$ rpki-client -vvf rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft File: DL7Sere2gbyZZqziRPy_KX5lyhk.mft (raw, json) Hash identifier: ltfP/sL8tzH4xQ/nUzwhSPpWmi2jiwRJXC/+HPXcAKc= Subject key identifier: 4C:67:C1:F5:A4:BE:FE:B7:09:FA:01:91:8E:A2:02:C8:C2:D1:8E:3C Authority key identifier: 0C:BE:D2:7A:B7:B6:81:BC:99:66:AC:E2:44:FC:BF:29:7E:65:CA:19 Certificate issuer: /CN=A9163BEF/serialNumber=0CBED27AB7B681BC9966ACE244FCBF297E65CA19 Certificate serial: 04F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft Manifest number: 04EA Signing time: Sat 09 Aug 2025 00:11:08 +0000 Manifest this update: Sat 09 Aug 2025 00:11:08 +0000 Manifest next update: Sat 16 Aug 2025 00:11:08 +0000 Files and hashes: 1: DL7Sere2gbyZZqziRPy_KX5lyhk.crl (hash: RK1YRXoA7xl0tsheaC0zcHwud0UJmx8f590Dy+5aKs0=) 2: 8A9545AE6D1011EFA13D6E2BC4F9AE02.roa (hash: 6texudPJbHfd6J0MPN1D5Oqp/jznw5zyBOIDtk3K0JM=) 3: 8A190AB66D1011EFA13D6E2BC4F9AE02.roa (hash: JXwBxiGEkFaFWVz8HbHFVp2nlp17eTZBvyxAVrqYWhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.crl rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1264 (0x4f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163BEF, serialNumber=0CBED27AB7B681BC9966ACE244FCBF297E65CA19 Validity Not Before: Aug 9 00:11:08 2025 GMT Not After : Aug 16 00:11:08 2025 GMT Subject: CN=6896921c-9327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:24:19:3d:48:2e:d8:3c:09:b4:29:fc:3a:d9: 4a:70:e9:a6:c0:cd:59:54:e6:99:17:33:eb:14:7c: 16:17:95:2b:dd:fd:9c:e8:2f:4c:42:ea:79:9a:9d: c9:63:39:66:3c:c5:b0:ed:66:68:3c:83:c6:0b:7f: bd:10:b3:cf:5c:70:98:8d:c6:88:34:2e:05:f5:11: d1:81:69:6a:a6:63:de:10:c8:8d:d4:97:55:55:ce: ae:c0:a4:04:3d:f2:ab:ab:fc:aa:5f:42:cb:85:03: f8:78:86:b2:2c:c1:0a:51:a5:ce:e4:54:f6:8e:f8: 8e:9f:22:bc:e1:61:de:e9:0e:ec:c7:0f:0f:a2:ea: 8a:81:1f:8f:4a:7c:39:bd:28:45:d3:ec:d6:33:6d: 83:fa:bf:c8:4c:e7:48:0f:25:0b:ad:d5:ed:3f:a1: 0f:cb:1d:e1:d2:5a:e2:dd:ff:eb:b3:5c:26:ed:21: dc:86:2c:d1:ca:16:17:98:26:89:95:cf:b3:69:49: 89:c4:6b:7d:8d:9e:c8:8a:8c:5a:4f:c4:64:5f:88: f6:0d:3d:c6:b1:70:63:18:82:4b:f8:63:0b:3a:e3: 7b:c4:29:57:7b:ac:b3:c0:ee:b1:a3:13:f4:7c:d4: 88:2e:95:8a:51:76:68:95:02:a8:d0:24:65:89:e6: 18:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:67:C1:F5:A4:BE:FE:B7:09:FA:01:91:8E:A2:02:C8:C2:D1:8E:3C X509v3 Authority Key Identifier: keyid:0C:BE:D2:7A:B7:B6:81:BC:99:66:AC:E2:44:FC:BF:29:7E:65:CA:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:bc:d4:30:fb:c0:1e:27:c5:ac:77:2d:2f:24:8e:53:f3:dd: 5f:ba:b9:6d:b7:0a:0f:18:28:c7:be:7d:47:f0:13:9b:6b:e7: 20:dd:f5:4d:08:76:75:ae:9d:07:1d:1e:23:12:a2:df:2a:b3: 08:56:c2:97:e0:1e:22:5b:9b:67:19:0f:3a:34:63:d6:7f:1b: fd:8d:f1:f8:03:43:d4:f9:0e:5f:c7:54:de:50:a4:d3:98:36: 01:77:79:2e:1d:1d:59:de:16:3d:23:db:e9:99:7c:f0:00:87: e2:cb:75:67:af:d2:d5:a6:8b:78:42:c9:55:49:06:eb:34:9f: 9b:47:dc:d5:44:9b:a7:04:da:ff:dc:55:e4:e4:9c:17:b9:5c: ca:94:8c:54:4e:41:c5:e1:2a:1a:1f:8f:ca:3b:15:21:62:3a: 27:f8:6b:a7:09:ce:e0:48:a1:5e:5b:ba:a1:ba:1c:f6:98:cd: bc:3c:5d:df:c2:01:55:36:7d:e8:72:13:c4:ca:d7:e8:2f:0e: fe:c1:e7:3d:19:c6:c7:78:1a:b7:8a:10:cc:48:39:ec:7f:06: 23:96:63:01:ad:7c:0e:c6:38:45:0c:a2:36:d2:41:bb:41:d7: 95:7c:e7:f7:cf:44:aa:71:de:ad:7b:1f:49:85:6f:83:01:06: 28:00:cb:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNCRUYxMTAvBgNVBAUTKDBDQkVEMjdBQjdCNjgxQkM5OTY2QUNFMjQ0RkNCRjI5 N0U2NUNBMTkwHhcNMjUwODA5MDAxMTA4WhcNMjUwODE2MDAxMTA4WjAYMRYwFAYD VQQDEw02ODk2OTIxYy05MzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7yQZPUgu2DwJtCn8OtlKcOmmwM1ZVOaZFzPrFHwWF5Ur3f2c6C9MQup5mp3J YzlmPMWw7WZoPIPGC3+9ELPPXHCYjcaINC4F9RHRgWlqpmPeEMiN1JdVVc6uwKQE PfKrq/yqX0LLhQP4eIayLMEKUaXO5FT2jviOnyK84WHe6Q7sxw8PouqKgR+PSnw5 vShF0+zWM22D+r/ITOdIDyULrdXtP6EPyx3h0lri3f/rs1wm7SHchizRyhYXmCaJ lc+zaUmJxGt9jZ7IioxaT8RkX4j2DT3GsXBjGIJL+GMLOuN7xClXe6yzwO6xoxP0 fNSILpWKUXZolQKo0CRlieYYkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFExnwfWk vv63CfoBkY6iAsjC0Y48MB8GA1UdIwQYMBaAFAy+0nq3toG8mWas4kT8vyl+ZcoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0JFRi84QUFGRTI4QzI1 Q0YxMUVDOEI0QTk5MkVDNEY5QUUwMi9ETDdTZXJlMmdieVpacXppUlB5X0tYNWx5 aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RMN1NlcmUyZ2J5WlpxemlSUHlfS1g1bHloay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0JFRi84QUFGRTI4QzI1Q0YxMUVDOEI0QTk5MkVDNEY5QUUwMi9ETDdTZXJlMmdi eVpacXppUlB5X0tYNWx5aGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBvNQw+8AeJ8Wsdy0vJI5T891furlttwoPGCjHvn1H8BOba+cg3fVN CHZ1rp0HHR4jEqLfKrMIVsKX4B4iW5tnGQ86NGPWfxv9jfH4A0PU+Q5fx1TeUKTT mDYBd3kuHR1Z3hY9I9vpmXzwAIfiy3Vnr9LVpot4QslVSQbrNJ+bR9zVRJunBNr/ 3FXk5JwXuVzKlIxUTkHF4SoaH4/KOxUhYjon+GunCc7gSKFeW7qhuhz2mM28PF3f wgFVNn3ochPEytfoLw7+wec9GcbHeBq3ihDMSDnsfwYjlmMBrXwOxjhFDKI20kG7 QdeVfOf3z0Sqcd6tex9JhW+DAQYoAMug -----END CERTIFICATE-----Generated at Sun Aug 10 04:46:58 2025 by rpki-client