$ rpki-client -vvf rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft File: J_xj2GH0aU96L5UfsShH4H-qkHI.mft (raw, json) Hash identifier: kWrMrSkIR0yt4l25pvH34BuyTxW8zJbR3RW57QxNmZY= Subject key identifier: 07:79:D2:1E:4B:EA:B2:CC:C6:13:FE:B3:6E:43:93:92:41:E9:E6:4B Authority key identifier: 27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 Certificate issuer: /CN=A9125F95/serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Certificate serial: 1DAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft Manifest number: 1DA3 Signing time: Sun 10 Aug 2025 16:05:16 +0000 Manifest this update: Sun 10 Aug 2025 16:05:16 +0000 Manifest next update: Sun 17 Aug 2025 16:05:16 +0000 Files and hashes: 1: J_xj2GH0aU96L5UfsShH4H-qkHI.crl (hash: Tfoe2vOaggt6vPU8de0sShfDy+hdnWazBxn6vy7bewQ=) 2: A17F07705FA311EAB1BB612CC4F9AE02.roa (hash: syqFyO0I3Vmcn5bJeGcao6zGLsNLne0ee+UOpu0s0a0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7596 (0x1dac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125F95, serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Validity Not Before: Aug 10 16:05:16 2025 GMT Not After : Aug 17 16:05:16 2025 GMT Subject: CN=6898c33c-bf26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:80:dd:83:71:f2:65:97:30:7f:7a:2a:86:cc: 49:7b:4d:c1:e2:3d:6e:63:6f:7f:ad:0a:0d:59:44: ae:05:2b:f8:ea:70:46:36:04:7f:6d:e5:34:be:9c: 64:65:f3:da:72:fc:ce:b5:51:8f:1a:81:20:eb:79: 8a:6f:f3:c5:a9:c4:62:d0:2c:0f:b7:97:ea:b2:69: 21:0c:c3:16:94:b9:c4:97:c3:50:5a:d2:16:ac:30: 7a:25:8c:fc:ad:83:0d:2e:1c:c4:8c:22:a5:9f:44: f5:4a:42:0f:8a:ed:a2:f7:62:cc:a7:55:47:16:16: c5:df:fa:4a:a2:0c:0e:e6:e7:64:de:29:1e:b9:bb: 51:96:d2:4c:c2:e8:b9:f5:ca:b8:ec:fd:d2:a5:a3: a5:a5:1e:d5:46:65:56:ed:82:e9:6a:9e:14:90:6a: 51:7a:0c:f8:24:ed:83:e4:d2:36:e5:d1:98:31:8d: bb:27:33:b4:e7:a8:54:ce:75:40:c2:35:d8:4b:17: 48:ee:f6:ba:7e:4b:25:6e:61:44:ac:13:fa:e2:f4: d7:07:75:53:62:31:ec:2c:d2:84:73:c2:76:06:84: 0d:7c:74:c8:00:8a:7f:cc:fc:6e:f6:67:d7:c0:b6: 83:69:a8:1e:0c:58:8c:19:a2:78:a0:81:ae:6c:55: 57:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:79:D2:1E:4B:EA:B2:CC:C6:13:FE:B3:6E:43:93:92:41:E9:E6:4B X509v3 Authority Key Identifier: keyid:27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:41:b8:2a:4a:bc:51:37:43:a8:50:c6:70:94:0f:f1:3d:56: 05:b8:0f:0f:88:de:5d:e9:9f:4d:4f:b0:14:54:5b:93:28:3b: f7:af:e5:ca:aa:6e:1c:24:e8:2b:74:92:96:38:c2:df:e0:67: 35:ba:ac:06:4e:b0:ff:ca:f7:86:c9:ab:03:a5:61:a1:f6:46: 80:e1:c5:2c:62:21:98:7c:50:e0:4b:e0:f8:b9:8b:00:95:10: 63:cb:54:58:d1:50:e0:69:23:0b:bb:e5:91:f9:02:2a:3a:14: 06:e0:8e:03:e6:02:9d:d4:44:05:26:95:62:7c:3e:a8:86:25: 92:3d:cd:bb:e2:c3:53:c4:78:70:ae:3c:08:4d:cf:09:84:ca: 7d:72:7b:d3:a2:87:a9:32:06:17:2c:5c:82:86:3c:be:76:d5: 51:ac:44:8f:02:36:97:7e:ae:f2:d1:dc:d9:93:b1:fa:0a:43: 15:d9:a0:db:7e:be:c9:27:d0:a4:e3:ef:86:a6:d1:a0:98:4a: f3:ce:15:28:0f:0f:a0:04:4c:95:34:1e:d5:d7:1d:d5:a1:58: 0a:13:18:a8:4b:ce:61:b2:b1:bf:3c:53:31:3e:5a:56:84:7f: 04:1e:aa:e5:63:90:a2:b7:fa:13:73:d7:c8:2a:a5:77:81:cd: 65:a0:76:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVGOTUxMTAvBgNVBAUTKDI3RkM2M0Q4NjFGNDY5NEY3QTJGOTUxRkIxMjg0N0Uw N0ZBQTkwNzIwHhcNMjUwODEwMTYwNTE2WhcNMjUwODE3MTYwNTE2WjAYMRYwFAYD VQQDEw02ODk4YzMzYy1iZjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4Ddg3HyZZcwf3oqhsxJe03B4j1uY29/rQoNWUSuBSv46nBGNgR/beU0vpxk ZfPacvzOtVGPGoEg63mKb/PFqcRi0CwPt5fqsmkhDMMWlLnEl8NQWtIWrDB6JYz8 rYMNLhzEjCKln0T1SkIPiu2i92LMp1VHFhbF3/pKogwO5udk3ikeubtRltJMwui5 9cq47P3SpaOlpR7VRmVW7YLpap4UkGpRegz4JO2D5NI25dGYMY27JzO056hUznVA wjXYSxdI7va6fkslbmFErBP64vTXB3VTYjHsLNKEc8J2BoQNfHTIAIp/zPxu9mfX wLaDaageDFiMGaJ4oIGubFVXywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAd50h5L 6rLMxhP+s25Dk5JB6eZLMB8GA1UdIwQYMBaAFCf8Y9hh9GlPei+VH7EoR+B/qpBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUY5NS9DRTJBRkM0NkEy NzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFVOTZMNVVmc1NoSDRILXFr SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pfeGoyR0gwYVU5Nkw1VWZzU2hINEgtcWtISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUY5NS9DRTJBRkM0NkEyNzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFV OTZMNVVmc1NoSDRILXFrSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnQbgqSrxRN0OoUMZwlA/xPVYFuA8PiN5d6Z9NT7AUVFuTKDv3r+XK qm4cJOgrdJKWOMLf4Gc1uqwGTrD/yveGyasDpWGh9kaA4cUsYiGYfFDgS+D4uYsA lRBjy1RY0VDgaSMLu+WR+QIqOhQG4I4D5gKd1EQFJpVifD6ohiWSPc274sNTxHhw rjwITc8JhMp9cnvTooepMgYXLFyChjy+dtVRrESPAjaXfq7y0dzZk7H6CkMV2aDb fr7JJ9Ck4++GptGgmErzzhUoDw+gBEyVNB7V1x3VoVgKExioS85hsrG/PFMxPlpW hH8EHqrlY5Cit/oTc9fIKqV3gc1loHaA -----END CERTIFICATE-----Generated at Mon Aug 11 04:11:24 2025 by rpki-client