$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: tIZ1ihl8SGhigCkXMGAaTzCH9h0Xj/xELMvqqW0i9S0= Subject key identifier: F3:CA:39:62:B3:9A:92:61:3F:30:28:F6:EB:B4:9B:19:60:4C:FB:A9 Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2DDE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2D70 Signing time: Sat 18 Oct 2025 15:42:41 +0000 Manifest this update: Sat 18 Oct 2025 15:42:41 +0000 Manifest next update: Sat 25 Oct 2025 15:42:41 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: FRteTjdjMDvzJyX47AXqjHA2rybOM5+2fPWaO1yws4s=) 2: 3E0A6ED49E7B11EFBD44280AC4F9AE02.roa (hash: /S75Y8k69kY9b8PDmn95n9pd61Cq/ljCcnbjIoICG0k=) 3: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: 8CIfN72IDb9QxqbZGw5mhDPDgEolkLewfEE5DniHC6c=) 4: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (hash: vGH9FoQK798TOx1m3nPPegc/vxwpIz43n4HqwUNJNHw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:42:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11742 (0x2dde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523, serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: Oct 18 15:42:41 2025 GMT Not After : Oct 25 15:42:41 2025 GMT Subject: CN=68f3b571-69d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:41:e8:7e:36:6f:ac:f9:9f:1f:fa:50:e4:47: 2b:02:c2:e4:c0:3c:29:8b:7b:2c:f7:2f:e2:a2:2a: 4c:c8:ec:0c:8f:25:51:97:53:0c:f2:50:c3:d9:11: 7c:6f:6f:8c:ca:0a:61:db:40:20:62:4b:aa:bd:43: 3e:87:95:e8:24:2c:ec:cf:0f:74:b7:6d:81:c9:24: 4e:00:cf:0e:70:cd:0c:76:18:67:ea:58:3c:d0:cc: b8:c6:d3:e4:26:47:83:fa:69:20:63:d0:c6:ab:c9: fd:d4:78:8e:7c:50:ee:3a:39:ad:2e:d4:40:75:e7: 3c:47:ae:bc:18:6f:52:89:ac:cc:12:e0:11:b5:bc: 05:54:77:fb:25:7a:2c:ba:2e:ca:f1:7f:6b:bb:31: b3:ca:f3:6e:b8:80:8b:69:87:96:87:a3:c1:f6:b9: 5d:6a:06:53:48:86:ee:97:78:3a:82:48:f1:ea:2e: 80:90:67:9b:2f:34:92:9c:c3:e4:30:7c:68:e0:dd: 3b:d8:e6:05:72:cf:3b:0a:c5:4e:a3:83:9b:74:e0: 9e:89:a3:a3:78:f1:4e:a5:01:83:1d:ab:82:c0:25: 9b:72:12:f7:47:a1:fe:27:94:a1:02:9a:10:2c:2a: fe:30:cd:58:74:5a:90:e7:8d:f6:48:50:ca:81:ee: 04:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:CA:39:62:B3:9A:92:61:3F:30:28:F6:EB:B4:9B:19:60:4C:FB:A9 X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:28:a5:d4:2a:f5:2e:71:e1:bf:00:1a:29:fe:84:eb:63:b4: 0c:b1:17:44:93:df:ca:4a:5e:3a:e2:49:f1:6d:af:ff:9d:0f: 62:d5:91:3b:ec:67:46:8b:36:20:de:a2:5e:16:73:55:1c:0f: 06:5b:f2:5f:1b:a0:04:79:97:ae:8d:31:de:7e:78:0e:27:bf: c6:b6:7b:04:28:8b:f3:98:0e:d0:a6:1a:77:65:90:b6:4e:97: 94:d5:4a:41:b4:9f:51:ba:e9:92:6a:14:60:0e:1b:ec:03:fe: 1f:a9:cb:bd:23:d7:c1:5e:b2:15:58:e9:b2:1a:2f:5a:0d:28: 71:c4:57:7a:1e:c8:df:2b:c9:67:63:52:32:89:d8:94:39:c4: 73:bc:0e:d6:f1:ce:de:d2:ab:ad:e2:49:fc:6c:86:95:38:74: 4b:fb:6a:86:35:31:1a:f5:ff:48:d6:61:29:e9:27:dd:71:27: d0:fe:0b:20:d4:9d:35:8e:0f:f3:37:c7:21:75:e0:0c:5e:31: c5:5e:4a:46:02:ed:23:6a:e5:ef:40:03:06:e2:29:b9:3d:ce: 6b:3f:53:3f:ae:bb:e1:b7:0d:78:0b:b4:51:dd:e1:0e:70:99: 22:2a:88:37:76:bb:db:84:5f:6a:b1:4b:5f:4b:52:16:79:91: 74:7e:18:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjUxMDE4MTU0MjQxWhcNMjUxMDI1MTU0MjQxWjAYMRYwFAYD VQQDEw02OGYzYjU3MS02OWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUHofjZvrPmfH/pQ5EcrAsLkwDwpi3ss9y/ioipMyOwMjyVRl1MM8lDD2RF8 b2+Mygph20AgYkuqvUM+h5XoJCzszw90t22BySROAM8OcM0Mdhhn6lg80My4xtPk JkeD+mkgY9DGq8n91HiOfFDuOjmtLtRAdec8R668GG9SiazMEuARtbwFVHf7JXos ui7K8X9ruzGzyvNuuICLaYeWh6PB9rldagZTSIbul3g6gkjx6i6AkGebLzSSnMPk MHxo4N072OYFcs87CsVOo4ObdOCeiaOjePFOpQGDHauCwCWbchL3R6H+J5ShApoQ LCr+MM1YdFqQ5432SFDKge4E8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPPKOWKz mpJhPzAo9uu0mxlgTPupMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWKKXUKvUuceG/ABop/oTrY7QMsRdEk9/KSl464knxba//nQ9i1ZE7 7GdGizYg3qJeFnNVHA8GW/JfG6AEeZeujTHefngOJ7/GtnsEKIvzmA7Qphp3ZZC2 TpeU1UpBtJ9RuumSahRgDhvsA/4fqcu9I9fBXrIVWOmyGi9aDShxxFd6HsjfK8ln Y1IyidiUOcRzvA7W8c7e0qut4kn8bIaVOHRL+2qGNTEa9f9I1mEp6SfdcSfQ/gsg 1J01jg/zN8chdeAMXjHFXkpGAu0jauXvQAMG4im5Pc5rP1M/rrvhtw14C7RR3eEO cJkiKog3drvbhF9qsUtfS1IWeZF0fhju -----END CERTIFICATE-----Generated at Mon Oct 20 01:43:51 2025 by rpki-client