$ rpki-client -vvf rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.mft File: _fz0IvXEZi3h5GQ6JxwEax4hxK0.mft (raw, json) Hash identifier: woi4uXwB2DngxTTqR+96uTds+G1Ntj76Z/p5Fyju//g= Subject key identifier: 22:6A:61:01:88:1C:4A:0D:58:7E:EC:C3:84:9C:73:48:9D:AD:14:E7 Authority key identifier: FD:FC:F4:22:F5:C4:66:2D:E1:E4:64:3A:27:1C:04:6B:1E:21:C4:AD Certificate issuer: /CN=A9125A95/serialNumber=FDFCF422F5C4662DE1E4643A271C046B1E21C4AD Certificate serial: 0457 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_fz0IvXEZi3h5GQ6JxwEax4hxK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.mft Manifest number: 0453 Signing time: Mon 11 Aug 2025 00:23:43 +0000 Manifest this update: Mon 11 Aug 2025 00:23:42 +0000 Manifest next update: Mon 18 Aug 2025 00:23:42 +0000 Files and hashes: 1: _fz0IvXEZi3h5GQ6JxwEax4hxK0.crl (hash: w5Mcxh/BJdo0fTjd2U/VwYco6f9u/mYXAaqTlt0MYDU=) 2: AF506F14630811EC97879243C4F9AE02.roa (hash: 2rxDZmn8FcPG24Wlb4Jg090ASKMT6CB+r3+3kvhWtoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.crl rsync://rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_fz0IvXEZi3h5GQ6JxwEax4hxK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 00:23:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1111 (0x457) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125A95, serialNumber=FDFCF422F5C4662DE1E4643A271C046B1E21C4AD Validity Not Before: Aug 11 00:23:42 2025 GMT Not After : Aug 18 00:23:42 2025 GMT Subject: CN=6899380e-7f13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:34:d9:8f:23:7f:2d:1b:97:80:81:a5:75:e5: 95:48:90:63:24:c7:bd:75:15:42:76:f6:3d:9a:4b: 52:50:75:cc:c0:1f:50:57:4f:99:2a:16:05:81:3f: 69:2d:22:35:84:d1:6c:64:7f:6e:78:5e:8c:50:d7: 4a:5e:69:65:b1:9d:f7:60:bf:90:00:80:c6:79:41: 60:c6:0c:e3:d4:56:70:97:68:4a:79:96:97:eb:53: a0:72:e1:3f:d2:bc:3d:11:06:6c:d2:58:62:84:8f: e9:de:1e:68:83:22:c7:98:7e:d9:93:44:5c:1e:bb: 62:a6:23:25:fe:9c:9f:fb:af:86:74:03:44:7b:c6: 31:ff:24:41:4c:2a:2a:c9:ba:d8:3b:e3:c2:dc:1e: e5:f4:21:8c:34:0c:da:87:03:f7:b0:7c:1f:18:47: 8d:6a:9e:e1:cc:6d:7e:31:2b:7e:41:20:65:a2:20: 11:cb:3e:be:64:21:61:b6:60:d4:be:21:24:8a:3b: 44:af:d2:73:c2:a3:59:31:64:7c:58:87:63:8d:e4: 68:7e:51:92:1f:3f:3b:1e:08:2b:77:9f:63:8c:eb: e3:34:54:b8:b9:7e:e5:ec:7c:1d:d7:cf:09:32:99: 8e:22:92:5f:7c:ce:97:37:60:49:9f:94:04:58:af: 5d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:6A:61:01:88:1C:4A:0D:58:7E:EC:C3:84:9C:73:48:9D:AD:14:E7 X509v3 Authority Key Identifier: