$ rpki-client -vvf rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft File: 0pm8o5yZPbgNETe5mbIhhGrPVWs.mft (raw, json) Hash identifier: ZQiTDRNgPM60Gm92vqv3cvdL5LyWhX8PLuEUlUGW26Y= Subject key identifier: 09:89:87:60:3B:74:3C:18:EB:7A:F8:32:2D:44:B8:EA:17:7E:78:92 Authority key identifier: D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B Certificate issuer: /CN=A9115C2E/serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Certificate serial: 04FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft Manifest number: 04F7 Signing time: Fri 22 Aug 2025 20:01:53 +0000 Manifest this update: Fri 22 Aug 2025 20:01:53 +0000 Manifest next update: Fri 29 Aug 2025 20:01:53 +0000 Files and hashes: 1: 0pm8o5yZPbgNETe5mbIhhGrPVWs.crl (hash: tbswkzRnoF6c/FGhxpNAVwe3j3h5XyMfDPLvRVHd2U8=) 2: F490AE2431D811ECA3C4CE3EC4F9AE02.roa (hash: /oifx1YqYxKOVaxnhM6Z6BMW1b5AcpZK0vDtcYNO6Zg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1277 (0x4fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115C2E, serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Validity Not Before: Aug 22 20:01:53 2025 GMT Not After : Aug 29 20:01:53 2025 GMT Subject: CN=68a8ccb1-49d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:34:a6:1f:f2:dc:b3:40:60:b2:e7:f2:5f:4e: ec:62:71:e4:b9:f3:ad:29:33:1b:c1:f3:8a:69:3d: dd:1c:30:bf:66:11:c5:00:60:3d:84:28:a0:1a:dc: 55:f1:38:59:45:f6:2a:bb:c0:35:c4:6b:9a:c4:f1: 4d:c4:f7:0f:05:b9:35:db:e8:c4:23:37:5a:10:08: 13:9c:56:58:04:b6:f9:12:ea:ee:59:30:8b:65:28: 8a:6b:5c:76:8f:1d:ce:7d:b5:aa:6e:e7:5c:a0:84: f7:22:d7:d6:60:f3:d0:a9:f6:f1:85:5c:f0:4b:d6: 1e:eb:b9:49:2e:f5:4c:6b:a3:ac:54:cc:ce:32:27: fe:46:96:86:e2:f7:8d:59:fa:6f:7a:fe:94:25:10: d7:24:c0:25:5d:03:7c:b5:4e:c8:94:8e:a7:0d:5b: e1:27:6a:26:b3:75:61:48:20:ab:39:00:a8:a3:21: 1b:29:21:ae:83:ed:3b:68:79:71:2c:44:54:13:61: c3:fd:86:e1:a2:bb:37:17:66:d7:c5:c1:85:27:18: 67:79:dc:e5:27:52:f5:fa:c8:1a:9c:cf:05:2c:c3: ec:82:49:04:ad:8a:40:62:ad:98:67:ef:4b:ea:77: c6:d6:95:e0:80:b1:59:05:bd:60:48:ee:0f:8a:88: 76:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:89:87:60:3B:74:3C:18:EB:7A:F8:32:2D:44:B8:EA:17:7E:78:92 X509v3 Authority Key Identifier: keyid:D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:10:99:59:e4:93:02:55:c1:1a:d3:ca:72:ed:dd:98:9e:f4: 4c:a1:e2:74:94:ff:1f:6d:37:ea:cb:be:5d:93:cc:5d:b9:db: fa:b5:c5:20:9b:b9:3c:b2:7a:32:00:56:10:cb:6b:77:3d:d7: 14:ec:99:fd:ab:c4:33:80:5d:1d:f8:10:b6:51:cc:a6:7e:09: f0:5a:e3:5e:0d:8a:93:fc:da:82:90:10:34:cd:02:d6:bf:b4: 63:14:69:90:72:a0:f7:b8:ba:94:5a:5e:9f:3d:21:f9:ef:5e: 6b:f2:8d:36:40:cd:c0:71:58:5f:c6:92:95:9b:09:ea:ad:e8: 9a:f3:6e:b2:d7:af:ac:3f:ea:45:d1:5d:cd:1c:e5:2f:58:08: e5:31:b6:f4:4c:97:cf:a2:5b:38:89:54:70:78:3b:2f:fa:53: f5:40:37:95:8d:88:28:46:b8:46:91:f1:b8:29:46:2c:27:5c: 5e:35:8e:7b:ba:65:84:01:43:73:88:1d:53:9a:d7:0d:3d:c6: 0d:80:47:42:4a:32:7c:44:7e:0b:7c:a3:04:a9:7e:a0:b5:6d: e4:1a:02:03:7b:c6:43:bf:a9:aa:e1:0f:42:19:7d:64:89:c9: 97:97:64:d4:10:1e:0c:17:c3:60:6f:5e:5d:03:cf:0f:46:a8: ec:3a:e0:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDMkUxMTAvBgNVBAUTKEQyOTlCQ0EzOUM5OTNEQjgwRDExMzdCOTk5QjIyMTg0 NkFDRjU1NkIwHhcNMjUwODIyMjAwMTUzWhcNMjUwODI5MjAwMTUzWjAYMRYwFAYD VQQDEw02OGE4Y2NiMS00OWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzjSmH/Lcs0BgsufyX07sYnHkufOtKTMbwfOKaT3dHDC/ZhHFAGA9hCigGtxV 8ThZRfYqu8A1xGuaxPFNxPcPBbk12+jEIzdaEAgTnFZYBLb5EuruWTCLZSiKa1x2 jx3OfbWqbudcoIT3ItfWYPPQqfbxhVzwS9Ye67lJLvVMa6OsVMzOMif+RpaG4veN Wfpvev6UJRDXJMAlXQN8tU7IlI6nDVvhJ2oms3VhSCCrOQCooyEbKSGug+07aHlx LERUE2HD/Ybhors3F2bXxcGFJxhnedzlJ1L1+sganM8FLMPsgkkErYpAYq2YZ+9L 6nfG1pXggLFZBb1gSO4Pioh24QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAmJh2A7 dDwY63r4Mi1EuOoXfniSMB8GA1UdIwQYMBaAFNKZvKOcmT24DRE3uZmyIYRqz1Vr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUMyRS85NTI3RTZCNDI2 OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBiZ05FVGU1bWJJaGhHclBW V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBwbThvNXlaUGJnTkVUZTVtYkloaEdyUFZXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NUMyRS85NTI3RTZCNDI2OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBi Z05FVGU1bWJJaGhHclBWV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbEJlZ5JMCVcEa08py7d2YnvRMoeJ0lP8fbTfqy75dk8xdudv6tcUg m7k8snoyAFYQy2t3PdcU7Jn9q8QzgF0d+BC2UcymfgnwWuNeDYqT/NqCkBA0zQLW v7RjFGmQcqD3uLqUWl6fPSH5715r8o02QM3AcVhfxpKVmwnqreia826y16+sP+pF 0V3NHOUvWAjlMbb0TJfPols4iVRweDsv+lP1QDeVjYgoRrhGkfG4KUYsJ1xeNY57 umWEAUNziB1TmtcNPcYNgEdCSjJ8RH4LfKMEqX6gtW3kGgIDe8ZDv6mq4Q9CGX1k icmXl2TUEB4MF8Ngb15dA88PRqjsOuBN -----END CERTIFICATE-----Generated at Sat Aug 23 15:45:41 2025 by rpki-client