$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft File: 489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json) Hash identifier: wD/7wVSOCjJkp1x8IDzJ1rb0DJJKKxwOA/X5npM8vxQ= Subject key identifier: F2:C6:03:A3:9F:83:59:31:CF:FE:5B:95:BB:81:0B:81:4D:5F:D8:B7 Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Certificate serial: 0305 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft Manifest number: 02ED Signing time: Sat 09 Aug 2025 01:53:20 +0000 Manifest this update: Sat 09 Aug 2025 01:53:20 +0000 Manifest next update: Sat 16 Aug 2025 01:53:20 +0000 Files and hashes: 1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: cwKp0Bx2pgYF0ZKvb5uuP043ojWULV4eUFyZgIUp79g=) 2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: +6obkqNFt0tnKMRz6dRit6ArMoN+fxhvRElw6ROUx6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 773 (0x305) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197202, serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Validity Not Before: Aug 9 01:53:20 2025 GMT Not After : Aug 16 01:53:20 2025 GMT Subject: CN=6896aa10-7ed0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b6:b0:7c:72:41:fb:87:2a:25:7d:c4:34:7d: 42:f0:fc:9a:c3:d7:53:83:15:b2:56:0d:e2:bc:8d: e8:b7:ea:0a:c9:fa:bc:d2:fa:2d:87:a1:1a:d1:df: 10:59:ec:3c:48:70:54:b9:55:a8:6a:15:51:35:23: 34:6b:61:05:1e:ef:9a:26:5c:27:32:fc:13:c0:5e: 1f:dc:34:41:4b:ec:35:bc:18:6f:a6:f0:03:b5:24: e0:83:b5:8e:ea:4e:b1:04:0c:43:7e:c0:86:65:cf: d5:cd:e7:bd:38:fe:35:c3:5c:f0:37:94:45:89:ee: e0:de:13:a0:fe:12:ab:f1:e2:bc:89:97:46:88:f0: 7f:b9:cc:f3:2b:f5:29:e1:81:84:e5:e0:bc:e1:c6: 56:0e:94:0c:3b:06:18:28:75:ae:0f:8f:a7:65:58: bf:b1:43:e1:07:cc:01:70:36:25:bc:1f:65:05:9c: d4:d0:31:f7:c6:8b:3d:86:47:7f:8f:49:06:02:af: 53:0d:40:93:69:3d:18:e9:63:c7:ca:c0:68:ee:45: 99:94:11:b3:12:81:96:fd:46:96:ae:fd:f4:ee:38: c3:c1:d8:4a:45:40:b7:43:85:af:e4:06:ea:ec:b7: 5d:02:55:fa:43:11:0b:83:c0:75:5f:76:97:46:3f: dc:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:C6:03:A3:9F:83:59:31:CF:FE:5B:95:BB:81:0B:81:4D:5F:D8:B7 X509v3 Authority Key Identifier: keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:a7:50:3d:d0:6b:96:f6:3c:06:8c:85:de:69:02:4c:30:45: e4:60:aa:3e:67:3b:4e:86:c4:f5:88:98:ff:93:f6:cb:a4:80: 5a:c0:80:87:36:c0:a4:99:ab:cd:9d:cb:84:eb:56:54:12:19: 85:77:15:d0:76:16:95:cd:0e:42:c8:ce:7e:17:b1:27:df:c7: 83:65:83:8a:f1:51:9d:c8:b3:94:22:b2:51:7c:74:f7:95:3f: a7:c4:fe:3f:35:cf:04:5b:90:a4:a6:2e:ec:13:77:46:2d:93: e8:1a:78:fb:16:97:7f:ce:29:a5:dd:b0:b1:22:24:f7:e5:29: f0:6c:90:b3:7b:e8:4b:5a:b3:90:bb:20:0f:9c:13:08:55:b8: e0:79:7c:16:10:d9:2c:a9:c3:3a:60:f6:2f:c8:f6:6c:27:7a: 30:6f:f0:13:d5:43:ea:70:60:a0:c8:66:15:bd:00:a9:a0:d7: 90:06:8b:67:26:15:90:94:40:d1:70:40:12:bf:d2:20:3b:d1: 7e:8a:f9:77:2a:d6:3d:f4:7e:2b:69:36:09:ab:ae:5c:52:81: 74:f1:f9:ee:79:95:bf:eb:8a:41:39:60:68:6f:cb:7e:1d:72: 0b:81:31:b3:32:8a:27:6c:6c:36:7e:2f:c4:a5:a7:5b:3b:bf: dd:0c:0e:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMDIxMTAvBgNVBAUTKEUzQ0Y0NUY4MDUxMDYzQkJEQjMxN0ZERDE1MTEzMkE5 NDAwNEZENUIwHhcNMjUwODA5MDE1MzIwWhcNMjUwODE2MDE1MzIwWjAYMRYwFAYD VQQDEw02ODk2YWExMC03ZWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47awfHJB+4cqJX3ENH1C8Pyaw9dTgxWyVg3ivI3ot+oKyfq80voth6Ea0d8Q Wew8SHBUuVWoahVRNSM0a2EFHu+aJlwnMvwTwF4f3DRBS+w1vBhvpvADtSTgg7WO 6k6xBAxDfsCGZc/Vzee9OP41w1zwN5RFie7g3hOg/hKr8eK8iZdGiPB/uczzK/Up 4YGE5eC84cZWDpQMOwYYKHWuD4+nZVi/sUPhB8wBcDYlvB9lBZzU0DH3xos9hkd/ j0kGAq9TDUCTaT0Y6WPHysBo7kWZlBGzEoGW/UaWrv307jjDwdhKRUC3Q4Wv5Abq 7LddAlX6QxELg8B1X3aXRj/cBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLGA6Of g1kxz/5blbuBC4FNX9i3MB8GA1UdIwQYMBaAFOPPRfgFEGO72zF/3RURMqlABP1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIwMi8wQUZFQ0E3MEY3 MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3dmJNWF9kRlJFeXFVQUVf VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ4OUYtQVVRWTd2Yk1YX2RGUkV5cVVBRV9Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzIwMi8wQUZFQ0E3MEY3MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3 dmJNWF9kRlJFeXFVQUVfVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQp1A90GuW9jwGjIXeaQJMMEXkYKo+ZztOhsT1iJj/k/bLpIBawICH NsCkmavNncuE61ZUEhmFdxXQdhaVzQ5CyM5+F7En38eDZYOK8VGdyLOUIrJRfHT3 lT+nxP4/Nc8EW5Ckpi7sE3dGLZPoGnj7Fpd/ziml3bCxIiT35SnwbJCze+hLWrOQ uyAPnBMIVbjgeXwWENksqcM6YPYvyPZsJ3owb/AT1UPqcGCgyGYVvQCpoNeQBotn JhWQlEDRcEASv9IgO9F+ivl3KtY99H4raTYJq65cUoF08fnueZW/64pBOWBob8t+ HXILgTGzMoonbGw2fi/EpadbO7/dDA77 -----END CERTIFICATE-----Generated at Sat Aug 9 10:40:30 2025 by rpki-client