$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft File: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft (raw, json) Hash identifier: Gy/8Ns+uBz/3JMXeKsdMCDOWWFMy7Wgu/0iaCgmlHqA= Subject key identifier: 52:AB:16:D3:42:60:3D:E1:0E:1C:F5:8C:85:A9:1A:9C:7F:A7:16:B2 Authority key identifier: AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 Certificate issuer: /CN=A9123BFF/serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Certificate serial: 07AA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft Manifest number: 07A2 Signing time: Fri 22 Aug 2025 16:00:49 +0000 Manifest this update: Fri 22 Aug 2025 16:00:49 +0000 Manifest next update: Fri 29 Aug 2025 16:00:49 +0000 Files and hashes: 1: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl (hash: zpPIMvOVreKX7p0vfsFN1FXeY5LG91uEDEldfRnqZVM=) 2: A3744A28149A11EDB9CF2F70C4F9AE02.roa (hash: ldhnqRcVbTxkt0kcgUABU1YyeJx0zAFYwLA5AA7ZzpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1962 (0x7aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Validity Not Before: Aug 22 16:00:49 2025 GMT Not After : Aug 29 16:00:49 2025 GMT Subject: CN=68a89431-51c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:db:3f:2c:a1:d7:59:59:50:6b:b2:ab:b5:5b: 56:e0:fc:3c:67:13:c1:d1:9e:bc:f2:ca:5d:e2:d2: 71:78:e9:2e:e8:5c:77:36:82:f5:4c:8a:d4:ee:17: 7d:92:d5:8e:69:d2:85:79:8d:95:dd:80:c3:0b:0e: 5f:54:c7:d6:6c:fb:9a:5b:57:ed:34:f0:80:9f:b4: b1:a6:02:2e:63:ab:74:bb:b8:ef:5a:0f:31:5c:1f: 48:51:06:ad:dd:2c:19:ae:75:3d:ef:26:41:7e:dd: 17:a5:09:ad:4e:a0:2a:c2:03:8c:31:9a:68:a2:57: 27:68:05:b5:d8:aa:f0:e6:90:b8:ca:b7:cb:5d:26: 8c:e1:63:f4:b7:09:b2:a7:79:59:7e:8f:e6:3d:78: b6:db:e8:89:d0:c0:92:45:69:a1:26:33:4d:12:74: 0d:81:74:68:65:8f:8d:e8:44:7d:5b:f1:7b:42:c8: e5:5f:cf:e5:33:cd:46:7d:36:60:e3:39:d7:59:5d: b2:06:18:7a:41:1e:8a:08:95:d5:cc:65:26:8a:e8: ef:68:26:11:8e:58:e8:f2:76:fa:46:57:f4:3b:46: 7e:69:5c:3e:c9:2f:e2:17:48:b0:ab:32:38:d3:ef: f1:fc:1f:49:6a:9a:b7:aa:5e:67:7f:32:05:09:93: fa:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:AB:16:D3:42:60:3D:E1:0E:1C:F5:8C:85:A9:1A:9C:7F:A7:16:B2 X509v3 Authority Key Identifier: keyid:AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:c1:82:80:f5:c5:01:b6:66:4e:c1:89:da:b7:87:aa:f1:c7: ca:d5:47:35:3c:8b:86:16:1c:6e:03:7e:66:ce:14:d1:07:c5: 49:ca:d8:ad:10:5c:e8:fd:a3:0f:e0:14:c7:7b:4b:05:f9:c0: 34:df:94:7c:98:70:da:08:43:6e:90:88:12:f6:ee:10:b2:91: 64:13:77:a3:dd:80:06:07:15:68:71:c3:63:21:c6:25:20:35: b1:ee:e7:29:e8:a1:85:3d:29:54:67:f0:5e:78:29:3c:92:bc: 2a:f7:36:25:5b:15:3d:8c:81:69:c7:90:6e:cb:07:0d:3c:f9: 64:45:eb:96:ef:58:93:09:c3:12:13:88:b0:93:ae:a2:ee:ac: 12:ad:f6:fa:f3:df:12:4a:57:65:fe:49:46:b8:09:de:d8:d3: 84:05:c8:a4:e0:c4:f0:60:44:f0:7a:f9:5a:ca:59:ae:7a:8a: fc:eb:cf:f6:ec:d6:db:c1:4d:8f:b2:ec:94:3c:37:d7:42:59: 11:f6:19:0f:11:51:68:b5:6a:4b:33:45:40:5f:f4:66:06:1d: 6d:b1:4c:4e:e2:58:87:22:57:6e:c1:14:c9:87:94:10:4c:c3: 36:4a:e5:3d:18:7f:df:c4:8f:60:94:39:98:c5:77:4e:a7:82: b0:1b:01:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKEFGNEEzNTQ0Qzc0QjMxN0E3QzMyNkFGMEU4MzkzQ0I5 RDUyNjIwMzIwHhcNMjUwODIyMTYwMDQ5WhcNMjUwODI5MTYwMDQ5WjAYMRYwFAYD VQQDEw02OGE4OTQzMS01MWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz9s/LKHXWVlQa7KrtVtW4Pw8ZxPB0Z688spd4tJxeOku6Fx3NoL1TIrU7hd9 ktWOadKFeY2V3YDDCw5fVMfWbPuaW1ftNPCAn7SxpgIuY6t0u7jvWg8xXB9IUQat 3SwZrnU97yZBft0XpQmtTqAqwgOMMZpoolcnaAW12Krw5pC4yrfLXSaM4WP0twmy p3lZfo/mPXi22+iJ0MCSRWmhJjNNEnQNgXRoZY+N6ER9W/F7QsjlX8/lM81GfTZg 4znXWV2yBhh6QR6KCJXVzGUmiujvaCYRjljo8nb6Rlf0O0Z+aVw+yS/iF0iwqzI4 0+/x/B9Japq3ql5nfzIFCZP6jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFKrFtNC YD3hDhz1jIWpGpx/pxayMB8GA1UdIwQYMBaAFK9KNUTHSzF6fDJq8Og5PLnVJiAy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi8wRTJFRjUzNDFB NkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1YcDhNbXJ3NkRrOHVkVW1J REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3IwbzFSTWRMTVhwOE1tcnc2RGs4dWRVbUlESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi8wRTJFRjUzNDFBNkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1Y cDhNbXJ3NkRrOHVkVW1JREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYwYKA9cUBtmZOwYnat4eq8cfK1Uc1PIuGFhxuA35mzhTRB8VJytit EFzo/aMP4BTHe0sF+cA035R8mHDaCENukIgS9u4QspFkE3ej3YAGBxVoccNjIcYl IDWx7ucp6KGFPSlUZ/BeeCk8krwq9zYlWxU9jIFpx5BuywcNPPlkReuW71iTCcMS E4iwk66i7qwSrfb6898SSldl/klGuAne2NOEBcik4MTwYETwevlaylmueor868/2 7NbbwU2PsuyUPDfXQlkR9hkPEVFotWpLM0VAX/RmBh1tsUxO4liHIlduwRTJh5QQ TMM2SuU9GH/fxI9glDmYxXdOp4KwGwEc -----END CERTIFICATE-----Generated at Sat Aug 23 13:44:53 2025 by rpki-client