$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft File: RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft (raw, json) Hash identifier: BiYYmIadkYMpWO+vPAAKxUlF/3QQWcZ9Chjf4SBO6hM= Subject key identifier: 7B:C6:45:8E:3E:C2:E0:2D:D0:D9:9F:FF:FD:B9:AB:9E:8A:E2:3B:56 Authority key identifier: 47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 Certificate issuer: /CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft Manifest number: 0123 Signing time: Tue 05 Aug 2025 05:11:44 +0000 Manifest this update: Tue 05 Aug 2025 05:11:43 +0000 Manifest next update: Tue 12 Aug 2025 05:11:43 +0000 Files and hashes: 1: RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl (hash: gJG5lrhIuAd5wSaf9zIE1Z6Is1PGW3Xm3f8g7oOrAO8=) 2: 939790AAB9BD11EEA19BE74DC4F9AE02.roa (hash: usgNeDoGlzZoBDkMS+oNirA/1DpfH4pmT68FwmH4UH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 05:11:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD04, serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Validity Not Before: Aug 5 05:11:43 2025 GMT Not After : Aug 12 05:11:43 2025 GMT Subject: CN=68919290-adc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:60:aa:58:0a:dc:f3:74:3b:b8:aa:92:0d:54: aa:18:c7:49:6c:ee:a5:ab:71:d4:c3:7e:04:38:94: e9:2f:40:0f:bf:92:65:c6:55:ce:58:c3:fb:90:8c: 6f:03:d1:43:59:eb:7c:4c:d9:e2:07:fe:50:41:65: 92:74:1a:96:16:ba:48:2c:0c:ca:86:d2:f9:6f:eb: 42:68:30:cb:b5:9d:12:f2:83:15:3c:36:4c:c1:d6: 00:46:3b:e6:53:09:ac:1f:84:65:01:a4:7a:c9:29: 6b:e7:81:1b:59:17:0f:09:c4:4e:99:fc:7f:e6:ea: ed:e1:02:7b:ad:19:ae:5f:ce:86:1d:1c:2c:0b:19: 99:2f:ce:ff:8c:76:44:2c:f6:f1:74:73:e5:6d:a1: 73:a8:14:53:87:b4:e4:ce:0e:9b:9f:40:90:bc:ef: f1:0e:3b:43:3f:34:55:17:43:5c:0e:c6:47:35:82: fa:81:96:53:35:c1:13:b5:17:f6:d2:38:3f:a3:66: b2:6f:fb:99:5a:71:53:be:56:03:26:a3:87:f1:14: 74:e3:ad:dd:a7:b5:6e:8e:3f:0b:3f:a6:9f:d6:03: 8c:35:19:9f:98:32:a6:3c:b2:f6:49:d9:6c:f6:5a: 05:68:a0:02:35:e4:75:84:4f:1b:4b:ee:5b:2f:5d: 80:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:C6:45:8E:3E:C2:E0:2D:D0:D9:9F:FF:FD:B9:AB:9E:8A:E2:3B:56 X509v3 Authority Key Identifier: keyid:47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:4d:57:03:8b:fa:b9:2d:1e:22:f2:b8:36:9e:f0:42:ba:87: d2:c4:1a:4e:e4:5c:1f:e3:06:78:2e:68:09:99:48:1e:8f:c9: c3:b9:a2:2b:7a:b8:03:18:48:fb:09:b2:57:28:05:79:48:11: 1c:1f:52:25:5d:72:0b:f6:6b:31:1f:20:61:4e:ab:de:c5:17: 53:97:7b:23:61:6f:45:32:44:70:f6:6a:6f:94:91:89:2f:d8: a8:fc:ac:dc:7f:6b:8d:38:ad:4c:b0:38:39:11:80:e3:5a:6c: 52:54:91:bf:a3:83:75:44:fe:19:3c:de:c0:fd:7c:c0:a3:37: 30:f3:bc:8a:5e:bc:af:5d:ec:75:53:47:6f:6a:a6:64:97:09: 31:b7:d9:b8:73:9d:86:59:39:50:b2:7d:68:cd:50:2a:8b:7b: 39:55:cf:95:0e:8e:f8:04:34:f5:53:fc:cf:20:ac:e9:22:ff: 84:ec:f7:41:b9:e9:02:12:1e:a0:6b:cd:93:87:ad:a6:ed:bf: 14:33:c5:6c:39:cb:6a:4f:52:50:5e:95:d4:82:7b:b0:a7:36: 34:2b:3e:35:1b:4b:e0:73:9f:2f:07:e9:e9:dd:44:1b:33:24: 89:d9:2e:68:ea:06:0a:cd:17:79:2e:98:c5:4e:4f:e2:07:de: 75:00:5e:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUREMDQxMTAvBgNVBAUTKDQ3MzQ2NDg0NzE1OUJCMTUyRkJGRTFEQkI1QTFCMDE1 NDY4MjJGMTcwHhcNMjUwODA1MDUxMTQzWhcNMjUwODEyMDUxMTQzWjAYMRYwFAYD VQQDEw02ODkxOTI5MC1hZGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6WCqWArc83Q7uKqSDVSqGMdJbO6lq3HUw34EOJTpL0APv5JlxlXOWMP7kIxv A9FDWet8TNniB/5QQWWSdBqWFrpILAzKhtL5b+tCaDDLtZ0S8oMVPDZMwdYARjvm UwmsH4RlAaR6ySlr54EbWRcPCcROmfx/5urt4QJ7rRmuX86GHRwsCxmZL87/jHZE LPbxdHPlbaFzqBRTh7Tkzg6bn0CQvO/xDjtDPzRVF0NcDsZHNYL6gZZTNcETtRf2 0jg/o2ayb/uZWnFTvlYDJqOH8RR0463dp7Vujj8LP6af1gOMNRmfmDKmPLL2Sdls 9loFaKACNeR1hE8bS+5bL12AXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHvGRY4+ wuAt0Nmf//25q56K4jtWMB8GA1UdIwQYMBaAFEc0ZIRxWbsVL7/h27WhsBVGgi8X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREQwNC9DM0Q1RkRDNkI5 QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4VXZ2LUhidGFHd0ZVYUNM eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J6UmtoSEZadXhVdnYtSGJ0YUd3RlVhQ0x4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwNC9DM0Q1RkRDNkI5QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi9SelJraEhGWnV4 VXZ2LUhidGFHd0ZVYUNMeGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/TVcDi/q5LR4i8rg2nvBCuofSxBpO5Fwf4wZ4LmgJmUgej8nDuaIr ergDGEj7CbJXKAV5SBEcH1IlXXIL9msxHyBhTqvexRdTl3sjYW9FMkRw9mpvlJGJ L9io/Kzcf2uNOK1MsDg5EYDjWmxSVJG/o4N1RP4ZPN7A/XzAozcw87yKXryvXex1 U0dvaqZklwkxt9m4c52GWTlQsn1ozVAqi3s5Vc+VDo74BDT1U/zPIKzpIv+E7PdB uekCEh6ga82Th62m7b8UM8VsOctqT1JQXpXUgnuwpzY0Kz41G0vgc58vB+np3UQb MySJ2S5o6gYKzRd5LpjFTk/iB951AF7Q -----END CERTIFICATE-----Generated at Wed Aug 6 11:04:28 2025 by rpki-client