$ rpki-client -vvf rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft File: aR7cVncnIjOjjzNRkaropa4q97k.mft (raw, json) Hash identifier: Dy8OHkLcKB5TmM1HjMPbsjNW7iQcgxSxSxPF8ok8kUY= Subject key identifier: 57:BB:D6:59:95:DC:8D:9E:79:C0:D3:8F:14:94:2A:76:93:F1:03:94 Authority key identifier: 69:1E:DC:56:77:27:22:33:A3:8F:33:51:91:AA:E8:A5:AE:2A:F7:B9 Certificate issuer: /CN=A9155725/serialNumber=691EDC5677272233A38F335191AAE8A5AE2AF7B9 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aR7cVncnIjOjjzNRkaropa4q97k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft Manifest number: 49 Signing time: Mon 11 Aug 2025 07:40:12 +0000 Manifest this update: Mon 11 Aug 2025 07:40:11 +0000 Manifest next update: Mon 18 Aug 2025 07:40:11 +0000 Files and hashes: 1: aR7cVncnIjOjjzNRkaropa4q97k.crl (hash: gsZSBIXieaxbXt8GP4o6k0uSYUnowVFisrVzfd1AZn0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.crl rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aR7cVncnIjOjjzNRkaropa4q97k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 07:40:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155725, serialNumber=691EDC5677272233A38F335191AAE8A5AE2AF7B9 Validity Not Before: Aug 11 07:40:11 2025 GMT Not After : Aug 18 07:40:11 2025 GMT Subject: CN=68999e5b-4cba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f2:ee:7b:4a:1f:36:a7:28:5c:d8:23:54:52: 55:65:5e:e9:4f:82:f5:cf:4f:dd:91:32:f9:bc:95: 64:18:c9:92:96:d1:9b:9d:b7:f4:67:93:8e:78:e6: a3:a8:a1:9c:5e:a3:d0:ce:15:fc:0d:ee:61:28:66: 10:82:1a:06:ef:f2:21:bb:d1:51:48:24:a1:4b:6b: dc:53:b4:39:59:4a:86:a3:ec:d9:f5:51:94:44:3c: 2e:7a:12:e9:7e:bf:8e:d2:05:35:18:39:8f:a6:ea: a4:e3:0e:a5:fc:a9:71:74:4f:6e:01:60:fa:12:e7: 1e:99:24:65:25:24:c2:29:46:fd:91:e1:2d:bd:ca: d6:46:af:76:0e:6c:8d:df:e7:bd:c0:c0:7a:f2:c3: aa:da:36:a1:f1:1c:05:e5:6b:4b:ee:03:bc:3c:60: 74:24:56:29:e4:6e:5f:95:91:57:04:46:ac:fb:ba: 66:e1:40:8c:92:2f:79:2f:a4:65:44:2c:73:86:f9: 71:d6:e7:69:b4:e2:5b:bf:7d:43:0b:6b:9d:5f:bc: 99:db:c8:77:8c:3b:df:96:4f:51:38:cb:d2:eb:75: e8:90:14:33:82:db:d9:e3:4b:a6:87:ef:94:11:6e: 6f:2b:13:af:2c:8c:30:8f:f6:af:7e:06:58:4d:61: aa:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:BB:D6:59:95:DC:8D:9E:79:C0:D3:8F:14:94:2A:76:93:F1:03:94 X509v3 Authority Key Identifier: keyid:69:1E:DC:56:77:27:22:33:A3:8F:33:51:91:AA:E8:A5:AE:2A:F7:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aR7cVncnIjOjjzNRkaropa4q97k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155725/5A66CF68083A11F09FF1D074C4F9AE02/aR7cVncnIjOjjzNRkaropa4q97k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:85:12:9c:21:2c:c5:83:f4:37:51:6f:e9:22:30:5b:a7:10: