$ rpki-client -vvf rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft File: rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft (raw, json) Hash identifier: DX35khvONdJGNxu6e36ZEeGbheal8o3z3BF02LF26ZI= Subject key identifier: 9A:D6:F1:A2:57:2A:0B:70:F5:01:60:BE:85:C9:95:CF:5A:D9:42:92 Authority key identifier: AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 Certificate issuer: /CN=A9120974/serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Certificate serial: 107E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft Manifest number: 1078 Signing time: Fri 08 Aug 2025 17:34:17 +0000 Manifest this update: Fri 08 Aug 2025 17:34:17 +0000 Manifest next update: Fri 15 Aug 2025 17:34:17 +0000 Files and hashes: 1: rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl (hash: oFectDlK7Hx3LKR4iT8y1wkNaQM65ef7m500Uz9jBM0=) 2: CBAED530FE6A11ECAB640344C4F9AE02.roa (hash: 8EmwRqTTi0D6Jqb1QQoQFecB/Y41qpXK3rVqh44z4W0=) 3: 6B1B75BC756311EFB6C7E64CC4F9AE02.roa (hash: 7SbyZl6WzchDvPbf0/nq4tvYfqbtpgq7UAgLfrYKHTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4222 (0x107e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120974, serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Validity Not Before: Aug 8 17:34:17 2025 GMT Not After : Aug 15 17:34:17 2025 GMT Subject: CN=68963519-68a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:2d:04:55:60:2a:49:e4:d6:9a:fa:25:89:9a: 76:89:78:79:78:8e:49:cc:59:dd:2a:c4:ae:6c:10: 77:f2:ef:ab:16:6c:74:e0:18:d1:76:7f:60:9c:e8: bc:36:58:6e:4b:0d:79:f1:5e:55:98:3c:e7:c9:d7: 4e:c9:33:62:63:f4:1e:05:dc:71:36:07:9b:ac:e9: 4d:5e:41:97:a5:02:37:24:79:42:ff:0b:49:50:be: d9:7d:39:0c:42:22:a4:c9:58:3b:18:19:d2:b3:ae: 14:31:23:37:74:10:64:e0:28:f0:8d:3c:35:77:ab: 74:52:a5:c2:2d:7b:30:2e:89:da:e6:63:82:21:c4: ea:f3:32:93:ee:fb:47:72:41:03:38:32:18:6f:00: 94:9b:28:65:6f:9a:bf:86:0e:f8:76:84:ae:83:3a: b3:63:a8:44:49:f2:81:81:b2:a2:c6:22:9c:41:c5: cd:73:72:8b:51:b1:ad:57:98:32:9e:f0:3e:69:dc: 6a:c2:a4:b3:74:3d:4d:e5:a3:41:76:80:bd:9c:35: 8e:cf:12:1d:38:d1:8f:91:c1:e4:8f:6c:32:5b:ac: 04:4e:c3:a9:57:da:01:7f:e5:b7:94:ee:29:43:34: df:5c:11:50:f3:cd:66:81:3a:f3:a5:26:3c:0f:0e: 02:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D6:F1:A2:57:2A:0B:70:F5:01:60:BE:85:C9:95:CF:5A:D9:42:92 X509v3 Authority Key Identifier: keyid:AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:5b:f4:e8:5c:8c:a6:20:c0:1a:38:9c:01:fb:31:33:e2:f4: 9d:b9:9f:dd:be:e3:30:9d:44:3a:c1:09:cb:d0:58:d9:5b:30: 11:94:d4:86:8a:31:48:e6:ff:1b:62:41:54:9f:05:71:c3:21: 15:67:b7:9b:d7:29:b6:69:53:93:59:a8:89:c8:71:04:d6:56: 1a:bc:9e:91:75:59:6b:d0:d5:e1:42:23:79:02:ad:33:73:58: 52:d8:54:d8:f1:cd:e0:e9:e6:9e:fb:32:ee:d6:ac:28:5f:47: 9e:1a:24:10:05:50:e2:c0:76:9f:18:c0:d0:72:56:2a:ff:ce: b9:83:21:d3:7a:85:40:ee:ee:46:7d:1d:3a:6f:3c:04:39:8b: 3e:70:2f:7a:52:c9:43:f8:26:0b:c1:5b:86:bd:32:a8:fe:ea: d7:ad:23:3c:bf:a3:7c:ff:b1:89:41:ba:24:ec:6c:15:06:96: 15:c8:a7:a4:70:fc:7f:1a:17:b7:8f:0d:83:85:7b:de:0d:d0: af:0a:b3:bb:4d:5c:0b:2c:02:55:0d:28:f1:01:c4:92:65:f1: c1:de:58:28:a8:9f:33:c8:13:81:ab:b9:78:b5:4a:3f:af:35: b2:c3:f1:9a:40:87:3d:46:42:25:60:be:80:8f:95:6a:a0:4c: 68:f2:6f:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA5NzQxMTAvBgNVBAUTKEFDODg2NDI2MzgyNEVERTM2NTVCOTk3NDJERkIzOUU4 ODNCQjkxNDUwHhcNMjUwODA4MTczNDE3WhcNMjUwODE1MTczNDE3WjAYMRYwFAYD VQQDEw02ODk2MzUxOS02OGEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3y0EVWAqSeTWmvoliZp2iXh5eI5JzFndKsSubBB38u+rFmx04BjRdn9gnOi8 NlhuSw158V5VmDznyddOyTNiY/QeBdxxNgebrOlNXkGXpQI3JHlC/wtJUL7ZfTkM QiKkyVg7GBnSs64UMSM3dBBk4CjwjTw1d6t0UqXCLXswLona5mOCIcTq8zKT7vtH ckEDODIYbwCUmyhlb5q/hg74doSugzqzY6hESfKBgbKixiKcQcXNc3KLUbGtV5gy nvA+adxqwqSzdD1N5aNBdoC9nDWOzxIdONGPkcHkj2wyW6wETsOpV9oBf+W3lO4p QzTfXBFQ881mgTrzpSY8Dw4CmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrW8aJX Kgtw9QFgvoXJlc9a2UKSMB8GA1UdIwQYMBaAFKyIZCY4JO3jZVuZdC37OeiDu5FF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDk3NC9FMTA1QjNCQTNB NDkxMUU5OTQwRjJEMTZDNEY5QUUwMi9ySWhrSmpnazdlTmxXNWwwTGZzNTZJTzdr VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JJaGtKamdrN2VObFc1bDBMZnM1NklPN2tVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDk3NC9FMTA1QjNCQTNBNDkxMUU5OTQwRjJEMTZDNEY5QUUwMi9ySWhrSmpnazdl TmxXNWwwTGZzNTZJTzdrVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+W/ToXIymIMAaOJwB+zEz4vSduZ/dvuMwnUQ6wQnL0FjZWzARlNSG ijFI5v8bYkFUnwVxwyEVZ7eb1ym2aVOTWaiJyHEE1lYavJ6RdVlr0NXhQiN5Aq0z c1hS2FTY8c3g6eae+zLu1qwoX0eeGiQQBVDiwHafGMDQclYq/865gyHTeoVA7u5G fR06bzwEOYs+cC96UslD+CYLwVuGvTKo/urXrSM8v6N8/7GJQbok7GwVBpYVyKek cPx/Ghe3jw2DhXveDdCvCrO7TVwLLAJVDSjxAcSSZfHB3lgoqJ8zyBOBq7l4tUo/ rzWyw/GaQIc9RkIlYL6Aj5VqoExo8m87 -----END CERTIFICATE-----Generated at Sun Aug 10 18:14:37 2025 by rpki-client