$ rpki-client -vvf rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft File: 1m4Cgid2-1UUPQyeVJAyhlal4I0.mft (raw, json) Hash identifier: FkxTdn/ra+Pep2MB8mxY1fRSKEty4bu7ZtTHpZZDtWE= Subject key identifier: 94:D2:1B:3A:A8:AD:35:73:F6:7D:85:4C:4C:66:3B:08:A6:BF:99:D2 Authority key identifier: D6:6E:02:82:27:76:FB:55:14:3D:0C:9E:54:90:32:86:56:A5:E0:8D Certificate issuer: /CN=A9123180/serialNumber=D66E02822776FB55143D0C9E5490328656A5E08D Certificate serial: 0C61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1m4Cgid2-1UUPQyeVJAyhlal4I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft Manifest number: 0C59 Signing time: Fri 08 Aug 2025 18:42:27 +0000 Manifest this update: Fri 08 Aug 2025 18:42:27 +0000 Manifest next update: Fri 15 Aug 2025 18:42:27 +0000 Files and hashes: 1: 1m4Cgid2-1UUPQyeVJAyhlal4I0.crl (hash: 3LCCgoX/2rXbq0YMfejmfDBliL17YJEnaj0/MNHFNUQ=) 2: 0EE3438A07FC11EABAD90A47C4F9AE02.roa (hash: o6uzXxi45nuYDCicVYaDwUO/XE7Lp0WVGghWkgO8ZII=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.crl rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1m4Cgid2-1UUPQyeVJAyhlal4I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3169 (0xc61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123180, serialNumber=D66E02822776FB55143D0C9E5490328656A5E08D Validity Not Before: Aug 8 18:42:27 2025 GMT Not After : Aug 15 18:42:27 2025 GMT Subject: CN=68964513-24b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d5:c8:2a:d5:fa:bb:aa:96:3c:2e:88:8c:09: d0:66:c3:f8:2d:71:a2:44:34:76:40:38:e3:c3:81: 42:49:46:1e:00:a0:cc:3e:cb:55:53:dc:36:46:d7: 1d:66:8e:c0:42:57:72:27:ca:ca:aa:d5:36:01:b5: 0f:7b:dd:53:4e:c6:d2:73:33:63:28:bd:90:39:e6: a5:a0:76:47:59:e4:6d:38:71:5d:e0:31:90:52:f8: b9:13:ca:e4:ce:47:ba:ac:5a:53:c8:7f:4d:86:7d: 51:59:86:c3:56:03:7d:db:6e:ba:ae:2a:27:60:6a: cc:f1:f4:22:4f:cf:79:e9:db:15:c5:96:76:5f:31: 0e:ff:16:ab:44:53:da:9e:b1:85:5f:dd:d1:4c:76: ff:5d:f1:69:18:cf:83:93:e4:71:ce:c3:cd:78:aa: de:26:82:6d:64:48:dd:a1:4c:62:a4:55:92:cc:f6: de:04:2a:b6:4f:77:60:ab:4d:87:66:db:71:81:14: 1b:0f:b0:b3:08:79:56:c8:f9:2f:5f:5c:74:ec:bd: f5:6c:5a:a7:09:7f:3c:e8:b3:7c:41:bd:97:12:08: 03:b9:28:8e:52:b2:26:26:f6:ac:e8:75:01:38:df: 45:46:42:70:ad:45:58:d3:09:dd:4d:06:e3:b6:ad: 7e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:D2:1B:3A:A8:AD:35:73:F6:7D:85:4C:4C:66:3B:08:A6:BF:99:D2 X509v3 Authority Key Identifier: