$ rpki-client -vvf rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft File: f30yDyoH5DPdvf4oV_XTGTVFF7k.mft (raw, json) Hash identifier: p0HTobu3KzKw2z5dMUl5RQew0kz3niiEDtxOtgxpCFo= Subject key identifier: 15:D4:C6:9F:56:66:EB:16:B4:A8:77:76:9D:70:2E:A8:58:5A:7A:49 Authority key identifier: 7F:7D:32:0F:2A:07:E4:33:DD:BD:FE:28:57:F5:D3:19:35:45:17:B9 Certificate issuer: /CN=A914877B/serialNumber=7F7D320F2A07E433DDBDFE2857F5D319354517B9 Certificate serial: 0BF6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft Manifest number: 0BEF Signing time: Fri 08 Aug 2025 19:02:06 +0000 Manifest this update: Fri 08 Aug 2025 19:02:06 +0000 Manifest next update: Fri 15 Aug 2025 19:02:06 +0000 Files and hashes: 1: f30yDyoH5DPdvf4oV_XTGTVFF7k.crl (hash: 9q1UAGqd9Ty647R3BEiMgwFPELjcglnFiaIV4BVLQtU=) 2: 800676321BD311EAA341A62DC4F9AE02.roa (hash: RHZCYYPvQQbME4QEcXK5NVornLFSgAMnD5MRoiwlBuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.crl rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3062 (0xbf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914877B, serialNumber=7F7D320F2A07E433DDBDFE2857F5D319354517B9 Validity Not Before: Aug 8 19:02:06 2025 GMT Not After : Aug 15 19:02:06 2025 GMT Subject: CN=689649ae-af98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:eb:21:6d:26:86:2e:52:b4:85:76:ff:d8:2d: db:d4:14:a2:32:ed:95:48:a3:91:07:01:b5:a3:84: 1e:3e:d8:6b:9a:18:90:74:4f:35:c5:2e:68:2c:c5: 33:c0:d3:e2:52:ff:6f:e6:e2:23:0a:75:a2:7f:f5: 38:c5:1e:08:6b:33:30:ed:fa:ee:4d:d2:13:09:a5: 62:1d:08:51:92:a9:a0:b4:67:2b:94:25:14:20:83: 33:16:16:58:cb:d2:00:e5:bb:00:d9:e5:86:2b:6f: 18:df:5a:f6:86:27:7b:dc:39:30:3d:76:cd:fb:00: a4:46:31:e1:9b:ab:47:69:74:8c:3e:bf:85:36:11: 75:2d:ae:49:96:bb:e5:a9:c3:0c:dc:d4:cf:1a:a7: e7:aa:68:e6:3c:fe:95:2a:13:07:50:59:41:ee:dc: 3c:76:d0:1d:d7:27:cb:c9:be:52:4e:1f:ac:de:cb: 09:b0:f8:20:c1:15:19:ae:19:26:6e:c7:e5:04:f3: d6:38:0a:60:ea:40:fb:62:63:a6:11:68:29:2e:91: 67:fe:6e:60:d5:91:c9:46:19:94:81:17:c6:8a:6e: 3c:0c:a5:57:10:83:5d:44:3f:95:86:4e:6e:1b:e1: 18:28:4e:d0:58:75:65:5e:c5:a9:ee:5b:41:aa:5d: f1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D4:C6:9F:56:66:EB:16:B4:A8:77:76:9D:70:2E:A8:58:5A:7A:49 X509v3 Authority Key Identifier: keyid:7F:7D:32:0F:2A:07:E4:33:DD:BD:FE:28:57:F5:D3:19:35:45:17:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f30yDyoH5DPdvf4oV_XTGTVFF7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914877B/2591011E1BD211EAABD0EE2AC4F9AE02/f30yDyoH5DPdvf4oV_XTGTVFF7k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:e8:1e:cd:d9:85:cc:b1:96:9a:3b:a7:97:80:17:61:d1:4c: 