$ rpki-client -vvf rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft File: lMnUO1O12FDZjg2i1e88ThwxIEU.mft (raw, json) Hash identifier: WrREIZYXlHK2yelsSMmGLpKAPuorrgd/COJJnZOvsvs= Subject key identifier: 8B:52:EF:07:F5:4C:8B:57:C9:AC:F6:F0:AD:97:58:67:7B:1F:6E:86 Authority key identifier: 94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 Certificate issuer: /CN=A9120E21/serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Certificate serial: 1049 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft Manifest number: 1046 Signing time: Fri 08 Aug 2025 17:36:20 +0000 Manifest this update: Fri 08 Aug 2025 17:36:20 +0000 Manifest next update: Fri 15 Aug 2025 17:36:20 +0000 Files and hashes: 1: lMnUO1O12FDZjg2i1e88ThwxIEU.crl (hash: YicERE+RjYc3ruN3aOf1DS/urN/nNuwRQ+YRHMRpGms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4169 (0x1049) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120E21, serialNumber=94C9D43B53B5D850D98E0DA2D5EF3C4E1C312045 Validity Not Before: Aug 8 17:36:20 2025 GMT Not After : Aug 15 17:36:20 2025 GMT Subject: CN=68963594-0868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e5:2f:48:2a:74:08:c9:7c:46:90:7b:ef:3c: 9a:6d:40:d1:ff:34:b2:21:3a:85:6f:68:5e:83:73: 33:08:99:e7:b0:a4:0d:d4:2d:c4:7e:bf:c5:06:9c: e1:7f:8a:39:40:e8:9d:f3:9f:5f:61:e3:b4:2c:bd: dc:eb:fa:e0:83:ef:67:d7:3c:2b:18:ab:2b:d5:e1: 0a:b9:e0:d0:bd:a9:24:2d:63:73:3a:68:c6:4b:e9: 88:0d:27:f2:f7:7a:9c:a3:f1:2a:db:59:dc:cb:0c: fe:68:89:5a:1d:89:15:61:e8:bd:fc:9a:9b:b4:b6: ce:cf:09:f7:a9:19:ac:8c:d7:5f:6b:11:2a:30:86: cb:68:9d:d5:a6:d1:24:e4:5f:b1:09:7f:18:01:55: d4:d8:27:a6:3f:e2:9b:34:6e:71:44:95:06:0a:5d: 78:c9:5d:82:2d:bb:02:47:18:af:bf:dc:8f:4f:3f: c2:da:91:58:b1:1d:e6:81:00:b4:c7:85:75:cb:0d: 77:61:06:89:c2:87:1e:81:92:f8:08:1f:c3:ca:b7: 9a:a7:38:93:2e:43:e6:1b:1d:9b:14:9c:4d:74:6e: cc:02:4d:a6:e0:65:ee:00:be:50:c3:09:52:98:c7: 19:b6:3d:a8:06:df:03:b2:62:13:9d:a4:99:5a:9f: 3f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:52:EF:07:F5:4C:8B:57:C9:AC:F6:F0:AD:97:58:67:7B:1F:6E:86 X509v3 Authority Key Identifier: keyid:94:C9:D4:3B:53:B5:D8:50:D9:8E:0D:A2:D5:EF:3C:4E:1C:31:20:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMnUO1O12FDZjg2i1e88ThwxIEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120E21/A5E950D4427311E9BAC00065C4F9AE02/lMnUO1O12FDZjg2i1e88ThwxIEU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:98:69:44:c9:fd:e9:fa:c4:d4:e8:db:62:51:d0:21:dc:84: b0:33:ed:f9:0b:c2:b6:55:72:38:91:79:d4:e0:6c:5f:54:95: ef:3e:5b:d8:e2:aa:09:78:42:1f:2c:67:9d:23:7d:30:d3:de: 9b:de:e3:a3:38:7e:84:d9:dd:2c:4e:e6:86:90:6c:c1:07:92: 3b:60:cd:ba:04:95:db:ea:64:5e:28:88:b4:4a:71:4a:79:3c: 95:40:61:7f:9b:c2:74:22:b4:16:78:20:8a:28:fd:be:cc:e4: 5e:3d:38:58:5b:21:e5:7f:de:a3:1c:ef:77:37:60:f5:83:a9: 6a:cb:2a:50:a9:21:d2:90:ec:04:d5:76:aa:4b:67:dc:6a:eb: c0:1b:81:00:66:96:3a:a9:d0:a8:2b:8d:34:6c:14:04:56:fa: ec:3c:30:9f:60:fd:de:15:0a:c3:98:e3:03:ae:8f:da:fc:b5: 32:ff:fe:7b:e3:b7:56:bc:f4:43:92:cb:ed:c5:07:c5:bc:31: 07:f7:32:c0:fb:3a:38:83:e6:91:ba:b9:1a:5a:9a:9d:18:4a: b4:e5:9d:51:c4:6d:5f:63:51:83:fd:2e:54:fe:a7:25:54:28: 8f:41:1f:f7:85:34:69:64:fd:06:9c:da:cf:c2:80:fe:c7:ad: bf:c6:83:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBFMjExMTAvBgNVBAUTKDk0QzlENDNCNTNCNUQ4NTBEOThFMERBMkQ1RUYzQzRF MUMzMTIwNDUwHhcNMjUwODA4MTczNjIwWhcNMjUwODE1MTczNjIwWjAYMRYwFAYD VQQDEw02ODk2MzU5NC0wODY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeUvSCp0CMl8RpB77zyabUDR/zSyITqFb2heg3MzCJnnsKQN1C3Efr/FBpzh f4o5QOid859fYeO0LL3c6/rgg+9n1zwrGKsr1eEKueDQvakkLWNzOmjGS+mIDSfy 93qco/Eq21ncywz+aIlaHYkVYei9/JqbtLbOzwn3qRmsjNdfaxEqMIbLaJ3VptEk 5F+xCX8YAVXU2CemP+KbNG5xRJUGCl14yV2CLbsCRxivv9yPTz/C2pFYsR3mgQC0 x4V1yw13YQaJwocegZL4CB/DyreapziTLkPmGx2bFJxNdG7MAk2m4GXuAL5QwwlS mMcZtj2oBt8DsmITnaSZWp8/KwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItS7wf1 TItXyaz28K2XWGd7H26GMB8GA1UdIwQYMBaAFJTJ1DtTtdhQ2Y4NotXvPE4cMSBF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEUyMS9BNUU5NTBENDQy NzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJGRFpqZzJpMWU4OFRod3hJ RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNblVPMU8xMkZEWmpnMmkxZTg4VGh3eElFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEUyMS9BNUU5NTBENDQyNzMxMUU5QkFDMDAwNjVDNEY5QUUwMi9sTW5VTzFPMTJG RFpqZzJpMWU4OFRod3hJRVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYmGlEyf3p+sTU6NtiUdAh3ISwM+35C8K2VXI4kXnU4GxfVJXvPlvY 4qoJeEIfLGedI30w096b3uOjOH6E2d0sTuaGkGzBB5I7YM26BJXb6mReKIi0SnFK eTyVQGF/m8J0IrQWeCCKKP2+zORePThYWyHlf96jHO93N2D1g6lqyypQqSHSkOwE 1XaqS2fcauvAG4EAZpY6qdCoK400bBQEVvrsPDCfYP3eFQrDmOMDro/a/LUy//57 47dWvPRDksvtxQfFvDEH9zLA+zo4g+aRurkaWpqdGEq05Z1RxG1fY1GD/S5U/qcl VCiPQR/3hTRpZP0GnNrPwoD+x62/xoOC -----END CERTIFICATE-----Generated at Sun Aug 10 05:43:03 2025 by rpki-client