$ rpki-client -vvf rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft File: 7dKmloaGUlbJsP3da3FJZtU3jzM.mft (raw, json) Hash identifier: 0JtPDzB75iPbxxbEWb+W8B2tl26v96Nn3W8HwYdZp6Y= Subject key identifier: 3F:56:F2:2C:FE:EF:1B:05:34:6A:0F:7C:0B:C0:1E:61:1D:26:9B:FD Authority key identifier: ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 Certificate issuer: /CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Certificate serial: 0A8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft Manifest number: 0A77 Signing time: Fri 22 Aug 2025 19:46:44 +0000 Manifest this update: Fri 22 Aug 2025 19:46:43 +0000 Manifest next update: Fri 29 Aug 2025 19:46:43 +0000 Files and hashes: 1: 7dKmloaGUlbJsP3da3FJZtU3jzM.crl (hash: Vs70KP2eCFHd1I+M9RwbF+ZKtFx1onMgKYWC41VKOX8=) 2: 923B6404466B11EE8B37E13CC4F9AE02.roa (hash: horX5P75gumDA8WyF+ghzmHcSe0CjNBHMfSInHVl7ao=) 3: C2E32E34466B11EE988B243DC4F9AE02.roa (hash: hBn0Qcv2Wj2OFO1BXPRpxsQ8U4zswJ2i/kTyMm1Zr1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:46:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2700 (0xa8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D3CB, serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Validity Not Before: Aug 22 19:46:43 2025 GMT Not After : Aug 29 19:46:43 2025 GMT Subject: CN=68a8c924-87d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:75:3d:84:1f:c0:e3:4f:a8:15:5a:63:e5:42: ef:4c:3c:59:a1:c2:41:64:17:33:f3:59:67:db:41: 64:8d:7b:4d:51:ea:46:d8:58:db:49:c2:a1:d2:74: 03:eb:4d:f2:a1:36:0e:7a:cd:4c:4d:84:d4:f0:43: c1:a1:c9:e7:08:79:6e:66:73:ce:b9:d5:6b:75:bb: ea:8c:af:1e:e1:e0:99:7f:ce:59:01:7a:10:c1:11: 8c:19:be:5a:bc:b7:f5:44:29:18:d9:d1:0c:d5:6a: 83:60:07:64:7a:57:5c:99:1d:8a:19:45:1e:a3:3b: 11:28:5e:6a:ea:8d:cf:e0:a5:a1:9e:6d:d4:be:ef: ba:7f:8a:8c:0c:12:06:c6:43:11:bd:73:c1:e6:0a: 76:7d:23:75:ec:bd:e8:8b:12:0b:ce:ad:e4:87:f8: 44:8b:21:f9:a0:55:c4:82:ea:5b:02:f2:f6:9b:a0: a9:f8:e2:1d:66:13:03:34:30:79:7e:65:c2:91:58: 9e:23:1f:72:09:bf:1f:be:e0:af:e3:68:b8:10:b6: b6:0e:c9:a3:88:7d:95:07:38:c0:34:6c:fc:4d:ab: e3:12:8f:95:ee:8f:16:c8:d2:69:48:0a:93:f3:4f: 9e:68:42:cc:66:0e:5b:d1:ff:2f:24:ec:44:23:de: 54:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:56:F2:2C:FE:EF:1B:05:34:6A:0F:7C:0B:C0:1E:61:1D:26:9B:FD X509v3 Authority Key Identifier: keyid:ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:46:4e:86:a5:0f:5f:f9:99:05:af:9c:8b:b9:b0:a1:d1:6f: 