$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft File: pZmI7E1t1bpqMPhmUatWLBimo04.mft (raw, json) Hash identifier: nHi3Zdo96uQrPpfgStqVQprMHzxOtIp7TKCqxDBPx5g= Subject key identifier: D7:09:01:63:DC:E9:A8:F5:7C:4B:9A:85:B1:FA:5D:D3:5A:20:0A:72 Authority key identifier: A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E Certificate issuer: /CN=A9143FF5/serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Certificate serial: 04FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft Manifest number: 04F5 Signing time: Thu 07 Aug 2025 00:10:42 +0000 Manifest this update: Thu 07 Aug 2025 00:10:41 +0000 Manifest next update: Thu 14 Aug 2025 00:10:41 +0000 Files and hashes: 1: pZmI7E1t1bpqMPhmUatWLBimo04.crl (hash: 0uEg9Hm21P/A3iGHwAoxU1POHFlNzeTwyFtY12hs8VM=) 2: A027E062300911ECAE581534C4F9AE02.roa (hash: krTyx4GXgFlPzZ2i1hVEEfK54ydEVTwtrf/GVqS5/WA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 00:10:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1274 (0x4fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FF5, serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Validity Not Before: Aug 7 00:10:41 2025 GMT Not After : Aug 14 00:10:41 2025 GMT Subject: CN=6893ef02-57fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ef:0f:11:6c:ba:96:63:60:c9:85:f7:ca:bd: 98:b8:71:63:17:dc:a1:34:3c:c4:e0:de:90:ad:8a: 2c:95:72:d7:85:ef:02:b1:35:67:c9:1d:51:6f:dc: 31:02:62:e9:fe:e0:c6:54:86:ba:ca:12:ee:2f:83: fb:b1:2b:2f:18:68:fc:03:a0:f4:3a:ff:7c:9c:78: 83:6d:08:1b:34:ff:2f:23:92:07:ec:96:a3:28:ef: 16:75:10:a1:9e:b8:f3:63:da:8a:75:ba:95:5b:02: 6e:61:3a:3d:d9:a5:dd:b0:00:b1:e1:1d:f0:51:1d: 7d:9a:fa:3f:98:99:1e:63:aa:a5:2f:15:e5:24:dc: df:ed:1a:46:ae:f6:42:96:98:4a:4e:4b:63:ac:e5: a8:1d:f0:18:2b:62:78:be:58:1a:e1:07:50:ff:be: c2:4d:13:9c:e8:34:ce:d2:55:5d:1f:91:cc:c7:f6: 49:be:0d:34:83:6d:8c:b3:52:2a:7b:23:8e:19:94: 19:89:63:61:c3:5b:13:1c:e4:db:f9:21:de:cc:9c: c8:66:3d:3d:44:c1:97:c9:3d:7b:66:a0:67:66:43: 4c:07:81:76:23:10:a9:6b:94:da:48:15:e2:f5:6b: 13:75:8e:1a:b4:ed:1d:66:96:d6:57:8f:4a:79:a5: 7c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:09:01:63:DC:E9:A8:F5:7C:4B:9A:85:B1:FA:5D:D3:5A:20:0A:72 X509v3 Authority Key Identifier: keyid:A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:8d:90:f7:3b:77:b1:cb:87:ba:2b:ba:9d:2a:3c:0f:13:f1: e8:5d:89:5a:fa:46:4b:47:57:e5:9d:fa:9f:a8:66:7d:a6:09: 94:06:e1:f6:55:b9:73:87:c7:66:d2:2e:bf:cc:1c:a2:e3:07: 1d:fb:5d:1a:3d:16:8e:b2:26:5f:30:21:cc:64:9c:63:aa:17: e0:e3:31:5e:e9:37:63:ce:4b:1c:f6:9a:a6:60:45:4e:06:84: c8:75:e7:e7:a6:60:0f:ed:8c:90:e5:5c:6f:e5:34:08:0f:21: 7a:ff:b0:31:0c:b9:c7:40:36:1c:72:ed:16:45:6b:e0:e0:c7: 15:23:77:44:fd:1f:e7:8f:03:90:08:38:1d:1e:42:fb:9f:4d: d6:c0:07:e4:3b:ba:47:da:9f:70:65:02:40:01:9a:de:26:85: cf:52:17:b0:22:c9:60:64:5c:a6:84:a9:0a:0f:f9:83:ad:3d: b1:1d:b5:ea:52:ae:b2:b2:cd:e4:05:1b:d1:75:3f:02:0a:72: ed:3c:db:ea:55:c3:c9:66:c5:7a:b5:66:7f:99:ce:6f:2a:a8: 46:f8:44:3d:f1:07:3f:df:76:ba:e5:cb:8b:bd:78:1c:9b:a2: 34:e3:98:fd:19:8d:c9:d9:57:74:1b:38:e0:0a:8f:1c:12:ce: 81:02:3d:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGRjUxMTAvBgNVBAUTKEE1OTk4OEVDNEQ2REQ1QkE2QTMwRjg2NjUxQUI1NjJD MThBNkEzNEUwHhcNMjUwODA3MDAxMDQxWhcNMjUwODE0MDAxMDQxWjAYMRYwFAYD VQQDEw02ODkzZWYwMi01N2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+8PEWy6lmNgyYX3yr2YuHFjF9yhNDzE4N6QrYoslXLXhe8CsTVnyR1Rb9wx AmLp/uDGVIa6yhLuL4P7sSsvGGj8A6D0Ov98nHiDbQgbNP8vI5IH7JajKO8WdRCh nrjzY9qKdbqVWwJuYTo92aXdsACx4R3wUR19mvo/mJkeY6qlLxXlJNzf7RpGrvZC lphKTktjrOWoHfAYK2J4vlga4QdQ/77CTROc6DTO0lVdH5HMx/ZJvg00g22Ms1Iq eyOOGZQZiWNhw1sTHOTb+SHezJzIZj09RMGXyT17ZqBnZkNMB4F2IxCpa5TaSBXi 9WsTdY4atO0dZpbWV49KeaV8cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcJAWPc 6aj1fEuahbH6XdNaIApyMB8GA1UdIwQYMBaAFKWZiOxNbdW6ajD4ZlGrViwYpqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZGNS8wMTM5NjlCNDIw MUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFicHFNUGhtVWF0V0xCaW1v MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BabUk3RTF0MWJwcU1QaG1VYXRXTEJpbW8wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0ZGNS8wMTM5NjlCNDIwMUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFi cHFNUGhtVWF0V0xCaW1vMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnjZD3O3exy4e6K7qdKjwPE/HoXYla+kZLR1flnfqfqGZ9pgmUBuH2 Vblzh8dm0i6/zByi4wcd+10aPRaOsiZfMCHMZJxjqhfg4zFe6Tdjzksc9pqmYEVO BoTIdefnpmAP7YyQ5Vxv5TQIDyF6/7AxDLnHQDYccu0WRWvg4McVI3dE/R/njwOQ CDgdHkL7n03WwAfkO7pH2p9wZQJAAZreJoXPUhewIslgZFymhKkKD/mDrT2xHbXq Uq6yss3kBRvRdT8CCnLtPNvqVcPJZsV6tWZ/mc5vKqhG+EQ98Qc/33a65cuLvXgc m6I045j9GY3J2Vd0GzjgCo8cEs6BAj1N -----END CERTIFICATE-----Generated at Fri Aug 8 21:01:06 2025 by rpki-client