$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: 9KSlvuphsf9tWM0/yCWyuCDtEhv3f3/bDU/vA03hqcs= Subject key identifier: 43:16:7A:66:0A:F3:FB:9C:65:78:63:73:F7:6B:1C:66:00:61:F1:A3 Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2DA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2D37 Signing time: Wed 02 Jul 2025 15:37:58 +0000 Manifest this update: Wed 02 Jul 2025 15:37:58 +0000 Manifest next update: Wed 09 Jul 2025 15:37:58 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: 4/iVAShPjPfl6DbqOot48hyBS85ZNBHNcXAVMlVq19k=) 2: 3E0A6ED49E7B11EFBD44280AC4F9AE02.roa (hash: arjppb8o0dAo/PmRzQByMlM088vFXvA0RnVconCK+zU=) 3: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: fUhNa2zvGR6tljYmicsoP8kxi9R8oyVSsotkZ+dJbwI=) 4: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (hash: S4ikhB4wQjYJoUuGIHYvTR4A3rR63MmfA1fRonhKGKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:37:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11682 (0x2da2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523, serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: Jul 2 15:37:58 2025 GMT Not After : Jul 9 15:37:58 2025 GMT Subject: CN=68655256-0922 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b9:76:9b:84:46:d8:3a:e1:32:51:a1:85:3d: 69:9b:94:9d:7d:30:e8:af:c2:3c:b3:16:52:4a:da: 4c:96:77:fc:1c:85:33:2e:9a:0a:32:a7:32:0a:0e: 2f:9a:3c:4c:6e:b8:41:e7:05:0c:91:61:4e:8a:6c: 68:38:47:3e:2c:fa:3c:dd:2d:17:9a:6e:ac:d8:b7: b4:97:53:2b:c4:d3:60:6c:d6:79:91:d1:6a:77:bb: 7e:3d:a9:f5:57:ce:8c:3f:78:e9:8e:56:f1:ca:d6: 36:cb:05:c9:33:f4:3e:29:46:36:70:1b:2e:23:52: 75:1f:19:7d:4a:fe:86:cb:85:49:8a:53:1c:1e:da: 9c:32:2d:76:00:5d:3f:01:32:7a:c6:8f:d0:39:d5: 15:00:9e:4b:3c:af:a4:18:d0:75:b4:3e:71:1a:54: 47:df:a7:9d:c0:b6:98:37:18:9e:4a:cd:76:73:d5: 81:b4:2f:1e:28:3a:c9:13:46:66:96:a4:76:17:01: b7:c3:52:3a:a9:98:e3:8a:1a:3d:e8:a2:eb:8c:38: d9:e6:25:05:46:7b:5a:8a:f6:b6:f0:d4:7d:76:00: 6d:74:79:dc:23:db:a3:e9:8c:43:20:f7:b9:d3:65: 33:7c:26:a6:5c:a1:a4:17:d8:fc:7c:e1:0f:df:a3: 3c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:16:7A:66:0A:F3:FB:9C:65:78:63:73:F7:6B:1C:66:00:61:F1:A3 X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:a2:fa:be:e3:5b:e5:90:fb:83:19:bf:17:16:11:c9:e3:da: 6d:73:86:35:59:2e:ac:24:14:d7:9e:4d:97:38:68:e9:42:75: 57:d2:12:1a:03:f6:92:b9:11:25:5b:a9:54:c9:53:61:76:35: 8b:ae:6f:81:ef:a3:12:8e:1b:e8:46:1e:ae:27:b5:47:1b:0d: e7:b1:38:11:2b:33:ba:66:e5:d7:1b:03:df:06:00:da:36:fb: bc:59:ac:09:e7:42:80:9d:96:f5:4f:ee:c8:aa:b8:eb:6b:19: 64:29:e8:a7:1a:df:5d:fa:6e:d3:50:f8:b5:f6:6e:93:73:32: 47:2d:20:c6:0a:2b:a5:bc:e1:f9:6e:b7:68:33:af:e6:18:73: bc:c1:67:f2:20:4b:cb:4c:82:61:91:19:73:d8:5f:9d:18:bd: ff:9e:85:58:30:47:b3:ab:73:5b:49:09:09:7e:93:00:e8:37: 05:20:79:0b:73:4d:7f:79:2e:2d:f8:7d:23:f4:f2:71:48:8c: b3:8c:38:1f:55:56:16:5b:84:62:91:14:b5:b5:db:e9:f4:07: a8:60:c4:78:d7:0a:79:3c:07:54:47:0c:34:4d:ea:84:0d:fd: ff:7b:95:ac:d5:ee:bf:1b:2b:ae:60:ca:e5:f7:81:26:67:a5: ff:a5:53:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjUwNzAyMTUzNzU4WhcNMjUwNzA5MTUzNzU4WjAYMRYwFAYD VQQDEw02ODY1NTI1Ni0wOTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rl2m4RG2DrhMlGhhT1pm5SdfTDor8I8sxZSStpMlnf8HIUzLpoKMqcyCg4v mjxMbrhB5wUMkWFOimxoOEc+LPo83S0Xmm6s2Le0l1MrxNNgbNZ5kdFqd7t+Pan1 V86MP3jpjlbxytY2ywXJM/Q+KUY2cBsuI1J1Hxl9Sv6Gy4VJilMcHtqcMi12AF0/ ATJ6xo/QOdUVAJ5LPK+kGNB1tD5xGlRH36edwLaYNxieSs12c9WBtC8eKDrJE0Zm lqR2FwG3w1I6qZjjiho96KLrjDjZ5iUFRntaiva28NR9dgBtdHncI9uj6YxDIPe5 02UzfCamXKGkF9j8fOEP36M82QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEMWemYK 8/ucZXhjc/drHGYAYfGjMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3ovq+41vlkPuDGb8XFhHJ49ptc4Y1WS6sJBTXnk2XOGjpQnVX0hIa A/aSuRElW6lUyVNhdjWLrm+B76MSjhvoRh6uJ7VHGw3nsTgRKzO6ZuXXGwPfBgDa Nvu8WawJ50KAnZb1T+7IqrjraxlkKeinGt9d+m7TUPi19m6TczJHLSDGCiulvOH5 brdoM6/mGHO8wWfyIEvLTIJhkRlz2F+dGL3/noVYMEezq3NbSQkJfpMA6DcFIHkL c01/eS4t+H0j9PJxSIyzjDgfVVYWW4RikRS1tdvp9AeoYMR41wp5PAdURww0TeqE Df3/e5Ws1e6/GyuuYMrl94EmZ6X/pVML -----END CERTIFICATE-----Generated at Thu Jul 3 09:40:10 2025 by rpki-client