$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft File: 320AK7yrolDSrmtEVOPL_WfSx-o.mft (raw, json) Hash identifier: /J/50FDxnqjgp2oe32MuicNYshz1XUR/DFbpL6yhKls= Subject key identifier: DC:02:A0:3A:B5:2A:99:DC:FE:C0:FB:00:0C:6A:77:FF:29:77:BE:D0 Authority key identifier: DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA Certificate issuer: /CN=A9143DE2/serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Certificate serial: 09BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft Manifest number: 09B1 Signing time: Fri 22 Aug 2025 20:10:05 +0000 Manifest this update: Fri 22 Aug 2025 20:10:05 +0000 Manifest next update: Fri 29 Aug 2025 20:10:05 +0000 Files and hashes: 1: 320AK7yrolDSrmtEVOPL_WfSx-o.crl (hash: p8/OjrFDTqy2zCrAmNdZBm8DVX3/SamVqMa7TRvDZcY=) 2: C07738FE9F4511EB88EBCA76C4F9AE02.roa (hash: EW5gw++/Nv/7XkyhmrGAdJFCyCQBgQSX+Pdw0qIT5p4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:10:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2491 (0x9bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DE2, serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Validity Not Before: Aug 22 20:10:05 2025 GMT Not After : Aug 29 20:10:05 2025 GMT Subject: CN=68a8ce9d-e620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:26:49:dc:19:31:2f:01:cb:92:83:b4:78:b0: 69:da:c4:78:0c:20:92:6b:af:dc:89:9a:bb:c6:55: 49:e1:b9:ab:47:b5:0f:34:96:74:34:e4:5e:4e:da: 76:69:0b:18:40:85:01:a3:6d:7f:a7:dc:6e:4f:e8: e1:6f:b6:2a:fd:0c:f8:7f:55:1f:b4:72:bb:b8:b3: 32:3c:ee:94:b4:01:2f:21:0b:b6:56:3c:48:1d:a5: 63:40:26:c9:61:ec:5c:ea:71:6b:bc:25:fc:ca:93: b5:dc:10:a4:cc:ac:3b:90:39:bf:13:39:61:3e:d3: 12:f8:f7:c8:00:a5:62:f5:2d:1c:8c:46:39:cd:d1: 71:07:ac:6f:ed:24:ba:a8:19:bf:d0:40:e9:19:79: ea:ec:fd:66:d7:e7:77:78:e3:23:12:78:d7:6d:0e: 5f:86:e1:ee:0c:49:22:92:b6:97:07:60:39:7c:27: 6a:b9:6e:5b:00:98:c6:30:fb:67:cf:b0:e2:3d:3b: 29:fa:d8:28:ef:20:d1:e6:75:84:74:72:6d:02:6c: fb:9e:9d:fa:3d:19:ec:6c:40:7b:f6:83:50:7e:83: 8f:a9:b6:7d:c5:5e:04:08:9b:ff:c5:10:be:ab:ef: 6e:ab:6a:f0:2c:e0:65:56:63:73:03:32:12:0d:6c: 70:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:02:A0:3A:B5:2A:99:DC:FE:C0:FB:00:0C:6A:77:FF:29:77:BE:D0 X509v3 Authority Key Identifier: keyid:DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:e3:4e:37:98:11:93:8d:03:af:6d:0b:e1:b4:51:28:2c:70: 9f:9a:69:ee:00:96:6a:2d:92:48:cc:95:25:a4:6a:cb:b9:f6: 2e:db:a7:65:62:15:1d:16:d0:f7:fc:b0:13:3a:78:25:f5:4f: de:de:43:1d:13:55:13:66:7d:98:fc:e9:b3:65:c3:ee:a9:52: 26:06:53:16:f1:e4:c3:d3:b0:57:7e:1b:ff:77:4a:65:d4:44: 5f:d4:ba:5d:c3:db:b8:ef:73:ce:54:22:e7:64:82:6d:9a:10: 9d:01:6b:55:2f:bd:6a:7e:ea:7e:f4:93:ab:e0:b8:b3:8c:99: a2:f6:9b:dd:68:fa:74:0f:e3:12:3c:04:0e:41:62:cc:c7:00: c3:f3:a8:e8:84:c2:ea:e0:da:8c:49:4b:ab:05:e3:32:59:72: 7b:d6:52:64:81:fa:3c:b9:4e:ee:33:fe:ae:e2:20:fd:74:a6: b9:ee:83:ca:a9:3f:cd:bc:8f:cf:98:10:88:b3:46:85:a7:f4: 47:6d:08:11:32:03:0b:f9:e0:41:f8:4c:39:72:1d:ef:af:b1: 8f:60:45:92:ce:56:18:2d:f5:15:f6:50:80:32:42:85:51:42: 9d:fa:ab:5a:79:de:27:0b:44:b0:47:cf:72:50:a9:8c:56:e7: b1:64:c3:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNERTIxMTAvBgNVBAUTKERGNkQwMDJCQkNBQkEyNTBEMkFFNkI0NDU0RTNDQkZE NjdEMkM3RUEwHhcNMjUwODIyMjAxMDA1WhcNMjUwODI5MjAxMDA1WjAYMRYwFAYD VQQDEw02OGE4Y2U5ZC1lNjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmiZJ3BkxLwHLkoO0eLBp2sR4DCCSa6/ciZq7xlVJ4bmrR7UPNJZ0NOReTtp2 aQsYQIUBo21/p9xuT+jhb7Yq/Qz4f1UftHK7uLMyPO6UtAEvIQu2VjxIHaVjQCbJ Yexc6nFrvCX8ypO13BCkzKw7kDm/EzlhPtMS+PfIAKVi9S0cjEY5zdFxB6xv7SS6 qBm/0EDpGXnq7P1m1+d3eOMjEnjXbQ5fhuHuDEkikraXB2A5fCdquW5bAJjGMPtn z7DiPTsp+tgo7yDR5nWEdHJtAmz7np36PRnsbEB79oNQfoOPqbZ9xV4ECJv/xRC+ q+9uq2rwLOBlVmNzAzISDWxwDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwCoDq1 Kpnc/sD7AAxqd/8pd77QMB8GA1UdIwQYMBaAFN9tACu8q6JQ0q5rRFTjy/1n0sfq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RFMi9EMjE4REQ1MjhF OTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9sRFNybXRFVk9QTF9XZlN4 LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyMEFLN3lyb2xEU3JtdEVWT1BMX1dmU3gtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0RFMi9EMjE4REQ1MjhFOTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9s RFNybXRFVk9QTF9XZlN4LW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC4043mBGTjQOvbQvhtFEoLHCfmmnuAJZqLZJIzJUlpGrLufYu26dl YhUdFtD3/LATOngl9U/e3kMdE1UTZn2Y/OmzZcPuqVImBlMW8eTD07BXfhv/d0pl 1ERf1Lpdw9u473POVCLnZIJtmhCdAWtVL71qfup+9JOr4LizjJmi9pvdaPp0D+MS PAQOQWLMxwDD86johMLq4NqMSUurBeMyWXJ71lJkgfo8uU7uM/6u4iD9dKa57oPK qT/NvI/PmBCIs0aFp/RHbQgRMgML+eBB+Ew5ch3vr7GPYEWSzlYYLfUV9lCAMkKF UUKd+qtaed4nC0SwR89yUKmMVuexZMPP -----END CERTIFICATE-----Generated at Sun Aug 24 02:33:05 2025 by rpki-client