$ rpki-client -vvf rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.mft File: _z4OD6f_JX29huYrEpqZTYpJ2E4.mft (raw, json) Hash identifier: DvFGSCnAQbPZzyj6E/QUkM7Rzjjw81zV/Ln5vvcHz7s= Subject key identifier: 28:F0:E4:F3:12:47:0B:1A:D4:BB:BD:ED:77:19:9B:4C:B4:6B:71:4A Authority key identifier: FF:3E:0E:0F:A7:FF:25:7D:BD:86:E6:2B:12:9A:99:4D:8A:49:D8:4E Certificate issuer: /CN=A916B1F5/serialNumber=FF3E0E0FA7FF257DBD86E62B129A994D8A49D84E Certificate serial: 023F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_z4OD6f_JX29huYrEpqZTYpJ2E4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.mft Manifest number: 023B Signing time: Mon 11 Aug 2025 02:08:07 +0000 Manifest this update: Mon 11 Aug 2025 02:08:06 +0000 Manifest next update: Mon 18 Aug 2025 02:08:06 +0000 Files and hashes: 1: _z4OD6f_JX29huYrEpqZTYpJ2E4.crl (hash: tQ0QGBAvU0Nz964DV3G9zw7hu2y1YNso6HV2zezC27g=) 2: 28536FDC340111EDB747A054C4F9AE02.roa (hash: 767ZJ3Zu0HqcoNrNoqHbrHeEu3FFQ1fr2JP5wUeYGvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.crl rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_z4OD6f_JX29huYrEpqZTYpJ2E4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B1F5, serialNumber=FF3E0E0FA7FF257DBD86E62B129A994D8A49D84E Validity Not Before: Aug 11 02:08:06 2025 GMT Not After : Aug 18 02:08:06 2025 GMT Subject: CN=68995087-3d30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:27:26:6a:e0:ac:7e:c1:48:05:11:7a:04:1e: 7c:70:35:10:6d:e0:f9:6a:da:26:c4:c0:04:b1:25: 3b:ce:0a:1f:ea:30:e0:03:5e:c4:80:3b:d8:a3:80: 53:80:8a:04:2d:34:58:68:6f:b5:7c:c9:74:69:f4: 10:26:36:a3:8b:d9:bf:79:9e:bf:62:9f:f9:a4:93: de:2c:b0:5d:76:f3:53:5c:15:32:64:90:2d:2c:93: 53:6d:7f:f1:88:8a:a2:88:bf:5d:f6:52:da:8d:e1: 78:c8:27:df:38:fa:af:2e:1d:57:c8:2a:70:dc:cc: a1:23:df:44:b8:bf:57:91:06:18:fd:bc:f5:23:18: 7a:da:33:fa:2d:34:77:f4:f3:79:f4:b7:e1:6b:ea: 33:e0:75:24:b5:70:0b:75:2b:58:9f:32:d2:92:95: c6:10:24:1d:01:4a:49:fc:88:68:4c:d1:6d:90:70: fe:7e:5d:cd:bb:e0:46:ba:b0:98:33:bf:71:54:e0: c2:31:6f:60:8e:9a:d7:4a:e0:80:77:37:a5:8e:e0: b1:aa:11:6c:18:28:47:6e:59:e6:94:a9:a1:8d:e5: 49:36:b9:3c:27:c7:fe:ac:0e:85:cc:a6:fd:ec:11: 09:4a:29:a0:c0:eb:e1:0e:e4:c7:82:29:35:32:34: 9b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:F0:E4:F3:12:47:0B:1A:D4:BB:BD:ED:77:19:9B:4C:B4:6B:71:4A X509v3 Authority Key Identifier: keyid:FF:3E:0E:0F:A7:FF:25:7D:BD:86:E6:2B:12:9A:99:4D:8A:49:D8:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_z4OD6f_JX29huYrEpqZTYpJ2E4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B1F5/0D213EDC33FD11EDABF7CF4BC4F9AE02/_z4OD6f_JX29huYrEpqZTYpJ2E4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:f7:ca:b9:9e:aa:3d:35:8e:fd:97:79:49:d6:a8:a9:c9:04: 5c:b8:5f:a7:68:a0:e9:9f:10:3a:5d:a6:33:9e:bc:58:16:a0: 55:27:3a:ad:f3:8c:49:f6:03:ca:67:d6:49:e3:fa:57:66:dd: 92:a2:90:38:d8:7e:7c:66:94:c2:2b:1b:99:85:59:af:f5:ae: 98:07:53:ff:c6:61:6d:dc:19:3e:21:f7:61:0a:a4:34:4b:84: aa:b5:25:d0:38:bf:7e:87:11:df:0f:69:2c:dd:15:52:f3:ad: 79:7e:0c:ea:de:12:01:71:01:2b:d5:e2:6a:86:02:36:6f:73: 4f:de:7d:ce:76:1d:f0:99:84:ca:18:f3:2b:4d:cf:5b:5e:18: 46:25:a3:65:ee:67:0f:84:7a:68:56:52:73:d9:06:37:1b:68: b2:1e:e6:33:6a:9b:04:3c:12:bd:3c:17:4b:c8:89:30:5e:2b: 60:8f:83:f2:bc:d0:1e:9a:53:f4:c7:12:82:83:79:d6:7f:74: 77:f0:64:6b:61:f1:85:c1:98:d7:41:47:c4:17:5d:e6:50:da: ca:80:ce:0f:b6:2e:5f:dc:d6:ea:24:cd:e3:03:45:c4:29:04: e9:c6:bb:0c:8e:de:a0:fd:8a:8f:59:80:71:8f:fa:73:6c:6d: 8f:42:50:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxRjUxMTAvBgNVBAUTKEZGM0UwRTBGQTdGRjI1N0RCRDg2RTYyQjEyOUE5OTRE OEE0OUQ4NEUwHhcNMjUwODExMDIwODA2WhcNMjUwODE4MDIwODA2WjAYMRYwFAYD VQQDEw02ODk5NTA4Ny0zZDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvicmauCsfsFIBRF6BB58cDUQbeD5atomxMAEsSU7zgof6jDgA17EgDvYo4BT gIoELTRYaG+1fMl0afQQJjaji9m/eZ6/Yp/5pJPeLLBddvNTXBUyZJAtLJNTbX/x iIqiiL9d9lLajeF4yCffOPqvLh1XyCpw3MyhI99EuL9XkQYY/bz1Ixh62jP6LTR3 9PN59Lfha+oz4HUktXALdStYnzLSkpXGECQdAUpJ/IhoTNFtkHD+fl3Nu+BGurCY M79xVODCMW9gjprXSuCAdzeljuCxqhFsGChHblnmlKmhjeVJNrk8J8f+rA6FzKb9 7BEJSimgwOvhDuTHgik1MjSbbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCjw5PMS Rwsa1Lu97XcZm0y0a3FKMB8GA1UdIwQYMBaAFP8+Dg+n/yV9vYbmKxKamU2KSdhO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjFGNS8wRDIxM0VEQzMz RkQxMUVEQUJGN0NGNEJDNEY5QUUwMi9fejRPRDZmX0pYMjlodVlyRXBxWlRZcEoy RTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL196NE9ENmZfSlgyOWh1WXJFcHFaVFlwSjJFNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjFGNS8wRDIxM0VEQzMzRkQxMUVEQUJGN0NGNEJDNEY5QUUwMi9fejRPRDZmX0pY MjlodVlyRXBxWlRZcEoyRTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR98q5nqo9NY79l3lJ1qipyQRcuF+naKDpnxA6XaYznrxYFqBVJzqt 84xJ9gPKZ9ZJ4/pXZt2SopA42H58ZpTCKxuZhVmv9a6YB1P/xmFt3Bk+IfdhCqQ0 S4SqtSXQOL9+hxHfD2ks3RVS8615fgzq3hIBcQEr1eJqhgI2b3NP3n3Odh3wmYTK GPMrTc9bXhhGJaNl7mcPhHpoVlJz2QY3G2iyHuYzapsEPBK9PBdLyIkwXitgj4Py vNAemlP0xxKCg3nWf3R38GRrYfGFwZjXQUfEF13mUNrKgM4Pti5f3NbqJM3jA0XE KQTpxrsMjt6g/YqPWYBxj/pzbG2PQlAO -----END CERTIFICATE-----Generated at Mon Aug 11 04:12:49 2025 by rpki-client