$ rpki-client -vvf rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft File: 84XzeRdwIPCIv3TaLANG2HnCKh0.mft (raw, json) Hash identifier: JNER8lcPGE5ePHGzwu7qRdmp8ecRLrK9YRlEPwy8+lk= Subject key identifier: 38:FC:F4:2A:F8:3A:E4:85:6A:6F:BD:03:35:9B:A2:98:22:EA:64:91 Authority key identifier: F3:85:F3:79:17:70:20:F0:88:BF:74:DA:2C:03:46:D8:79:C2:2A:1D Certificate issuer: /CN=A9112AD5/serialNumber=F385F379177020F088BF74DA2C0346D879C22A1D Certificate serial: 044E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft Manifest number: 044A Signing time: Thu 07 Aug 2025 00:48:50 +0000 Manifest this update: Thu 07 Aug 2025 00:48:50 +0000 Manifest next update: Thu 14 Aug 2025 00:48:50 +0000 Files and hashes: 1: 84XzeRdwIPCIv3TaLANG2HnCKh0.crl (hash: 7zhpqGHCHrXlH3ZiTD7lA/mBB/UNAcC1mxYjC6kpEwc=) 2: 3C09B1A2640F11ECBC536111C4F9AE02.roa (hash: x1o/7SXGT/4CedCgS5u41onm9GYNi5PSdU5ws280Sfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.crl rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 00:48:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1102 (0x44e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112AD5, serialNumber=F385F379177020F088BF74DA2C0346D879C22A1D Validity Not Before: Aug 7 00:48:50 2025 GMT Not After : Aug 14 00:48:50 2025 GMT Subject: CN=6893f7f2-544b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:99:2b:cd:18:f8:49:40:3e:98:89:d4:37:85: 00:b9:6e:81:ce:a9:d5:a0:d3:8a:87:b8:d5:1a:11: 90:93:75:53:d4:d5:f3:2b:f7:00:21:16:83:b5:ab: 0c:f3:30:e1:28:d4:31:47:1c:b4:65:38:e2:1e:4b: a4:33:6d:c8:d1:0a:56:54:b0:02:ef:21:aa:c3:c8: 8f:ca:61:1a:fd:61:66:44:08:3b:99:09:1b:76:f4: b4:68:01:01:b0:bd:b3:de:59:b2:a7:b5:9c:cc:47: 0f:e5:3e:1a:04:a9:a0:97:1c:63:34:cf:c6:42:a0: 4d:d1:3f:91:ed:d2:d4:db:d2:55:66:8a:61:aa:0d: 0b:88:76:46:ed:bb:b0:72:b1:50:be:c8:d2:e0:08: 8e:18:91:bf:e5:b4:d9:95:69:29:df:13:eb:a8:ce: 13:5e:de:c3:fb:e7:76:87:1b:b3:53:04:e0:22:ec: d3:5a:10:1f:b7:e4:fe:10:a1:31:8c:4a:d1:c5:95: 88:9a:76:14:78:a4:89:25:01:a6:78:95:75:7a:1d: 9f:f5:cc:45:ad:4d:00:07:e4:af:e6:bc:33:2a:6e: cc:af:2c:2d:39:b2:2d:68:b7:ee:4e:87:a6:79:3c: 97:eb:ca:ea:d0:63:cc:bd:a5:49:56:c3:40:29:f6: a5:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:FC:F4:2A:F8:3A:E4:85:6A:6F:BD:03:35:9B:A2:98:22:EA:64:91 X509v3 Authority Key Identifier: keyid:F3:85:F3:79:17:70:20:F0:88:BF:74:DA:2C:03:46:D8:79:C2:2A:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:dd:84:62:10:c3:6d:c3:2e:35:f7:16:f6:b2:8b:c4:c0:14: 