$ rpki-client -vvf rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft File: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft (raw, json) Hash identifier: /bFWqDhpUr2j/uhR11Bdl/XlXTi5pV4+yDtFGEBnGws= Subject key identifier: 2F:C4:4B:C5:A4:C3:21:74:1E:95:F3:7E:B4:09:97:6D:13:92:AC:C3 Authority key identifier: 0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 Certificate issuer: /CN=A9132AEB/serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Certificate serial: 34D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft Manifest number: 34C3 Signing time: Fri 22 Aug 2025 15:07:49 +0000 Manifest this update: Fri 22 Aug 2025 15:07:49 +0000 Manifest next update: Fri 29 Aug 2025 15:07:49 +0000 Files and hashes: 1: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl (hash: t9XhPW5kcXObBqOUw92ExqbchkyifAfJjeNKcX8IvGw=) 2: 514DBDFC98C711EAA0CFE582C4F9AE02.roa (hash: i+oLVOiTvF13PBUoOa9UfIxFEQhcYfTJRD1Exsj8GIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:07:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13523 (0x34d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132AEB, serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Validity Not Before: Aug 22 15:07:49 2025 GMT Not After : Aug 29 15:07:49 2025 GMT Subject: CN=68a887c5-106d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:85:c5:93:6f:08:82:ec:d0:5c:55:71:74:fb: f8:0b:56:5e:76:4e:d6:9f:6f:24:b3:6e:0f:dd:29: 72:22:27:30:4f:82:36:df:80:02:e7:be:9e:18:68: e8:f0:62:95:aa:f0:8c:91:9f:04:e2:b8:46:dc:ef: f9:74:97:de:5f:98:15:eb:2f:61:bc:5f:6b:29:23: 6a:a0:c2:18:35:e6:18:dd:7f:7d:8b:ac:8f:90:16: a8:9c:6f:be:0a:b8:05:7b:c1:5e:23:99:ca:d5:ca: ab:08:5f:f2:a4:c7:74:45:9f:f3:a9:7d:68:e3:3a: af:ad:1a:33:b9:96:6d:b0:b6:27:22:58:d4:3a:a0: 27:a7:8f:a1:d9:27:53:c5:ac:a5:39:6a:e2:17:9c: 89:03:2c:52:2f:1c:59:20:ed:fa:08:3b:38:48:4a: f3:8a:29:9d:04:70:75:09:c9:18:64:cd:09:8e:cf: ef:4c:ec:87:de:8f:75:28:70:1f:17:0f:cc:fc:56: 98:52:56:a4:33:bc:d8:6f:2f:18:2e:b5:34:47:81: f8:02:de:da:22:ab:3a:a1:b1:00:3b:cd:33:45:ae: 02:db:95:e3:d1:1f:0f:22:39:4b:c6:96:15:31:5d: 3c:2d:1c:db:d4:94:0d:7b:fe:a0:a7:01:b7:46:86: c7:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:C4:4B:C5:A4:C3:21:74:1E:95:F3:7E:B4:09:97:6D:13:92:AC:C3 X509v3 Authority Key Identifier: keyid:0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:44:a9:f7:fd:19:b9:f2:e8:58:50:2f:95:14:05:1a:6d:14: 14:74:22:1f:22:71:61:31:c3:f0:48:c3:c7:6f:e2:31:21:50: 87:85:b4:65:5a:fb:c3:8a:ab:07:d9:e2:12:52:56:9b:af:de: c7:9d:0e:14:81:78:25:cf:e5:fa:24:1c:10:b9:4b:ab:46:e9: e4:64:7b:3d:b7:2f:63:bc:8e:dd:65:3e:a2:c4:1e:81:16:d8: 8b:ef:d9:db:88:a9:4a:a0:55:13:94:f8:9a:71:de:cd:8a:ac: f0:9e:cd:7e:24:89:13:40:82:16:49:ae:4a:ed:31:0e:1b:bb: 19:d1:05:f8:0d:cd:a4:bd:9c:07:30:ad:23:f1:0e:e5:a7:c5: c8:22:57:83:f1:53:24:f2:37:9b:e1:e2:3c:18:9d:18:86:8b: 4e:46:67:16:15:87:fd:0c:ff:f1:06:d2:82:78:72:2c:88:95: 3e:15:7c:91:83:ae:32:53:76:42:87:15:4d:75:de:ce:d8:fd: c2:c1:f3:5c:7e:11:53:3b:68:16:19:5f:c1:16:be:78:c3:6b: 2e:ac:d1:6e:00:18:da:fc:ab:d4:2e:ad:99:4e:af:7e:17:a1: 2f:41:de:ea:6a:88:78:e9:73:9b:6e:4b:1d:c9:e8:1e:30:f8: e5:67:35:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJBRUIxMTAvBgNVBAUTKDBGOTUyQTI3RUYzRUYyN0NFQTA4QzU3RDIwMkEzODA2 OUVDQjU4NDAwHhcNMjUwODIyMTUwNzQ5WhcNMjUwODI5MTUwNzQ5WjAYMRYwFAYD VQQDEw02OGE4ODdjNS0xMDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoXFk28IguzQXFVxdPv4C1Zedk7Wn28ks24P3SlyIicwT4I234AC576eGGjo 8GKVqvCMkZ8E4rhG3O/5dJfeX5gV6y9hvF9rKSNqoMIYNeYY3X99i6yPkBaonG++ CrgFe8FeI5nK1cqrCF/ypMd0RZ/zqX1o4zqvrRozuZZtsLYnIljUOqAnp4+h2SdT xaylOWriF5yJAyxSLxxZIO36CDs4SErziimdBHB1CckYZM0Jjs/vTOyH3o91KHAf Fw/M/FaYUlakM7zYby8YLrU0R4H4At7aIqs6obEAO80zRa4C25Xj0R8PIjlLxpYV MV08LRzb1JQNe/6gpwG3RobHRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC/ES8Wk wyF0HpXzfrQJl20TkqzDMB8GA1UdIwQYMBaAFA+VKifvPvJ86gjFfSAqOAaey1hA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkFFQi9FRjI5QkEyQTFE QTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThuenFDTVY5SUNvNEJwN0xX RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1VXFKLTgtOG56cUNNVjlJQ280QnA3TFdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkFFQi9FRjI5QkEyQTFEQTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThu enFDTVY5SUNvNEJwN0xXRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGRKn3/Rm58uhYUC+VFAUabRQUdCIfInFhMcPwSMPHb+IxIVCHhbRl WvvDiqsH2eISUlabr97HnQ4UgXglz+X6JBwQuUurRunkZHs9ty9jvI7dZT6ixB6B FtiL79nbiKlKoFUTlPiacd7Niqzwns1+JIkTQIIWSa5K7TEOG7sZ0QX4Dc2kvZwH MK0j8Q7lp8XIIleD8VMk8jeb4eI8GJ0YhotORmcWFYf9DP/xBtKCeHIsiJU+FXyR g64yU3ZChxVNdd7O2P3CwfNcfhFTO2gWGV/BFr54w2surNFuABja/KvULq2ZTq9+ F6EvQd7qaoh46XObbksdyegeMPjlZzUO -----END CERTIFICATE-----Generated at Sun Aug 24 08:59:50 2025 by rpki-client