$ rpki-client -vvf rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft File: 6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft (raw, json) Hash identifier: V1BKBy0lAnVgEq/JplwyRc8/QBmDaYivUA+FTMC8/lk= Subject key identifier: 41:04:24:7E:25:EB:7F:71:C5:A0:E9:20:25:E2:B2:C6:81:3D:A7:1B Authority key identifier: E8:2D:10:D2:DA:1C:98:BF:68:CA:4C:64:91:B9:0F:FD:0F:AB:33:94 Certificate issuer: /CN=A912D5C1/serialNumber=E82D10D2DA1C98BF68CA4C6491B90FFD0FAB3394 Certificate serial: 0CB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft Manifest number: 0C9A Signing time: Fri 22 Aug 2025 18:22:08 +0000 Manifest this update: Fri 22 Aug 2025 18:22:08 +0000 Manifest next update: Fri 29 Aug 2025 18:22:08 +0000 Files and hashes: 1: 6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl (hash: nQ2jnICi+vigEr84BQmRxcK+9FnvVtWSQR2f/jK9u/Q=) 2: D7F98876520B11EE8B85DB63C4F9AE02.roa (hash: PKoIMzmjFW6opIpuPpXxT7JTsKk8w7rWTXfvOheNJEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3248 (0xcb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D5C1, serialNumber=E82D10D2DA1C98BF68CA4C6491B90FFD0FAB3394 Validity Not Before: Aug 22 18:22:08 2025 GMT Not After : Aug 29 18:22:08 2025 GMT Subject: CN=68a8b550-7014 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:45:30:15:82:fd:79:27:11:73:d1:4b:34:90: da:cb:58:61:84:07:9d:bd:9b:75:d5:7b:d3:1a:68: 7b:97:9f:8a:53:ca:83:76:77:6e:b2:d9:c0:3b:bc: 45:cd:ac:f9:a8:44:72:1e:db:6f:f8:45:cb:33:e6: 37:42:02:f7:f9:11:a6:c4:01:d4:ce:bc:4c:df:13: 07:57:76:2b:cf:86:cf:59:fd:9f:6f:1d:6b:7c:34: 00:97:38:a0:91:27:b6:07:22:52:9a:3f:66:58:10: f6:fd:ba:09:be:00:96:a2:4b:91:e8:73:08:f3:ff: e0:f7:b4:0b:79:d6:78:ce:d7:47:cd:f4:d7:04:f3: 46:d7:ca:d3:72:55:57:0e:c1:26:ef:70:62:9f:d9: b4:68:ea:3a:f2:37:20:26:7c:f5:aa:7d:fd:60:6d: fc:57:b5:93:8c:60:2f:e8:72:3c:07:82:4d:5a:22: 35:8f:9c:37:66:59:14:ef:eb:a4:1d:e7:d7:bb:78: 40:b7:e3:e0:cb:e7:92:ea:24:7e:f8:cd:2d:4d:7c: 7d:14:04:b1:26:a8:ba:13:8b:6f:b5:4e:59:26:4e: cc:dc:35:c0:76:60:98:b7:9e:4d:b5:ec:01:16:22: 17:17:de:e9:16:cc:e2:05:84:7f:20:6e:c0:b0:f1: d8:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:04:24:7E:25:EB:7F:71:C5:A0:E9:20:25:E2:B2:C6:81:3D:A7:1B X509v3 Authority Key Identifier: keyid:E8:2D:10:D2:DA:1C:98:BF:68:CA:4C:64:91:B9:0F:FD:0F:AB:33:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:4b:81:26:fe:3b:2d:9a:d9:b0:3a:19:1a:5c:07:d2:b0:9d: 