$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft File: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft (raw, json) Hash identifier: UT/H16O66U+2jVvoBFk33q5B5AmMFDMfVIEj/1w2zwE= Subject key identifier: DE:9C:4B:21:B1:70:8A:EE:73:3F:FE:E0:28:DA:A8:0B:E5:67:7B:F0 Authority key identifier: 33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 Certificate issuer: /CN=A9171A59/serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Certificate serial: 04D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft Manifest number: 04D2 Signing time: Wed 13 Aug 2025 00:17:50 +0000 Manifest this update: Wed 13 Aug 2025 00:17:49 +0000 Manifest next update: Wed 20 Aug 2025 00:17:49 +0000 Files and hashes: 1: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl (hash: T5xL9ZgKpLqQuPVOqc8pLzrHyqadMX/HO6HKvF/k+68=) 2: ABD9CB4630C711ECA2491515C4F9AE02.roa (hash: CoT7676o1FhYn/hTok256b21HFRTMynmtKsMLIXyZyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 23:37:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1239 (0x4d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A59, serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Validity Not Before: Aug 13 00:17:49 2025 GMT Not After : Aug 20 00:17:49 2025 GMT Subject: CN=689bd9ae-22d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fc:bd:63:61:ad:e1:86:3f:8a:e3:8a:1b:a2: de:a5:89:fa:49:f1:5e:c2:ae:42:ca:97:6c:33:8a: ea:79:85:28:0f:0b:66:cc:06:3d:02:30:5f:d8:b8: 38:42:00:11:03:cb:e1:39:25:6e:71:b2:01:21:22: 87:b3:3c:0f:b1:58:56:2d:90:e3:77:24:f7:b7:86: d5:f8:ba:03:19:c9:69:e9:98:9d:3d:14:b0:d1:c7: bf:81:e1:22:34:45:00:ed:12:56:45:75:1e:16:e3: 0f:eb:a8:b7:fd:31:44:37:91:f3:26:73:85:00:19: 62:2d:de:43:5f:65:90:3c:ce:c4:5d:c6:9b:62:6e: 2d:db:30:c5:53:dd:63:9e:dd:ef:a5:f1:0f:c2:73: cb:48:2a:44:52:c7:11:ad:16:fd:da:94:8f:b1:46: b9:31:36:84:d7:d9:c9:5d:3a:e9:18:e2:34:14:66: b6:42:59:97:fc:63:f5:23:b7:66:64:33:c3:71:8c: 7f:a8:22:94:a0:82:8f:b7:5c:02:f3:16:69:6d:51: ee:6c:2b:3b:94:78:dd:f0:24:c3:30:57:bb:6d:69: 76:bd:5e:a9:11:9c:c5:bb:13:d3:6b:55:ec:35:72: 4a:94:f7:fc:16:74:14:28:c2:20:92:01:65:4a:c1: 7a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:9C:4B:21:B1:70:8A:EE:73:3F:FE:E0:28:DA:A8:0B:E5:67:7B:F0 X509v3 Authority Key Identifier: keyid:33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:60:ad:2a:89:de:ea:65:5d:a0:f3:7b:1d:97:ae:0e:06:3e: 9e:34:7d:e2:52:31:94:6c:dd:06:73:51:cb:32:48:ab:c0:f4: 02:4e:54:9f:b9:0a:a2:43:9c:96:25:93:54:cf:d1:b3:13:74: 7b:73:95:e9:7a:08:ee:1f:a9:22:b8:35:89:05:c0:03:14:a1: ac:b7:a4:90:c0:c1:12:b5:56:e7:e2:a4:7d:f3:48:89:22:65: 3a:36:3a:2c:72:82:c5:a8:13:42:69:a6:1b:c2:65:ed:e1:39: 77:54:19:00:78:92:51:98:66:12:ef:20:74:ce:35:c9:43:83: 6d:65:f7:6c:6f:fc:3a:2d:8a:25:5a:82:6a:a0:15:ef:d4:e8: 7c:a6:22:29:f4:b4:e9:6d:5c:97:a1:21:ba:2a:25:0c:7e:3e: 5c:1e:17:b6:c7:cd:a4:8e:a2:a6:19:e7:e7:d4:37:ea:33:6b: 30:58:b5:89:80:b7:53:83:14:d3:c5:fe:85:33:5b:b3:9c:ce: e5:90:51:ab:0e:74:a4:82:70:e1:fb:22:44:83:3e:51:6d:c9: 48:fb:6d:6e:19:7c:88:5d:41:1f:19:9c:89:43:cb:ca:5a:e3: 7b:ee:d8:c9:7b:61:a1:74:52:33:9d:15:54:e4:56:6d:aa:ee: 6d:00:5b:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBNTkxMTAvBgNVBAUTKDMzM0VDNTAzMDE0RDA2NzRBRjE2NzQxOTk0MTBGOUIw OTFCOEZCOTQwHhcNMjUwODEzMDAxNzQ5WhcNMjUwODIwMDAxNzQ5WjAYMRYwFAYD VQQDEw02ODliZDlhZS0yMmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/y9Y2Gt4YY/iuOKG6LepYn6SfFewq5CypdsM4rqeYUoDwtmzAY9AjBf2Lg4 QgARA8vhOSVucbIBISKHszwPsVhWLZDjdyT3t4bV+LoDGclp6ZidPRSw0ce/geEi NEUA7RJWRXUeFuMP66i3/TFEN5HzJnOFABliLd5DX2WQPM7EXcabYm4t2zDFU91j nt3vpfEPwnPLSCpEUscRrRb92pSPsUa5MTaE19nJXTrpGOI0FGa2QlmX/GP1I7dm ZDPDcYx/qCKUoIKPt1wC8xZpbVHubCs7lHjd8CTDMFe7bWl2vV6pEZzFuxPTa1Xs NXJKlPf8FnQUKMIgkgFlSsF6qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN6cSyGx cIrucz/+4CjaqAvlZ3vwMB8GA1UdIwQYMBaAFDM+xQMBTQZ0rxZ0GZQQ+bCRuPuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUE1OS84QUI5MzNFQTMw QzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJuU3ZGblFabEJENXNKRzQt NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL016N0ZBd0ZOQm5TdkZuUVpsQkQ1c0pHNC01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUE1OS84QUI5MzNFQTMwQzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJu U3ZGblFabEJENXNKRzQtNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkYK0qid7qZV2g83sdl64OBj6eNH3iUjGUbN0Gc1HLMkirwPQCTlSf uQqiQ5yWJZNUz9GzE3R7c5XpegjuH6kiuDWJBcADFKGst6SQwMEStVbn4qR980iJ ImU6NjoscoLFqBNCaaYbwmXt4Tl3VBkAeJJRmGYS7yB0zjXJQ4NtZfdsb/w6LYol WoJqoBXv1Oh8piIp9LTpbVyXoSG6KiUMfj5cHhe2x82kjqKmGefn1DfqM2swWLWJ gLdTgxTTxf6FM1uznM7lkFGrDnSkgnDh+yJEgz5RbclI+21uGXyIXUEfGZyJQ8vK WuN77tjJe2GhdFIznRVU5FZtqu5tAFvS -----END CERTIFICATE-----Generated at Wed Aug 13 02:15:48 2025 by rpki-client