$ rpki-client -vvf rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft File: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft (raw, json) Hash identifier: a3LTRYOeA+yLG3ri3wPCE18BP6yD3uw7P1epdqfS4mU= Subject key identifier: 13:6E:68:D2:3A:CD:AA:6B:57:B0:3F:0E:14:90:F5:31:CE:7C:6F:15 Authority key identifier: AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 Certificate issuer: /CN=A9123BFF/serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Certificate serial: 07A2 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft Manifest number: 079A Signing time: Wed 06 Aug 2025 16:02:41 +0000 Manifest this update: Wed 06 Aug 2025 16:02:41 +0000 Manifest next update: Wed 13 Aug 2025 16:02:41 +0000 Files and hashes: 1: r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl (hash: 0w0C31I/iRfjEF1d3Lhm8VmPGTUGgZM5ZdD0i1o8/jE=) 2: A3744A28149A11EDB9CF2F70C4F9AE02.roa (hash: ldhnqRcVbTxkt0kcgUABU1YyeJx0zAFYwLA5AA7ZzpY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 16:02:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1954 (0x7a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123BFF, serialNumber=AF4A3544C74B317A7C326AF0E8393CB9D5262032 Validity Not Before: Aug 6 16:02:41 2025 GMT Not After : Aug 13 16:02:41 2025 GMT Subject: CN=68937ca1-aa0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:14:c1:c4:7c:fb:b7:75:0d:08:56:79:7d:e2: 2a:3d:bc:c1:28:af:5f:ab:35:8e:a7:86:03:01:c0: 98:9b:b8:7d:fa:1f:ee:ba:31:7f:22:11:80:fb:83: e6:12:27:ab:49:2a:6d:b6:20:9f:a2:0d:59:8c:b5: 49:3b:d6:c3:97:65:64:11:a9:a6:78:d0:1a:36:6a: 79:b8:83:af:a4:23:b8:09:95:78:cb:92:80:4a:42: 44:46:bc:51:f6:9e:8b:6a:82:b0:39:df:dc:ee:7b: 46:40:61:dd:b7:18:ee:b9:72:e9:3e:5e:81:3e:df: 4b:95:c4:d2:4e:af:bc:69:94:a3:b6:c2:be:19:30: 6c:51:a9:02:86:2b:74:6d:52:eb:1e:e2:8d:97:89: 59:93:3f:13:48:6c:98:d3:f5:65:73:de:ba:0b:9c: 85:fc:67:55:26:25:9d:7b:58:5d:83:58:11:d4:a9: 70:00:e2:f5:04:e1:19:d1:c7:34:c2:77:77:bf:80: f1:2d:18:d9:67:f2:54:5e:2b:be:97:d4:e3:1f:0d: ad:20:a8:9f:a6:96:bc:c2:93:3a:2d:08:61:27:4f: 27:77:24:4d:e8:e7:2c:5e:4d:95:a8:c2:dd:73:1c: a8:f7:86:8d:97:ea:20:ab:6f:14:d7:36:06:71:2f: 6f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:6E:68:D2:3A:CD:AA:6B:57:B0:3F:0E:14:90:F5:31:CE:7C:6F:15 X509v3 Authority Key Identifier: keyid:AF:4A:35:44:C7:4B:31:7A:7C:32:6A:F0:E8:39:3C:B9:D5:26:20:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123BFF/0E2EF5341A6A11EB9FD2D363C4F9AE02/r0o1RMdLMXp8Mmrw6Dk8udUmIDI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:ef:d1:03:e2:f4:39:d3:b8:68:7e:34:f7:bb:47:ea:02:e3: