$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft File: 320AK7yrolDSrmtEVOPL_WfSx-o.mft (raw, json) Hash identifier: qvapYfqwcksMCIjjT1h8T12iQge2OxRsWz/KANyBkho= Subject key identifier: 69:82:7A:F3:EB:20:1E:77:2A:04:FC:97:BA:19:AB:5E:1B:0A:C2:4D Authority key identifier: DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA Certificate issuer: /CN=A9143DE2/serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Certificate serial: 09B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft Manifest number: 09AB Signing time: Sun 10 Aug 2025 20:03:22 +0000 Manifest this update: Sun 10 Aug 2025 20:03:22 +0000 Manifest next update: Sun 17 Aug 2025 20:03:22 +0000 Files and hashes: 1: 320AK7yrolDSrmtEVOPL_WfSx-o.crl (hash: PWh3g51BeL/HFe2DDdVsKzLJql3ryyMqczlmzxHsIXg=) 2: C07738FE9F4511EB88EBCA76C4F9AE02.roa (hash: EW5gw++/Nv/7XkyhmrGAdJFCyCQBgQSX+Pdw0qIT5p4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2485 (0x9b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DE2, serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Validity Not Before: Aug 10 20:03:22 2025 GMT Not After : Aug 17 20:03:22 2025 GMT Subject: CN=6898fb0a-7b4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:3c:a7:63:56:2e:3c:4a:00:dd:9f:62:ed:33: 83:26:e2:7d:34:51:64:c4:6a:e9:39:98:ed:9d:44: d7:38:d8:1c:2c:f1:10:22:d1:eb:83:03:72:01:0d: ca:1b:d6:3d:26:76:d0:b7:e1:1b:28:7f:cf:23:8c: 2a:e5:83:05:37:9f:24:8e:81:02:d5:bf:75:53:8d: 04:74:f6:69:14:67:a2:4e:12:0b:bc:1f:c4:b7:c6: 15:0e:99:8f:3d:73:e0:13:52:cb:52:dd:09:ac:90: 09:d3:ff:46:c1:a2:30:7a:43:ae:6c:5d:20:11:cc: ca:c8:2c:63:6b:bb:92:c7:20:be:f3:32:e4:1d:67: d0:37:65:63:ac:25:a6:15:d8:8e:59:75:f0:30:1f: 34:70:11:f6:19:0c:50:61:fd:39:f7:0c:9d:c0:00: 3e:34:e2:31:9c:29:71:1b:a3:28:3a:48:5b:c3:97: ec:37:9d:63:4b:05:23:4e:b7:c3:25:dc:af:fb:1e: 79:e9:81:7c:49:1f:c7:d3:c5:8f:7a:58:2f:62:ef: f4:be:4d:c2:5e:97:24:b8:03:d4:00:9d:53:42:cc: a3:cf:47:c2:a7:43:89:9d:d7:33:25:43:dd:55:3c: d9:70:66:f2:f6:d3:6b:ae:22:b3:5d:af:79:c4:8c: b2:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:82:7A:F3:EB:20:1E:77:2A:04:FC:97:BA:19:AB:5E:1B:0A:C2:4D X509v3 Authority Key Identifier: keyid:DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:fd:7c:0c:fd:f5:f6:b3:a3:00:ac:31:ca:53:90:d6:85:83: 87:e6:8e:d6:22:24:5a:72:e8:4e:4d:cb:19:73:c9:0a:c1:1d: ab:31:e9:32:35:d2:56:25:9c:38:4b:96:4d:a4:f0:b0:80:64: 19:90:7f:73:83:59:3b:19:6a:3c:b3:94:12:2e:2c:7a:63:b1: e3:90:26:26:e8:48:d3:94:e1:ee:22:5c:d3:7b:0f:48:93:9c: c1:76:ed:9a:3a:bc:b1:07:01:b4:51:8a:8e:ce:d7:24:21:d1: fc:07:fc:9b:8b:cc:e8:d0:6e:fa:fa:a4:e2:59:a1:8d:7c:d4: c7:ae:93:49:00:f2:42:c4:48:ce:81:69:87:6c:8a:d1:d8:e7: fe:db:8e:66:90:da:bd:f2:5b:6c:8f:e8:52:6d:82:fe:0b:46: de:7b:69:8f:0f:80:c0:e5:49:e0:a9:51:d8:11:29:3e:fd:75: 2f:99:3f:ab:12:fd:4d:ac:dc:c4:92:53:62:86:dd:19:d0:12: ff:ec:fb:31:38:4d:6a:e5:65:77:b1:ef:50:8e:2c:c4:6f:a5: b5:a8:f1:dd:f4:30:dd:de:2c:cf:d5:42:32:12:ba:38:6e:61: 2c:2a:93:4e:74:2f:cc:96:7d:83:b2:1e:05:04:91:0f:6b:f3: 19:c1:ed:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNERTIxMTAvBgNVBAUTKERGNkQwMDJCQkNBQkEyNTBEMkFFNkI0NDU0RTNDQkZE NjdEMkM3RUEwHhcNMjUwODEwMjAwMzIyWhcNMjUwODE3MjAwMzIyWjAYMRYwFAYD VQQDEw02ODk4ZmIwYS03YjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4zynY1YuPEoA3Z9i7TODJuJ9NFFkxGrpOZjtnUTXONgcLPEQItHrgwNyAQ3K G9Y9JnbQt+EbKH/PI4wq5YMFN58kjoEC1b91U40EdPZpFGeiThILvB/Et8YVDpmP PXPgE1LLUt0JrJAJ0/9GwaIwekOubF0gEczKyCxja7uSxyC+8zLkHWfQN2VjrCWm FdiOWXXwMB80cBH2GQxQYf059wydwAA+NOIxnClxG6MoOkhbw5fsN51jSwUjTrfD Jdyv+x556YF8SR/H08WPelgvYu/0vk3CXpckuAPUAJ1TQsyjz0fCp0OJndczJUPd VTzZcGby9tNrriKzXa95xIyyHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGmCevPr IB53KgT8l7oZq14bCsJNMB8GA1UdIwQYMBaAFN9tACu8q6JQ0q5rRFTjy/1n0sfq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RFMi9EMjE4REQ1MjhF OTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9sRFNybXRFVk9QTF9XZlN4 LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyMEFLN3lyb2xEU3JtdEVWT1BMX1dmU3gtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0RFMi9EMjE4REQ1MjhFOTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9s RFNybXRFVk9QTF9XZlN4LW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCU/XwM/fX2s6MArDHKU5DWhYOH5o7WIiRacuhOTcsZc8kKwR2rMeky NdJWJZw4S5ZNpPCwgGQZkH9zg1k7GWo8s5QSLix6Y7HjkCYm6EjTlOHuIlzTew9I k5zBdu2aOryxBwG0UYqOztckIdH8B/ybi8zo0G76+qTiWaGNfNTHrpNJAPJCxEjO gWmHbIrR2Of+245mkNq98ltsj+hSbYL+C0bee2mPD4DA5UngqVHYESk+/XUvmT+r Ev1NrNzEklNiht0Z0BL/7PsxOE1q5WV3se9QjizEb6W1qPHd9DDd3izP1UIyEro4 bmEsKpNOdC/Mln2Dsh4FBJEPa/MZwe0q -----END CERTIFICATE-----Generated at Mon Aug 11 01:49:26 2025 by rpki-client