$ rpki-client -vvf rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft File: rCP1TTAVC0YAnBoCnl7s224FVlY.mft (raw, json) Hash identifier: eJu3eEWJMzQvZJN32M1jOHL9hqlyAPGtpAiwHJTivZI= Subject key identifier: DC:10:37:55:AA:B3:12:52:36:FC:40:16:CB:77:32:36:F1:E5:A3:47 Authority key identifier: AC:23:F5:4D:30:15:0B:46:00:9C:1A:02:9E:5E:EC:DB:6E:05:56:56 Certificate issuer: /CN=A9141586/serialNumber=AC23F54D30150B46009C1A029E5EECDB6E055656 Certificate serial: 02A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft Manifest number: 02A4 Signing time: Sat 09 Aug 2025 02:04:52 +0000 Manifest this update: Sat 09 Aug 2025 02:04:51 +0000 Manifest next update: Sat 16 Aug 2025 02:04:51 +0000 Files and hashes: 1: rCP1TTAVC0YAnBoCnl7s224FVlY.crl (hash: ephcsVbPl1tdA/EcXET1XHpDrRdsMIrrN21X8l4Eeew=) 2: CA08C348098D11EDAB30E934C4F9AE02.roa (hash: aPI8mVL7Dstx7y3IRo2S4CN1FA4wN8FwOnV7yts7LdY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.crl rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 679 (0x2a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141586, serialNumber=AC23F54D30150B46009C1A029E5EECDB6E055656 Validity Not Before: Aug 9 02:04:51 2025 GMT Not After : Aug 16 02:04:51 2025 GMT Subject: CN=6896acc3-e0c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:20:32:94:74:a7:91:ba:02:83:a0:ac:c7:40: 9e:54:a6:a5:6a:fd:47:e7:56:04:80:db:10:66:d6: d0:66:0a:25:2c:ab:c1:c7:3a:d8:d2:e2:84:8c:0e: 03:b2:0c:58:69:5c:45:19:7c:53:08:45:0f:5b:2a: 6b:f0:26:32:7c:1a:68:7e:b7:24:5b:e4:df:96:55: 7e:ac:b1:03:9a:47:ed:4b:44:7b:0e:43:9c:96:aa: 14:68:40:df:11:48:7d:fd:99:cd:a5:a1:04:c9:5c: c7:89:d8:a0:d0:9b:f4:a2:42:03:00:30:58:52:75: 3d:ab:6a:59:09:cb:0c:e9:78:cf:1c:a6:6b:4c:c9: d3:74:dc:12:1b:31:ac:07:a8:58:0f:ad:c6:32:2d: d8:8f:f6:09:3e:62:b7:c8:96:50:5b:fa:4e:e0:e5: b4:5a:69:4a:02:fd:a1:4f:e3:93:7e:7c:06:59:39: c6:e0:2e:df:17:d1:87:d2:87:15:65:6c:81:a8:83: 83:86:eb:89:5a:11:d9:35:45:f8:10:7d:d7:ea:91: af:f3:d5:de:24:8c:d0:20:f7:68:b1:bd:04:a6:65: 58:63:e3:be:17:f0:b2:7b:dc:a4:e9:aa:28:15:82: 19:89:c8:6b:8f:e0:da:63:8b:57:b3:22:70:7b:2e: 54:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:10:37:55:AA:B3:12:52:36:FC:40:16:CB:77:32:36:F1:E5:A3:47 X509v3 Authority Key Identifier: keyid:AC:23:F5:4D:30:15:0B:46:00:9C:1A:02:9E:5E:EC:DB:6E:05:56:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rCP1TTAVC0YAnBoCnl7s224FVlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141586/0D619168098B11EDAC8FCF2FC4F9AE02/rCP1TTAVC0YAnBoCnl7s224FVlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:64:d3:ae:f0:00:13:6e:33:c7:f6:96:8b:72:18:f8:d3:47: 