$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft File: pZmI7E1t1bpqMPhmUatWLBimo04.mft (raw, json) Hash identifier: xOCnc6Te3xmVdsCO8vvLFxFDMXxvjWHqxSnj/KjVsq0= Subject key identifier: 35:DD:98:F2:CA:3B:14:A2:09:7D:F3:48:7B:CA:21:46:D8:11:C9:F5 Authority key identifier: A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E Certificate issuer: /CN=A9143FF5/serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Certificate serial: 0502 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft Manifest number: 04FD Signing time: Fri 22 Aug 2025 23:51:23 +0000 Manifest this update: Fri 22 Aug 2025 23:51:22 +0000 Manifest next update: Fri 29 Aug 2025 23:51:22 +0000 Files and hashes: 1: pZmI7E1t1bpqMPhmUatWLBimo04.crl (hash: XgKvoOn310wQThDzzG0e+DNWJJj8TCuefv2y+OXChe0=) 2: A027E062300911ECAE581534C4F9AE02.roa (hash: krTyx4GXgFlPzZ2i1hVEEfK54ydEVTwtrf/GVqS5/WA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:51:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1282 (0x502) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FF5, serialNumber=A59988EC4D6DD5BA6A30F86651AB562C18A6A34E Validity Not Before: Aug 22 23:51:22 2025 GMT Not After : Aug 29 23:51:22 2025 GMT Subject: CN=68a9027a-7300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9f:03:92:08:22:c3:fe:30:c5:f2:51:e3:e7: 20:4d:84:14:0e:9e:94:a7:2d:73:2b:bf:a2:60:42: 89:d1:93:04:b1:b7:e6:b3:80:7c:37:60:89:ec:c8: d2:14:86:05:93:c3:c2:bc:b7:c4:6b:a0:21:0a:0a: 14:db:2a:45:c7:d0:5d:e9:17:10:32:df:cd:76:e5: 85:07:9d:a4:1c:de:00:c5:b4:c4:f1:5e:01:0c:07: b0:f9:a6:6c:0d:e9:bb:eb:c3:5e:8c:0c:e5:a6:a9: 48:f1:26:c1:a3:9a:8c:67:21:71:4d:10:68:f8:38: 89:4f:c9:78:c6:f0:07:0e:ed:08:d7:e4:36:45:b0: 5f:69:81:2b:de:04:57:c6:86:4a:78:23:6d:44:32: 23:77:95:d0:ad:8e:54:1a:d5:20:10:6f:05:0d:60: 3c:58:f2:80:fd:54:4c:e5:36:96:c7:88:05:6e:1e: 69:b1:85:f9:b6:46:6e:b7:6d:dc:d5:66:17:52:3e: bd:1c:ef:aa:5b:54:37:2e:8c:af:a4:01:0f:48:09: de:c7:fd:99:c3:33:5c:6f:b7:d6:07:98:31:67:e1: da:79:94:4d:e1:26:47:6c:9a:1c:dc:ae:e9:cf:a8: 59:24:76:66:81:74:83:e0:0a:dc:86:e0:9f:d4:81: 27:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:DD:98:F2:CA:3B:14:A2:09:7D:F3:48:7B:CA:21:46:D8:11:C9:F5 X509v3 Authority Key Identifier: keyid:A5:99:88:EC:4D:6D:D5:BA:6A:30:F8:66:51:AB:56:2C:18:A6:A3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pZmI7E1t1bpqMPhmUatWLBimo04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FF5/013969B4201C11EC8A173C2CC4F9AE02/pZmI7E1t1bpqMPhmUatWLBimo04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:4d:0f:31:60:f9:1b:0c:e7:a4:2a:d9:94:63:74:8d:9d:ba: