$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft File: rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft (raw, json) Hash identifier: MVTU/FVIK0yIfVahcUseHMxJ83KhDNuMxE4GMtdMkhk= Subject key identifier: D9:BB:AC:E3:C2:89:07:E8:9A:C9:1C:C9:73:D7:0D:36:67:07:3A:D4 Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 07DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft Manifest number: 07D4 Signing time: Fri 22 Aug 2025 21:14:32 +0000 Manifest this update: Fri 22 Aug 2025 21:14:32 +0000 Manifest next update: Fri 29 Aug 2025 21:14:32 +0000 Files and hashes: 1: rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl (hash: 6AYnkMZ78i0eq6Zeqvn/j54GOhHJuZbpeap/WVQiWIQ=) 2: 38502DA2029A11EB85BD7B84C4F9AE02.roa (hash: 3OsuoPomkN3KwD+aF1zCoEkkbIN7dOFAl/woMg+7fcw=) 3: CEA093C66CA311ED9DD6425CC4F9AE02.roa (hash: 3rvQwF7VOidxONOxWbJzlS69h1FDkR177X5kmaAbyhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:14:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2015 (0x7df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA, serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Aug 22 21:14:32 2025 GMT Not After : Aug 29 21:14:32 2025 GMT Subject: CN=68a8ddb8-3b37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:81:96:07:57:ef:19:a8:df:d3:59:99:0d:fb: ba:c3:c7:a2:3a:ab:f5:bc:ae:4e:3b:24:30:35:19: 1c:3c:35:fb:f4:7d:61:9d:c6:5e:64:9b:68:24:a2: 82:ce:cf:77:b5:8a:d3:0b:f1:87:51:26:c6:4b:f3: ae:52:49:3c:c6:b4:d0:d1:73:95:5f:2b:43:9f:78: 29:f7:2e:df:0f:36:4c:4a:24:86:a3:99:6a:1e:4d: 07:ac:69:a5:4f:c1:ae:4b:f3:a2:0f:27:cb:87:94: c2:b5:90:ad:c5:4f:61:19:08:67:ee:38:cc:ca:f9: 5e:de:ab:a5:47:00:1d:8a:5d:9f:27:db:34:7c:75: c8:06:a4:97:77:35:2d:dd:38:0a:da:a8:0a:91:4c: 01:b2:4f:3d:83:2a:bd:34:95:de:4e:ae:96:2c:7e: ec:62:aa:fb:23:38:17:3f:f8:6c:e4:64:a8:82:66: 40:64:5b:ce:b5:e8:27:66:10:c9:0a:d9:31:d4:ae: 5a:68:cc:86:e0:ef:bf:5a:5d:27:87:85:f7:44:f7: 9d:04:07:d9:46:2c:53:f5:b7:2e:bc:67:80:bf:bc: 11:5c:7e:a5:32:67:3b:dd:68:0b:90:cf:a7:1d:b4: ef:58:15:1e:b1:fc:bd:c1:71:a3:f6:58:53:0c:59: 00:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:BB:AC:E3:C2:89:07:E8:9A:C9:1C:C9:73:D7:0D:36:67:07:3A:D4 X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:79:47:57:b5:b2:0a:5e:85:98:69:09:96:3d:a4:47:9d:e7: b5:70:b6:46:fe:96:fa:7d:23:9f:58:7e:e2:e6:0c:4c:a6:d4: 59:61:b7:59:03:25:e6:19:f4:96:7b:da:a1:e5:75:5e:8a:de: 48:6b:49:19:b5:46:f4:45:8c:22:75:6e:4b:13:76:65:e7:ec: d2:16:59:51:7d:c9:02:03:ba:29:30:66:c3:0b:1e:aa:a2:6d: 41:49:d3:03:89:5f:04:bb:44:31:57:fd:85:cd:42:0d:da:f0: a3:d0:02:94:c2:4b:75:b9:6f:8f:fd:af:19:5d:91:ad:0d:11: 42:2d:a1:56:5b:76:64:a1:ec:31:7f:d2:1d:4c:28:bd:f2:4a: 5b:c2:fc:74:d0:3d:86:7d:22:ee:db:82:d2:ea:16:3b:47:1b: 1f:fd:ff:30:61:e5:7c:8c:49:c8:78:7c:46:a9:8e:b5:67:d0: c3:8b:0e:46:8f:a9:32:d2:fc:74:6e:5a:a8:40:12:b1:ac:b8: d4:d0:8b:d5:61:b7:19:a5:e3:7e:93:db:f3:fe:99:8c:37:fa: 8a:d9:28:74:2a:a9:ef:aa:75:3a:84:43:4e:ad:d6:3c:0e:1f: 73:fd:97:bb:ed:db:bb:72:56:6c:0e:b7:88:6e:df:68:0f:dc: f7:b3:a4:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjUwODIyMjExNDMyWhcNMjUwODI5MjExNDMyWjAYMRYwFAYD VQQDEw02OGE4ZGRiOC0zYjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34GWB1fvGajf01mZDfu6w8eiOqv1vK5OOyQwNRkcPDX79H1hncZeZJtoJKKC zs93tYrTC/GHUSbGS/OuUkk8xrTQ0XOVXytDn3gp9y7fDzZMSiSGo5lqHk0HrGml T8GuS/OiDyfLh5TCtZCtxU9hGQhn7jjMyvle3qulRwAdil2fJ9s0fHXIBqSXdzUt 3TgK2qgKkUwBsk89gyq9NJXeTq6WLH7sYqr7IzgXP/hs5GSogmZAZFvOtegnZhDJ Ctkx1K5aaMyG4O+/Wl0nh4X3RPedBAfZRixT9bcuvGeAv7wRXH6lMmc73WgLkM+n HbTvWBUesfy9wXGj9lhTDFkAIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNm7rOPC iQfomskcyXPXDTZnBzrUMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REZCQS9EQjlDRTY3ODAyOTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFh V3Vaa3JiRlpCVHJPendyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6eUdXtbIKXoWYaQmWPaRHnee1cLZG/pb6fSOfWH7i5gxMptRZYbdZ AyXmGfSWe9qh5XVeit5Ia0kZtUb0RYwidW5LE3Zl5+zSFllRfckCA7opMGbDCx6q om1BSdMDiV8Eu0QxV/2FzUIN2vCj0AKUwkt1uW+P/a8ZXZGtDRFCLaFWW3Zkoewx f9IdTCi98kpbwvx00D2GfSLu24LS6hY7Rxsf/f8wYeV8jEnIeHxGqY61Z9DDiw5G j6ky0vx0blqoQBKxrLjU0IvVYbcZpeN+k9vz/pmMN/qK2Sh0KqnvqnU6hENOrdY8 Dh9z/Ze77du7clZsDreIbt9oD9z3s6Q4 -----END CERTIFICATE-----Generated at Sat Aug 23 15:40:31 2025 by rpki-client