$ rpki-client -vvf rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft File: 0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft (raw, json) Hash identifier: AzRUaCFU8WtCSup3yvX1Bd7tnuixOAFsAXCRHvc27SU= Subject key identifier: 39:BC:4A:B7:F1:40:55:44:F2:15:63:AF:E9:AF:C0:CB:BE:4D:29:9D Authority key identifier: D0:94:D2:47:14:35:2E:0E:BC:D3:F8:82:75:23:28:27:BC:6A:C8:90 Certificate issuer: /CN=A9123E38/serialNumber=D094D24714352E0EBCD3F88275232827BC6AC890 Certificate serial: 0ADE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft Manifest number: 0ADC Signing time: Fri 22 Aug 2025 16:47:04 +0000 Manifest this update: Fri 22 Aug 2025 16:47:04 +0000 Manifest next update: Fri 29 Aug 2025 16:47:04 +0000 Files and hashes: 1: 0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl (hash: Z9xALGoIrE/mttP1cal+vSysonMPKfmtobosEcUlSNY=) 2: DC25591636C011F0A9DAF53EC4F9AE02.roa (hash: X6qLGESMHlCjgInNJuuQgeTL462kIXu1+dGUahA9Gs8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:47:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2782 (0xade) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123E38, serialNumber=D094D24714352E0EBCD3F88275232827BC6AC890 Validity Not Before: Aug 22 16:47:04 2025 GMT Not After : Aug 29 16:47:04 2025 GMT Subject: CN=68a89f08-b5ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:10:b1:ac:2a:46:7a:87:1d:54:76:36:ce:41: ec:68:64:c2:cf:4c:a7:19:7a:8b:0a:ce:3c:d5:7d: 7e:b1:54:1d:26:1d:81:3a:41:7d:d7:2b:90:41:e4: 47:c0:df:a2:c2:6c:26:4e:50:8b:e1:d3:4b:ab:f0: cd:e0:8a:c3:fd:ce:db:57:32:c3:d8:bf:b4:01:9b: be:90:ab:b1:15:30:1c:4d:c1:38:fc:b7:c3:7a:d4: 6d:dd:e5:ed:bf:0c:2c:a3:63:22:7a:da:a0:b2:55: 12:b2:79:42:77:4f:b0:6f:5e:0d:d8:bd:db:16:e9: b3:8a:eb:78:d8:0f:5b:81:86:15:fb:b5:25:2f:1d: 6b:e9:e8:a8:fb:8b:ea:18:f8:76:cc:f2:25:75:34: 8d:86:9d:d5:bf:1d:f9:dc:ee:52:e4:12:e0:23:cd: 55:f7:18:47:b8:34:0b:d3:63:b3:0e:26:8e:05:8c: 82:c2:fe:62:75:c2:a3:1c:1d:33:9a:26:f9:19:ff: 5e:c1:70:e9:3d:9c:49:31:7d:d9:ff:46:11:1c:99: 0e:d0:27:cf:26:95:c5:c3:ab:c7:30:12:21:d4:0a: b4:db:d7:c1:28:7c:54:b5:d4:9f:4d:c4:aa:d4:3e: 47:86:55:0d:52:8a:4b:6d:ae:aa:07:d3:17:7c:40: 4b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:BC:4A:B7:F1:40:55:44:F2:15:63:AF:E9:AF:C0:CB:BE:4D:29:9D X509v3 Authority Key Identifier: keyid:D0:94:D2:47:14:35:2E:0E:BC:D3:F8:82:75:23:28:27:BC:6A:C8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:35:43:d0:22:a4:86:05:61:a6:2c:b5:72:2d:8e:8c:f1:4b: 