fc:9d:e7:4c:63:30:b5:e0:55:6c:83:85:6b:66:38:9f:f5:52: f9:13:a7:8f:c7:4d:56:0d:5b:d6:ca:38:90:18:b8:a2:91:e1: 04:88:9d:95:01:f1:ce:00:62:f6:f6:2e:0c:d1:5d:7e:f8:b9: 54:71:44:6a:2e:eb:55:7d:28:62:c0:c8:f0:09:33:4f:5d:36: 6b:14:bd:31:f3:83:ba:2b:af:3e:39:10:ff:99:27:c3:a3:bc: 3d:32:05:29:d9:12:9e:37:9b:2f:cc:68:4e:03:7d:46:37:82: b8:9d:2b:3b:a8:87:5f:5d:8b:15:6c:67:49:af:a4:f3:72:85: cd:50:db:e1:63:55:c8:01:64:a1:ee:f4:59:19:a6:0c:68:45: 2c:4d:31:c1:7c:83:64:96:a6:b6:fa:ed:73:dc:57:06:c6:c1: d5:29:9a:86:4f:fc:d6:cc:e9:9a:a4:9b:e7:5e:f8:82:16:e2: 51:9e:68:5d:66:72:ac:b6:a0:14:8d:02:67:19:8a:72:bc:9c: 34:0d:cd:70:bb:48:98:6a:06:bc:da:3a:68:18:4d:79:30:e1: 2b:67:66:b1:88:3f:d7:42:eb:47:ee:69:30:e7:14:dc:a9:79: b2:0f:50:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNCRkYxMTAvBgNVBAUTKEFGNEEzNTQ0Qzc0QjMxN0E3QzMyNkFGMEU4MzkzQ0I5 RDUyNjIwMzIwHhcNMjUwODA2MTYwMjQxWhcNMjUwODEzMTYwMjQxWjAYMRYwFAYD VQQDEw02ODkzN2NhMS1hYTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhTBxHz7t3UNCFZ5feIqPbzBKK9fqzWOp4YDAcCYm7h9+h/uujF/IhGA+4Pm EierSSpttiCfog1ZjLVJO9bDl2VkEammeNAaNmp5uIOvpCO4CZV4y5KASkJERrxR 9p6LaoKwOd/c7ntGQGHdtxjuuXLpPl6BPt9LlcTSTq+8aZSjtsK+GTBsUakChit0 bVLrHuKNl4lZkz8TSGyY0/Vlc966C5yF/GdVJiWde1hdg1gR1KlwAOL1BOEZ0cc0 wnd3v4DxLRjZZ/JUXiu+l9TjHw2tIKifppa8wpM6LQhhJ08ndyRN6OcsXk2VqMLd cxyo94aNl+ogq28U1zYGcS9vfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNuaNI6 zaprV7A/DhSQ9THOfG8VMB8GA1UdIwQYMBaAFK9KNUTHSzF6fDJq8Og5PLnVJiAy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0JGRi8wRTJFRjUzNDFB NkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1YcDhNbXJ3NkRrOHVkVW1J REkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3IwbzFSTWRMTVhwOE1tcnc2RGs4dWRVbUlESS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy M0JGRi8wRTJFRjUzNDFBNkExMUVCOUZEMkQzNjNDNEY5QUUwMi9yMG8xUk1kTE1Y cDhNbXJ3NkRrOHVkVW1JREkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB679ED4vQ507hofjT3u0fqAuP8nedMYzC14FVsg4VrZjif9VL5E6eP x01WDVvWyjiQGLiikeEEiJ2VAfHOAGL29i4M0V1++LlUcURqLutVfShiwMjwCTNP XTZrFL0x84O6K68+ORD/mSfDo7w9MgUp2RKeN5svzGhOA31GN4K4nSs7qIdfXYsV bGdJr6TzcoXNUNvhY1XIAWSh7vRZGaYMaEUsTTHBfINklqa2+u1z3FcGxsHVKZqG T/zWzOmapJvnXviCFuJRnmhdZnKstqAUjQJnGYpyvJw0Dc1wu0iYaga82jpoGE15 MOErZ2axiD/XQutH7mkw5xTcqXmyD1DD -----END CERTIFICATE-----Generated at Thu Aug 7 01:12:08 2025 by rpki-client