94:bd:89:5c:bd:d2:95:cc:a6:d9:ea:ee:bb:52:4a:71:94:73: d4:47:32:11:71:fd:e4:31:c3:10:a7:3b:19:8d:7d:73:3f:d4: 44:a9:b7:72:69:a8:ff:b0:ae:66:ed:70:ff:be:38:c2:6e:00: bf:fd:43:66:a2:29:01:b4:7f:63:b7:e9:c1:aa:b8:a9:12:87: b3:8f:e2:d1:25:08:9e:b9:f4:21:df:af:e6:bc:5b:c2:73:94: 7a:02:d8:b0:ae:bc:8b:3a:d2:32:7d:76:3f:34:5a:f2:c5:24: c7:41:8c:4c:76:48:62:92:06:44:cf:0a:bb:21:40:13:6c:40: cc:a7:41:68:82:25:c6:13:5c:e2:84:50:c5:de:42:21:18:7e: 1c:9f:7c:13:eb:6d:61:a9:ad:73:b7:a8:e7:76:2d:31:9a:9b: 9d:58:10:a9:f7:a6:88:97:76:4e:60:d9:f9:bb:4c:0a:2e:9d: 87:b6:ed:c2:45:db:e2:bb:6c:e4:31:92:c2:84:fc:63:37:d0: 2c:db:42:7f:00:83:ab:bf:b9:36:b9:6b:5c:79:50:af:a9:d1: c2:39:49:c3:cc:8b:9d:ff:ec:43:c1:f2:6f:5d:87:c9:73:d3: 08:02:15:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ1QzExMTAvBgNVBAUTKEU4MkQxMEQyREExQzk4QkY2OENBNEM2NDkxQjkwRkZE MEZBQjMzOTQwHhcNMjUwODIyMTgyMjA4WhcNMjUwODI5MTgyMjA4WjAYMRYwFAYD VQQDEw02OGE4YjU1MC03MDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUUwFYL9eScRc9FLNJDay1hhhAedvZt11XvTGmh7l5+KU8qDdndustnAO7xF zaz5qERyHttv+EXLM+Y3QgL3+RGmxAHUzrxM3xMHV3Yrz4bPWf2fbx1rfDQAlzig kSe2ByJSmj9mWBD2/boJvgCWokuR6HMI8//g97QLedZ4ztdHzfTXBPNG18rTclVX DsEm73Bin9m0aOo68jcgJnz1qn39YG38V7WTjGAv6HI8B4JNWiI1j5w3ZlkU7+uk HefXu3hAt+Pgy+eS6iR++M0tTXx9FASxJqi6E4tvtU5ZJk7M3DXAdmCYt55NtewB FiIXF97pFsziBYR/IG7AsPHYwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEEJH4l 639xxaDpICXissaBPacbMB8GA1UdIwQYMBaAFOgtENLaHJi/aMpMZJG5D/0PqzOU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDVDMS9CMDdEQ0I0NEZG Q0MxMUU5QTVFNzk3ODRDNEY5QUUwMi82QzBRMHRvY21MOW95a3hra2JrUF9RLXJN NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZDMFEwdG9jbUw5b3lreGtrYmtQX1Etck01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDVDMS9CMDdEQ0I0NEZGQ0MxMUU5QTVFNzk3ODRDNEY5QUUwMi82QzBRMHRvY21M OW95a3hra2JrUF9RLXJNNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbS4Em/jstmtmwOhkaXAfSsJ2UvYlcvdKVzKbZ6u67UkpxlHPURzIR cf3kMcMQpzsZjX1zP9REqbdyaaj/sK5m7XD/vjjCbgC//UNmoikBtH9jt+nBqrip Eoezj+LRJQieufQh36/mvFvCc5R6AtiwrryLOtIyfXY/NFryxSTHQYxMdkhikgZE zwq7IUATbEDMp0FogiXGE1zihFDF3kIhGH4cn3wT621hqa1zt6jndi0xmpudWBCp 96aIl3ZOYNn5u0wKLp2Htu3CRdviu2zkMZLChPxjN9As20J/AIOrv7k2uWtceVCv qdHCOUnDzIud/+xDwfJvXYfJc9MIAhV4 -----END CERTIFICATE-----Generated at Sun Aug 24 00:48:28 2025 by rpki-client