02:34:ff:8a:19:5e:91:58:30:a8:3b:6c:f5:f0:4b:9f:01:75: 78:67:d4:ff:5a:1c:13:7d:eb:45:53:bd:6d:5f:03:e8:89:4d: 69:35:6a:67:97:ab:9a:e5:10:f5:9e:b6:3d:5f:40:f2:39:9c: 8c:ef:7a:21:41:54:1a:1e:f7:ec:b4:dc:9a:ad:54:d8:64:8d: 6b:7f:62:2e:b9:01:7e:21:3a:40:4b:0f:26:a9:bb:1f:e5:9a: 63:06:ba:b8:a2:8d:42:21:39:3b:7e:ba:c3:94:56:4b:5e:39: 63:16:1b:68:96:93:8a:2a:45:9f:63:36:44:ce:62:4b:bd:fc: df:83:21:7f:bc:99:41:5d:14:b4:36:03:99:61:ab:fa:5a:e4: 47:e9:d4:8e:69:71:9d:fe:c5:e1:e5:4b:45:f5:d1:82:28:5d: 86:1a:6e:29:06:c9:1a:40:f1:9f:36:04:20:06:62:c5:46:33: a5:8d:5a:c8:9d:93:b9:48:c1:6a:c4:3f:dd:18:61:be:0f:36: 47:11:d9:95:80:d0:61:80:2e:6c:20:b8:0a:2d:68:4d:8b:54: db:c3:ab:dc:76:10:13:f0:f1:43:97:1e:75:0e:af:e0:bc:a2: 16:02:eb:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNFMzgxMTAvBgNVBAUTKEQwOTREMjQ3MTQzNTJFMEVCQ0QzRjg4Mjc1MjMyODI3 QkM2QUM4OTAwHhcNMjUwODIyMTY0NzA0WhcNMjUwODI5MTY0NzA0WjAYMRYwFAYD VQQDEw02OGE4OWYwOC1iNWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthCxrCpGeocdVHY2zkHsaGTCz0ynGXqLCs481X1+sVQdJh2BOkF91yuQQeRH wN+iwmwmTlCL4dNLq/DN4IrD/c7bVzLD2L+0AZu+kKuxFTAcTcE4/LfDetRt3eXt vwwso2MietqgslUSsnlCd0+wb14N2L3bFumziut42A9bgYYV+7UlLx1r6eio+4vq GPh2zPIldTSNhp3Vvx353O5S5BLgI81V9xhHuDQL02OzDiaOBYyCwv5idcKjHB0z mib5Gf9ewXDpPZxJMX3Z/0YRHJkO0CfPJpXFw6vHMBIh1Aq029fBKHxUtdSfTcSq 1D5HhlUNUopLba6qB9MXfEBLbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDm8Srfx QFVE8hVjr+mvwMu+TSmdMB8GA1UdIwQYMBaAFNCU0kcUNS4OvNP4gnUjKCe8asiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0UzOC82QjkxRURBMDUz NkMxMUVBQTVDMjc5MENDNEY5QUUwMi8wSlRTUnhRMUxnNjgwX2lDZFNNb0o3eHF5 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBKVFNSeFExTGc2ODBfaUNkU01vSjd4cXlKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0UzOC82QjkxRURBMDUzNkMxMUVBQTVDMjc5MENDNEY5QUUwMi8wSlRTUnhRMUxn NjgwX2lDZFNNb0o3eHF5SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgNUPQIqSGBWGmLLVyLY6M8UsCNP+KGV6RWDCoO2z18EufAXV4Z9T/ WhwTfetFU71tXwPoiU1pNWpnl6ua5RD1nrY9X0DyOZyM73ohQVQaHvfstNyarVTY ZI1rf2IuuQF+ITpASw8mqbsf5ZpjBrq4oo1CITk7frrDlFZLXjljFhtolpOKKkWf YzZEzmJLvfzfgyF/vJlBXRS0NgOZYav6WuRH6dSOaXGd/sXh5UtF9dGCKF2GGm4p BskaQPGfNgQgBmLFRjOljVrInZO5SMFqxD/dGGG+DzZHEdmVgNBhgC5sILgKLWhN i1Tbw6vcdhAT8PFDlx51Dq/gvKIWAuvd -----END CERTIFICATE-----Generated at Sun Aug 24 07:41:36 2025 by rpki-client