$ rpki-client -vvf rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.mft File: -Xh9LKFDLKbpMzLg7e9rB7JF17A.mft (raw, json) Hash identifier: bDwGVjgBsWsG+9b+97P1t9CVdd3C+AWPvyc/MvKqX7U= Subject key identifier: EB:39:25:46:7E:60:03:7D:64:27:FB:01:79:B2:3E:2A:D9:B4:3F:6C Authority key identifier: F9:78:7D:2C:A1:43:2C:A6:E9:33:32:E0:ED:EF:6B:07:B2:45:D7:B0 Certificate issuer: /CN=A912DA1F/serialNumber=F9787D2CA1432CA6E93332E0EDEF6B07B245D7B0 Certificate serial: 0825 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Xh9LKFDLKbpMzLg7e9rB7JF17A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.mft Manifest number: 081D Signing time: Wed 02 Jul 2025 21:04:04 +0000 Manifest this update: Wed 02 Jul 2025 21:04:04 +0000 Manifest next update: Wed 09 Jul 2025 21:04:04 +0000 Files and hashes: 1: -Xh9LKFDLKbpMzLg7e9rB7JF17A.crl (hash: Ap7BM9Mhgm2wdpNMITf6EpYvva3GlVuXOOcjWZqwV8M=) 2: D6883996DABE11EAB12A5209C4F9AE02.roa (hash: BMvYT9IDar1yOpAiOIQ1zT2emoZ3Z/Bj9QOBnQBKVOs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.crl rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Xh9LKFDLKbpMzLg7e9rB7JF17A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:04:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2085 (0x825) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DA1F, serialNumber=F9787D2CA1432CA6E93332E0EDEF6B07B245D7B0 Validity Not Before: Jul 2 21:04:04 2025 GMT Not After : Jul 9 21:04:04 2025 GMT Subject: CN=68659ec4-f4d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:6d:34:4f:0b:01:43:8d:ec:c7:17:4a:df:2a: 91:f0:76:cc:a8:ee:69:18:c3:ef:58:cb:00:e0:29: 34:4e:4b:91:d2:4c:8d:65:64:fc:ba:a8:ea:7f:cb: 2f:88:3d:aa:8f:e9:3c:9c:c6:de:99:46:61:2d:53: 7c:a4:fe:a5:e3:25:38:72:38:38:4e:1b:b7:20:e5: ca:cf:aa:3a:31:54:b6:3c:06:b9:01:06:a8:19:33: 51:ab:f4:b2:4a:cb:51:3c:98:cc:55:f0:20:49:91: 6f:94:4e:87:f0:86:04:aa:2c:bb:82:18:d7:81:43: 39:0a:00:21:15:51:71:d0:a7:24:24:93:3b:d8:49: ac:38:41:37:7e:ef:ab:9b:ea:89:0d:3a:76:0a:a7: dd:18:1a:d7:d6:0a:d0:eb:25:0b:e1:0f:dc:92:1a: a7:1a:e8:d8:40:80:1c:0b:65:a2:d6:e0:60:a4:8a: 54:a1:4a:5c:c5:6b:d8:d3:d8:32:17:26:7d:31:ce: 74:92:4a:6f:a5:64:46:fd:2a:1b:ed:b2:aa:2f:c2: 93:03:8a:47:27:4b:20:4b:d6:cd:ff:d6:f9:73:cb: 91:44:30:9b:e0:63:94:7b:c7:7b:4c:b5:dc:14:d8: d2:67:ac:86:b9:c7:2e:fb:86:44:e8:d3:26:fe:74: 4e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:39:25:46:7E:60:03:7D:64:27:FB:01:79:B2:3E:2A:D9:B4:3F:6C X509v3 Authority Key Identifier: