$ rpki-client -vvf rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft File: 23zlI-hAt3_J4Zb1jxSXas5BVL4.mft (raw, json) Hash identifier: 1dU09ML9XEIcOOB0PoMCJijnWBBzvDQXYbaid+WfpMI= Subject key identifier: A7:45:1D:62:25:95:6D:06:22:41:11:B7:96:12:AB:C9:7F:48:9A:7C Authority key identifier: DB:7C:E5:23:E8:40:B7:7F:C9:E1:96:F5:8F:14:97:6A:CE:41:54:BE Certificate issuer: /CN=A912542C/serialNumber=DB7CE523E840B77FC9E196F58F14976ACE4154BE Certificate serial: 069F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft Manifest number: 0685 Signing time: Fri 22 Aug 2025 22:36:59 +0000 Manifest this update: Fri 22 Aug 2025 22:36:58 +0000 Manifest next update: Fri 29 Aug 2025 22:36:58 +0000 Files and hashes: 1: 23zlI-hAt3_J4Zb1jxSXas5BVL4.crl (hash: yzEUk0dQidaJZ3cUOeGd3HuHaNIeBCBXsFMJyC0YhN4=) 2: F0FFCBCCF9C911EDAF704E7FC4F9AE02.roa (hash: xD+NCFUusyV8948kjGogzh90vclALi1BI0w1G6upBJY=) 3: 1E9D1268B3E011ED98356A75C4F9AE02.roa (hash: q2NpAKCFs4OqUi3rj9uEiN/8qjO9vGuIBeFLXS5ulLQ=) 4: 36A82D708CAA11EB9ED48C70C4F9AE02.roa (hash: LYI+Uxituq3xp6IH8KDfFMmbgDovt1mhBIYkZG0TTig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.crl rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:36:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1695 (0x69f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912542C, serialNumber=DB7CE523E840B77FC9E196F58F14976ACE4154BE Validity Not Before: Aug 22 22:36:58 2025 GMT Not After : Aug 29 22:36:58 2025 GMT Subject: CN=68a8f10b-8715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e0:89:cc:31:d1:f9:25:09:22:16:b5:28:3f: 49:e6:c8:ce:a3:ea:d7:43:43:09:ec:ae:ee:56:68: 0e:af:7e:fa:6c:a2:e6:fc:12:c8:3e:4a:c8:04:f1: dd:a6:74:6d:b7:e2:bf:38:13:9e:bb:6e:c2:af:62: fe:39:60:97:2f:75:b0:18:94:5d:74:6c:35:74:21: 72:a1:f7:63:11:6d:b6:56:f4:59:2e:02:e9:8e:c1: 65:ec:ed:8d:7d:96:13:1e:70:dd:49:63:ef:90:85: a6:82:61:ac:1c:e4:c3:ce:84:3d:b5:f6:11:61:7a: 4d:ab:14:37:84:27:d0:ef:91:04:a3:7a:af:db:64: 51:6e:74:af:67:eb:7c:7b:f4:92:6d:97:70:3e:68: be:86:35:43:cb:c7:47:f3:91:e1:89:96:d7:07:78: c9:ef:39:4c:5c:e4:ca:81:bc:d5:79:4b:e4:f1:e8: fa:b1:5c:14:17:ff:a6:58:01:30:01:d4:34:5d:dd: d5:69:5d:d5:63:65:eb:2d:6b:68:f3:ba:d9:90:39: ee:36:00:7f:35:00:61:23:d4:7d:59:b0:5d:32:eb: 83:3b:19:f5:64:a8:64:24:c6:1b:ee:ee:52:44:59: 32:ad:49:11:0c:1a:ff:a8:18:e5:bf:f8:3e:5b:59: 7d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:45:1D:62:25:95:6D:06:22:41:11:B7:96:12:AB:C9:7F:48:9A:7C X509v3 Authority Key Identifier: keyid:DB:7C:E5:23:E8:40:B7:7F:C9:E1:96:F5:8F:14:97:6A:CE:41:54:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:5e:27:10:6b:28:04:28:87:25:a9:7b:3e:41:af:d6:3e:8c: 3c:83:79:cc:54:55:b0:93:b7:5e:01:97:40:72:87:2e:4f:8a: 7d:30:c1:ec:15:3b:f5:cc:2d:b4:c6:29:e6:50:ea:2e:bb:e2: ac:71:52:b7:59:47:17:07:af:27:c4:d0:c6:39:17:98:1d:bd: 33:81:57:79:b4:78:0b:61:96:bb:e2:b6:6c:2d:45:a2:36:7f: ce:ab:6d:54:ac:0f:0d:58:cb:e9:b5:bf:bb:69:62:17:e4:5e: d4:17:41:25:a7:77:fd:9f:fe:e6:77:20:27:89:f3:2e:03:45: 85:5a:51:10:16:64:b0:6d:fa:12:c6:d4:b9:e9:22:6a:6c:c7: f2:5c:99:41:41:54:2b:ff:65:b2:60:b5:1d:97:b9:a0:91:7b: 50:49:e3:ec:ba:e6:18:99:dc:47:ad:6e:e3:a5:a3:28:c3:f3: 99:55:17:36:cf:fd:01:7d:66:e9:a2:6e:24:98:a6:e6:7e:01: d9:bd:57:2a:fe:06:60:48:f0:a0:f2:5a:be:dc:93:40:3d:b6: 18:45:04:e2:1f:dd:d8:ed:3a:5c:a7:e8:06:a1:9e:4a:42:5c: ba:f2:05:17:47:23:e4:3f:19:0b:c0:be:51:71:d7:23:dd:93: f0:04:17:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0MkMxMTAvBgNVBAUTKERCN0NFNTIzRTg0MEI3N0ZDOUUxOTZGNThGMTQ5NzZB Q0U0MTU0QkUwHhcNMjUwODIyMjIzNjU4WhcNMjUwODI5MjIzNjU4WjAYMRYwFAYD VQQDEw02OGE4ZjEwYi04NzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OCJzDHR+SUJIha1KD9J5sjOo+rXQ0MJ7K7uVmgOr376bKLm/BLIPkrIBPHd pnRtt+K/OBOeu27Cr2L+OWCXL3WwGJRddGw1dCFyofdjEW22VvRZLgLpjsFl7O2N fZYTHnDdSWPvkIWmgmGsHOTDzoQ9tfYRYXpNqxQ3hCfQ75EEo3qv22RRbnSvZ+t8 e/SSbZdwPmi+hjVDy8dH85HhiZbXB3jJ7zlMXOTKgbzVeUvk8ej6sVwUF/+mWAEw AdQ0Xd3VaV3VY2XrLWto87rZkDnuNgB/NQBhI9R9WbBdMuuDOxn1ZKhkJMYb7u5S RFkyrUkRDBr/qBjlv/g+W1l9bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKdFHWIl lW0GIkERt5YSq8l/SJp8MB8GA1UdIwQYMBaAFNt85SPoQLd/yeGW9Y8Ul2rOQVS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQyQy8xQjYzNDY2RThD QTgxMUVCQTJCRDBBNkJDNEY5QUUwMi8yM3psSS1oQXQzX0o0WmIxanhTWGFzNUJW TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzemxJLWhBdDNfSjRaYjFqeFNYYXM1QlZMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTQyQy8xQjYzNDY2RThDQTgxMUVCQTJCRDBBNkJDNEY5QUUwMi8yM3psSS1oQXQz X0o0WmIxanhTWGFzNUJWTDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBXicQaygEKIclqXs+Qa/WPow8g3nMVFWwk7deAZdAcocuT4p9MMHs FTv1zC20xinmUOouu+KscVK3WUcXB68nxNDGOReYHb0zgVd5tHgLYZa74rZsLUWi Nn/Oq21UrA8NWMvptb+7aWIX5F7UF0Elp3f9n/7mdyAnifMuA0WFWlEQFmSwbfoS xtS56SJqbMfyXJlBQVQr/2WyYLUdl7mgkXtQSePsuuYYmdxHrW7jpaMow/OZVRc2 z/0BfWbpom4kmKbmfgHZvVcq/gZgSPCg8lq+3JNAPbYYRQTiH93Y7Tpcp+gGoZ5K Qly68gUXRyPkPxkLwL5Rcdcj3ZPwBBeI -----END CERTIFICATE-----Generated at Sat Aug 23 09:44:37 2025 by rpki-client