHbvgahfz2P5iWkx aAw3IxkxA14I5HKeqUo8NDenSCBRSc3AQWX6UDR+xdqi4TRKTnCPUK7IjsHoT07N Yv1QT2iKYdA4OGIHZ/vlaRyPPLEoGRh+GoK9lAhs5o44jMJl/hSvljt+3aG4MZur 1x0OobK2mGeI3LxotQ8BzTGod4Vi9N2RdO99Vxz3FkRv2gLegXvJvhMJBM11we3s CffJLG56t3HZA5A1vZgg5Ll+EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBakN+Ir 10rP95afyimyfoH8fFURMB8GA1UdIwQYMBaAFOPPRfgFEGO72zF/3RURMqlABP1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIwMi8wQUZFQ0E3MEY3 MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3dmJNWF9kRlJFeXFVQUVf VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ4OUYtQVVRWTd2Yk1YX2RGUkV5cVVBRV9Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzIwMi8wQUZFQ0E3MEY3MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3 dmJNWF9kRlJFeXFVQUVfVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCxdN2coQbjxh263OviG22NWrl3w78Y4ABJ22tM/45tpftT0hQXDJe bBxSiBKE9+AXgrNZqXC8RbJirzVZ/rwXglei4ZSYs4dn9+91F0LB5WFISsVf3KMz ZZ3k3jC1KyNrUUXciqCaq59QCvPD7nvIlzX/6Iqf3nmc6HsTxaL8e8rWM3e9L0YR vmKNESpR20pr0RJMum6gZ+8CCZ3Eks9gSZwJJaBhsRdEjjMjBtAebk6orWiXS9fF 1bAe05OJ4TorDlzGFfYdWTHEI0hcLv/2VdM3/rv44UztLfGoUHzQCaXxTCB+Go2r LSv1SJRcv886n98whOcMwrV9gMin1lX+ -----END CERTIFICATE-----Generated at Fri Jul 4 18:04:08 2025 by rpki-client