$ rpki-client -vvf rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft File: R1MAyW65ok4zHQs5AHDEWinJXmk.mft (raw, json) Hash identifier: hoN7S5gUKoDQQypNvAMiyu05dIiCE74kUPNi76IQ6kQ= Subject key identifier: 6D:4A:87:89:81:33:07:2D:E2:7D:65:F0:39:EE:00:F0:0D:49:14:92 Authority key identifier: 47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 Certificate issuer: /CN=A917C36A/serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft Manifest number: 01C4 Signing time: Sun 03 Aug 2025 03:23:06 +0000 Manifest this update: Sun 03 Aug 2025 03:23:05 +0000 Manifest next update: Sun 10 Aug 2025 03:23:05 +0000 Files and hashes: 1: R1MAyW65ok4zHQs5AHDEWinJXmk.crl (hash: /9I6u1MdMvChmBlTO+Vl9J1SC+WRWR38BkNtko9MjYE=) 2: 9CB879ECC7B511ED9411183FC4F9AE02.roa (hash: vTjIWL+7U0681ZWCBVmHMtqcTBbPy9kNb1m5t3OENUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 03:23:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C36A, serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Validity Not Before: Aug 3 03:23:05 2025 GMT Not After : Aug 10 03:23:05 2025 GMT Subject: CN=688ed619-d76e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f0:6f:b4:7b:74:73:e1:a2:0f:65:54:df:c0: ce:f3:00:36:48:9a:6c:a3:66:f3:c7:1e:9d:21:e4: c1:d7:cf:13:09:16:b0:ac:b4:29:2c:00:0b:66:a3: ed:40:83:3a:85:34:00:7e:6a:77:0b:81:9d:35:40: bd:9b:a6:97:a5:28:3b:90:51:20:10:80:be:4f:e9: 83:fa:9c:3c:ff:3d:5d:72:2f:81:d5:00:35:be:4c: bd:06:68:b4:5a:c0:39:33:0e:49:99:d8:0d:01:c0: 12:fb:fa:4f:80:91:d7:44:09:6c:30:24:cd:7b:9c: 7d:f1:30:71:b6:6f:dc:48:ab:3c:e1:f0:55:42:90: 00:cc:57:d9:1e:69:98:8a:00:4d:16:23:77:73:4a: 8b:d7:7a:45:8f:e4:cc:98:b2:eb:e2:9b:c3:47:66: 24:f8:80:c5:01:0e:7e:a2:4a:f0:ec:f2:fa:86:55: 04:8e:0a:8f:4a:5d:d1:c3:b2:d5:28:34:4f:1d:86: 84:79:cc:92:5b:fd:cb:52:b4:67:a4:05:0f:b2:5b: 2c:40:ea:3c:0a:71:07:a8:f0:19:d1:4f:d4:7e:20: ab:27:d9:06:9f:18:60:e8:72:ab:51:2d:fa:80:8b: e0:f0:ed:d4:52:ff:a3:a6:57:1f:3f:9d:62:06:87: fe:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:4A:87:89:81:33:07:2D:E2:7D:65:F0:39:EE:00:F0:0D:49:14:92 X509v3 Authority Key Identifier: keyid:47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:9b:aa:c5:76:65:77:b3:5d:4c:00:61:7c:14:e6:15:58:ed: 40:5f:6c:24:66:c4:40:a7:33:4f:43:fe:28:c4:b4:84:7d:06: 9e:65:88:2f:c9:a3:88:1e:65:a0:c7:ce:55:2e:b2:dc:e3:5b: 09:23:d1:4c:79:7e:92:2b:be:86:06:51:a4:14:b6:5c:f9:bf: df:5d:51:ad:f3:67:4f:1e:74:90:32:fa:7b:87:fe:e1:54:3f: c2:52:65:f8:24:f5:c6:b4:e3:bd:63:43:d8:82:bd:bd:f7:57: 7b:a5:e9:5e:2f:42:13:a8:54:b4:eb:8a:18:ca:b0:fe:f2:32: 77:9e:ad:0d:2e:15:ff:3e:46:99:4d:19:f3:34:5a:01:14:99: a5:1d:18:83:17:61:39:f4:fe:e0:e6:ad:22:d0:7c:13:b5:a6: 75:97:b9:2e:18:95:0c:5f:0f:ce:46:1a:f3:17:ad:2d:7d:22: ad:3c:a3:ed:35:11:11:f0:40:79:22:30:ad:c8:c3:f0:cf:88: 40:82:45:44:a1:58:e3:a5:63:f0:0f:53:da:93:da:f2:ab:34: c0:5c:4c:55:07:3c:93:f5:7f:2d:1b:75:07:95:53:f6:6d:ff: d3:13:ee:ba:87:48:60:f0:88:ff:57:28:d9:aa:c4:8f:56:c2: 91:56:f9:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzNkExMTAvBgNVBAUTKDQ3NTMwMEM5NkVCOUEyNEUzMzFEMEIzOTAwNzBDNDVB MjlDOTVFNjkwHhcNMjUwODAzMDMyMzA1WhcNMjUwODEwMDMyMzA1WjAYMRYwFAYD VQQDEw02ODhlZDYxOS1kNzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/BvtHt0c+GiD2VU38DO8wA2SJpso2bzxx6dIeTB188TCRawrLQpLAALZqPt QIM6hTQAfmp3C4GdNUC9m6aXpSg7kFEgEIC+T+mD+pw8/z1dci+B1QA1vky9Bmi0 WsA5Mw5JmdgNAcAS+/pPgJHXRAlsMCTNe5x98TBxtm/cSKs84fBVQpAAzFfZHmmY igBNFiN3c0qL13pFj+TMmLLr4pvDR2Yk+IDFAQ5+okrw7PL6hlUEjgqPSl3Rw7LV KDRPHYaEecySW/3LUrRnpAUPslssQOo8CnEHqPAZ0U/UfiCrJ9kGnxhg6HKrUS36 gIvg8O3UUv+jplcfP51iBof+sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG1Kh4mB Mwct4n1l8DnuAPANSRSSMB8GA1UdIwQYMBaAFEdTAMluuaJOMx0LOQBwxFopyV5p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzM2QS80MDkzNDI4MEM3 QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9rNHpIUXM1QUhERVdpbkpY bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxTUF5VzY1b2s0ekhRczVBSERFV2luSlhtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzM2QS80MDkzNDI4MEM3QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9r NHpIUXM1QUhERVdpbkpYbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEm6rFdmV3s11MAGF8FOYVWO1AX2wkZsRApzNPQ/4oxLSEfQaeZYgv yaOIHmWgx85VLrLc41sJI9FMeX6SK76GBlGkFLZc+b/fXVGt82dPHnSQMvp7h/7h VD/CUmX4JPXGtOO9Y0PYgr2991d7peleL0ITqFS064oYyrD+8jJ3nq0NLhX/PkaZ TRnzNFoBFJmlHRiDF2E59P7g5q0i0HwTtaZ1l7kuGJUMXw/ORhrzF60tfSKtPKPt NRER8EB5IjCtyMPwz4hAgkVEoVjjpWPwD1Pak9ryqzTAXExVBzyT9X8tG3UHlVP2 bf/TE+66h0hg8Ij/VyjZqsSPVsKRVvm4 -----END CERTIFICATE-----Generated at Mon Aug 4 14:57:58 2025 by rpki-client