5f:9f:20:a3:01:df:3b:40:4b:36:cf:1a:af:4d:ce:c5:2f:dc: 41:7b:dd:33:2f:20:ae:2f:3d:5b:98:86:25:0c:49:62:6b:c4: f1:a2:93:d4:9c:81:fc:be:b9:26:bd:c9:4d:4e:28:fb:e4:a4: 6d:c6:ce:a4:33:e9:0f:39:10:79:89:bb:8c:25:e9:98:8e:19: cb:08:53:8b:3a:8e:33:57:62:b2:81:fc:f6:ff:d0:52:da:c2: f4:f8:88:cd:30:96:6b:3b:ec:3d:cf:e0:c6:39:b2:e0:ef:71: 6e:4d:1e:8d:59:75:b8:7c:20:91:82:9c:1c:5e:a8:54:43:4e: 87:ac:6e:f1:53:eb:35:b8:a4:f9:22:b6:22:d6:16:f9:33:12: 4b:04:8b:3e:c4:9a:29:8b:75:36:85:77:fc:31:77:f0:9d:4d: 2b:e2:52:a8:1d:56:3f:ae:f8:b9:e8:a4:c3:a2:9a:0a:28:d1: 52:67:5d:84:93:10:ca:d7:f3:61:e6:a7:a7:4a:f0:d2:99:19: 64:87:e3:12:c5:fd:f3:b7:40:93:77:44:df:27:15:fd:10:2b: ca:e0:e8:27:3b:0f:97:93:c8:0c:ec:0c:da:7c:90:3d:be:8e: 52:80:23:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQzQ0IxMTAvBgNVBAUTKEVERDJBNjk2ODY4NjUyNTZDOUIwRkRERDZCNzE0OTY2 RDUzNzhGMzMwHhcNMjUwODIyMTk0NjQzWhcNMjUwODI5MTk0NjQzWjAYMRYwFAYD VQQDEw02OGE4YzkyNC04N2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3HU9hB/A40+oFVpj5ULvTDxZocJBZBcz81ln20FkjXtNUepG2FjbScKh0nQD 603yoTYOes1MTYTU8EPBocnnCHluZnPOudVrdbvqjK8e4eCZf85ZAXoQwRGMGb5a vLf1RCkY2dEM1WqDYAdkeldcmR2KGUUeozsRKF5q6o3P4KWhnm3Uvu+6f4qMDBIG xkMRvXPB5gp2fSN17L3oixILzq3kh/hEiyH5oFXEgupbAvL2m6Cp+OIdZhMDNDB5 fmXCkVieIx9yCb8fvuCv42i4ELa2DsmjiH2VBzjANGz8TavjEo+V7o8WyNJpSAqT 80+eaELMZg5b0f8vJOxEI95UAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD9W8iz+ 7xsFNGoPfAvAHmEdJpv9MB8GA1UdIwQYMBaAFO3SppaGhlJWybD93WtxSWbVN48z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDNDQi9BOUE0MzlGQzY5 QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1VsYkpzUDNkYTNGSlp0VTNq ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdkS21sb2FHVWxiSnNQM2RhM0ZKWnRVM2p6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDNDQi9BOUE0MzlGQzY5QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1Vs YkpzUDNkYTNGSlp0VTNqek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1Rk6GpQ9f+ZkFr5yLubCh0W9fnyCjAd87QEs2zxqvTc7FL9xBe90z LyCuLz1bmIYlDElia8TxopPUnIH8vrkmvclNTij75KRtxs6kM+kPORB5ibuMJemY jhnLCFOLOo4zV2Kygfz2/9BS2sL0+IjNMJZrO+w9z+DGObLg73FuTR6NWXW4fCCR gpwcXqhUQ06HrG7xU+s1uKT5IrYi1hb5MxJLBIs+xJopi3U2hXf8MXfwnU0r4lKo HVY/rvi56KTDopoKKNFSZ12EkxDK1/Nh5qenSvDSmRlkh+MSxf3zt0CTd0TfJxX9 ECvK4OgnOw+Xk8gM7AzafJA9vo5SgCOe -----END CERTIFICATE-----Generated at Sat Aug 23 17:21:08 2025 by rpki-client