$ rpki-client -vvf rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft File: p0zn2tX7UE2xa75wwvnfCqnwBgk.mft (raw, json) Hash identifier: FkchPo1xkclLxe58t41m2uZvurRWqhutufzi1iPFfA4= Subject key identifier: DB:59:D3:1C:13:68:ED:5E:C5:80:0E:BA:8B:59:DA:3E:84:C5:A3:D3 Authority key identifier: A7:4C:E7:DA:D5:FB:50:4D:B1:6B:BE:70:C2:F9:DF:0A:A9:F0:06:09 Certificate issuer: /CN=A918D699/serialNumber=A74CE7DAD5FB504DB16BBE70C2F9DF0AA9F00609 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft Manifest number: EE Signing time: Mon 11 Aug 2025 05:34:26 +0000 Manifest this update: Mon 11 Aug 2025 05:34:25 +0000 Manifest next update: Mon 18 Aug 2025 05:34:25 +0000 Files and hashes: 1: p0zn2tX7UE2xa75wwvnfCqnwBgk.crl (hash: PSmvWvkYH26JLMwFiyG9kkNMFAG35d4X1EHylBTGqGs=) 2: C564E80017E911EF9D471E18C4F9AE02.roa (hash: bHWlYJultpd4141lSOHtlDGQNuKfjn0r+UBsEdeuoEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.crl rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 05:34:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D699, serialNumber=A74CE7DAD5FB504DB16BBE70C2F9DF0AA9F00609 Validity Not Before: Aug 11 05:34:25 2025 GMT Not After : Aug 18 05:34:25 2025 GMT Subject: CN=689980e1-54cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3b:ee:d3:ac:ae:0c:3d:23:89:3d:e2:82:f2: 4a:b3:4f:76:10:dd:3b:c1:61:b0:47:c9:8f:74:18: bf:67:31:f7:0b:6e:a5:69:28:51:59:86:f1:98:38: c4:76:c1:22:38:82:ee:bc:9e:71:a2:c8:ae:89:e1: a3:67:a8:07:b0:a5:ad:f3:87:20:20:87:8f:39:d2: 3c:28:9c:e1:24:7d:e5:c2:be:3b:9c:fd:67:d6:39: 8b:36:94:dd:5f:25:3b:4a:39:ca:ba:e5:35:8c:91: 6c:06:f0:f1:15:be:bb:ea:2c:dd:f4:85:b3:2f:4f: 40:c9:77:43:bb:b9:74:cb:27:84:92:ab:75:ce:7b: ed:f4:a0:4c:71:46:40:e5:ca:71:05:21:b9:de:14: 1a:db:4b:ae:73:5a:4d:24:a4:ab:4b:91:99:d0:5e: d4:d2:55:f2:91:d4:7d:f2:d9:9c:20:b5:94:9e:ea: 4e:8b:16:77:dc:42:43:38:60:dd:94:b5:f4:2f:f4: f4:bb:e6:47:c2:8f:43:67:81:25:87:a2:cc:6a:24: da:a4:a6:bf:97:82:eb:5a:fa:c6:d6:f1:c2:e1:ba: 3c:00:d8:c7:9e:d6:30:4a:0d:3e:8e:6b:a5:aa:06: 36:f2:09:d0:69:f5:e4:e1:5d:a7:09:1c:0d:fa:2b: 68:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:59:D3:1C:13:68:ED:5E:C5:80:0E:BA:8B:59:DA:3E:84:C5:A3:D3 X509v3 Authority Key Identifier: keyid:A7:4C:E7:DA:D5:FB:50:4D:B1:6B:BE:70:C2:F9:DF:0A:A9:F0:06:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0zn2tX7UE2xa75wwvnfCqnwBgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D699/5586EF6A17E911EFA2CD5017C4F9AE02/p0zn2tX7UE2xa75wwvnfCqnwBgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:b1:dc:e8:25:36:74:6e:2d:6a:96:10:c4:55:d0:93:b8:3c: 