$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft File: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft (raw, json) Hash identifier: 3MWqruDC6kIqJKZTgKiC7UTF/d/y9bYkd592BFmSNC0= Subject key identifier: 21:1F:47:9B:3E:47:84:8B:63:15:41:AE:DA:00:EC:61:48:8F:7F:CC Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft Manifest number: 013E Signing time: Mon 11 Aug 2025 04:38:08 +0000 Manifest this update: Mon 11 Aug 2025 04:38:07 +0000 Manifest next update: Mon 18 Aug 2025 04:38:07 +0000 Files and hashes: 1: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl (hash: 9K/iwH6Tu4mbWE0t9AsKChnfxP/BBuLUcos2wxm1+/U=) 2: 813EDCA4137E11EF9969A86BC4F9AE02.roa (hash: 8cegSUbUuoPE7mPNDdYwV/tSOtw6Sjag/azXHzK7Lu8=) 3: 210A4EBAC0F211EE99FFBA21C4F9AE02.roa (hash: l/0cV1WqKHlm3zfBuP747PhglBf2SLieAswGuN8ioE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33, serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: Aug 11 04:38:07 2025 GMT Not After : Aug 18 04:38:07 2025 GMT Subject: CN=689973b0-67f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:2b:b8:dc:8a:c7:ee:86:69:f4:7f:e4:47:7d: 25:ce:ac:64:7a:f5:a2:b1:88:c2:a6:4c:0e:1f:16: 88:26:99:7a:46:1a:8c:d3:1b:1a:aa:e3:0f:01:fe: 6b:33:92:d8:a1:e0:c5:02:d8:af:c0:2b:50:ae:c0: 16:2d:71:5a:bd:c0:04:58:29:d5:5e:9b:8e:4e:6f: bd:02:ad:f6:47:f9:86:c2:f8:3c:bc:93:ad:2c:de: aa:50:5e:ab:f9:32:a6:81:85:f1:68:38:df:60:c8: b2:b1:71:42:8e:5b:66:48:49:1c:56:5c:bb:e2:fb: 76:90:27:4d:33:ed:b4:db:8c:e4:57:ed:31:5e:4e: e4:7e:9a:db:62:2c:13:6f:d0:13:74:13:d1:0a:71: dd:ac:de:f6:10:7b:b6:82:cb:62:59:ce:a8:de:f5: 8d:2b:7a:92:1a:00:06:37:86:9e:f4:72:9d:a1:b3: 42:16:d4:1a:fd:b4:59:5e:2f:24:e1:97:62:0e:76: 3a:32:37:36:c1:a3:74:1a:22:76:04:11:2c:3c:6e: 5c:cb:df:4b:84:65:0c:cf:07:60:f4:ea:f0:c0:32: 93:ab:69:70:37:22:8a:ac:be:81:1e:c6:57:61:ba: 00:63:37:e8:92:1f:b5:62:89:9a:09:fb:39:52:12: b5:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:1F:47:9B:3E:47:84:8B:63:15:41:AE:DA:00:EC:61:48:8F:7F:CC X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:cf:d1:fc:29:a0:88:46:1b:4b:79:72:65:29:f9:84:bc:3b: 70:d6:ee:f9:46:18:1d:9f:f6:88:43:a7:47:6f:18:06:a2:8d: 54:20:5c:0b:60:a5:ab:a7:17:16:e1:0e:c8:c3:c1:b8:e7:fb: 74:a9:3e:e5:f6:35:12:62:6b:1a:e3:cf:1d:c5:67:c2:11:be: 2c:93:e4:ac:e9:41:1f:84:ce:68:79:4a:c6:ab:4c:f1:7b:89: b7:0e:b9:b4:d6:b6:96:0f:6d:da:be:56:c1:22:3c:44:d9:74: 33:74:de:54:6b:d1:5a:85:ea:ae:0c:a5:31:72:fe:2c:14:74: 7d:cb:b3:ba:95:84:a9:a4:d5:cc:86:c9:8a:62:14:3e:88:65: d5:49:a7:ff:04:2b:c0:68:af:4e:96:92:ac:0e:94:8f:93:18: 41:5c:0c:c8:3d:fc:3c:17:da:6a:1e:ef:76:34:ce:d7:02:6a: c5:74:e8:d5:9a:01:b3:9f:68:d9:b3:b7:65:3f:71:a2:c5:2e: 38:73:7c:7b:3a:38:2e:df:77:0b:e5:8f:bf:41:15:82:4c:16: 17:fc:82:e4:55:56:c4:da:73:36:2c:82:2f:4d:b1:b8:38:80: ed:4b:c7:8d:ea:6b:3b:7f:ae:a9:38:40:b6:37:06:1f:4f:62: c2:a9:da:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDMzMxMTAvBgNVBAUTKEFGMkVFMDQ0MTIzNTZBQkZEOEUxOUFFMkMxQjIyQTcz N0NERjVFOUUwHhcNMjUwODExMDQzODA3WhcNMjUwODE4MDQzODA3WjAYMRYwFAYD VQQDEw02ODk5NzNiMC02N2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0yu43IrH7oZp9H/kR30lzqxkevWisYjCpkwOHxaIJpl6RhqM0xsaquMPAf5r M5LYoeDFAtivwCtQrsAWLXFavcAEWCnVXpuOTm+9Aq32R/mGwvg8vJOtLN6qUF6r +TKmgYXxaDjfYMiysXFCjltmSEkcVly74vt2kCdNM+2024zkV+0xXk7kfprbYiwT b9ATdBPRCnHdrN72EHu2gstiWc6o3vWNK3qSGgAGN4ae9HKdobNCFtQa/bRZXi8k 4ZdiDnY6Mjc2waN0GiJ2BBEsPG5cy99LhGUMzwdg9OrwwDKTq2lwNyKKrL6BHsZX YboAYzfokh+1YomaCfs5UhK1AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCEfR5s+ R4SLYxVBrtoA7GFIj3/MMB8GA1UdIwQYMBaAFK8u4EQSNWq/2OGa4sGyKnN8316e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEMzMy85NTZDQjA4Njk4 MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFyX1k0WnJpd2JJcWMzemZY cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6ZlhwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEMzMy85NTZDQjA4Njk4MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFy X1k0WnJpd2JJcWMzemZYcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbz9H8KaCIRhtLeXJlKfmEvDtw1u75Rhgdn/aIQ6dHbxgGoo1UIFwL YKWrpxcW4Q7Iw8G45/t0qT7l9jUSYmsa488dxWfCEb4sk+Ss6UEfhM5oeUrGq0zx e4m3Drm01raWD23avlbBIjxE2XQzdN5Ua9FahequDKUxcv4sFHR9y7O6lYSppNXM hsmKYhQ+iGXVSaf/BCvAaK9OlpKsDpSPkxhBXAzIPfw8F9pqHu92NM7XAmrFdOjV mgGzn2jZs7dlP3GixS44c3x7Ojgu33cL5Y+/QRWCTBYX/ILkVVbE2nM2LIIvTbG4 OIDtS8eN6ms7f66pOEC2NwYfT2LCqdrw -----END CERTIFICATE-----Generated at Mon Aug 11 13:03:29 2025 by rpki-client