$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft File: lMnUO1O12FDZjg2i1e88ThwxIEU.mft (raw, json) Hash identifier: ywtFgiw+i6BdA6sKOmXQSc52LADI2YCmFzXGKt0I4I4= Subject key identifier: 58:23:A3:62:D2:89:F6:35:23:1A:40:EF:26:41:82:EE:ED:87:57:FE Authority key identifier: 94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 Certificate issuer: /CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Certificate serial: 1050 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft Manifest number: 104D Signing time: Fri 22 Aug 2025 17:31:49 +0000 Manifest this update: Fri 22 Aug 2025 17:31:48 +0000 Manifest next update: Fri 29 Aug 2025 17:31:48 +0000 Files and hashes: 1: lMnUO1O12FDZjg2i1e88ThwxIEU.crl (hash: qJ1B76VxAzShZCXsol1+HnV6Go+OxVd73mRRdhnm+fE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4176 (0x1050) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E21, serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Validity Not Before: Aug 22 17:31:48 2025 GMT Not After : Aug 29 17:31:48 2025 GMT Subject: CN=68a8a984-b8e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:38:47:df:1e:b3:ac:bf:9c:be:d2:dc:0e:31: 72:77:5d:ef:74:16:3a:13:24:a1:c1:f7:4b:64:47: cf:e4:11:aa:49:30:2c:b5:da:e5:6f:27:59:a6:a3: 40:39:75:a4:0a:50:80:27:47:0e:de:98:be:2a:85: 4b:66:61:3c:7f:49:83:b7:ed:56:81:9f:81:dc:03: 91:c2:23:18:ab:2a:22:4e:d5:6e:a1:2b:e5:34:5a: eb:aa:d3:ef:00:19:be:ac:5f:33:ce:51:f6:5c:f8: 91:58:ee:f0:0e:6f:86:4a:25:ed:e2:7a:0e:b7:2e: 14:7b:ff:4d:9f:e0:41:2f:4f:fc:f9:0f:da:f9:fb: 0b:73:54:06:a8:c9:81:2d:bd:df:8e:4f:3b:ae:5f: f6:71:cb:0b:58:90:b7:54:50:ca:03:60:35:38:45: 74:93:1a:41:16:d0:ce:fe:c3:d4:81:c4:c9:03:a7: 73:33:de:d5:3e:19:7e:04:ba:ee:84:12:42:d7:fd: 7b:19:a6:d4:c8:05:5c:5a:b9:74:ef:60:c0:9f:66: 95:78:0b:47:b8:ee:95:b2:47:55:64:82:7d:91:a2: 8e:de:50:49:20:e5:05:ff:9d:c4:71:75:49:2a:7d: 8b:1f:e2:b9:a3:2e:0b:86:71:c3:c7:72:fb:8d:f2: e6:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:23:A3:62:D2:89:F6:35:23:1A:40:EF:26:41:82:EE:ED:87:57:FE X509v3 Authority Key Identifier: keyid:94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:db:10:9d:f3:77:ed:43:db:29:2b:89:fd:0b:ce:c5:60:bb: 8e:7c:0f:1c:75:26:cd:e2:3f:33:ee:f9:9f:ec:23:79:dd:68: 79:1e:cb:3a:85:ea:cf:35:b4:84:2b:6f:ea:6f:d4:52:7f:c4: f8:60:f7:77:e0:bc:10:ca:8d:16:da:41:6d:34:1c:95:ce:27: d5:05:ec:ed:24:a5:1a:59:56:d0:cf:e1:91:be:88:66:5b:8f: 83:96:1e:55:9a:8d:7e:68:2f:6f:27:ab:2b:5e:63:f4:19:c1: 72:5b:be:a2:64:8f:37:34:9b:9f:4a:c9:ec:8d:24:4b:c9:04: 2e:46:2b:0f:45:a6:b6:4d:89:2a:10:68:9e:d7:a2:e1:5a:86: 93:bc:c9:4c:88:2e:b9:14:ad:7f:ab:7c:55:03:83:16:2d:43: 0c:30:d2:fc:9e:be:bd:59:4f:c1:61:a4:d0:39:6c:ce:d1:06: 1b:59:f1:1f:9d:76:bd:05:f3:cd:8e:f3:a1:7d:1e:f9:a8:e7: ec:78:28:a1:63:08:2b:cf:ec:18:cd:6f:dc:ff:1a:98:77:c4: e1:10:cf:0c:17:4e:d2:ce:12:97:1d:6d:f2:0d:15:15:4d:d7: b7:8b:f7:40:7e:13:e1:2d:a2:fb:38:e1:c8:58:f5:b5:43:a5: c1:40:77:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFMjExMTAvBgNVBAUTKDk0QzlENDNCNTNCNUQ4NTBEOThFMERBMkQ1RUYzQzRF MUMzMTIwNDUwHhcNMjUwODIyMTczMTQ4WhcNMjUwODI5MTczMTQ4WjAYMRYwFAYD VQQDEw02OGE4YTk4NC1iOGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzhH3x6zrL+cvtLcDjFyd13vdBY6EyShwfdLZEfP5BGqSTAstdrlbydZpqNA OXWkClCAJ0cO3pi+KoVLZmE8f0mDt+1WgZ+B3AORwiMYqyoiTtVuoSvlNFrrqtPv ABm+rF8zzlH2XPiRWO7wDm+GSiXt4noOty4Ue/9Nn+BBL0/8+Q/a+fsLc1QGqMmB Lb3fjk87rl/2ccsLWJC3VFDKA2A1OEV0kxpBFtDO/sPUgcTJA6dzM97VPhl+BLru hBJC1/17GabUyAVcWrl072DAn2aVeAtHuO6VskdVZIJ9kaKO3lBJIOUF/53EcXVJ Kn2LH+K5oy4LhnHDx3L7jfLmIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFgjo2LS ifY1IxpA7yZBgu7th1f+MB8GA1UdIwQYMBaAFJTJ1DtTtdhQ2Y4NotXvPE4cMSBF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEUyMS9BNUU5NTBENDQy NzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJGRFpqZzJpMWU4OFRod3hJ RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNblVPMU8xMkZEWmpnMmkxZTg4VGh3eElFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEUyMS9BNUU5NTBENDQyNzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJG RFpqZzJpMWU4OFRod3hJRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCe2xCd83ftQ9spK4n9C87FYLuOfA8cdSbN4j8z7vmf7CN53Wh5Hss6 herPNbSEK2/qb9RSf8T4YPd34LwQyo0W2kFtNByVzifVBeztJKUaWVbQz+GRvohm W4+Dlh5Vmo1+aC9vJ6srXmP0GcFyW76iZI83NJufSsnsjSRLyQQuRisPRaa2TYkq EGie16LhWoaTvMlMiC65FK1/q3xVA4MWLUMMMNL8nr69WU/BYaTQOWzO0QYbWfEf nXa9BfPNjvOhfR75qOfseCihYwgrz+wYzW/c/xqYd8ThEM8MF07SzhKXHW3yDRUV Tde3i/dAfhPhLaL7OOHIWPW1Q6XBQHdB -----END CERTIFICATE-----Generated at Sun Aug 24 03:33:59 2025 by rpki-client