78:fe:54:06:77:7c:c8:ef:69:53:19:48:19:64:fe:7a:58:9d: 63:b9:69:57:ff:f7:4a:27:1d:d3:48:23:3f:52:ae:b0:66:0a: b3:0b:29:2c:8f:c6:31:42:37:19:d7:50:08:ac:5b:8f:97:59: b5:3a:de:fc:ac:cc:61:db:89:7c:1e:28:25:ce:17:16:46:16: b2:cc:57:42:6f:c5:e1:1f:45:1a:eb:3a:30:8c:15:a7:d3:66: 8d:79:8f:f7:1b:bf:af:f6:bc:2c:0d:2a:8b:2b:ba:cf:24:a0: d3:eb:cc:ed:c2:d8:10:f5:25:33:a0:1c:ee:15:3d:68:51:35: cd:a9:44:1e:6f:07:a8:e5:c6:dc:7d:af:da:de:28:8b:bb:59: d0:bc:d1:97:c1:65:8d:6b:54:89:04:c6:9c:a6:89:8b:b6:55: 48:aa:88:93:f3:0c:c5:da:c4:68:ff:80:9f:4b:9b:84:c0:58: 2d:ee:e9:a3:ff:cb:33:7c:de:0d:fe:37:a1:64:a9:65:07:f0: f7:ec:6b:8f:8d:b9:89:4b:6a:0b:03:6d:16:ba:01:5a:d6:a0: 31:6b:30:f0:75:3c:b2:af:4d:62:94:a2:f9:5b:9c:54:3b:04: 57:ee:b7:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ2OTkxMTAvBgNVBAUTKEE3NENFN0RBRDVGQjUwNERCMTZCQkU3MEMyRjlERjBB QTlGMDA2MDkwHhcNMjUwODExMDUzNDI1WhcNMjUwODE4MDUzNDI1WjAYMRYwFAYD VQQDEw02ODk5ODBlMS01NGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzvu06yuDD0jiT3igvJKs092EN07wWGwR8mPdBi/ZzH3C26laShRWYbxmDjE dsEiOILuvJ5xosiuieGjZ6gHsKWt84cgIIePOdI8KJzhJH3lwr47nP1n1jmLNpTd XyU7SjnKuuU1jJFsBvDxFb676izd9IWzL09AyXdDu7l0yyeEkqt1znvt9KBMcUZA 5cpxBSG53hQa20uuc1pNJKSrS5GZ0F7U0lXykdR98tmcILWUnupOixZ33EJDOGDd lLX0L/T0u+ZHwo9DZ4Elh6LMaiTapKa/l4LrWvrG1vHC4bo8ANjHntYwSg0+jmul qgY28gnQafXk4V2nCRwN+ito8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtZ0xwT aO1exYAOuotZ2j6ExaPTMB8GA1UdIwQYMBaAFKdM59rV+1BNsWu+cML53wqp8AYJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDY5OS81NTg2RUY2QTE3 RTkxMUVGQTJDRDUwMTdDNEY5QUUwMi9wMHpuMnRYN1VFMnhhNzV3d3ZuZkNxbndC Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Awem4ydFg3VUUyeGE3NXd3dm5mQ3Fud0Jnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDY5OS81NTg2RUY2QTE3RTkxMUVGQTJDRDUwMTdDNEY5QUUwMi9wMHpuMnRYN1VF MnhhNzV3d3ZuZkNxbndCZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYsdzoJTZ0bi1qlhDEVdCTuDx4/lQGd3zI72lTGUgZZP56WJ1juWlX //dKJx3TSCM/Uq6wZgqzCyksj8YxQjcZ11AIrFuPl1m1Ot78rMxh24l8HiglzhcW RhayzFdCb8XhH0Ua6zowjBWn02aNeY/3G7+v9rwsDSqLK7rPJKDT68ztwtgQ9SUz oBzuFT1oUTXNqUQebweo5cbcfa/a3iiLu1nQvNGXwWWNa1SJBMacpomLtlVIqoiT 8wzF2sRo/4CfS5uEwFgt7umj/8szfN4N/jehZKllB/D37GuPjbmJS2oLA20WugFa 1qAxazDwdTyyr01ilKL5W5xUOwRX7rfV -----END CERTIFICATE-----Generated at Wed Aug 13 06:00:58 2025 by rpki-client