$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: FDpk7WSXPU7nVVVTkB51Rm5Ts1wKOIyAzoDKbBmnSWQ= Subject key identifier: 5E:24:46:B5:2B:82:6E:71:38:33:00:74:AD:C2:98:C6:13:85:C4:C6 Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 04E0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 04D5 Signing time: Sun 10 Aug 2025 23:55:53 +0000 Manifest this update: Sun 10 Aug 2025 23:55:53 +0000 Manifest next update: Sun 17 Aug 2025 23:55:53 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: eGKUKGUjbbCyDqx90KmYucyxBiwdEcqBRUF1vaZ2ZS4=) 2: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: 4FN1ls050r3VusXGiD5QsVc+2i8lsZWUOsjCg4ks1ns=) 3: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xSXFEgaEwRI11lRD4Ufv2Q0UsgFam8SFWBwH7ownsu0=) 4: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: XhD4C1tmuOJjIi4uib9jXt7/7FR/n9zJv0iU9Ika1Yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1248 (0x4e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Aug 10 23:55:53 2025 GMT Not After : Aug 17 23:55:53 2025 GMT Subject: CN=68993189-0470 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:04:bb:8d:b4:cb:a4:38:08:cc:dd:96:ac:f3: 8e:e5:f7:03:21:da:e7:f7:87:e6:c7:f0:6c:8a:43: bb:24:50:7c:14:0b:3a:4d:47:ac:90:b1:95:e0:52: 80:0a:e8:8c:c5:9f:f9:e7:c1:ce:aa:0c:4e:24:6c: b5:a7:cb:66:9a:2e:38:ac:e9:6c:4e:76:b5:b8:ec: 08:da:54:b4:e7:8b:44:ad:cd:65:c0:af:fb:23:1b: 8a:c2:29:79:7d:7a:fe:64:56:5c:aa:15:a9:06:ed: 5e:9e:ee:f5:61:f7:9b:42:6e:20:73:c1:9a:f5:60: 97:c8:a8:72:73:38:a9:aa:df:0f:5d:81:74:d9:87: 68:1b:6f:3b:03:45:da:0c:6e:4b:30:8d:6a:34:5f: e3:2d:76:fc:fe:80:f2:54:5a:b9:2b:c7:7e:f3:d8: a9:57:5f:08:22:97:5e:28:da:79:43:ff:91:0a:54: 5e:a9:60:b5:d3:bd:72:46:ef:a4:02:39:12:3d:1e: 73:c8:9c:e7:d9:55:23:6d:49:6b:9b:5f:36:9b:2c: f9:65:55:bc:f5:e0:a5:7d:eb:22:bf:c3:55:1a:61: cd:cb:03:a9:77:77:bb:23:9f:45:c9:74:4f:8b:1f: af:f7:67:a4:84:d6:d5:2e:a4:b5:66:a8:72:42:a6: 2f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:24:46:B5:2B:82:6E:71:38:33:00:74:AD:C2:98:C6:13:85:C4:C6 X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:94:98:20:8f:28:f7:cf:9f:37:1a:2f:4c:b4:62:05:af:d1: 30:d6:f8:7d:c7:b6:d3:09:82:24:7e:9a:c5:c3:b6:8b:d8:45: 66:89:a4:51:a9:de:c8:6d:84:56:b9:cd:27:00:46:5b:67:cb: fa:ca:27:7e:7b:3f:9d:b3:e5:46:55:fc:a3:82:d6:e4:b7:a8: 17:50:d6:9d:9f:a1:68:ea:f6:97:ae:42:6f:6b:b5:df:dd:90: 88:d9:3a:da:17:b6:50:ef:a7:27:b7:ac:c2:18:81:54:b2:79: 08:62:7d:70:c7:51:1c:52:88:f6:ea:1c:62:68:23:f7:fa:e8: c3:fe:f6:8d:7c:fb:e4:82:36:e1:a1:d1:1b:6f:27:41:a8:e3: 6e:81:1f:a5:f2:fb:c4:69:b3:fa:cb:7e:7d:2b:4e:66:8e:37: f0:7c:72:a3:1b:1d:d8:33:5f:0b:d0:95:29:eb:52:9e:32:b0: cd:43:7e:fb:b0:92:b5:24:f1:f6:43:37:f0:22:d6:16:4b:78: d0:aa:cc:89:36:b1:5b:8e:d9:25:e0:6b:9e:84:5e:bc:88:43: 04:05:90:b3:c4:a1:94:9a:a0:a1:0c:f2:01:aa:58:31:13:2d: cd:bf:68:6c:7b:26:e0:53:6b:1b:b8:79:ef:9f:95:65:5b:be: 6f:7e:07:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjUwODEwMjM1NTUzWhcNMjUwODE3MjM1NTUzWjAYMRYwFAYD VQQDEw02ODk5MzE4OS0wNDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4wS7jbTLpDgIzN2WrPOO5fcDIdrn94fmx/BsikO7JFB8FAs6TUeskLGV4FKA CuiMxZ/558HOqgxOJGy1p8tmmi44rOlsTna1uOwI2lS054tErc1lwK/7IxuKwil5 fXr+ZFZcqhWpBu1enu71YfebQm4gc8Ga9WCXyKhyczipqt8PXYF02YdoG287A0Xa DG5LMI1qNF/jLXb8/oDyVFq5K8d+89ipV18IIpdeKNp5Q/+RClReqWC1071yRu+k AjkSPR5zyJzn2VUjbUlrm182myz5ZVW89eClfesiv8NVGmHNywOpd3e7I59FyXRP ix+v92ekhNbVLqS1ZqhyQqYveQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF4kRrUr gm5xODMAdK3CmMYThcTGMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+lJggjyj3z583Gi9MtGIFr9Ew1vh9x7bTCYIkfprFw7aL2EVmiaRR qd7IbYRWuc0nAEZbZ8v6yid+ez+ds+VGVfyjgtbkt6gXUNadn6Fo6vaXrkJva7Xf 3ZCI2TraF7ZQ76cnt6zCGIFUsnkIYn1wx1EcUoj26hxiaCP3+ujD/vaNfPvkgjbh odEbbydBqONugR+l8vvEabP6y359K05mjjfwfHKjGx3YM18L0JUp61KeMrDNQ377 sJK1JPH2QzfwItYWS3jQqsyJNrFbjtkl4GuehF68iEMEBZCzxKGUmqChDPIBqlgx Ey3Nv2hseybgU2sbuHnvn5VlW75vfgf9 -----END CERTIFICATE-----Generated at Mon Aug 11 07:25:48 2025 by rpki-client