69:15:0e:1c:77:2f:44:9d:e2:c3:07:b3:a6:67:d2:98:31:7a: 91:ae:fe:cf:94:49:13:f6:e3:da:5e:6a:b0:6f:ab:ee:1d:c5: bb:ce:e6:e9:08:c9:36:be:39:e4:e5:33:7c:99:c4:78:79:4c: 1d:77:ed:4a:04:23:7e:ff:c9:ef:e2:8c:fc:e3:94:82:44:59: 10:ab:df:15:65:43:3e:5e:7f:18:40:76:64:e9:6f:28:47:80: 2d:63:6f:75:52:8f:7a:26:b3:26:30:a4:32:d5:b3:84:20:fd: 3b:94:b7:42:60:5e:4d:a2:cb:4e:17:ee:c6:fc:97:da:90:f8: 7d:3b:30:b3:50:6b:4a:24:14:3d:bc:ac:f2:18:29:76:8c:1f: c1:7a:1b:4b:ea:a6:cf:0c:88:26:fa:bd:b5:ef:53:6d:72:bb: 05:00:93:33:02:38:c7:ed:0a:72:9b:b9:d4:2d:d0:43:05:bf: 3c:4f:8b:e9:ab:66:e6:ce:cd:fb:a7:c0:82:f8:7d:e7:00:0f: 37:6f:e8:cd:1e:bb:47:0c:67:60:51:a9:55:66:13:51:75:f8: 07:2f:36:1e:bf:d3:b3:92:14:67:95:78:ab:95:fc:3f:f2:77: 43:5b:7c:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBRDUxMTAvBgNVBAUTKEYzODVGMzc5MTc3MDIwRjA4OEJGNzREQTJDMDM0NkQ4 NzlDMjJBMUQwHhcNMjUwODA3MDA0ODUwWhcNMjUwODE0MDA0ODUwWjAYMRYwFAYD VQQDEw02ODkzZjdmMi01NDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8JkrzRj4SUA+mInUN4UAuW6BzqnVoNOKh7jVGhGQk3VT1NXzK/cAIRaDtasM 8zDhKNQxRxy0ZTjiHkukM23I0QpWVLAC7yGqw8iPymEa/WFmRAg7mQkbdvS0aAEB sL2z3lmyp7WczEcP5T4aBKmglxxjNM/GQqBN0T+R7dLU29JVZophqg0LiHZG7buw crFQvsjS4AiOGJG/5bTZlWkp3xPrqM4TXt7D++d2hxuzUwTgIuzTWhAft+T+EKEx jErRxZWImnYUeKSJJQGmeJV1eh2f9cxFrU0AB+Sv5rwzKm7MrywtObItaLfuToem eTyX68rq0GPMvaVJVsNAKfalTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDj89Cr4 OuSFam+9AzWbopgi6mSRMB8GA1UdIwQYMBaAFPOF83kXcCDwiL902iwDRth5wiod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkFENS9GNDc5NTgwRTY0 MEIxMUVDQUEyMjEwMEJDNEY5QUUwMi84NFh6ZVJkd0lQQ0l2M1RhTEFORzJIbkNL aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg0WHplUmR3SVBDSXYzVGFMQU5HMkhuQ0toMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkFENS9GNDc5NTgwRTY0MEIxMUVDQUEyMjEwMEJDNEY5QUUwMi84NFh6ZVJkd0lQ Q0l2M1RhTEFORzJIbkNLaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDA3YRiEMNtwy419xb2sovEwBRpFQ4cdy9EneLDB7OmZ9KYMXqRrv7P lEkT9uPaXmqwb6vuHcW7zubpCMk2vjnk5TN8mcR4eUwdd+1KBCN+/8nv4oz845SC RFkQq98VZUM+Xn8YQHZk6W8oR4AtY291Uo96JrMmMKQy1bOEIP07lLdCYF5NostO F+7G/JfakPh9OzCzUGtKJBQ9vKzyGCl2jB/BehtL6qbPDIgm+r2171NtcrsFAJMz AjjH7Qpym7nULdBDBb88T4vpq2bmzs37p8CC+H3nAA83b+jNHrtHDGdgUalVZhNR dfgHLzYev9OzkhRnlXirlfw/8ndDW3xz -----END CERTIFICATE-----Generated at Fri Aug 8 13:08:20 2025 by rpki-client