$ rpki-client -vvf rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft File: 444NefP9KSMew_PjAp05P0MnfLM.mft (raw, json) Hash identifier: Y92C1BorZminLFhSGwBOSOFyFRydpvTrchqYQRu6Pf4= Subject key identifier: 31:1C:24:7E:8C:1A:03:42:C4:E9:C6:23:01:07:A3:1B:B6:13:47:B0 Authority key identifier: E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 Certificate issuer: /CN=A9128298/serialNumber=E38E0D79F3FD29231EC3F3E3029D393F43277CB3 Certificate serial: 0612 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft Manifest number: 060F Signing time: Fri 22 Aug 2025 22:59:37 +0000 Manifest this update: Fri 22 Aug 2025 22:59:37 +0000 Manifest next update: Fri 29 Aug 2025 22:59:37 +0000 Files and hashes: 1: 444NefP9KSMew_PjAp05P0MnfLM.crl (hash: X938xkK98R+EglCsgPbMR0dxCWfOTdkDH8gvyifMsSw=) 2: 832F7D72B20E11EBB73B4E2FC4F9AE02.roa (hash: RWzQvPuAa0dvfgKQkKzubYejP/LcFU0xMaFFgk+jNhQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:59:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1554 (0x612) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128298, serialNumber=E38E0D79F3FD29231EC3F3E3029D393F43277CB3 Validity Not Before: Aug 22 22:59:37 2025 GMT Not After : Aug 29 22:59:37 2025 GMT Subject: CN=68a8f659-3071 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:48:f9:48:5d:65:81:19:10:c4:7e:42:03:2b: fa:58:8a:3d:e7:d9:9a:64:c3:43:c0:59:aa:88:82: ce:7e:bc:4d:13:d1:fd:90:b7:0a:43:15:4a:eb:ba: 37:e7:a4:f1:fd:78:cb:64:8e:1c:07:b1:f4:0a:e6: 91:2d:42:aa:9a:7c:1e:2b:d8:cc:62:3e:93:b9:26: 3c:f8:08:a5:be:4f:40:0a:da:2d:24:e4:04:f6:c5: 56:27:9a:4f:7a:09:91:68:fd:47:c2:ba:03:b9:b2: 30:8e:e5:3d:1a:f0:e4:77:30:39:58:cc:03:91:c4: b5:8c:ea:b0:a5:d0:03:f5:b9:32:27:4c:a9:e2:f8: b6:89:b4:52:34:15:ef:b5:ba:67:1e:ae:e7:0e:06: 98:e9:a1:63:87:ea:29:8c:1d:b8:b0:19:45:2c:bc: b5:5b:ff:76:0a:77:a0:44:91:f5:f6:60:a4:7c:70: be:e2:20:4f:64:f5:6d:3e:88:7a:5a:46:9a:63:6f: 48:e0:3c:92:77:4a:87:75:bd:01:52:e4:34:3a:08: 99:01:9d:a1:7a:d8:4f:67:15:38:b0:f8:cc:12:f1: 85:44:3d:80:15:82:af:7d:aa:4e:a0:b5:27:b2:6a: 44:12:e4:c6:a3:13:46:64:b2:d0:76:d9:88:86:4c: 29:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:1C:24:7E:8C:1A:03:42:C4:E9:C6:23:01:07:A3:1B:B6:13:47:B0 X509v3 Authority Key Identifier: keyid:E3:8E:0D:79:F3:FD:29:23:1E:C3:F3:E3:02:9D:39:3F:43:27:7C:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/444NefP9KSMew_PjAp05P0MnfLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128298/7224766AB20C11EBAC886A2CC4F9AE02/444NefP9KSMew_PjAp05P0MnfLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:62:11:96:00:ad:e4:ee:a3:ea:41:7f:25:d6:cd:e0:bd:73: 