keyid:D6:6E:02:82:27:76:FB:55:14:3D:0C:9E:54:90:32:86:56:A5:E0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1m4Cgid2-1UUPQyeVJAyhlal4I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123180/30569DB007FB11EA9B34CC45C4F9AE02/1m4Cgid2-1UUPQyeVJAyhlal4I0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:7c:92:b1:7e:51:dd:35:76:ea:c8:ef:98:fc:80:fc:c3:42: a8:8e:a9:e9:6f:e4:05:e9:c7:ab:95:ba:66:2c:0c:5a:1c:ca: a4:31:f7:a5:45:33:58:a2:d6:92:42:e8:8e:26:41:5d:eb:be: cc:78:e1:1e:23:99:07:37:46:87:44:18:ae:a1:97:18:2f:77: 14:6d:1b:43:20:67:94:a9:e7:e0:f2:26:04:e4:a7:9b:66:a4: d7:84:19:63:cd:60:e2:e5:c5:d3:c4:1c:d2:09:d0:8d:08:0d: 1f:90:a7:d1:81:f7:27:99:7f:33:a0:a9:cf:64:d2:b6:3d:e2: af:ee:2f:28:60:08:39:97:5d:11:00:46:1e:92:44:cb:f3:2b: 4d:69:d2:2e:96:63:8f:cf:02:4b:7f:a5:ba:1f:97:98:6a:02: 8a:13:f0:47:29:26:c6:e8:af:de:ad:1b:f6:ba:01:fb:7c:1f: 1a:9d:83:78:55:10:42:9f:24:f0:15:1c:ce:d7:29:3f:1d:5a: f5:ac:7b:5b:88:47:57:89:4a:70:2a:3f:fa:06:0e:42:95:14: 83:2f:8a:c9:d1:96:e7:de:be:7f:69:4b:eb:82:6b:0c:4f:df: 95:fc:ec:22:f7:69:bb:40:21:70:33:06:05:0b:1d:ba:26:e9: 7d:90:83:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMxODAxMTAvBgNVBAUTKEQ2NkUwMjgyMjc3NkZCNTUxNDNEMEM5RTU0OTAzMjg2 NTZBNUUwOEQwHhcNMjUwODA4MTg0MjI3WhcNMjUwODE1MTg0MjI3WjAYMRYwFAYD VQQDEw02ODk2NDUxMy0yNGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9XIKtX6u6qWPC6IjAnQZsP4LXGiRDR2QDjjw4FCSUYeAKDMPstVU9w2Rtcd Zo7AQldyJ8rKqtU2AbUPe91TTsbSczNjKL2QOealoHZHWeRtOHFd4DGQUvi5E8rk zke6rFpTyH9Nhn1RWYbDVgN92266rionYGrM8fQiT8956dsVxZZ2XzEO/xarRFPa nrGFX93RTHb/XfFpGM+Dk+RxzsPNeKreJoJtZEjdoUxipFWSzPbeBCq2T3dgq02H ZttxgRQbD7CzCHlWyPkvX1x07L31bFqnCX886LN8Qb2XEggDuSiOUrImJvas6HUB ON9FRkJwrUVY0wndTQbjtq1+vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTSGzqo rTVz9n2FTExmOwimv5nSMB8GA1UdIwQYMBaAFNZuAoIndvtVFD0MnlSQMoZWpeCN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzE4MC8zMDU2OURCMDA3 RkIxMUVBOUIzNENDNDVDNEY5QUUwMi8xbTRDZ2lkMi0xVVVQUXllVkpBeWhsYWw0 STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFtNENnaWQyLTFVVVBReWVWSkF5aGxhbDRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzE4MC8zMDU2OURCMDA3RkIxMUVBOUIzNENDNDVDNEY5QUUwMi8xbTRDZ2lkMi0x VVVQUXllVkpBeWhsYWw0STAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcfJKxflHdNXbqyO+Y/ID8w0Kojqnpb+QF6cerlbpmLAxaHMqkMfel RTNYotaSQuiOJkFd677MeOEeI5kHN0aHRBiuoZcYL3cUbRtDIGeUqefg8iYE5Keb ZqTXhBljzWDi5cXTxBzSCdCNCA0fkKfRgfcnmX8zoKnPZNK2PeKv7i8oYAg5l10R AEYekkTL8ytNadIulmOPzwJLf6W6H5eYagKKE/BHKSbG6K/erRv2ugH7fB8anYN4 VRBCnyTwFRzO1yk/HVr1rHtbiEdXiUpwKj/6Bg5ClRSDL4rJ0Zbn3r5/aUvrgmsM T9+V/Owi92m7QCFwMwYFCx26Jul9kIPZ -----END CERTIFICATE-----Generated at Sat Aug 9 01:04:32 2025 by rpki-client