$ rpki-client -vvf rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft File: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft (raw, json) Hash identifier: JUnE32SwF78iFt5MEwbYoWu+8Sa8OboT4CxZ7UPHXZQ= Subject key identifier: AB:6F:8C:24:26:66:86:49:54:67:4B:05:0E:B1:87:4A:0A:7D:34:96 Authority key identifier: D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD Certificate issuer: /CN=A9122219/serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Certificate serial: 0B60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft Manifest number: 0B56 Signing time: Fri 22 Aug 2025 19:14:51 +0000 Manifest this update: Fri 22 Aug 2025 19:14:51 +0000 Manifest next update: Fri 29 Aug 2025 19:14:51 +0000 Files and hashes: 1: 0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl (hash: y1LToO2oHzwCYrrpWbvBb8J3NZAnLHrdxOR3sxRT1LA=) 2: CD145D246E4E11EDBE02B065C4F9AE02.roa (hash: HQ+n/zvxBXsyHktY7VZtlLogGsEgUPieMT07w6OWlaY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2912 (0xb60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122219, serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Validity Not Before: Aug 22 19:14:51 2025 GMT Not After : Aug 29 19:14:51 2025 GMT Subject: CN=68a8c1ab-2369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b9:e3:41:f0:41:d2:c2:02:5f:c1:2c:c2:0d: 71:c9:fd:e1:b7:2c:a6:f7:ef:15:cb:a4:80:3c:a4: 62:d1:9b:6c:c9:8f:3b:cb:28:85:0d:ff:87:2a:a6: 77:ff:e0:63:d2:6a:b2:0f:8c:1a:94:c5:1b:84:a6: 73:f1:93:41:2c:04:21:74:b0:3d:4a:3c:78:17:b3: 0d:ff:6c:cd:7d:82:cf:b5:ad:ed:85:4a:8c:ec:37: d7:e3:28:43:2c:56:1d:33:f7:4f:91:74:8f:31:2c: 77:a7:d4:5b:26:95:bc:8c:81:a5:64:2e:62:ba:f4: 5a:37:25:03:0e:0a:5c:a4:0d:d1:ff:cf:0f:dd:16: 29:54:a8:c8:00:6f:9e:4e:19:12:4d:47:92:d7:09: b6:d4:06:f5:ea:d9:fb:02:45:44:16:b8:ab:da:5f: d5:00:92:c5:fa:e4:7a:aa:42:b9:42:79:89:c4:f6: 93:7b:87:e1:7a:4a:b1:d5:ab:8b:6c:d5:80:b9:0f: eb:25:42:79:68:ca:4e:fa:26:66:8b:ee:9b:4f:c1: a0:05:f0:fa:e9:cd:f9:61:57:41:b6:5f:41:f8:38: e8:9e:04:8f:35:b7:aa:62:a5:85:8a:78:76:73:42: e3:1c:81:64:03:9d:62:29:80:55:a9:c4:83:50:c4: 18:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:6F:8C:24:26:66:86:49:54:67:4B:05:0E:B1:87:4A:0A:7D:34:96 X509v3 Authority Key Identifier: keyid:D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:aa:30:cf:69:d3:c6:6e:77:19:7a:1a:6c:91:de:16:90:b6: d5:7d:97:d9:9e:1f:f5:d0:82:dd:cd:93:7c:c8:16:51:8f:35: 14:89:ad:40:34:d8:a3:3e:21:2b:1d:e0:72:7a:f0:ec:d5:35: 47:ac:71:3a:89:3a:eb:4e:3f:96:88:5f:0a:05:da:5f:54:bc: 16:e1:ce:77:bc:43:31:f1:77:85:92:8b:94:b1:8b:36:38:48: df:39:28:44:6f:6e:77:9c:b4:8f:b8:ec:6c:38:76:a1:5a:ef: 3f:07:4d:6d:74:21:31:aa:e5:fb:b3:2b:49:8a:f7:90:db:26: a1:e2:92:b6:5d:d6:46:5b:ad:8b:0d:5e:3e:84:3e:d3:02:4f: 52:15:d8:4d:22:61:10:0d:2b:7a:c2:0d:ce:7c:71:72:c3:d5: b3:2c:02:d9:bc:da:4c:2c:9b:2d:74:36:36:a1:25:3e:8e:34: 65:3e:63:6c:2b:05:fe:3d:d4:36:1b:29:7a:cb:77:c5:73:80: 9d:4d:0a:0a:d6:24:59:4a:71:6b:a8:a7:12:64:d1:09:e4:74: 60:c3:a9:80:25:67:46:b8:4a:7a:34:49:19:a9:11:70:c7:e5: a3:87:c2:89:b5:19:58:f8:3f:21:0b:0a:57:6a:f9:3c:8d:8b: 81:97:ad:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyMTkxMTAvBgNVBAUTKEQwRDJGNDVBNDZEMjY3NjYwMTRCNzg2MDE5QTA5QTgz MzQ4NzNEQUQwHhcNMjUwODIyMTkxNDUxWhcNMjUwODI5MTkxNDUxWjAYMRYwFAYD VQQDEw02OGE4YzFhYi0yMzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbnjQfBB0sICX8Eswg1xyf3htyym9+8Vy6SAPKRi0ZtsyY87yyiFDf+HKqZ3 /+Bj0mqyD4walMUbhKZz8ZNBLAQhdLA9Sjx4F7MN/2zNfYLPta3thUqM7DfX4yhD LFYdM/dPkXSPMSx3p9RbJpW8jIGlZC5iuvRaNyUDDgpcpA3R/88P3RYpVKjIAG+e ThkSTUeS1wm21Ab16tn7AkVEFrir2l/VAJLF+uR6qkK5QnmJxPaTe4fhekqx1auL bNWAuQ/rJUJ5aMpO+iZmi+6bT8GgBfD66c35YVdBtl9B+DjongSPNbeqYqWFinh2 c0LjHIFkA51iKYBVqcSDUMQYbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKtvjCQm ZoZJVGdLBQ6xh0oKfTSWMB8GA1UdIwQYMBaAFNDS9FpG0mdmAUt4YBmgmoM0hz2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjIxOS84MkZFODlDQzND MzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oyWUJTM2hnR2FDYWd6U0hQ YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBOTDBXa2JTWjJZQlMzaGdHYUNhZ3pTSFBhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjIxOS84MkZFODlDQzNDMzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oy WUJTM2hnR2FDYWd6U0hQYTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3qjDPadPGbncZehpskd4WkLbVfZfZnh/10ILdzZN8yBZRjzUUia1A NNijPiErHeByevDs1TVHrHE6iTrrTj+WiF8KBdpfVLwW4c53vEMx8XeFkouUsYs2 OEjfOShEb253nLSPuOxsOHahWu8/B01tdCExquX7sytJiveQ2yah4pK2XdZGW62L DV4+hD7TAk9SFdhNImEQDSt6wg3OfHFyw9WzLALZvNpMLJstdDY2oSU+jjRlPmNs KwX+PdQ2Gyl6y3fFc4CdTQoK1iRZSnFrqKcSZNEJ5HRgw6mAJWdGuEp6NEkZqRFw x+Wjh8KJtRlY+D8hCwpXavk8jYuBl63b -----END CERTIFICATE-----Generated at Sat Aug 23 21:30:56 2025 by rpki-client