$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft File: a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft (raw, json) Hash identifier: Oied2Utn0h5hPyGs80moH5ruAyubvJz1OzYRIyGdNgQ= Subject key identifier: E6:75:EC:6A:01:E2:B1:EF:10:6E:32:77:00:8D:64:7E:B9:B0:E8:2C Authority key identifier: 6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 Certificate issuer: /CN=A9120AAA/serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft Manifest number: 015D Signing time: Sat 09 Aug 2025 04:23:31 +0000 Manifest this update: Sat 09 Aug 2025 04:23:30 +0000 Manifest next update: Sat 16 Aug 2025 04:23:30 +0000 Files and hashes: 1: a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl (hash: xmzxq5AE22pT+Ppn37jxEAJTQ9gbVV4zhiYbmXSsExc=) 2: 8A389AC25C4811EEBE1CF06BC4F9AE02.roa (hash: 9QttLF7HMnJDx+HbQAXC0YtWXOJ+pz+cgouITeRm1GU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AAA, serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Validity Not Before: Aug 9 04:23:30 2025 GMT Not After : Aug 16 04:23:30 2025 GMT Subject: CN=6896cd42-3379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:18:c4:e6:b8:85:e0:a2:47:4e:5d:0b:92:48: 79:d2:0f:1a:e4:44:ca:39:7d:a4:1b:80:82:a1:9e: 65:df:c0:36:de:dc:97:1c:81:5a:fa:d2:69:81:d2: 81:f1:d3:29:ba:bb:17:e2:b1:10:ae:2c:f9:38:e3: 89:7a:50:04:a6:c8:98:65:7d:31:b8:af:2e:81:bf: 76:42:e1:bb:a2:05:b6:e6:66:a1:48:18:45:1f:af: c4:69:bc:fe:42:bd:1d:df:fd:98:3b:ed:be:c3:19: 3f:0a:c9:6e:22:2d:1a:ba:e2:9d:1f:9a:e8:0c:a2: 5e:bb:35:e8:ad:be:59:cd:3a:0a:1e:af:18:25:2f: d5:5c:b6:69:80:d7:27:9e:b2:6c:a3:cf:86:b1:db: f9:08:ea:57:40:7d:ae:60:ac:fa:64:3e:a3:16:19: c5:b9:7a:c5:f8:d5:cd:4e:25:4c:05:97:75:3f:19: 1c:11:f1:ad:c3:37:aa:d9:2d:b1:fc:09:88:e2:76: 8c:85:e6:b0:e1:b0:a7:b3:76:0a:55:b7:3b:89:67: be:6a:26:e7:4b:8c:17:ed:1e:b1:f4:b0:48:74:ee: 81:7e:e1:a8:10:a8:a2:6d:48:55:26:15:ea:bb:9b: f9:2f:20:5a:9c:23:19:4d:e3:15:f4:8a:2b:9a:1c: ad:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:75:EC:6A:01:E2:B1:EF:10:6E:32:77:00:8D:64:7E:B9:B0:E8:2C X509v3 Authority Key Identifier: keyid:6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:ef:90:15:0f:9e:31:e1:e4:b1:67:11:b6:15:50:6c:e5:6b: 12:d5:c6:2a:2a:fb:60:b7:05:5c:c9:7b:af:ef:2c:06:b2:76: 05:55:a1:c2:99:34:18:01:a0:7b:b9:cd:0f:4c:d7:31:b5:a6: fe:5a:34:3a:1b:f5:66:0d:d4:75:b6:c2:11:c3:96:df:02:b9: d6:73:f3:5c:6b:ea:89:ec:20:f1:8f:3d:8f:65:8e:dd:af:dd: 1d:41:06:2d:8a:30:93:67:03:4e:f7:0b:0c:a3:f6:58:ba:15: 04:22:17:13:03:2c:b5:d1:63:23:28:44:78:c0:f4:79:85:a9: 5d:78:6f:91:9c:45:de:f4:a0:70:2b:57:a1:97:e7:70:be:bd: 44:3b:74:db:aa:69:b7:35:9d:e1:71:76:d5:71:b9:b1:20:2d: f5:cc:20:fc:b7:f5:68:1a:92:0a:cf:07:d5:da:f2:fd:ec:38: 11:fd:0a:24:8f:0a:97:b8:db:ba:67:4a:d1:4d:8a:1d:3a:42: dc:89:2b:04:c1:d5:16:9e:76:2f:00:ed:e7:d4:16:39:ea:9b: 51:1c:41:ed:b7:b2:b0:4e:fc:10:0b:35:cf:89:fa:af:9e:e9: b6:ae:fb:d3:02:96:18:29:0b:d1:ed:45:21:fa:c7:a3:97:72: 80:e4:7e:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQUExMTAvBgNVBAUTKDZCNTcwOTMyOTBEMTFGNjVDRkI5MUYxMjEyQzI4Q0Y3 MzNGOUMyQjUwHhcNMjUwODA5MDQyMzMwWhcNMjUwODE2MDQyMzMwWjAYMRYwFAYD VQQDEw02ODk2Y2Q0Mi0zMzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqhjE5riF4KJHTl0Lkkh50g8a5ETKOX2kG4CCoZ5l38A23tyXHIFa+tJpgdKB 8dMpursX4rEQriz5OOOJelAEpsiYZX0xuK8ugb92QuG7ogW25mahSBhFH6/Eabz+ Qr0d3/2YO+2+wxk/CsluIi0auuKdH5roDKJeuzXorb5ZzToKHq8YJS/VXLZpgNcn nrJso8+Gsdv5COpXQH2uYKz6ZD6jFhnFuXrF+NXNTiVMBZd1PxkcEfGtwzeq2S2x /AmI4naMheaw4bCns3YKVbc7iWe+aibnS4wX7R6x9LBIdO6BfuGoEKiibUhVJhXq u5v5LyBanCMZTeMV9Iormhyt0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZ17GoB 4rHvEG4ydwCNZH65sOgsMB8GA1UdIwQYMBaAFGtXCTKQ0R9lz7kfEhLCjPcz+cK1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFBQS8wQ0E3N0M4MjVD NDcxMUVFQUE5RkU5NjZDNEY5QUUwMi9hMWNKTXBEUkgyWFB1UjhTRXNLTTl6UDV3 clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExY0pNcERSSDJYUHVSOFNFc0tNOXpQNXdyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFBQS8wQ0E3N0M4MjVDNDcxMUVFQUE5RkU5NjZDNEY5QUUwMi9hMWNKTXBEUkgy WFB1UjhTRXNLTTl6UDV3clUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD75AVD54x4eSxZxG2FVBs5WsS1cYqKvtgtwVcyXuv7ywGsnYFVaHC mTQYAaB7uc0PTNcxtab+WjQ6G/VmDdR1tsIRw5bfArnWc/Nca+qJ7CDxjz2PZY7d r90dQQYtijCTZwNO9wsMo/ZYuhUEIhcTAyy10WMjKER4wPR5haldeG+RnEXe9KBw K1ehl+dwvr1EO3Tbqmm3NZ3hcXbVcbmxIC31zCD8t/VoGpIKzwfV2vL97DgR/Qok jwqXuNu6Z0rRTYodOkLciSsEwdUWnnYvAO3n1BY56ptRHEHtt7KwTvwQCzXPifqv num2rvvTApYYKQvR7UUh+sejl3KA5H70 -----END CERTIFICATE-----Generated at Sun Aug 10 16:12:58 2025 by rpki-client