$ rpki-client -vvf rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.mft File: mqwVb6kYtDBXQdrp1duikzdGzoc.mft (raw, json) Hash identifier: zk2wYaWzeRX6cJCX5jVZCdLZBtcJpRObeKJ3ilF8jyk= Subject key identifier: E9:2B:25:DC:58:FE:C1:07:38:BD:6E:E5:CF:4E:CC:D9:87:A5:52:01 Authority key identifier: 9A:AC:15:6F:A9:18:B4:30:57:41:DA:E9:D5:DB:A2:93:37:46:CE:87 Certificate issuer: /CN=A9133CD2/serialNumber=9AAC156FA918B4305741DAE9D5DBA2933746CE87 Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqwVb6kYtDBXQdrp1duikzdGzoc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.mft Manifest number: 01DA Signing time: Sun 03 Aug 2025 03:12:00 +0000 Manifest this update: Sun 03 Aug 2025 03:11:59 +0000 Manifest next update: Sun 10 Aug 2025 03:11:59 +0000 Files and hashes: 1: mqwVb6kYtDBXQdrp1duikzdGzoc.crl (hash: 6EarlZD2uqmxsUSckx3k3ppEi10l9NifGeioSi2j/xs=) 2: A46B24207D3811EF8EE86E6BC4F9AE02.roa (hash: q4NWMO7W6lRpux2uN6ng9OrQyUZmWgx1UYeF7qqy2kQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.crl rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqwVb6kYtDBXQdrp1duikzdGzoc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 03:11:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133CD2, serialNumber=9AAC156FA918B4305741DAE9D5DBA2933746CE87 Validity Not Before: Aug 3 03:11:59 2025 GMT Not After : Aug 10 03:11:59 2025 GMT Subject: CN=688ed37f-acc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c4:18:1e:84:e4:c6:ca:42:e8:23:db:82:9b: 25:a7:03:4c:68:1b:f0:67:2c:4c:36:46:2c:52:d3: fd:7b:71:e4:aa:00:df:ba:69:b3:57:02:d0:40:c5: 3f:c0:cb:f1:64:de:17:d9:70:bb:9b:a0:08:40:57: 7a:93:43:c5:f2:bd:89:f4:56:e0:f2:2d:cb:58:be: 2f:65:49:ac:1d:f9:42:9b:ab:83:04:86:0b:44:bc: e8:96:28:df:79:16:b4:ca:ca:e0:c8:ae:20:1a:02: 55:e8:32:6b:0a:e8:2a:ab:7e:42:fe:e3:03:0a:af: d9:a6:a6:fc:bb:7c:6d:23:f6:9a:ec:af:dd:7f:89: 79:f5:b2:23:85:28:09:89:1c:be:92:62:7d:75:32: a5:a7:e9:fb:ef:63:0d:c1:92:7d:53:18:6c:e5:61: 73:8c:24:92:1c:ff:24:92:b3:81:0e:ce:dc:ae:5c: 5d:98:f7:df:8a:68:38:53:a0:d8:34:9f:07:14:cb: 1e:4a:8d:70:43:04:90:54:48:24:a9:d7:27:26:88: 39:3f:7c:fb:95:57:71:54:f6:eb:5b:ed:d2:77:fd: 4a:72:c8:2c:d3:0b:d3:92:e1:19:ab:7a:ae:43:09: 88:32:2f:ee:31:b6:c8:88:d9:31:28:3d:f0:4d:64: 17:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:2B:25:DC:58:FE:C1:07:38:BD:6E:E5:CF:4E:CC:D9:87:A5:52:01 X509v3 Authority Key Identifier: keyid:9A:AC:15:6F:A9:18:B4:30:57:41:DA:E9:D5:DB:A2:93:37:46:CE:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqwVb6kYtDBXQdrp1duikzdGzoc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133CD2/45F3AA7EAC1611EDB947B860C4F9AE02/mqwVb6kYtDBXQdrp1duikzdGzoc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:2b:91:cf:8e:fb:c3:6a:05:04:99:a9:c8:c1:36:e8:f0:ef: 00:2d:46:03:28:a4:06:7b:d0:6c:9f:e6:14:3c:f1:5e:01:b2: 9f:07:a4:81:5b:d8:87:04:1c:46:8e:9c:00:95:58:61:9f:96: ef:01:fc:ba:be:9d:a8:6c:01:23:27:40:97:04:b8:7f:f7:d2: 78:ba:ed:99:1b:18:46:25:7b:96:33:2d:2f:58:0f:8e:6b:55: 70:93:49:b0:f3:8d:9e:b3:09:21:3e:8c:77:de:be:67:19:9e: 9d:ad:1b:aa:0f:49:58:ff:a8:3c:23:ec:ad:33:10:7b:c4:69: 54:d2:30:29:cb:c5:eb:04:f6:fd:7c:55:46:1c:bf:81:ec:79: 74:b7:0b:11:04:90:93:39:07:ac:8f:8c:fb:ff:e3:26:f8:4b: 9c:72:53:15:9a:c2:52:02:05:fe:cc:e4:65:55:d7:2a:1e:70: d2:ee:79:c4:b7:38:f6:00:af:76:40:ce:da:b4:da:0c:75:51: 15:6a:bd:02:10:ab:ce:28:30:47:18:38:ec:86:a8:f0:d4:de: d8:22:c9:b1:c1:d7:b8:07:3b:4c:a0:0f:53:09:12:b9:46:ca: 8a:ea:af:2c:d5:da:f3:71:30:eb:78:0f:ca:91:81:dd:5c:0b: e2:69:aa:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNDRDIxMTAvBgNVBAUTKDlBQUMxNTZGQTkxOEI0MzA1NzQxREFFOUQ1REJBMjkz Mzc0NkNFODcwHhcNMjUwODAzMDMxMTU5WhcNMjUwODEwMDMxMTU5WjAYMRYwFAYD VQQDEw02ODhlZDM3Zi1hY2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyMQYHoTkxspC6CPbgpslpwNMaBvwZyxMNkYsUtP9e3HkqgDfummzVwLQQMU/ wMvxZN4X2XC7m6AIQFd6k0PF8r2J9Fbg8i3LWL4vZUmsHflCm6uDBIYLRLzolijf eRa0ysrgyK4gGgJV6DJrCugqq35C/uMDCq/Zpqb8u3xtI/aa7K/df4l59bIjhSgJ iRy+kmJ9dTKlp+n772MNwZJ9Uxhs5WFzjCSSHP8kkrOBDs7crlxdmPffimg4U6DY NJ8HFMseSo1wQwSQVEgkqdcnJog5P3z7lVdxVPbrW+3Sd/1Kcsgs0wvTkuEZq3qu QwmIMi/uMbbIiNkxKD3wTWQXoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOkrJdxY /sEHOL1u5c9OzNmHpVIBMB8GA1UdIwQYMBaAFJqsFW+pGLQwV0Ha6dXbopM3Rs6H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0NEMi80NUYzQUE3RUFD MTYxMUVEQjk0N0I4NjBDNEY5QUUwMi9tcXdWYjZrWXREQlhRZHJwMWR1aWt6ZEd6 b2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21xd1ZiNmtZdERCWFFkcnAxZHVpa3pkR3pvYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0NEMi80NUYzQUE3RUFDMTYxMUVEQjk0N0I4NjBDNEY5QUUwMi9tcXdWYjZrWXRE QlhRZHJwMWR1aWt6ZEd6b2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSK5HPjvvDagUEmanIwTbo8O8ALUYDKKQGe9Bsn+YUPPFeAbKfB6SB W9iHBBxGjpwAlVhhn5bvAfy6vp2obAEjJ0CXBLh/99J4uu2ZGxhGJXuWMy0vWA+O a1Vwk0mw842eswkhPox33r5nGZ6drRuqD0lY/6g8I+ytMxB7xGlU0jApy8XrBPb9 fFVGHL+B7Hl0twsRBJCTOQesj4z7/+Mm+EucclMVmsJSAgX+zORlVdcqHnDS7nnE tzj2AK92QM7atNoMdVEVar0CEKvOKDBHGDjshqjw1N7YIsmxwde4BztMoA9TCRK5 RsqK6q8s1drzcTDreA/KkYHdXAviaapL -----END CERTIFICATE-----Generated at Mon Aug 4 15:32:29 2025 by rpki-client