$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: MQTfikqEInBFMqwflh0UlwaHOwWw06y+HhzphZ563Cc= Subject key identifier: B9:AD:B6:9F:00:32:47:08:0C:18:BE:4B:05:B6:45:3F:F7:0B:D7:0F Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 04E6 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 04DB Signing time: Fri 22 Aug 2025 23:59:19 +0000 Manifest this update: Fri 22 Aug 2025 23:59:18 +0000 Manifest next update: Fri 29 Aug 2025 23:59:18 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: THrYS7+ZpKkqcZdb3OyovNsj8LhMzVPU1Q7RLhEtkww=) 2: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: 4FN1ls050r3VusXGiD5QsVc+2i8lsZWUOsjCg4ks1ns=) 3: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xSXFEgaEwRI11lRD4Ufv2Q0UsgFam8SFWBwH7ownsu0=) 4: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: XhD4C1tmuOJjIi4uib9jXt7/7FR/n9zJv0iU9Ika1Yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:59:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1254 (0x4e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Aug 22 23:59:18 2025 GMT Not After : Aug 29 23:59:18 2025 GMT Subject: CN=68a90457-ff87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:81:f1:b5:24:4e:fc:bc:f7:01:90:d3:9c:5d: ee:b9:cf:92:44:53:1a:fb:4d:66:7a:10:89:9f:2a: a5:66:a5:3c:5b:7c:da:73:25:c8:1e:de:ae:cd:73: 5f:5c:42:f9:c9:7a:c3:05:ab:1b:02:eb:40:5d:17: ea:da:6c:ac:81:69:7d:7a:23:a4:5b:d4:95:3a:9b: b3:bc:22:72:e8:3a:65:59:09:99:a8:05:a6:17:2a: 26:db:d1:22:fd:71:86:6b:08:ce:89:80:f6:3a:4e: 42:48:dd:b8:81:af:6c:22:72:e8:c6:18:08:87:41: f9:03:21:26:8d:ae:53:57:6e:16:0a:0a:e3:91:19: 39:46:49:80:12:86:c4:42:5b:05:73:ba:88:bd:2d: ca:89:64:3d:49:b9:2a:3a:30:33:b6:10:64:f7:06: 45:00:f3:11:61:37:ae:06:3d:8f:b4:cb:aa:d0:48: db:d8:3a:8d:30:f7:ab:eb:e3:d4:30:91:50:97:da: cb:cd:7b:0a:e6:c5:5c:58:c4:df:50:0f:d2:f3:bf: 70:09:2e:1f:12:57:cc:0a:62:c5:46:f6:95:94:c4: 8b:0f:ec:19:9b:79:fc:cf:7c:c9:24:11:6c:65:3b: b9:5b:03:d5:27:06:52:c1:a0:74:33:6b:f5:f8:45: 60:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:AD:B6:9F:00:32:47:08:0C:18:BE:4B:05:B6:45:3F:F7:0B:D7:0F X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:3c:76:24:f1:08:70:e8:20:e7:bb:b3:c7:81:70:a4:f1:92: bf:e7:2a:7e:d8:56:14:8a:59:dc:7e:d9:5b:4c:f7:52:f1:c4: 67:3f:87:31:24:83:f7:78:b8:6a:45:35:30:d0:ae:ec:f7:4c: 74:f2:27:44:d9:73:23:b3:f6:cd:49:07:b0:6b:c8:dd:f4:08: 7f:49:c8:62:c7:bd:2a:d1:47:41:18:07:83:80:8a:ac:ab:05: 8c:93:dd:4c:a2:09:8f:91:07:44:15:8f:df:94:7a:76:84:58: 87:30:74:2c:d4:ff:a3:d8:c6:3c:c0:d4:70:fd:09:ad:4f:63: 2d:53:d0:5c:42:e3:48:a2:19:9b:60:a5:2a:83:73:9e:87:35: 44:45:1f:a9:63:10:d5:62:cf:f9:07:ea:f0:46:e7:2f:d5:44: 56:c1:9f:1c:12:7c:02:de:d1:3a:a7:7e:30:4e:26:bf:bf:8b: 45:f1:01:fa:a2:33:fa:db:1b:8e:d6:99:b0:46:bc:d5:d7:47: 8e:ff:bc:27:6c:d3:3d:5b:f0:a1:89:62:fc:37:d6:6f:ad:5f: 97:e8:7d:f8:89:e5:44:7e:a2:cd:c0:3e:03:c6:a9:62:24:16: 89:18:0e:59:7d:1a:a0:74:7d:f6:1a:65:9a:55:2c:45:d9:16: 52:0f:d8:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjUwODIyMjM1OTE4WhcNMjUwODI5MjM1OTE4WjAYMRYwFAYD VQQDEw02OGE5MDQ1Ny1mZjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YHxtSRO/Lz3AZDTnF3uuc+SRFMa+01mehCJnyqlZqU8W3zacyXIHt6uzXNf XEL5yXrDBasbAutAXRfq2mysgWl9eiOkW9SVOpuzvCJy6DplWQmZqAWmFyom29Ei /XGGawjOiYD2Ok5CSN24ga9sInLoxhgIh0H5AyEmja5TV24WCgrjkRk5RkmAEobE QlsFc7qIvS3KiWQ9SbkqOjAzthBk9wZFAPMRYTeuBj2PtMuq0Ejb2DqNMPer6+PU MJFQl9rLzXsK5sVcWMTfUA/S879wCS4fElfMCmLFRvaVlMSLD+wZm3n8z3zJJBFs ZTu5WwPVJwZSwaB0M2v1+EVgnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLmttp8A MkcIDBi+SwW2RT/3C9cPMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbPHYk8Qhw6CDnu7PHgXCk8ZK/5yp+2FYUilncftlbTPdS8cRnP4cx JIP3eLhqRTUw0K7s90x08idE2XMjs/bNSQewa8jd9Ah/Schix70q0UdBGAeDgIqs qwWMk91MogmPkQdEFY/flHp2hFiHMHQs1P+j2MY8wNRw/QmtT2MtU9BcQuNIohmb YKUqg3OehzVERR+pYxDVYs/5B+rwRucv1URWwZ8cEnwC3tE6p34wTia/v4tF8QH6 ojP62xuO1pmwRrzV10eO/7wnbNM9W/ChiWL8N9ZvrV+X6H34ieVEfqLNwD4Dxqli JBaJGA5ZfRqgdH32GmWaVSxF2RZSD9h7 -----END CERTIFICATE-----Generated at Sun Aug 24 05:15:59 2025 by rpki-client