$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: WY7g6QHXcyAhQocEnhhxhKsRfqEYAugO6qwXzdaz2Fg= Subject key identifier: 78:B8:4D:F5:6D:6A:E4:A4:41:DA:1E:0B:74:53:97:65:31:02:29:55 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 04E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 04DC Signing time: Fri 22 Aug 2025 23:59:21 +0000 Manifest this update: Fri 22 Aug 2025 23:59:20 +0000 Manifest next update: Fri 29 Aug 2025 23:59:20 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: F7uBmy72oRE+hZ12YY8zo8T7hwJg4TxMLsYhYUUU8qE=) 2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: aUDrwRtGsUzrY00Rmj3XgznPDP2fmFZxHTp5GIqGdmE=) 3: ECC109EA3C8811EC889B9D78C4F9AE02.roa (hash: qsT6gdrcrYiz10awZz/5+uahx1IUYSEl585Lltn+07o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:59:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1255 (0x4e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Aug 22 23:59:20 2025 GMT Not After : Aug 29 23:59:20 2025 GMT Subject: CN=68a90459-ca97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a7:1e:c4:78:8f:a8:ce:ec:b0:c7:3e:fd:f9: 8b:9d:de:d4:81:3b:45:32:cd:57:59:d0:4c:7f:71: 2d:3a:07:ce:5a:f7:b4:cb:ac:e8:e5:d6:7f:0f:bc: 65:c8:56:60:b6:a8:dd:b6:b8:83:54:a6:f5:45:6f: b7:16:e3:ba:be:d9:e3:86:64:9b:bc:85:cd:7c:f2: 39:36:38:6e:45:85:6f:cf:31:fa:af:82:b3:a5:cf: 18:7a:7c:56:4e:24:a2:f0:04:58:b8:bf:5f:c6:2d: e4:83:2f:2d:38:1c:22:1d:fe:8a:1f:06:29:ea:5f: 34:d0:b4:0b:3d:81:cb:22:35:aa:27:b0:47:74:92: 9d:81:82:d5:25:22:82:ce:b3:2a:33:d5:3b:d7:c3: 2d:89:3b:80:7b:fc:78:a0:6c:59:1c:78:4e:f1:da: 09:a1:e5:c6:77:2a:63:03:06:82:24:69:90:65:b2: de:4e:b1:15:38:81:53:c2:74:53:38:14:50:54:06: df:2b:1b:bd:51:25:70:d1:69:53:e5:45:b5:02:3e: 3a:05:d0:d3:e3:cb:db:17:b2:36:99:a6:0b:5d:73: 07:b8:dd:0c:19:16:fb:7e:92:86:32:c6:df:2c:b2: 4c:bd:0b:9d:09:ca:55:99:47:86:68:f1:6a:97:96: c5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:B8:4D:F5:6D:6A:E4:A4:41:DA:1E:0B:74:53:97:65:31:02:29:55 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:02:b2:c8:a3:9e:f8:39:6e:7c:51:3f:31:3b:35:e7:62:26: 06:d4:69:4d:b4:a4:59:3d:d3:7d:41:9b:2f:e8:b0:36:b3:6e: 93:40:76:ee:7c:8e:ae:8e:b3:8e:28:4d:10:5d:c0:1a:e6:de: d2:30:9d:ec:23:de:c6:6e:aa:fc:75:2c:d6:05:53:ef:cd:38: 83:8d:0f:12:81:91:5e:fe:8e:0a:27:e0:a7:72:7e:15:87:36: 6a:4b:17:06:2a:ea:b2:e7:3d:74:04:e7:0e:d4:b9:0a:a3:7d: e3:1b:e7:4f:aa:0f:ea:95:78:18:ba:5b:5b:bb:d5:c4:28:ec: 85:cb:b7:c4:09:b5:77:ba:44:07:ac:42:d6:a6:21:d5:b5:86: cb:6e:b2:0f:99:93:62:c0:10:ca:51:49:73:b4:fb:9e:f1:15: b7:e0:a5:76:80:e7:6d:fe:30:4d:fe:93:6b:65:3c:f2:55:91: 3e:ed:ef:1d:aa:8e:29:9f:69:92:c3:f9:f5:b6:b9:3a:b6:ef: 40:83:e4:06:f3:ed:23:32:88:12:4b:f2:16:74:ee:fa:26:45: 0c:29:70:28:47:63:bc:5d:67:e7:a9:c0:f5:bb:5a:a1:46:1d: 20:42:87:94:12:f6:c3:e7:cf:b3:49:bd:05:4b:47:72:db:b2: ea:d0:cd:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjUwODIyMjM1OTIwWhcNMjUwODI5MjM1OTIwWjAYMRYwFAYD VQQDEw02OGE5MDQ1OS1jYTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqcexHiPqM7ssMc+/fmLnd7UgTtFMs1XWdBMf3EtOgfOWve0y6zo5dZ/D7xl yFZgtqjdtriDVKb1RW+3FuO6vtnjhmSbvIXNfPI5NjhuRYVvzzH6r4Kzpc8YenxW TiSi8ARYuL9fxi3kgy8tOBwiHf6KHwYp6l800LQLPYHLIjWqJ7BHdJKdgYLVJSKC zrMqM9U718MtiTuAe/x4oGxZHHhO8doJoeXGdypjAwaCJGmQZbLeTrEVOIFTwnRT OBRQVAbfKxu9USVw0WlT5UW1Aj46BdDT48vbF7I2maYLXXMHuN0MGRb7fpKGMsbf LLJMvQudCcpVmUeGaPFql5bFQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHi4TfVt auSkQdoeC3RTl2UxAilVMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7ArLIo574OW58UT8xOzXnYiYG1GlNtKRZPdN9QZsv6LA2s26TQHbu fI6ujrOOKE0QXcAa5t7SMJ3sI97Gbqr8dSzWBVPvzTiDjQ8SgZFe/o4KJ+Cncn4V hzZqSxcGKuqy5z10BOcO1LkKo33jG+dPqg/qlXgYultbu9XEKOyFy7fECbV3ukQH rELWpiHVtYbLbrIPmZNiwBDKUUlztPue8RW34KV2gOdt/jBN/pNrZTzyVZE+7e8d qo4pn2mSw/n1trk6tu9Ag+QG8+0jMogSS/IWdO76JkUMKXAoR2O8XWfnqcD1u1qh Rh0gQoeUEvbD58+zSb0FS0dy27Lq0M3Z -----END CERTIFICATE-----Generated at Sat Aug 23 12:38:51 2025 by rpki-client