4b:0e:32:fa:30:b3:6c:82:05:3f:58:5d:0d:d2:f8:7c:00:67: 27:7e:2b:71:44:5c:a5:e5:58:83:7d:71:6e:e2:a7:f3:57:62: 2b:dc:0d:fe:80:28:4a:0c:19:e2:52:d2:ce:ba:b1:47:1d:25: 8f:fb:af:a6:01:33:df:d6:55:d2:7e:ac:ad:68:3c:38:23:43: ec:23:d8:09:16:a2:f8:a4:38:bf:c0:14:b3:9c:5c:33:20:fc: f6:a9:48:65:14:84:e7:f0:1c:9f:95:27:9c:0e:16:b1:28:cf: 39:b6:68:73:2e:f2:36:18:18:a4:26:e2:a1:06:e8:a2:29:a7: c7:72:ea:0d:11:fa:69:f2:3f:a2:e3:6e:e8:ba:b6:ae:8f:21: c1:99:6f:73:f8:19:e3:70:f6:49:93:ca:75:4f:7d:a9:38:34: be:d7:02:fa:f3:74:f8:08:8c:43:76:e5:2a:90:a6:ce:39:af: d9:0a:30:00:a4:4b:85:ae:95:80:aa:d2:28:ef:e6:8e:ce:8c: 3d:45:86:a1:45:2e:5e:53:b0:43:95:d8:42:85:a4:c4:2b:a8: a4:00:5f:25:3a:f5:62:d3:72:0a:42:6e:0f:f1:03:bb:67:ea: 44:97:bd:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE1ODYxMTAvBgNVBAUTKEFDMjNGNTREMzAxNTBCNDYwMDlDMUEwMjlFNUVFQ0RC NkUwNTU2NTYwHhcNMjUwODA5MDIwNDUxWhcNMjUwODE2MDIwNDUxWjAYMRYwFAYD VQQDEw02ODk2YWNjMy1lMGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiAylHSnkboCg6Csx0CeVKalav1H51YEgNsQZtbQZgolLKvBxzrY0uKEjA4D sgxYaVxFGXxTCEUPWypr8CYyfBpofrckW+TfllV+rLEDmkftS0R7DkOclqoUaEDf EUh9/ZnNpaEEyVzHidig0Jv0okIDADBYUnU9q2pZCcsM6XjPHKZrTMnTdNwSGzGs B6hYD63GMi3Yj/YJPmK3yJZQW/pO4OW0WmlKAv2hT+OTfnwGWTnG4C7fF9GH0ocV ZWyBqIODhuuJWhHZNUX4EH3X6pGv89XeJIzQIPdosb0EpmVYY+O+F/Cye9yk6aoo FYIZichrj+DaY4tXsyJwey5UuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwQN1Wq sxJSNvxAFst3Mjbx5aNHMB8GA1UdIwQYMBaAFKwj9U0wFQtGAJwaAp5e7NtuBVZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTU4Ni8wRDYxOTE2ODA5 OEIxMUVEQUM4RkNGMkZDNEY5QUUwMi9yQ1AxVFRBVkMwWUFuQm9Dbmw3czIyNEZW bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JDUDFUVEFWQzBZQW5Cb0NubDdzMjI0RlZsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTU4Ni8wRDYxOTE2ODA5OEIxMUVEQUM4RkNGMkZDNEY5QUUwMi9yQ1AxVFRBVkMw WUFuQm9Dbmw3czIyNEZWbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/ZNOu8AATbjPH9paLchj400dLDjL6MLNsggU/WF0N0vh8AGcnfitx RFyl5ViDfXFu4qfzV2Ir3A3+gChKDBniUtLOurFHHSWP+6+mATPf1lXSfqytaDw4 I0PsI9gJFqL4pDi/wBSznFwzIPz2qUhlFITn8ByflSecDhaxKM85tmhzLvI2GBik JuKhBuiiKafHcuoNEfpp8j+i427ouraujyHBmW9z+BnjcPZJk8p1T32pODS+1wL6 83T4CIxDduUqkKbOOa/ZCjAApEuFrpWAqtIo7+aOzow9RYahRS5eU7BDldhChaTE K6ikAF8lOvVi03IKQm4P8QO7Z+pEl711 -----END CERTIFICATE-----Generated at Sat Aug 9 05:49:13 2025 by rpki-client