f8:62:92:32:2d:20:1a:f5:5e:52:61:8b:f3:91:2b:b9:6a:34: 10:7c:33:65:2c:c4:58:0f:a5:c9:cf:31:1c:5b:0a:e7:9c:01: 4b:9d:8e:a9:49:f5:d2:d9:75:6f:23:66:42:76:87:04:57:ba: 3e:c6:17:d7:26:02:c1:db:d5:b7:bf:55:2b:cb:d3:7c:93:cc: db:ac:ba:ee:3a:cf:6a:a9:aa:1f:15:55:74:40:48:c6:10:fe: fe:98:97:96:9a:9d:04:4a:45:c2:45:88:bd:79:34:76:bd:eb: 55:46:e9:f9:c1:1a:e3:ee:67:7b:3c:06:d1:33:20:0f:ca:87: f5:fb:9c:4a:20:f2:f9:e3:c9:70:bc:f1:85:80:ec:3b:19:54: f1:06:52:2c:bd:1c:cc:f1:ec:ee:fd:87:ae:6a:21:33:79:7c: ec:6d:a0:82:45:8c:84:94:99:96:ad:f0:c6:b1:2e:91:93:b6: 7f:de:47:96:30:9b:0b:53:44:7a:ca:13:56:19:93:c3:dc:08: 4a:e9:f1:fa:84:d9:0b:44:d3:3f:ed:31:2e:89:1c:d7:3e:0a: f3:d0:37:7c:f3:c3:ec:d1:96:d1:3c:6f:08:d3:29:0d:bd:6f: 84:f6:3d:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGRjUxMTAvBgNVBAUTKEE1OTk4OEVDNEQ2REQ1QkE2QTMwRjg2NjUxQUI1NjJD MThBNkEzNEUwHhcNMjUwODIyMjM1MTIyWhcNMjUwODI5MjM1MTIyWjAYMRYwFAYD VQQDEw02OGE5MDI3YS03MzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZ8Dkggiw/4wxfJR4+cgTYQUDp6Upy1zK7+iYEKJ0ZMEsbfms4B8N2CJ7MjS FIYFk8PCvLfEa6AhCgoU2ypFx9Bd6RcQMt/NduWFB52kHN4AxbTE8V4BDAew+aZs Dem768NejAzlpqlI8SbBo5qMZyFxTRBo+DiJT8l4xvAHDu0I1+Q2RbBfaYEr3gRX xoZKeCNtRDIjd5XQrY5UGtUgEG8FDWA8WPKA/VRM5TaWx4gFbh5psYX5tkZut23c 1WYXUj69HO+qW1Q3LoyvpAEPSAnex/2ZwzNcb7fWB5gxZ+HaeZRN4SZHbJoc3K7p z6hZJHZmgXSD4ArchuCf1IEn+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDXdmPLK OxSiCX3zSHvKIUbYEcn1MB8GA1UdIwQYMBaAFKWZiOxNbdW6ajD4ZlGrViwYpqNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZGNS8wMTM5NjlCNDIw MUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFicHFNUGhtVWF0V0xCaW1v MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BabUk3RTF0MWJwcU1QaG1VYXRXTEJpbW8wNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0ZGNS8wMTM5NjlCNDIwMUMxMUVDOEExNzNDMkNDNEY5QUUwMi9wWm1JN0UxdDFi cHFNUGhtVWF0V0xCaW1vMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXTQ8xYPkbDOekKtmUY3SNnbr4YpIyLSAa9V5SYYvzkSu5ajQQfDNl LMRYD6XJzzEcWwrnnAFLnY6pSfXS2XVvI2ZCdocEV7o+xhfXJgLB29W3v1Ury9N8 k8zbrLruOs9qqaofFVV0QEjGEP7+mJeWmp0ESkXCRYi9eTR2vetVRun5wRrj7md7 PAbRMyAPyof1+5xKIPL548lwvPGFgOw7GVTxBlIsvRzM8ezu/YeuaiEzeXzsbaCC RYyElJmWrfDGsS6Rk7Z/3keWMJsLU0R6yhNWGZPD3AhK6fH6hNkLRNM/7TEuiRzX Pgrz0Dd888Ps0ZbRPG8I0ykNvW+E9j3t -----END CERTIFICATE-----Generated at Sat Aug 23 19:00:16 2025 by rpki-client