$ rpki-client -vvf rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft File: R1JQ5qBVR49Kwerx7TLVZyw80bM.mft (raw, json) Hash identifier: 8YKuxESZjTmdegqwWqDDZHaDQd/aaY3/FcgLXaF2jD0= Subject key identifier: 69:34:54:A2:A5:4D:98:64:F7:BA:F1:83:14:E5:7A:CA:60:6A:A6:01 Authority key identifier: 47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 Certificate issuer: /CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Certificate serial: 0D49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft Manifest number: 0D3A Signing time: Fri 22 Aug 2025 18:08:53 +0000 Manifest this update: Fri 22 Aug 2025 18:08:53 +0000 Manifest next update: Fri 29 Aug 2025 18:08:53 +0000 Files and hashes: 1: R1JQ5qBVR49Kwerx7TLVZyw80bM.crl (hash: /6m4Pkh1SvEvqDtQEahxG6tK1HDAt/EAsqt9ohrH0iQ=) 2: B523DAE68C9211EABC682867C4F9AE02.roa (hash: /Vmvob4Ba5JT6xBzlUxuOFxxM0jXE2HEf4/pjk43Tpk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:08:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3401 (0xd49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140EE2, serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Validity Not Before: Aug 22 18:08:53 2025 GMT Not After : Aug 29 18:08:53 2025 GMT Subject: CN=68a8b235-1ee6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:99:86:b2:df:40:d4:3d:26:44:ff:f4:79:b4: 8e:e3:3a:f4:d2:f7:f7:7a:47:65:6e:e9:10:0c:a0: 15:7b:40:2f:dd:64:a2:f9:3f:a5:a7:4c:6f:ff:14: 47:af:60:b9:b5:76:87:2f:13:6a:f0:0b:f1:55:30: 19:d8:5e:20:a5:ce:e9:31:d1:d4:12:46:43:9d:18: 16:2a:50:85:62:f9:2d:b0:44:b6:36:df:74:6f:38: e9:39:0e:d1:00:5e:e5:69:eb:ee:7f:3f:ff:51:2d: 80:35:b4:08:fa:56:51:16:cb:ec:35:8f:ea:7e:94: e6:f1:e5:83:b3:94:b0:c3:e0:1f:78:99:8d:81:9c: 0a:c9:be:5e:26:30:7e:fc:6a:c3:08:fe:25:8a:84: f8:eb:4e:7e:f0:76:58:bc:0e:4f:9a:ad:d4:35:20: 28:1e:5b:75:22:4f:52:49:7d:40:92:b1:41:ff:52: 3a:54:db:39:51:95:15:66:73:b2:ad:e6:8d:49:c3: 8f:19:7f:68:75:fa:af:3f:99:d7:89:5d:c4:45:bf: 12:7f:2a:90:27:f2:56:43:fb:da:15:57:8c:07:19: 8e:16:3a:f9:f4:86:b7:d5:f0:a9:0d:78:f8:7f:ae: a4:80:a8:63:43:d9:93:c3:db:0a:3b:5d:85:e7:d6: ae:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:34:54:A2:A5:4D:98:64:F7:BA:F1:83:14:E5:7A:CA:60:6A:A6:01 X509v3 Authority Key Identifier: keyid:47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:00:81:77:5d:30:65:de:fc:36:00:ed:24:5b:82:5e:62:88: 92:37:e2:52:dc:dc:7e:87:63:bd:86:f7:74:94:60:d1:7f:1f: 8c:15:4a:26:f5:1e:e2:ee:9c:a8:de:1d:47:83:37:5c:12:ce: b9:78:ac:94:85:a8:af:73:76:b1:6a:aa:f0:ff:80:f6:56:26: 17:37:55:65:52:d7:9f:0a:48:75:27:c1:f4:d4:a2:fb:8d:1e: 7e:8f:00:c3:cf:63:d6:8d:ac:a8:a5:17:6e:2d:e8:4d:98:c0: ea:37:f4:f3:0f:a6:b9:2c:14:ae:e5:bc:c4:5b:e3:ab:e9:3d: 1b:c6:4f:dd:fe:07:20:7c:e3:9e:ba:61:29:64:51:50:e6:29: fa:96:e7:87:b7:36:38:5b:31:22:63:21:fc:2d:0e:94:4b:24: 51:2c:ea:d8:1c:f2:8d:9d:f6:07:57:dc:cd:da:1b:08:5f:8d: 4b:b5:75:17:5d:5a:04:bb:d7:67:16:40:37:f5:20:fd:c0:9c: be:21:da:bc:1e:e9:3a:e4:9b:79:a4:14:44:67:42:31:45:bc: 6c:6d:3c:2b:a5:14:f3:1d:4e:96:cf:69:5b:b0:00:3f:73:a6: fb:a4:a9:8c:53:cf:4f:8e:a1:4e:e1:46:cb:88:6a:f3:29:ec: 71:36:38:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFRTIxMTAvBgNVBAUTKDQ3NTI1MEU2QTA1NTQ3OEY0QUMxRUFGMUVEMzJENTY3 MkMzQ0QxQjMwHhcNMjUwODIyMTgwODUzWhcNMjUwODI5MTgwODUzWjAYMRYwFAYD VQQDEw02OGE4YjIzNS0xZWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5mGst9A1D0mRP/0ebSO4zr00vf3ekdlbukQDKAVe0Av3WSi+T+lp0xv/xRH r2C5tXaHLxNq8AvxVTAZ2F4gpc7pMdHUEkZDnRgWKlCFYvktsES2Nt90bzjpOQ7R AF7laevufz//US2ANbQI+lZRFsvsNY/qfpTm8eWDs5Sww+AfeJmNgZwKyb5eJjB+ /GrDCP4lioT4605+8HZYvA5Pmq3UNSAoHlt1Ik9SSX1AkrFB/1I6VNs5UZUVZnOy reaNScOPGX9odfqvP5nXiV3ERb8SfyqQJ/JWQ/vaFVeMBxmOFjr59Ia31fCpDXj4 f66kgKhjQ9mTw9sKO12F59au2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGk0VKKl TZhk97rxgxTlespgaqYBMB8GA1UdIwQYMBaAFEdSUOagVUePSsHq8e0y1WcsPNGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEVFMi9FQTAxRDU1QURG NzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0OUt3ZXJ4N1RMVlp5dzgw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxSlE1cUJWUjQ5S3dlcng3VExWWnl3ODBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEVFMi9FQTAxRDU1QURGNzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0 OUt3ZXJ4N1RMVlp5dzgwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgAIF3XTBl3vw2AO0kW4JeYoiSN+JS3Nx+h2O9hvd0lGDRfx+MFUom 9R7i7pyo3h1HgzdcEs65eKyUhaivc3axaqrw/4D2ViYXN1VlUtefCkh1J8H01KL7 jR5+jwDDz2PWjayopRduLehNmMDqN/TzD6a5LBSu5bzEW+Or6T0bxk/d/gcgfOOe umEpZFFQ5in6lueHtzY4WzEiYyH8LQ6USyRRLOrYHPKNnfYHV9zN2hsIX41LtXUX XVoEu9dnFkA39SD9wJy+Idq8Huk65Jt5pBREZ0IxRbxsbTwrpRTzHU6Wz2lbsAA/ c6b7pKmMU89PjqFO4UbLiGrzKexxNjgy -----END CERTIFICATE-----Generated at Sat Aug 23 19:01:48 2025 by rpki-client