$ rpki-client -vvf rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft File: 1ppgVl8zchSc5uL8nnI9SQZ2doo.mft (raw, json) Hash identifier: U5amU9iXwY1svBXgvBjsDW6AeLl+NFsELAvqKDR3m/U= Subject key identifier: 77:F0:13:C5:ED:98:AC:B4:8E:6B:2B:87:5F:77:A3:9B:A4:34:38:03 Authority key identifier: D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A Certificate issuer: /CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Certificate serial: 34AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft Manifest number: 34AF Signing time: Fri 22 Aug 2025 15:00:08 +0000 Manifest this update: Fri 22 Aug 2025 15:00:08 +0000 Manifest next update: Fri 29 Aug 2025 15:00:08 +0000 Files and hashes: 1: 1ppgVl8zchSc5uL8nnI9SQZ2doo.crl (hash: bQT37wNNZXoygPsiYG+z0vV0XtgheHJWkuHBgctjLq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13487 (0x34af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185F7D, serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Validity Not Before: Aug 22 15:00:08 2025 GMT Not After : Aug 29 15:00:08 2025 GMT Subject: CN=68a885f8-77c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c1:28:d4:59:c8:4e:64:26:b3:90:65:2e:82: 52:c6:e9:41:28:f9:51:e2:76:f8:2b:c8:5d:09:35: 70:8b:0e:80:1c:35:b5:8f:ce:6c:53:8f:9b:18:64: 3c:a0:13:48:08:d5:7e:36:c7:b7:f7:f2:d1:62:5c: 59:ac:28:e7:8b:86:89:d5:47:ca:f6:18:28:e4:1e: 50:47:47:66:b7:3c:8c:7e:3c:e3:6b:14:9e:71:cc: 41:d4:55:a1:2e:02:cf:1a:a3:88:8a:96:4f:a9:9e: 7e:d8:35:a1:38:41:ea:44:88:b9:b8:03:63:b6:89: 1f:08:47:fd:4b:2a:79:5f:a3:26:e6:93:72:ed:17: c8:9a:f1:46:5f:1d:9a:ca:71:29:73:01:87:de:f5: 50:d2:04:6d:57:07:57:42:a7:22:b9:ff:8a:a2:3c: 14:01:b3:1b:c9:a8:6e:fa:58:14:cc:83:18:50:da: 10:64:f8:fa:41:64:37:a4:77:91:ed:d2:28:44:89: a0:cf:e8:af:72:64:2d:08:c3:e0:be:b5:c8:6d:50: a4:40:11:0e:bf:17:f5:42:c5:a9:dd:01:0e:53:92: 87:da:5d:b6:af:89:53:34:53:b9:65:75:be:a1:31: 3d:c1:fb:5a:76:53:5a:1d:77:e5:fd:5a:44:73:3b: d0:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:F0:13:C5:ED:98:AC:B4:8E:6B:2B:87:5F:77:A3:9B:A4:34:38:03 X509v3 Authority Key Identifier: keyid:D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:c0:c9:ba:03:14:ed:1d:1c:80:58:6e:7e:09:03:e8:ec:ef: c4:1b:6e:65:eb:ba:ec:d3:39:19:ae:4b:17:3a:ad:c2:41:23: b3:a9:14:3a:3e:7e:57:5e:19:a7:a7:b3:83:f0:38:7d:ee:9a: 71:90:d9:a8:51:c0:71:6d:c2:6a:7f:24:ad:c4:6b:4a:b0:33: ec:9c:67:fb:19:e7:93:98:81:58:31:a3:71:36:dc:fe:52:c5: ca:b6:8c:ef:9e:9d:79:e7:ee:8d:08:f0:e1:07:f1:79:41:68: 4b:a4:37:81:fb:bc:a8:62:9d:08:a6:df:29:57:38:29:c7:a3: 36:57:e5:13:2e:cf:38:20:63:7b:cf:a9:5e:90:8f:44:b7:23: 8b:b5:4c:74:d3:30:5d:b1:65:7d:70:92:24:3a:b2:a9:1a:9d: 1a:a7:52:28:af:7f:8c:f0:e1:fe:4e:1d:ab:9c:b7:22:b2:4a: 44:01:b0:6f:6d:b8:17:ad:22:64:8f:ca:4e:70:40:30:ca:8b: aa:6f:d5:3e:b0:a9:68:12:08:f9:cb:28:e8:96:cb:24:47:7b: 28:32:b0:60:95:78:13:64:c4:eb:b8:07:97:63:ab:7c:cb:7b: 0e:e7:1b:ea:0e:1d:52:dc:40:d3:b4:be:26:64:e8:b6:91:c5: 1c:6b:07:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGN0QxMTAvBgNVBAUTKEQ2OUE2MDU2NUYzMzcyMTQ5Q0U2RTJGQzlFNzIzRDQ5 MDY3Njc2OEEwHhcNMjUwODIyMTUwMDA4WhcNMjUwODI5MTUwMDA4WjAYMRYwFAYD VQQDEw02OGE4ODVmOC03N2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcEo1FnITmQms5BlLoJSxulBKPlR4nb4K8hdCTVwiw6AHDW1j85sU4+bGGQ8 oBNICNV+Nse39/LRYlxZrCjni4aJ1UfK9hgo5B5QR0dmtzyMfjzjaxSeccxB1FWh LgLPGqOIipZPqZ5+2DWhOEHqRIi5uANjtokfCEf9Syp5X6Mm5pNy7RfImvFGXx2a ynEpcwGH3vVQ0gRtVwdXQqciuf+KojwUAbMbyahu+lgUzIMYUNoQZPj6QWQ3pHeR 7dIoRImgz+ivcmQtCMPgvrXIbVCkQBEOvxf1QsWp3QEOU5KH2l22r4lTNFO5ZXW+ oTE9wftadlNaHXfl/VpEczvQhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfwE8Xt mKy0jmsrh193o5ukNDgDMB8GA1UdIwQYMBaAFNaaYFZfM3IUnObi/J5yPUkGdnaK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUY3RC82OTc1M0Y1ODFE OUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNoU2M1dUw4bm5JOVNRWjJk b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwcGdWbDh6Y2hTYzV1TDhubkk5U1FaMmRvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUY3RC82OTc1M0Y1ODFEOUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNo U2M1dUw4bm5JOVNRWjJkb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNwMm6AxTtHRyAWG5+CQPo7O/EG25l67rs0zkZrksXOq3CQSOzqRQ6 Pn5XXhmnp7OD8Dh97ppxkNmoUcBxbcJqfyStxGtKsDPsnGf7GeeTmIFYMaNxNtz+ UsXKtozvnp155+6NCPDhB/F5QWhLpDeB+7yoYp0Ipt8pVzgpx6M2V+UTLs84IGN7 z6lekI9EtyOLtUx00zBdsWV9cJIkOrKpGp0ap1Ior3+M8OH+Th2rnLciskpEAbBv bbgXrSJkj8pOcEAwyouqb9U+sKloEgj5yyjolsskR3soMrBglXgTZMTruAeXY6t8 y3sO5xvqDh1S3EDTtL4mZOi2kcUcaweB -----END CERTIFICATE-----Generated at Sat Aug 23 16:03:13 2025 by rpki-client