$ rpki-client -vvf rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft File: z7B65d0AqScU2zWnIQRdnS644xc.mft (raw, json) Hash identifier: CIKsQrabCWBInviKpRVypvCdYQ3+nrvKmBlXhqNshHg= Subject key identifier: 7F:0E:CC:D0:7B:13:AC:D2:26:8A:82:2A:8A:E0:C1:F7:E0:77:80:CF Authority key identifier: CF:B0:7A:E5:DD:00:A9:27:14:DB:35:A7:21:04:5D:9D:2E:B8:E3:17 Certificate issuer: /CN=A9189A9F/serialNumber=CFB07AE5DD00A92714DB35A721045D9D2EB8E317 Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft Manifest number: 0413 Signing time: Sat 09 Aug 2025 01:02:59 +0000 Manifest this update: Sat 09 Aug 2025 01:02:58 +0000 Manifest next update: Sat 16 Aug 2025 01:02:58 +0000 Files and hashes: 1: z7B65d0AqScU2zWnIQRdnS644xc.crl (hash: siXDgUqGSAox/0I3OobbanmDB5fkxbYynsKPo+eNHr8=) 2: 42A92B3C3BAC11F0882B5B62C4F9AE02.roa (hash: 3kUfpfWFsRQio/I2rlN7rqdOffzKtu9waWZ7PwEcB0U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.crl rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189A9F, serialNumber=CFB07AE5DD00A92714DB35A721045D9D2EB8E317 Validity Not Before: Aug 9 01:02:58 2025 GMT Not After : Aug 16 01:02:58 2025 GMT Subject: CN=68969e42-fd7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3d:a9:4a:97:f0:22:2c:f9:b3:15:1a:24:56: f2:c3:2b:b0:59:e7:04:d4:82:72:d2:8d:7c:f6:83: 00:be:a6:00:0c:a6:22:b6:eb:4a:0f:6e:26:ac:f5: c1:16:b4:8a:2b:93:e1:0a:4d:d3:bf:07:b9:0d:9e: df:02:c6:0f:13:17:5c:d8:ca:55:d1:e8:a6:1a:48: 7c:de:4c:49:a3:b0:29:63:71:42:33:31:64:fb:37: 2a:09:3a:c9:ad:41:94:3b:10:b9:a6:2b:44:a3:df: e2:e0:50:8b:6b:83:2f:fe:1a:50:dc:82:f3:e3:ce: 16:ac:91:78:d3:ed:61:59:1d:42:35:2e:36:c4:6d: 57:29:05:2a:8d:f7:c9:b6:00:64:9f:13:2f:40:ab: c4:2e:ff:1f:2c:27:c2:14:ab:9b:c9:21:2e:50:ad: a8:fc:91:92:83:83:d8:1f:b8:0f:fa:0c:c6:c8:12: e1:ef:d9:83:4c:33:e5:a1:30:bd:18:2a:80:47:ca: f3:89:73:fb:6f:4b:ff:ce:9f:6b:04:c4:65:92:85: 2a:7d:1c:e7:e7:45:ee:80:5f:c5:07:36:8d:7e:95: a6:2f:4b:ea:d9:fe:2a:61:3a:47:8a:63:cb:dd:50: 38:a0:b8:15:f0:fa:f1:f7:cb:53:05:d5:32:64:8f: 73:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:0E:CC:D0:7B:13:AC:D2:26:8A:82:2A:8A:E0:C1:F7:E0:77:80:CF X509v3 Authority Key Identifier: keyid:CF:B0:7A:E5:DD:00:A9:27:14:DB:35:A7:21:04:5D:9D:2E:B8:E3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z7B65d0AqScU2zWnIQRdnS644xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189A9F/8056BA568A9011EC8C1B0D22C4F9AE02/z7B65d0AqScU2zWnIQRdnS644xc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:85:55:0b:96:0b:3b:f1:6b:1f:8f:7c:e0:1d:ca:a5:ca:35: d2:e6:1c:7f:80:93:3f:82:cb:9d:fb:00:66:34:20:54:bf:02: 63:d2:d4:a8:51:a5:29:f5:a9:a5:33:8a:c7:bd:be:25:24:af: 38:a0:e8:f8:f9:ac:73:35:e8:d3:8f:25:30:6e:ab:5e:b9:1a: cf:ad:0b:d7:91:24:22:e6:87:c7:d8:d0:54:2f:f7:50:2e:87: c8:4c:59:dd:b1:0a:41:f0:36:41:bb:f5:82:d9:c6:dd:d5:2d: 9d:68:1f:bc:e3:c9:c9:1d:5c:26:4f:d5:6f:1c:41:3f:31:ae: 61:16:08:f7:58:f9:7c:07:33:5d:67:b3:30:4f:6c:6a:6e:6e: 5e:d7:05:53:78:9d:d6:19:b4:05:31:7a:05:25:60:51:c4:f0: d8:1d:61:a5:65:70:a3:39:25:99:ed:74:1d:9b:e4:63:40:13: 3b:08:6e:c7:39:5d:55:85:cb:60:c4:1b:81:66:19:fb:fe:09: 44:72:7f:6e:2b:b1:cb:93:b4:24:ec:54:3a:ff:d6:5f:19:31: d3:35:37:fe:bc:83:cb:00:a6:0b:cb:b9:84:42:b3:f0:53:20: d4:ef:41:80:e7:df:36:50:9e:df:db:49:a8:d2:63:83:c8:67: 2f:b3:26:9b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OUE5RjExMC8GA1UEBRMoQ0ZCMDdBRTVERDAwQTkyNzE0REIzNUE3MjEwNDVEOUQy RUI4RTMxNzAeFw0yNTA4MDkwMTAyNThaFw0yNTA4MTYwMTAyNThaMBgxFjAUBgNV BAMTDTY4OTY5ZTQyLWZkN2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4PalKl/AiLPmzFRokVvLDK7BZ5wTUgnLSjXz2gwC+pgAMpiK260oPbias9cEW tIork+EKTdO/B7kNnt8Cxg8TF1zYylXR6KYaSHzeTEmjsCljcUIzMWT7NyoJOsmt QZQ7ELmmK0Sj3+LgUItrgy/+GlDcgvPjzhaskXjT7WFZHUI1LjbEbVcpBSqN98m2 AGSfEy9Aq8Qu/x8sJ8IUq5vJIS5Qraj8kZKDg9gfuA/6DMbIEuHv2YNMM+WhML0Y KoBHyvOJc/tvS//On2sExGWShSp9HOfnRe6AX8UHNo1+laYvS+rZ/iphOkeKY8vd UDiguBXw+vH3y1MF1TJkj3OFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfw7M0HsT rNImioIqiuDB9+B3gM8wHwYDVR0jBBgwFoAUz7B65d0AqScU2zWnIQRdnS644xcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5QTlGLzgwNTZCQTU2OEE5 MDExRUM4QzFCMEQyMkM0RjlBRTAyL3o3QjY1ZDBBcVNjVTJ6V25JUVJkblM2NDR4 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvejdCNjVkMEFxU2NVMnpXbklRUmRuUzY0NHhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5 QTlGLzgwNTZCQTU2OEE5MDExRUM4QzFCMEQyMkM0RjlBRTAyL3o3QjY1ZDBBcVNj VTJ6V25JUVJkblM2NDR4Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIyFVQuWCzvxax+PfOAdyqXKNdLmHH+Akz+Cy537AGY0IFS/AmPS1KhR pSn1qaUzise9viUkrzig6Pj5rHM16NOPJTBuq165Gs+tC9eRJCLmh8fY0FQv91Au h8hMWd2xCkHwNkG79YLZxt3VLZ1oH7zjyckdXCZP1W8cQT8xrmEWCPdY+XwHM11n szBPbGpubl7XBVN4ndYZtAUxegUlYFHE8NgdYaVlcKM5JZntdB2b5GNAEzsIbsc5 XVWFy2DEG4FmGfv+CURyf24rscuTtCTsVDr/1l8ZMdM1N/68g8sApgvLuYRCs/BT INTvQYDn3zZQnt/bSajSY4PIZy+zJps= -----END CERTIFICATE-----Generated at Sun Aug 10 18:57:23 2025 by rpki-client