a8:8c:a5:58:d4:94:08:60:55:7a:c1:19:7f:c2:bb:9e:b4:36: c8:89:7e:93:bb:56:47:54:cb:d5:e0:8d:73:8d:a2:49:78:f6: 6d:15:cc:e6:20:0d:ca:5f:ab:fe:ef:28:94:07:e0:b1:c2:82: 0c:e6:43:48:e8:ce:8d:3f:59:b6:06:e7:a3:3e:41:d5:54:e4: a6:3d:ca:fb:ba:47:59:03:55:11:f0:9b:75:f5:4e:74:2b:9d: 86:c9:a5:4b:03:94:40:cd:55:f7:d9:60:d2:0b:d1:a6:9d:91: 1f:27:a6:2c:0c:be:0e:8c:b9:03:3c:c0:5f:5b:11:8c:fd:49: 34:dd:1b:3c:00:1b:96:fb:6a:61:b0:4a:97:6d:ab:f3:fc:44: ca:a8:25:77:fc:15:70:76:5c:6b:39:a6:84:43:d3:a1:4c:d7: 57:74:2d:b9:63:06:08:20:7c:68:90:0f:8a:41:15:18:de:c5: 6b:6d:14:80:90:94:1f:ed:76:09:20:84:40:56:ba:d6:d0:94: 8c:fd:92:e1:4a:cc:32:4e:1e:e5:32:ff:0a:83:d6:5e:39:e0: b9:db:61:38:62:c5:73:06:dc:c4:f8:81:07:ca:b1:a6:45:30: 11:6e:d0:20 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTcyNTExMC8GA1UEBRMoNjkxRURDNTY3NzI3MjIzM0EzOEYzMzUxOTFBQUU4QTVB RTJBRjdCOTAeFw0yNTA4MTEwNzQwMTFaFw0yNTA4MTgwNzQwMTFaMBgxFjAUBgNV BAMTDTY4OTk5ZTViLTRjYmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDV8u57Sh82pyhc2CNUUlVlXulPgvXPT92RMvm8lWQYyZKW0Zudt/Rnk4545qOo oZxeo9DOFfwN7mEoZhCCGgbv8iG70VFIJKFLa9xTtDlZSoaj7Nn1UZREPC56Eul+ v47SBTUYOY+m6qTjDqX8qXF0T24BYPoS5x6ZJGUlJMIpRv2R4S29ytZGr3YObI3f 573AwHryw6raNqHxHAXla0vuA7w8YHQkVinkbl+VkVcERqz7umbhQIySL3kvpGVE LHOG+XHW52m04lu/fUMLa51fvJnbyHeMO9+WT1E4y9LrdeiQFDOC29njS6aH75QR bm8rE68sjDCP9q9+BlhNYappAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUV7vWWZXc jZ55wNOPFJQqdpPxA5QwHwYDVR0jBBgwFoAUaR7cVncnIjOjjzNRkaropa4q97kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1NzI1LzVBNjZDRjY4MDgz QTExRjA5RkYxRDA3NEM0RjlBRTAyL2FSN2NWbmNuSWpPamp6TlJrYXJvcGE0cTk3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYVI3Y1ZuY25Jak9qanpOUmthcm9wYTRxOTdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1 NzI1LzVBNjZDRjY4MDgzQTExRjA5RkYxRDA3NEM0RjlBRTAyL2FSN2NWbmNuSWpP amp6TlJrYXJvcGE0cTk3ay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALeFEpwhLMWD9DdRb+kiMFunEKiMpVjUlAhgVXrBGX/Cu560NsiJfpO7 VkdUy9XgjXONokl49m0VzOYgDcpfq/7vKJQH4LHCggzmQ0jozo0/WbYG56M+QdVU 5KY9yvu6R1kDVRHwm3X1TnQrnYbJpUsDlEDNVffZYNIL0aadkR8npiwMvg6MuQM8 wF9bEYz9STTdGzwAG5b7amGwSpdtq/P8RMqoJXf8FXB2XGs5poRD06FM11d0Lblj BgggfGiQD4pBFRjexWttFICQlB/tdgkghEBWutbQlIz9kuFKzDJOHuUy/wqD1l45 4LnbYThixXMG3MT4gQfKsaZFMBFu0CA= -----END CERTIFICATE-----Generated at Wed Aug 13 04:27:55 2025 by rpki-client