$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: fMh5a1alZUiOrQxWlt95ow8/iHW9hrdiRyOZhG7ri6U= Subject key identifier: E1:51:4D:6C:F4:F3:1D:F1:99:85:A6:61:F9:C1:35:EE:AC:D2:1E:A6 Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 04CC Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 04C1 Signing time: Thu 03 Jul 2025 00:11:55 +0000 Manifest this update: Thu 03 Jul 2025 00:11:55 +0000 Manifest next update: Thu 10 Jul 2025 00:11:55 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: dlEn/bjT36RVxUUdgRRLBOaAtyaOAoGUe4Q2NB2JsCw=) 2: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: 4FN1ls050r3VusXGiD5QsVc+2i8lsZWUOsjCg4ks1ns=) 3: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xSXFEgaEwRI11lRD4Ufv2Q0UsgFam8SFWBwH7ownsu0=) 4: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: XhD4C1tmuOJjIi4uib9jXt7/7FR/n9zJv0iU9Ika1Yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1228 (0x4cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Jul 3 00:11:55 2025 GMT Not After : Jul 10 00:11:55 2025 GMT Subject: CN=6865cacb-5b1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b6:d2:c8:a8:21:64:3e:d5:34:bc:9c:b8:3b: 4e:7a:94:88:28:67:f4:85:9e:b6:22:7b:d6:c2:99: ad:77:c3:3e:30:f6:6b:00:d9:56:0a:25:28:57:a5: af:c8:2e:03:eb:f8:c7:35:92:b9:56:bd:c0:90:f0: f9:f9:b6:f3:ce:b3:64:d2:85:87:77:ef:5a:a3:62: 63:75:5c:cd:93:8d:cf:f9:d9:6d:d0:b8:e2:53:65: 72:40:03:a8:51:19:cb:c5:58:2d:fb:e8:eb:f8:b9: 9c:51:71:05:12:4a:47:29:8e:b8:42:94:34:46:93: 78:d0:49:46:1c:7d:e0:a9:30:fc:04:01:ef:0d:bc: 58:b3:da:34:23:8b:71:c6:4f:82:4a:f7:67:54:8a: 33:51:1b:fc:a3:e8:b1:6b:42:7d:1f:2b:9e:d7:a2: b2:0c:bb:a2:39:68:85:be:7d:7d:32:6c:7f:34:f9: 23:b7:f9:61:a4:d9:5b:18:4a:99:8e:36:19:76:e8: 58:86:b5:54:b5:91:08:3b:86:37:70:a3:63:a2:55: 77:ef:92:2e:69:35:4c:4d:54:9b:ab:1c:11:bf:a2: 39:0a:41:1f:b0:08:c2:f3:b5:14:db:d1:71:05:de: 8f:d4:28:96:2b:ea:5b:62:07:ee:9e:9e:cb:df:c0: 53:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:51:4D:6C:F4:F3:1D:F1:99:85:A6:61:F9:C1:35:EE:AC:D2:1E:A6 X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:35:78:cb:4c:1a:09:dd:97:53:ca:d9:6a:fb:eb:8f:09:19: f8:39:a4:0c:2e:d7:19:90:37:02:b4:cc:95:72:44:33:00:4c: f6:09:d8:0d:50:43:2a:7c:3f:ea:dc:36:e6:7c:04:c9:da:3d: 8f:2e:e8:65:bd:b3:ae:98:fa:90:61:8e:e9:3b:5e:43:0a:5b: 16:d7:ff:6c:0b:e8:eb:39:75:37:b9:2e:d3:22:4f:02:6d:ed: d0:55:8b:30:f8:16:57:e8:d1:bc:7c:e0:f1:95:36:b9:fe:0b: 7d:b4:ed:7c:9b:9b:b8:14:50:16:36:2d:f6:89:d9:12:5b:66: 61:33:4a:be:56:e3:e5:1f:ed:ea:b3:c1:ca:24:d1:07:57:9d: e3:4c:08:b6:f0:2a:68:af:dd:2b:f4:a1:9d:d3:ba:7c:a2:d8: da:cf:7b:21:cb:ee:a3:bf:73:d0:db:cc:8c:3b:8f:b4:b5:f4: de:7b:65:41:63:19:4b:d2:ed:12:fb:e0:fe:a7:ec:8a:69:da: 33:58:d4:8b:1f:b5:9d:23:9b:6f:21:59:af:fd:8a:aa:73:e1: 5f:d9:7e:83:de:ba:92:00:c9:1b:a2:89:14:b3:c2:e5:52:d0: 44:d7:0d:02:61:18:79:d4:80:9e:03:3f:c3:a4:67:9e:49:19: 05:4b:34:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjUwNzAzMDAxMTU1WhcNMjUwNzEwMDAxMTU1WjAYMRYwFAYD VQQDEw02ODY1Y2FjYi01YjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LbSyKghZD7VNLycuDtOepSIKGf0hZ62InvWwpmtd8M+MPZrANlWCiUoV6Wv yC4D6/jHNZK5Vr3AkPD5+bbzzrNk0oWHd+9ao2JjdVzNk43P+dlt0LjiU2VyQAOo URnLxVgt++jr+LmcUXEFEkpHKY64QpQ0RpN40ElGHH3gqTD8BAHvDbxYs9o0I4tx xk+CSvdnVIozURv8o+ixa0J9Hyue16KyDLuiOWiFvn19Mmx/NPkjt/lhpNlbGEqZ jjYZduhYhrVUtZEIO4Y3cKNjolV375IuaTVMTVSbqxwRv6I5CkEfsAjC87UU29Fx Bd6P1CiWK+pbYgfunp7L38BT+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFRTWz0 8x3xmYWmYfnBNe6s0h6mMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3NXjLTBoJ3ZdTytlq++uPCRn4OaQMLtcZkDcCtMyVckQzAEz2CdgN UEMqfD/q3DbmfATJ2j2PLuhlvbOumPqQYY7pO15DClsW1/9sC+jrOXU3uS7TIk8C be3QVYsw+BZX6NG8fODxlTa5/gt9tO18m5u4FFAWNi32idkSW2ZhM0q+VuPlH+3q s8HKJNEHV53jTAi28Cpor90r9KGd07p8otjaz3shy+6jv3PQ28yMO4+0tfTee2VB YxlL0u0S++D+p+yKadozWNSLH7WdI5tvIVmv/Yqqc+Ff2X6D3rqSAMkbookUs8Ll UtBE1w0CYRh51ICeAz/DpGeeSRkFSzS0 -----END CERTIFICATE-----Generated at Fri Jul 4 00:16:30 2025 by rpki-client