0b:14:05:22:66:a1:92:e2:2c:78:c7:cb:17:65:57:7f:9b:9d: 07:c6:96:b0:f7:05:6b:6c:a0:4d:2b:37:76:a0:bb:11:4d:f9: c0:54:47:ab:29:91:62:39:8f:27:f4:e0:45:3e:3d:7a:05:1e: 13:53:36:a8:b0:7b:ac:a5:f1:ff:6b:3c:06:60:f0:0e:fd:e1: fb:fc:1a:45:ee:57:46:d3:d9:ea:56:22:55:90:dd:8d:58:15: 66:14:e5:16:92:b9:d9:a9:2f:d2:d1:42:e8:36:9d:b6:bb:be: c5:9a:c9:81:5a:ac:46:54:17:ee:ec:35:1a:3d:b2:c1:8b:9c: 32:f4:6f:36:1d:28:20:96:62:fc:d0:0a:85:3a:e9:e7:51:c0: db:99:fc:45:54:8e:08:a5:f1:60:d0:48:c3:26:26:ec:f8:56: 94:0e:8c:cc:b3:67:a5:b3:cd:ef:7d:68:3b:28:f3:99:71:1a: b1:49:10:6b:90:a1:3b:6d:0e:b2:2b:1d:88:c5:4f:a4:64:ee: 91:a6:4f:c2:34:71:5f:eb:ed:65:12:57:0f:d9:e7:a1:73:c8: b3:79:7d:92:6f:77:3e:40:d3:48:b9:14:6e:16:69:8d:ad:85: 9e:76:b6:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgyOTgxMTAvBgNVBAUTKEUzOEUwRDc5RjNGRDI5MjMxRUMzRjNFMzAyOUQzOTNG NDMyNzdDQjMwHhcNMjUwODIyMjI1OTM3WhcNMjUwODI5MjI1OTM3WjAYMRYwFAYD VQQDEw02OGE4ZjY1OS0zMDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEj5SF1lgRkQxH5CAyv6WIo959maZMNDwFmqiILOfrxNE9H9kLcKQxVK67o3 56Tx/XjLZI4cB7H0CuaRLUKqmnweK9jMYj6TuSY8+Ailvk9ACtotJOQE9sVWJ5pP egmRaP1HwroDubIwjuU9GvDkdzA5WMwDkcS1jOqwpdAD9bkyJ0yp4vi2ibRSNBXv tbpnHq7nDgaY6aFjh+opjB24sBlFLLy1W/92CnegRJH19mCkfHC+4iBPZPVtPoh6 WkaaY29I4DySd0qHdb0BUuQ0OgiZAZ2hethPZxU4sPjMEvGFRD2AFYKvfapOoLUn smpEEuTGoxNGZLLQdtmIhkwpbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDEcJH6M GgNCxOnGIwEHoxu2E0ewMB8GA1UdIwQYMBaAFOOODXnz/SkjHsPz4wKdOT9DJ3yz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODI5OC83MjI0NzY2QUIy MEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtTTWV3X1BqQXAwNVAwTW5m TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ0NE5lZlA5S1NNZXdfUGpBcDA1UDBNbmZMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODI5OC83MjI0NzY2QUIyMEMxMUVCQUM4ODZBMkNDNEY5QUUwMi80NDROZWZQOUtT TWV3X1BqQXAwNVAwTW5mTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwYhGWAK3k7qPqQX8l1s3gvXMLFAUiZqGS4ix4x8sXZVd/m50Hxpaw 9wVrbKBNKzd2oLsRTfnAVEerKZFiOY8n9OBFPj16BR4TUzaosHuspfH/azwGYPAO /eH7/BpF7ldG09nqViJVkN2NWBVmFOUWkrnZqS/S0ULoNp22u77FmsmBWqxGVBfu 7DUaPbLBi5wy9G82HSgglmL80AqFOunnUcDbmfxFVI4IpfFg0EjDJibs+FaUDozM s2els83vfWg7KPOZcRqxSRBrkKE7bQ6yKx2IxU+kZO6Rpk/CNHFf6+1lElcP2eeh c8izeX2Sb3c+QNNIuRRuFmmNrYWedrZa -----END CERTIFICATE-----Generated at Sat Aug 23 17:10:19 2025 by rpki-client