keyid:FD:FC:F4:22:F5:C4:66:2D:E1:E4:64:3A:27:1C:04:6B:1E:21:C4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_fz0IvXEZi3h5GQ6JxwEax4hxK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125A95/AA60C8EC617211ECA3172086C4F9AE02/_fz0IvXEZi3h5GQ6JxwEax4hxK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:cf:27:b4:76:63:9a:1f:34:35:43:0a:ca:78:74:b8:ce:cb: c0:18:d1:67:1b:45:26:a4:2e:34:89:b3:0d:9b:8c:3a:06:29: 0f:63:84:34:54:ce:fa:b7:d4:36:6a:45:d1:d1:06:81:2e:25: 34:06:21:da:1c:52:0a:ba:bf:7e:f1:48:76:52:d7:56:7d:0b: b4:b9:9f:d9:fd:da:76:61:e1:b2:0f:c8:bc:7d:c6:33:8e:66: 2b:2f:02:13:a3:cc:f7:71:83:f0:cb:47:e0:0b:2b:b9:76:ac: 76:22:b8:20:11:4f:e7:fd:1f:d8:cf:cc:5f:19:b0:30:27:07: 0c:02:01:2a:3c:fe:c4:62:a0:a2:42:f3:8e:64:bd:ed:3e:a3: c0:1d:d4:e2:7e:86:5f:90:55:88:0d:85:91:01:e0:88:c7:e3: ff:0f:d6:07:24:ff:8f:72:ac:24:09:f3:26:c2:87:df:83:a6: 2e:3e:92:df:9a:45:be:70:ff:a8:e0:ea:9a:3d:6f:a1:aa:a8: 98:fd:ac:38:de:11:23:1e:0d:97:fd:15:37:74:98:2e:78:2c: c6:97:2c:7a:20:34:8f:f2:71:f6:23:03:21:e0:8e:81:8d:de: 7b:9f:24:39:ae:a0:e4:1e:d5:a3:c1:07:3a:11:ac:0d:a6:d4: 1c:bb:56:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVBOTUxMTAvBgNVBAUTKEZERkNGNDIyRjVDNDY2MkRFMUU0NjQzQTI3MUMwNDZC MUUyMUM0QUQwHhcNMjUwODExMDAyMzQyWhcNMjUwODE4MDAyMzQyWjAYMRYwFAYD VQQDEw02ODk5MzgwZS03ZjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzzTZjyN/LRuXgIGldeWVSJBjJMe9dRVCdvY9mktSUHXMwB9QV0+ZKhYFgT9p LSI1hNFsZH9ueF6MUNdKXmllsZ33YL+QAIDGeUFgxgzj1FZwl2hKeZaX61OgcuE/ 0rw9EQZs0lhihI/p3h5ogyLHmH7Zk0RcHrtipiMl/pyf+6+GdANEe8Yx/yRBTCoq ybrYO+PC3B7l9CGMNAzahwP3sHwfGEeNap7hzG1+MSt+QSBloiARyz6+ZCFhtmDU viEkijtEr9JzwqNZMWR8WIdjjeRoflGSHz87Hggrd59jjOvjNFS4uX7l7Hwd188J MpmOIpJffM6XN2BJn5QEWK9dKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJqYQGI HEoNWH7sw4Scc0idrRTnMB8GA1UdIwQYMBaAFP389CL1xGYt4eRkOiccBGseIcSt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUE5NS9BQTYwQzhFQzYx NzIxMUVDQTMxNzIwODZDNEY5QUUwMi9fZnowSXZYRVppM2g1R1E2Snh3RWF4NGh4 SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19mejBJdlhFWmkzaDVHUTZKeHdFYXg0aHhLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUE5NS9BQTYwQzhFQzYxNzIxMUVDQTMxNzIwODZDNEY5QUUwMi9fZnowSXZYRVpp M2g1R1E2Snh3RWF4NGh4SzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOzye0dmOaHzQ1QwrKeHS4zsvAGNFnG0UmpC40ibMNm4w6BikPY4Q0 VM76t9Q2akXR0QaBLiU0BiHaHFIKur9+8Uh2UtdWfQu0uZ/Z/dp2YeGyD8i8fcYz jmYrLwITo8z3cYPwy0fgCyu5dqx2IrggEU/n/R/Yz8xfGbAwJwcMAgEqPP7EYqCi QvOOZL3tPqPAHdTifoZfkFWIDYWRAeCIx+P/D9YHJP+PcqwkCfMmwoffg6YuPpLf mkW+cP+o4OqaPW+hqqiY/aw43hEjHg2X/RU3dJgueCzGlyx6IDSP8nH2IwMh4I6B jd57nyQ5rqDkHtWjwQc6EawNptQcu1a6 -----END CERTIFICATE-----Generated at Wed Aug 13 00:32:20 2025 by rpki-client