$ rpki-client -vvf rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft File: 1ppgVl8zchSc5uL8nnI9SQZ2doo.mft (raw, json) Hash identifier: ZYn6vKTe3FcDgMd3GGTnyDwB9M4VnFFY6z1fEQ2x2tk= Subject key identifier: 14:0D:FA:59:41:28:50:42:3D:8D:1F:4C:EF:8E:84:0B:A6:7C:28:D4 Authority key identifier: D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A Certificate issuer: /CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Certificate serial: 34A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft Manifest number: 34A6 Signing time: Mon 04 Aug 2025 14:59:55 +0000 Manifest this update: Mon 04 Aug 2025 14:59:54 +0000 Manifest next update: Mon 11 Aug 2025 14:59:54 +0000 Files and hashes: 1: 1ppgVl8zchSc5uL8nnI9SQZ2doo.crl (hash: c5XGjLP1rSmW9ktrrsObEca/7LtKv5xMdnMLE7ZxpWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:59:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13478 (0x34a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185F7D, serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Validity Not Before: Aug 4 14:59:54 2025 GMT Not After : Aug 11 14:59:54 2025 GMT Subject: CN=6890caeb-472a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:16:6e:93:6a:46:c1:bb:3e:34:21:23:f2:bd: cd:07:f2:21:d8:37:c9:53:41:3d:7e:5d:69:ae:8f: 7f:50:16:86:ea:6c:c8:48:aa:a6:db:60:7c:14:0f: 9c:30:bc:88:40:f1:31:07:24:e7:57:69:95:96:8a: 29:db:c2:6b:3c:88:c2:4b:f4:b8:5b:46:0f:72:f6: 5d:53:97:97:74:16:d2:a7:22:b8:79:8c:7d:21:a4: 4f:af:b2:c7:d1:b9:02:79:cb:8b:13:4f:af:8a:01: d2:72:40:8b:65:61:79:9d:54:b3:e1:a3:53:2e:30: d9:2c:86:72:ac:d5:dc:38:5f:77:3e:97:73:bf:a6: 13:45:98:cb:75:f0:e3:71:26:c2:af:c8:6f:2b:c2: ab:b3:43:09:eb:e8:46:43:d6:8c:8e:5d:48:6e:c4: 3d:9f:f0:59:68:61:d0:bf:ee:b5:34:5e:8a:54:da: e3:50:21:3c:d8:f3:d7:73:e7:60:fe:1d:df:21:21: ad:bf:f8:6c:33:ff:c0:6e:b7:c0:48:06:26:be:7f: b5:31:5e:2b:c8:c8:f9:48:c2:41:44:b0:cf:10:7b: bd:27:85:40:61:fe:64:f3:fc:5e:bc:bf:dd:90:fc: d2:28:18:a8:ec:25:96:f0:7a:af:0c:95:cf:28:25: d4:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:0D:FA:59:41:28:50:42:3D:8D:1F:4C:EF:8E:84:0B:A6:7C:28:D4 X509v3 Authority Key Identifier: keyid:D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:bd:6c:49:d5:61:fc:52:29:ff:7e:1a:cc:7d:7a:4e:b4:e1: 62:61:48:4c:a4:25:c3:61:5b:96:0e:f2:2d:be:99:4f:ff:56: 83:6b:6f:a4:3e:41:16:1d:c2:c1:b2:ba:73:c4:29:6c:58:c2: 10:06:e6:37:06:0a:69:31:59:2e:a3:23:7b:37:58:ad:0a:4a: 32:d5:de:ae:62:81:7a:d8:64:ea:a9:d9:d8:b8:8e:5d:ae:be: 97:87:78:0d:3c:1f:81:5d:01:80:02:b5:66:0e:f6:72:cf:df: bc:05:2a:9a:9c:8b:85:32:15:c7:1a:9c:8f:2c:c7:e1:1a:d2: 51:9e:6f:8e:36:45:51:ed:82:e5:f2:3f:a4:0d:28:be:74:ef: c0:0e:d3:c4:e7:d8:0b:bb:11:5b:ec:a0:aa:9f:6e:03:9c:9a: 4c:50:39:32:0e:ac:58:0e:de:e0:e9:4c:92:8a:4d:ad:65:0c: 7e:8c:41:1d:ee:0b:e7:59:f0:94:0e:04:6f:ae:f8:52:c4:9a: 92:e9:fa:d1:04:78:59:d2:9c:13:0a:b3:ef:9f:73:cf:db:03: dc:6c:ae:ea:7d:dd:e6:6d:93:3e:67:ae:56:c0:88:37:58:d1: 3c:d8:d3:16:53:70:f2:5d:3a:07:dd:a6:ed:93:63:97:df:c4: 34:c3:9f:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGN0QxMTAvBgNVBAUTKEQ2OUE2MDU2NUYzMzcyMTQ5Q0U2RTJGQzlFNzIzRDQ5 MDY3Njc2OEEwHhcNMjUwODA0MTQ1OTU0WhcNMjUwODExMTQ1OTU0WjAYMRYwFAYD VQQDEw02ODkwY2FlYi00NzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvhZuk2pGwbs+NCEj8r3NB/Ih2DfJU0E9fl1pro9/UBaG6mzISKqm22B8FA+c MLyIQPExByTnV2mVloop28JrPIjCS/S4W0YPcvZdU5eXdBbSpyK4eYx9IaRPr7LH 0bkCecuLE0+vigHSckCLZWF5nVSz4aNTLjDZLIZyrNXcOF93Ppdzv6YTRZjLdfDj cSbCr8hvK8Krs0MJ6+hGQ9aMjl1IbsQ9n/BZaGHQv+61NF6KVNrjUCE82PPXc+dg /h3fISGtv/hsM//AbrfASAYmvn+1MV4ryMj5SMJBRLDPEHu9J4VAYf5k8/xevL/d kPzSKBio7CWW8HqvDJXPKCXUhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQN+llB KFBCPY0fTO+OhAumfCjUMB8GA1UdIwQYMBaAFNaaYFZfM3IUnObi/J5yPUkGdnaK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUY3RC82OTc1M0Y1ODFE OUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNoU2M1dUw4bm5JOVNRWjJk b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwcGdWbDh6Y2hTYzV1TDhubkk5U1FaMmRvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUY3RC82OTc1M0Y1ODFEOUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNo U2M1dUw4bm5JOVNRWjJkb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBvWxJ1WH8Uin/fhrMfXpOtOFiYUhMpCXDYVuWDvItvplP/1aDa2+k PkEWHcLBsrpzxClsWMIQBuY3BgppMVkuoyN7N1itCkoy1d6uYoF62GTqqdnYuI5d rr6Xh3gNPB+BXQGAArVmDvZyz9+8BSqanIuFMhXHGpyPLMfhGtJRnm+ONkVR7YLl 8j+kDSi+dO/ADtPE59gLuxFb7KCqn24DnJpMUDkyDqxYDt7g6UySik2tZQx+jEEd 7gvnWfCUDgRvrvhSxJqS6frRBHhZ0pwTCrPvn3PP2wPcbK7qfd3mbZM+Z65WwIg3 WNE82NMWU3DyXToH3abtk2OX38Q0w58f -----END CERTIFICATE-----Generated at Wed Aug 6 11:21:31 2025 by rpki-client