$ rpki-client -vvf rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft File: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft (raw, json) Hash identifier: LWItQEzQ9k4hBa4uCE4V/q/JJf211NkW7hx//NQpn/8= Subject key identifier: 0F:F3:FD:81:F5:EB:78:37:4C:62:62:15:DE:9F:94:F6:98:2F:C4:C0 Authority key identifier: 69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 Certificate issuer: /CN=A914FED3/serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Certificate serial: 0E26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft Manifest number: 0E0E Signing time: Sun 10 Aug 2025 17:51:20 +0000 Manifest this update: Sun 10 Aug 2025 17:51:19 +0000 Manifest next update: Sun 17 Aug 2025 17:51:19 +0000 Files and hashes: 1: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl (hash: G34cA0Evocsl2Vk/E93wQP6pXzwxCXzLRtHNU3riz/0=) 2: F9BDC484F7B011EB84345029C4F9AE02.roa (hash: TISln3OWwFMxrFHBXjhzJmsuAj7ldgpqpKcI/7qFxoU=) 3: 6E8576BC0F1911F0A007DF16C4F9AE02.roa (hash: cRBzFvwtKhO498akQMxVv4jrQ/Ofn1ctENdiE3NLHgk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3622 (0xe26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FED3, serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Validity Not Before: Aug 10 17:51:19 2025 GMT Not After : Aug 17 17:51:19 2025 GMT Subject: CN=6898dc17-991b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:16:79:74:48:a2:0e:52:d6:be:31:a7:cf:c4: 86:99:75:de:9f:0d:0b:2d:46:67:1f:12:48:d3:37: 82:20:ae:39:e7:7e:3e:01:6e:a4:d8:76:c8:f9:47: 10:1d:63:b1:36:7c:66:24:5b:02:37:22:f7:2e:38: e6:70:ac:58:28:2e:54:f9:c8:62:33:eb:db:b3:b5: 99:76:c5:b5:c1:b5:57:c1:4d:54:6f:0a:f8:3c:12: 45:96:6c:4e:32:85:2d:b3:24:aa:45:7c:ee:33:47: 23:0a:5e:d1:3a:09:a2:1e:a3:88:15:98:34:87:db: 98:e4:af:45:06:0d:67:d9:0f:9e:85:cf:c8:c9:d5: b0:cd:47:3f:28:89:38:8c:c5:44:10:ba:68:1a:8d: 59:3e:b2:6a:30:e0:f5:cc:6b:d7:12:68:09:ea:7e: e6:8e:8d:9e:32:58:7f:ec:f8:30:35:f5:a8:4f:cf: 3f:ae:61:73:d7:a4:12:f7:cf:e3:2d:73:ad:24:81: 64:76:24:97:bc:b1:b6:02:3f:de:c9:b3:52:5b:11: 06:79:56:12:6a:39:e3:b7:56:8b:dd:41:b1:04:b9: 7d:92:27:3a:c7:73:9e:a7:e9:07:27:3c:6a:66:36: 90:09:17:01:f4:16:38:7b:9e:1c:81:e5:95:dc:56: d1:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:F3:FD:81:F5:EB:78:37:4C:62:62:15:DE:9F:94:F6:98:2F:C4:C0 X509v3 Authority Key Identifier: keyid:69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:1a:77:ea:e3:8d:23:7d:ad:0e:7c:15:fe:ac:73:bd:12:9b: cf:04:13:93:04:a7:fc:a6:57:45:15:61:88:1f:7a:34:d8:f4: 26:7c:a1:92:99:d8:7f:d9:e3:08:31:d5:83:cb:a3:b5:eb:95: 52:fd:10:e7:b4:4c:f7:a3:55:48:5b:48:a4:be:1f:57:94:9d: 4c:f4:bf:0a:9d:38:6f:0c:f4:5b:c8:b3:56:08:e0:3c:4a:7c: 72:db:61:8a:12:95:03:cd:23:54:db:31:4f:3c:c2:0e:c4:27: 60:43:b4:7d:a2:f8:c3:b8:1f:70:c8:80:a3:67:59:17:3a:67: 24:da:4d:41:30:cb:16:bd:a2:fe:35:34:04:49:9e:92:d6:5a: 77:1c:68:3a:22:11:d8:b9:c6:fa:5a:09:b3:9d:8e:e9:f8:84: ea:41:6d:84:54:39:30:3e:2c:e2:27:6e:d5:c0:8e:fb:c8:e2: 76:bc:5e:ba:0c:cd:f3:15:c2:7b:f5:80:d6:07:4b:40:f4:f4: a1:37:2a:10:bf:28:8b:6f:62:c2:ca:3c:57:76:55:7c:97:1a: b6:df:1a:13:e6:11:93:5b:1f:db:9d:56:30:65:6b:6c:9a:fe: ea:79:47:93:77:05:c7:0e:e8:0f:ef:77:57:c6:85:36:0c:8f: cf:f6:f2:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZFRDMxMTAvBgNVBAUTKDY5OUY1MUE5RDlFMTQ1NkQxNjAxQkU4M0Q4Qjk0QUQ1 OUE0MzgyMzMwHhcNMjUwODEwMTc1MTE5WhcNMjUwODE3MTc1MTE5WjAYMRYwFAYD VQQDEw02ODk4ZGMxNy05OTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhZ5dEiiDlLWvjGnz8SGmXXenw0LLUZnHxJI0zeCIK45534+AW6k2HbI+UcQ HWOxNnxmJFsCNyL3LjjmcKxYKC5U+chiM+vbs7WZdsW1wbVXwU1Ubwr4PBJFlmxO MoUtsySqRXzuM0cjCl7ROgmiHqOIFZg0h9uY5K9FBg1n2Q+ehc/IydWwzUc/KIk4 jMVEELpoGo1ZPrJqMOD1zGvXEmgJ6n7mjo2eMlh/7PgwNfWoT88/rmFz16QS98/j LXOtJIFkdiSXvLG2Aj/eybNSWxEGeVYSajnjt1aL3UGxBLl9kic6x3Oep+kHJzxq ZjaQCRcB9BY4e54cgeWV3FbR3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA/z/YH1 63g3TGJiFd6flPaYL8TAMB8GA1UdIwQYMBaAFGmfUanZ4UVtFgG+g9i5StWaQ4Iz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkVEMy9GODU4NEY3Q0Iz OEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJXMFdBYjZEMkxsSzFacERn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaOVJxZG5oUlcwV0FiNkQyTGxLMVpwRGdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkVEMy9GODU4NEY3Q0IzOEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJX MFdBYjZEMkxsSzFacERnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+Gnfq440jfa0OfBX+rHO9EpvPBBOTBKf8pldFFWGIH3o02PQmfKGS mdh/2eMIMdWDy6O165VS/RDntEz3o1VIW0ikvh9XlJ1M9L8KnThvDPRbyLNWCOA8 Snxy22GKEpUDzSNU2zFPPMIOxCdgQ7R9ovjDuB9wyICjZ1kXOmck2k1BMMsWvaL+ NTQESZ6S1lp3HGg6IhHYucb6WgmznY7p+ITqQW2EVDkwPiziJ27VwI77yOJ2vF66 DM3zFcJ79YDWB0tA9PShNyoQvyiLb2LCyjxXdlV8lxq23xoT5hGTWx/bnVYwZWts mv7qeUeTdwXHDugP73dXxoU2DI/P9vId -----END CERTIFICATE-----Generated at Sun Aug 10 21:15:22 2025 by rpki-client