keyid:F9:78:7D:2C:A1:43:2C:A6:E9:33:32:E0:ED:EF:6B:07:B2:45:D7:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Xh9LKFDLKbpMzLg7e9rB7JF17A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DA1F/FB14A882DABC11EAA6202C85C4F9AE02/-Xh9LKFDLKbpMzLg7e9rB7JF17A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:87:83:49:2a:31:c0:cc:47:c8:0f:1d:42:5f:2f:e9:e1:b3: 4f:cc:6d:ca:c0:80:eb:5d:dd:df:4c:40:b9:c7:88:10:44:03: fc:ac:a6:b3:f8:b4:50:c3:78:b9:65:47:93:d1:98:6d:d1:1d: 08:f7:bc:d5:9b:02:dd:38:5f:05:10:cd:d3:c9:2a:c9:0c:15: bd:e8:59:b9:6e:1e:8e:8b:e0:71:37:dc:1b:00:c4:63:d1:63: 81:f9:64:09:5c:6c:fd:38:b1:88:ea:10:a2:13:12:ae:5f:5b: db:a1:71:25:af:27:d3:32:18:7e:c4:b2:16:b1:ba:e1:e5:1d: 24:26:11:a0:49:26:5a:28:70:89:b4:79:cb:ba:7e:5c:3e:71: 89:94:c4:0d:36:fa:e3:01:01:81:67:af:df:c8:b5:ce:eb:6b: 99:ba:6d:62:ca:68:29:d7:fc:b6:50:de:99:38:93:3c:8b:fa: 09:31:1c:d4:1f:eb:d1:fb:11:81:fb:9d:6e:09:07:85:2e:4b: b7:78:c5:fc:e4:e2:85:bc:ee:ee:c1:00:b8:c1:13:ca:8c:6f: 88:f0:7f:4b:a0:e2:9a:70:cd:38:74:3a:a6:a7:bf:56:55:44: 7d:c4:06:26:3c:40:10:c8:9a:b9:f8:99:18:05:5e:ec:16:c7: 5f:fa:ba:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRBMUYxMTAvBgNVBAUTKEY5Nzg3RDJDQTE0MzJDQTZFOTMzMzJFMEVERUY2QjA3 QjI0NUQ3QjAwHhcNMjUwNzAyMjEwNDA0WhcNMjUwNzA5MjEwNDA0WjAYMRYwFAYD VQQDEw02ODY1OWVjNC1mNGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmm00TwsBQ43sxxdK3yqR8HbMqO5pGMPvWMsA4Ck0TkuR0kyNZWT8uqjqf8sv iD2qj+k8nMbemUZhLVN8pP6l4yU4cjg4Thu3IOXKz6o6MVS2PAa5AQaoGTNRq/Sy SstRPJjMVfAgSZFvlE6H8IYEqiy7ghjXgUM5CgAhFVFx0KckJJM72EmsOEE3fu+r m+qJDTp2CqfdGBrX1grQ6yUL4Q/ckhqnGujYQIAcC2Wi1uBgpIpUoUpcxWvY09gy FyZ9Mc50kkpvpWRG/Sob7bKqL8KTA4pHJ0sgS9bN/9b5c8uRRDCb4GOUe8d7TLXc FNjSZ6yGuccu+4ZE6NMm/nROAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOs5JUZ+ YAN9ZCf7AXmyPirZtD9sMB8GA1UdIwQYMBaAFPl4fSyhQyym6TMy4O3vaweyRdew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREExRi9GQjE0QTg4MkRB QkMxMUVBQTYyMDJDODVDNEY5QUUwMi8tWGg5TEtGRExLYnBNekxnN2U5ckI3SkYx N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YaDlMS0ZETEticE16TGc3ZTlyQjdKRjE3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REExRi9GQjE0QTg4MkRBQkMxMUVBQTYyMDJDODVDNEY5QUUwMi8tWGg5TEtGRExL YnBNekxnN2U5ckI3SkYxN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCth4NJKjHAzEfIDx1CXy/p4bNPzG3KwIDrXd3fTEC5x4gQRAP8rKaz +LRQw3i5ZUeT0Zht0R0I97zVmwLdOF8FEM3TySrJDBW96Fm5bh6Oi+BxN9wbAMRj 0WOB+WQJXGz9OLGI6hCiExKuX1vboXElryfTMhh+xLIWsbrh5R0kJhGgSSZaKHCJ tHnLun5cPnGJlMQNNvrjAQGBZ6/fyLXO62uZum1iymgp1/y2UN6ZOJM8i/oJMRzU H+vR+xGB+51uCQeFLku3eMX85OKFvO7uwQC4wRPKjG+I8H9LoOKacM04dDqmp79W VUR9xAYmPEAQyJq5+JkYBV7sFsdf+rpZ -----END CERTIFICATE-----Generated at Thu Jul 3 23:47:24 2025 by rpki-client