$ rpki-client -vvf rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft File: 0AZhDr1oKXhFffitopEQATORAZI.mft (raw, json) Hash identifier: kRiN/NoKsjKT7py0oFtK/VlhTEszdCbvyBeyT6yhaz8= Subject key identifier: AA:21:02:56:DC:9D:27:3A:5E:52:1C:93:D4:C0:7B:47:CE:EC:9B:E3 Authority key identifier: D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 Certificate issuer: /CN=A9153A6E/serialNumber=D006610EBD682978457DF8ADA291100133910192 Certificate serial: 0EAF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft Manifest number: 0EA0 Signing time: Fri 22 Aug 2025 17:48:20 +0000 Manifest this update: Fri 22 Aug 2025 17:48:19 +0000 Manifest next update: Fri 29 Aug 2025 17:48:19 +0000 Files and hashes: 1: 0AZhDr1oKXhFffitopEQATORAZI.crl (hash: 38z/Lzr7Ux9RafcD8dbjkMo0DMOHtYa91YOU7Zptu2c=) 2: CBD704945F5F11EFB99ABA76C4F9AE02.roa (hash: FyQYY0MU08e6kSNLp/WlThzg7KnlPeR081y6rj64cL8=) 3: 42431FFC8FF711EEA0FC990FC4F9AE02.roa (hash: YFP7eBTQi2LSXP0RAmqpULUvPlrkmlQWua4tsLRcOaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:48:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3759 (0xeaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153A6E, serialNumber=D006610EBD682978457DF8ADA291100133910192 Validity Not Before: Aug 22 17:48:19 2025 GMT Not After : Aug 29 17:48:19 2025 GMT Subject: CN=68a8ad63-de80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f8:2c:95:9b:c6:2f:0a:30:c9:14:28:d2:b1: 24:e2:97:00:0e:07:23:a9:37:89:e8:9f:57:c6:d2: 19:70:06:77:fa:23:43:a6:cd:f1:bb:f6:b5:6d:15: 8c:b7:68:35:ff:c6:00:a4:38:82:da:44:4e:79:c2: c2:cb:a3:d0:7c:c8:f9:e2:e0:56:4b:a6:73:a4:be: 95:5b:a3:5a:98:ab:98:04:43:8e:dc:e3:0b:51:52: 83:4c:e6:b2:31:d5:3b:9b:5e:83:77:2b:44:ee:d2: d6:e0:3c:28:04:cc:51:e5:ed:7c:72:16:92:bc:89: 68:f6:83:97:6c:05:70:e9:a8:de:5a:8c:3e:69:ee: c8:01:f6:a9:09:89:8e:ad:18:88:64:95:db:23:47: da:a1:17:cd:84:bc:94:71:3f:2e:b5:8d:6c:03:88: 0f:15:31:98:c0:25:bd:84:05:16:c5:f1:4f:57:ca: cf:88:bc:a1:e4:15:3f:46:bb:68:36:d5:96:08:21: 15:5b:66:e3:08:23:85:e1:fc:fa:0a:a6:f7:e3:9d: d5:87:35:93:fa:b4:74:a8:38:5f:17:fa:2d:07:a8: 8f:a9:e3:fb:0a:ad:03:af:f2:be:29:6e:31:79:aa: c1:77:39:5d:a8:08:33:76:d8:98:35:2d:0f:12:85: a5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:21:02:56:DC:9D:27:3A:5E:52:1C:93:D4:C0:7B:47:CE:EC:9B:E3 X509v3 Authority Key Identifier: keyid:D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:0d:e5:c1:5c:dc:ed:ab:fb:48:e1:a6:da:f0:a3:bc:74:9d: 25:54:5c:eb:6f:0d:58:c5:3a:ad:30:1e:7e:45:7d:32:47:fc: d6:43:3a:ff:99:07:9d:a2:e6:37:0b:85:0a:14:28:9f:78:31: 85:3f:12:ad:a4:0a:72:75:ba:81:5a:2b:4b:9c:16:f7:98:5d: ac:b1:37:59:4a:78:99:f7:69:0c:54:bd:99:83:a0:29:06:05: e8:e0:ef:ba:db:6b:a4:50:b2:6e:b0:e4:4f:51:9e:8c:4a:a5: 9a:97:c2:da:9a:bb:3b:a0:d4:81:eb:98:9c:f0:81:4f:0c:83: b9:2d:4c:ce:38:29:0d:1e:63:9a:51:e8:be:05:55:d8:f3:47: 0c:b4:d1:06:20:c3:0b:6f:08:ab:8b:da:fb:3e:54:b7:7b:33: 23:f8:07:44:fb:99:e3:0f:1c:03:42:2e:8d:0e:f3:fe:47:ae: 05:a4:c2:d8:60:9d:bf:b2:ad:11:d5:b6:77:4e:d4:fd:bb:2f: 08:9a:f3:e0:90:77:8a:bf:0e:0d:e9:5a:87:61:0e:83:7f:da: be:ea:7e:8b:aa:61:c1:b6:b6:90:6c:f5:10:e9:9d:1a:da:b7: e4:5a:84:3f:2e:c6:85:c9:85:22:25:3f:a5:52:71:4d:50:55: bc:5c:c8:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBNkUxMTAvBgNVBAUTKEQwMDY2MTBFQkQ2ODI5Nzg0NTdERjhBREEyOTExMDAx MzM5MTAxOTIwHhcNMjUwODIyMTc0ODE5WhcNMjUwODI5MTc0ODE5WjAYMRYwFAYD VQQDEw02OGE4YWQ2My1kZTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPgslZvGLwowyRQo0rEk4pcADgcjqTeJ6J9XxtIZcAZ3+iNDps3xu/a1bRWM t2g1/8YApDiC2kROecLCy6PQfMj54uBWS6ZzpL6VW6NamKuYBEOO3OMLUVKDTOay MdU7m16DdytE7tLW4DwoBMxR5e18chaSvIlo9oOXbAVw6ajeWow+ae7IAfapCYmO rRiIZJXbI0faoRfNhLyUcT8utY1sA4gPFTGYwCW9hAUWxfFPV8rPiLyh5BU/Rrto NtWWCCEVW2bjCCOF4fz6Cqb3453VhzWT+rR0qDhfF/otB6iPqeP7Cq0Dr/K+KW4x earBdzldqAgzdtiYNS0PEoWlKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKohAlbc nSc6XlIck9TAe0fO7JvjMB8GA1UdIwQYMBaAFNAGYQ69aCl4RX34raKREAEzkQGS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0E2RS83OUVDRTgzODk4 QkQxMUU5QUM5OUU3NEVDNEY5QUUwMi8wQVpoRHIxb0tYaEZmZml0b3BFUUFUT1JB WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBBWmhEcjFvS1hoRmZmaXRvcEVRQVRPUkFaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0E2RS83OUVDRTgzODk4QkQxMUU5QUM5OUU3NEVDNEY5QUUwMi8wQVpoRHIxb0tY aEZmZml0b3BFUUFUT1JBWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgDeXBXNztq/tI4aba8KO8dJ0lVFzrbw1YxTqtMB5+RX0yR/zWQzr/ mQedouY3C4UKFCifeDGFPxKtpApydbqBWitLnBb3mF2ssTdZSniZ92kMVL2Zg6Ap BgXo4O+622ukULJusORPUZ6MSqWal8Lamrs7oNSB65ic8IFPDIO5LUzOOCkNHmOa Uei+BVXY80cMtNEGIMMLbwiri9r7PlS3ezMj+AdE+5njDxwDQi6NDvP+R64FpMLY YJ2/sq0R1bZ3TtT9uy8ImvPgkHeKvw4N6VqHYQ6Df9q+6n6LqmHBtraQbPUQ6Z0a 2rfkWoQ/LsaFyYUiJT+lUnFNUFW8XMij -----END CERTIFICATE-----Generated at Sun Aug 24 00:10:33 2025 by rpki-client