2b:27:92:be:1a:d9:09:19:6a:6d:6e:dc:44:84:48:4d:27:88: 22:9e:28:cc:52:a0:40:ea:6b:b5:3d:6b:ae:46:32:6c:27:ae: f0:66:14:a8:32:7d:2f:ad:83:0f:4f:6f:77:5e:ee:c7:2e:fb: ae:d6:85:df:9a:0c:69:8e:cd:fb:5d:6d:ca:a3:4b:69:02:a3: 93:bb:a2:42:d3:63:3e:1f:8a:a1:08:19:ad:bf:af:67:9d:98: 82:2a:cb:4b:fa:c4:14:7e:b5:2e:cc:68:a3:46:91:c0:89:4e: 42:34:fb:c6:f9:a4:cc:ca:92:90:3b:40:5e:c6:fa:0f:38:2d: 68:91:19:5d:33:3b:4b:62:f8:c6:ea:7c:5e:79:89:87:a2:46: 5f:9e:a7:fe:6c:7a:11:79:ae:34:4f:b3:0d:c5:2a:cf:df:51: a7:26:f4:29:2a:03:02:b5:ba:50:df:18:86:de:3f:cf:36:62: 04:3b:48:ae:f8:87:bc:98:4d:27:59:c4:9e:26:d4:b4:82:25: a2:4c:b8:e1:aa:21:41:7c:a6:f6:1a:15:b5:14:57:9c:2c:9f: f9:88:9d:31:4c:00:e2:69:c6:14:0b:c3:7c:13:ed:df:8e:d7: d5:63:9d:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDg3N0IxMTAvBgNVBAUTKDdGN0QzMjBGMkEwN0U0MzNEREJERkUyODU3RjVEMzE5 MzU0NTE3QjkwHhcNMjUwODA4MTkwMjA2WhcNMjUwODE1MTkwMjA2WjAYMRYwFAYD VQQDEw02ODk2NDlhZS1hZjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+shbSaGLlK0hXb/2C3b1BSiMu2VSKORBwG1o4QePthrmhiQdE81xS5oLMUz wNPiUv9v5uIjCnWif/U4xR4IazMw7fruTdITCaViHQhRkqmgtGcrlCUUIIMzFhZY y9IA5bsA2eWGK28Y31r2hid73DkwPXbN+wCkRjHhm6tHaXSMPr+FNhF1La5Jlrvl qcMM3NTPGqfnqmjmPP6VKhMHUFlB7tw8dtAd1yfLyb5STh+s3ssJsPggwRUZrhkm bsflBPPWOApg6kD7YmOmEWgpLpFn/m5g1ZHJRhmUgRfGim48DKVXEINdRD+Vhk5u G+EYKE7QWHVlXsWp7ltBql3x9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXUxp9W ZusWtKh3dp1wLqhYWnpJMB8GA1UdIwQYMBaAFH99Mg8qB+Qz3b3+KFf10xk1RRe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0ODc3Qi8yNTkxMDExRTFC RDIxMUVBQUJEMEVFMkFDNEY5QUUwMi9mMzB5RHlvSDVEUGR2ZjRvVl9YVEdUVkZG N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YzMHlEeW9INURQZHZmNG9WX1hUR1RWRkY3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 ODc3Qi8yNTkxMDExRTFCRDIxMUVBQUJEMEVFMkFDNEY5QUUwMi9mMzB5RHlvSDVE UGR2ZjRvVl9YVEdUVkZGN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr6B7N2YXMsZaaO6eXgBdh0UwrJ5K+GtkJGWptbtxEhEhNJ4ginijM UqBA6mu1PWuuRjJsJ67wZhSoMn0vrYMPT293Xu7HLvuu1oXfmgxpjs37XW3Ko0tp AqOTu6JC02M+H4qhCBmtv69nnZiCKstL+sQUfrUuzGijRpHAiU5CNPvG+aTMypKQ O0BexvoPOC1okRldMztLYvjG6nxeeYmHokZfnqf+bHoRea40T7MNxSrP31GnJvQp KgMCtbpQ3xiG3j/PNmIEO0iu+Ie8mE0nWcSeJtS0giWiTLjhqiFBfKb2GhW1FFec LJ/5iJ0xTADiacYUC8N8E+3fjtfVY52a -----END CERTIFICATE-----Generated at Sun Aug 10 04:56:13 2025 by rpki-client