$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft File: aIdCVFR7NLOvid21tI0CAj9Xrhc.mft (raw, json) Hash identifier: ZxWm2MrSR9gG4WXV4g1sl5CsTwu3ErHHy/E42IB1Aq4= Subject key identifier: EF:16:23:7F:0D:09:94:93:B7:1C:EA:38:F5:57:BB:39:37:3C:D0:9B Authority key identifier: 68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 Certificate issuer: /CN=A9148D52/serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Certificate serial: 0D4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft Manifest number: 0D46 Signing time: Fri 22 Aug 2025 18:07:23 +0000 Manifest this update: Fri 22 Aug 2025 18:07:23 +0000 Manifest next update: Fri 29 Aug 2025 18:07:23 +0000 Files and hashes: 1: aIdCVFR7NLOvid21tI0CAj9Xrhc.crl (hash: bmgY+5hIc2TmK0XIwi1XbWv8MMpkKAlq3fBoKKPgEkg=) 2: 0198539E94F311EA9429BF86C4F9AE02.roa (hash: 5GX92aioe88puPmyzGflssCck3bnuW06XT8lCNmGXB4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:07:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3407 (0xd4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D52, serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Validity Not Before: Aug 22 18:07:23 2025 GMT Not After : Aug 29 18:07:23 2025 GMT Subject: CN=68a8b1db-bf0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:00:09:23:98:0a:7e:d7:2e:78:89:6b:46:39: 48:29:50:b1:b3:c3:d7:fa:0f:96:67:39:d1:00:3e: 94:c4:5b:17:76:4d:09:17:1a:25:58:41:5f:04:58: af:8d:04:42:e8:25:3c:19:26:f5:38:6d:67:6f:58: ae:18:bb:2c:13:36:25:c9:5a:38:19:36:1c:e8:1a: 58:c5:d1:b4:14:fd:aa:4d:e6:cc:53:e0:1f:0d:12: 45:95:24:66:f8:86:04:07:39:35:0f:d0:1a:a6:dd: 48:49:a5:06:3c:ab:98:5f:5f:8f:b9:38:4e:80:d1: 41:17:07:44:db:7d:45:e4:9d:0d:81:c4:74:e3:22: 88:de:81:be:30:5e:6d:d2:2e:46:c2:21:4a:34:62: e5:ee:e5:1c:1c:da:db:24:fe:5f:53:63:c7:54:94: b0:f9:82:a8:33:6e:f5:9f:bb:64:c5:0f:a9:68:36: 75:93:10:40:1c:54:33:bf:e5:95:35:25:f0:20:98: 30:45:da:15:98:bf:ec:f4:af:28:3f:50:4d:fe:11: 40:e5:fc:ed:c9:8e:e8:d7:e1:b6:f1:e4:e6:94:8c: 11:5a:19:cf:6c:86:6a:94:4c:19:61:47:26:9d:6b: 8c:b8:33:f9:9b:7d:d4:e5:03:fd:1a:49:f3:c1:7f: b8:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:16:23:7F:0D:09:94:93:B7:1C:EA:38:F5:57:BB:39:37:3C:D0:9B X509v3 Authority Key Identifier: keyid:68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:40:23:13:2e:86:88:f2:54:27:ce:d3:bc:32:b0:da:8a:99: a2:a5:42:00:03:1d:24:7e:c5:d4:3e:2d:5c:8b:9f:9c:e3:c8: a5:92:00:14:ff:c6:ba:6b:9c:2c:94:b8:44:e6:73:86:af:e2: 7e:30:8e:26:9f:fe:a6:47:2d:66:40:4a:60:3d:28:6e:64:bc: e6:f2:68:03:5c:9f:08:d4:a8:55:15:ea:35:f9:8a:95:ba:33: 43:d4:a7:17:1c:ce:8b:02:97:09:0a:bb:31:d4:a7:ce:bb:33: c0:f7:e3:2e:29:c5:3e:12:de:6b:df:4b:bc:df:cb:35:ac:9c: f8:77:98:46:8a:30:4d:be:c2:bb:18:e7:64:4d:47:2f:45:b4: 57:1d:bb:82:a8:51:ec:db:33:0e:9e:0c:70:d7:1a:b4:43:12: 58:e7:1f:82:82:52:50:06:21:74:f0:12:55:3c:c0:f6:0e:05: 6a:67:da:4c:e2:61:fe:22:b0:45:aa:c5:15:ee:c9:e5:44:9f: 6e:60:2e:c4:d9:07:d7:05:ae:02:2e:9a:a1:20:55:78:b3:5c: d5:16:53:de:a9:4c:75:79:f4:65:12:a5:6c:21:34:fe:91:59: f7:0c:b9:d7:45:3b:f0:11:ce:e0:c3:f0:8e:40:21:4e:2d:58: 47:74:be:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENTIxMTAvBgNVBAUTKDY4ODc0MjU0NTQ3QjM0QjNBRjg5RERCNUI0OEQwMjAy M0Y1N0FFMTcwHhcNMjUwODIyMTgwNzIzWhcNMjUwODI5MTgwNzIzWjAYMRYwFAYD VQQDEw02OGE4YjFkYi1iZjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5wAJI5gKftcueIlrRjlIKVCxs8PX+g+WZznRAD6UxFsXdk0JFxolWEFfBFiv jQRC6CU8GSb1OG1nb1iuGLssEzYlyVo4GTYc6BpYxdG0FP2qTebMU+AfDRJFlSRm +IYEBzk1D9Aapt1ISaUGPKuYX1+PuThOgNFBFwdE231F5J0NgcR04yKI3oG+MF5t 0i5GwiFKNGLl7uUcHNrbJP5fU2PHVJSw+YKoM271n7tkxQ+paDZ1kxBAHFQzv+WV NSXwIJgwRdoVmL/s9K8oP1BN/hFA5fztyY7o1+G28eTmlIwRWhnPbIZqlEwZYUcm nWuMuDP5m33U5QP9GknzwX+4HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO8WI38N CZSTtxzqOPVXuzk3PNCbMB8GA1UdIwQYMBaAFGiHQlRUezSzr4ndtbSNAgI/V64X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ1Mi8xRDRCNDRFRURC NkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05MT3ZpZDIxdEkwQ0FqOVhy aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJZENWRlI3TkxPdmlkMjF0STBDQWo5WHJoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ1Mi8xRDRCNDRFRURCNkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05M T3ZpZDIxdEkwQ0FqOVhyaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaQCMTLoaI8lQnztO8MrDaipmipUIAAx0kfsXUPi1ci5+c48ilkgAU /8a6a5wslLhE5nOGr+J+MI4mn/6mRy1mQEpgPShuZLzm8mgDXJ8I1KhVFeo1+YqV ujND1KcXHM6LApcJCrsx1KfOuzPA9+MuKcU+Et5r30u838s1rJz4d5hGijBNvsK7 GOdkTUcvRbRXHbuCqFHs2zMOngxw1xq0QxJY5x+CglJQBiF08BJVPMD2DgVqZ9pM 4mH+IrBFqsUV7snlRJ9uYC7E2QfXBa4CLpqhIFV4s1zVFlPeqUx1efRlEqVsITT+ kVn3DLnXRTvwEc7gw/COQCFOLVhHdL6U -----END CERTIFICATE-----Generated at Sat Aug 23 21:33:20 2025 by rpki-client