$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft File: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft (raw, json) Hash identifier: H9j6Lie2YAiO9cfVBBK7WyucbJTV7MEKMAA9e+2H9PE= Subject key identifier: E9:F8:E8:D6:30:9C:B2:29:30:89:64:09:41:D3:2C:CD:75:9E:A5:01 Authority key identifier: AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 Certificate issuer: /CN=A9123BFF/serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Certificate serial: 078E Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft Manifest number: 0786 Signing time: Sat 28 Jun 2025 15:52:18 +0000 Manifest this update: Sat 28 Jun 2025 15:52:18 +0000 Manifest next update: Sat 05 Jul 2025 15:52:18 +0000 Files and hashes: 1: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl (hash: mN4lqo3kRcU2HfQ5UB4grMkrLPSOS0/SEoyImxGLOyo=) 2: A3744A28149A11EDB9CF2F70C4F9AE02.roa (hash: ldhnqRcVbTxkt0kcgUABU1YyeJx0zAFYwLA5AA7ZzpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 15:52:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1934 (0x78e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Validity Not Before: Jun 28 15:52:18 2025 GMT Not After : Jul 5 15:52:18 2025 GMT Subject: CN=68600fb2-ebf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:cf:f4:b1:11:8d:df:f0:29:02:2d:a9:29:82: 3d:50:ae:ca:4b:5c:39:e6:5e:88:f5:9e:05:ab:81: 59:73:8d:65:1b:01:02:b5:13:42:67:f8:fb:e1:c1: de:3f:3e:95:93:94:56:97:da:e0:fc:22:81:39:9d: 6a:76:39:50:13:ca:07:7d:3e:55:16:47:05:76:59: 92:13:fa:a2:b1:0c:50:55:a7:e7:82:a2:20:31:41: 82:2b:22:51:d4:5c:75:01:f2:6f:ef:66:23:e6:3b: 74:31:f6:e0:20:b9:cc:d5:e5:cb:91:f6:03:c9:85: 9b:f1:02:ca:86:d4:f8:6c:fe:4e:fe:08:73:fa:c3: 33:89:3f:fe:ee:d3:a0:0a:ba:79:e3:2e:3a:dc:31: d0:d9:14:46:c0:aa:c8:5b:6b:81:f4:8f:63:f0:f6: 48:9e:b7:41:65:ae:be:f1:52:0e:a7:cd:bc:ac:56: df:9b:8f:de:9f:50:38:2c:76:32:02:5f:97:7a:59: d8:c2:82:3f:8a:5b:aa:60:de:db:64:bf:c3:c7:37: ea:90:d0:63:43:b4:53:4d:b9:95:5d:24:d5:28:6d: f4:79:82:c0:28:5a:9c:5c:a8:e6:1d:79:ae:3c:28: cf:80:61:13:ef:60:78:74:69:26:3b:57:c6:0a:1c: 4f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:F8:E8:D6:30:9C:B2:29:30:89:64:09:41:D3:2C:CD:75:9E:A5:01 X509v3 Authority Key Identifier: keyid:AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:a8:2b:b1:80:9c:9a:9d:7a:e8:85:17:68:5c:d9:01:c1:9e: 5d:08:c7:9a:84:a1:7f:cc:71:6b:5e:72:75:5f:7a:20:b4:fd: f6:76:25:f7:45:c5:ec:1d:75:9c:b7:ad:19:bf:24:c4:76:41: 4a:a5:7b:2a:c8:ac:54:9c:03:fc:97:cc:24:a9:ae:22:f2:00: a3:8d:e4:da:d1:30:3f:e2:30:6b:6f:d4:d8:57:09:ae:67:2b: 68:ba:ab:d0:45:78:6b:01:d2:2c:1c:34:bb:b0:8d:eb:1b:1d: 7a:9f:57:b2:31:fa:44:85:19:ea:c2:3b:3d:00:da:04:04:88: ec:39:92:eb:62:01:88:c0:67:b0:5d:bf:67:fb:54:4f:8b:39: c1:7d:49:0a:ab:47:fb:b6:f6:f9:de:b1:d3:8b:96:68:fb:2c: 33:55:be:09:9d:ec:77:ab:af:ae:59:44:6e:ed:b2:0b:19:31: d1:88:46:41:46:9c:b1:ec:b9:aa:d6:a0:88:b0:00:6d:20:dd: 50:3c:22:b7:94:6f:94:e0:05:2b:50:b0:49:79:1a:6b:2d:4e: 94:62:5e:46:bc:3f:8f:1d:ae:82:91:c7:1e:53:24:4d:7e:f4: f0:db:89:54:e2:e5:9b:92:52:2b:80:f8:1e:20:01:a4:bc:dc: e5:15:74:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKEFGNEEzNTQ0Qzc0QjMxN0E3QzMyNkFGMEU4MzkzQ0I5 RDUyNjIwMzIwHhcNMjUwNjI4MTU1MjE4WhcNMjUwNzA1MTU1MjE4WjAYMRYwFAYD VQQDEw02ODYwMGZiMi1lYmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyc/0sRGN3/ApAi2pKYI9UK7KS1w55l6I9Z4Fq4FZc41lGwECtRNCZ/j74cHe Pz6Vk5RWl9rg/CKBOZ1qdjlQE8oHfT5VFkcFdlmSE/qisQxQVafngqIgMUGCKyJR 1Fx1AfJv72Yj5jt0MfbgILnM1eXLkfYDyYWb8QLKhtT4bP5O/ghz+sMziT/+7tOg Crp54y463DHQ2RRGwKrIW2uB9I9j8PZInrdBZa6+8VIOp828rFbfm4/en1A4LHYy Al+XelnYwoI/iluqYN7bZL/DxzfqkNBjQ7RTTbmVXSTVKG30eYLAKFqcXKjmHXmu PCjPgGET72B4dGkmO1fGChxPkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOn46NYw nLIpMIlkCUHTLM11nqUBMB8GA1UdIwQYMBaAFK9KNUTHSzF6fDJq8Og5PLnVJiAy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi8wRTJFRjUzNDFB NkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1YcDhNbXJ3NkRrOHVkVW1J REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3IwbzFSTWRMTVhwOE1tcnc2RGs4dWRVbUlESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi8wRTJFRjUzNDFBNkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1Y cDhNbXJ3NkRrOHVkVW1JREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOqCuxgJyanXrohRdoXNkBwZ5dCMeahKF/zHFrXnJ1X3ogtP32diX3 RcXsHXWct60ZvyTEdkFKpXsqyKxUnAP8l8wkqa4i8gCjjeTa0TA/4jBrb9TYVwmu ZytouqvQRXhrAdIsHDS7sI3rGx16n1eyMfpEhRnqwjs9ANoEBIjsOZLrYgGIwGew Xb9n+1RPiznBfUkKq0f7tvb53rHTi5Zo+ywzVb4Jnex3q6+uWURu7bILGTHRiEZB Rpyx7Lmq1qCIsABtIN1QPCK3lG+U4AUrULBJeRprLU6UYl5GvD+PHa6CkcceUyRN fvTw24lU4uWbklIrgPgeIAGkvNzlFXR1 -----END CERTIFICATE-----Generated at Mon Jun 30 14:37:53 2025 by rpki-client