$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: 39qDKipA0o/gW+UN11GPRZjUIzj2Ysu2ofdjiAi3PzE= Subject key identifier: D6:75:5F:FC:74:87:9D:3D:D4:DC:7E:02:24:FB:17:2A:AA:58:C0:8C Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2DB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2D4B Signing time: Sun 10 Aug 2025 15:28:24 +0000 Manifest this update: Sun 10 Aug 2025 15:28:23 +0000 Manifest next update: Sun 17 Aug 2025 15:28:23 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: D3s5k4DT3OYy6UGUVp5iDAguk0KF06sY1QZBPngvQp8=) 2: 3E0A6ED49E7B11EFBD44280AC4F9AE02.roa (hash: arjppb8o0dAo/PmRzQByMlM088vFXvA0RnVconCK+zU=) 3: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: fUhNa2zvGR6tljYmicsoP8kxi9R8oyVSsotkZ+dJbwI=) 4: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (hash: S4ikhB4wQjYJoUuGIHYvTR4A3rR63MmfA1fRonhKGKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11702 (0x2db6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523, serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: Aug 10 15:28:23 2025 GMT Not After : Aug 17 15:28:23 2025 GMT Subject: CN=6898ba98-dc2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b8:ee:e5:09:0a:46:18:7b:b7:b3:50:1f:88: bd:3e:1e:48:0a:20:0c:38:e2:2f:48:70:0a:c6:56: 33:ad:11:d5:8c:f3:00:7a:d3:be:25:ee:94:28:ad: ba:6a:a1:e0:e3:66:2e:80:20:85:f2:f1:7e:e5:c3: a1:95:70:36:d7:f1:d6:ad:81:a4:77:3e:15:d2:8c: 3e:8d:54:65:73:f9:c5:fc:46:b2:38:19:74:dd:0c: 42:fa:34:ee:2b:bc:4e:08:0a:bd:91:4b:71:77:9f: 40:c5:cf:5a:7e:55:64:94:66:76:fc:ad:f6:21:c2: a9:88:2e:cf:dc:f9:d8:e5:9a:67:c8:4a:21:51:3c: 61:89:94:71:89:a3:33:0a:e4:52:66:40:04:70:6f: 4f:bf:bb:56:5b:0d:e8:1b:8a:ea:12:2f:88:fb:43: 6d:51:90:78:98:91:38:2e:38:31:8a:eb:b9:1e:28: 3a:7c:6e:a6:2f:04:22:94:5b:b2:08:db:20:89:be: 86:62:37:a0:9d:59:14:bc:a7:18:75:7d:f7:d2:95: 48:d7:6a:75:0d:ee:63:8c:fe:07:5d:6f:4e:3e:bb: 38:61:10:cb:be:fe:b3:36:d0:43:02:a9:e0:d2:bc: f7:52:fe:d9:e7:41:56:b2:4b:8f:2f:eb:34:ab:79: f3:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:75:5F:FC:74:87:9D:3D:D4:DC:7E:02:24:FB:17:2A:AA:58:C0:8C X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:10:27:14:df:4c:e5:90:a6:28:0f:9b:14:50:67:65:ec:8e: 9b:5f:d7:b1:c3:71:c5:c4:f8:7f:fd:80:cd:cb:4b:94:50:cb: e1:b2:23:dd:1f:a8:8f:de:50:ee:66:cd:ac:e8:87:54:dd:ab: 42:e7:53:d2:3a:59:86:3e:2d:46:b8:0c:db:0c:93:3a:cc:98: 63:e2:95:f3:bd:58:3e:81:9c:4f:8e:d0:33:4c:bd:d2:39:00: e8:f3:c4:ca:98:27:e8:90:92:8b:66:ad:65:f4:db:a8:ab:10: 7f:27:42:2c:b8:9d:df:53:cd:50:26:7f:3d:ed:05:74:c9:52: f1:0a:2b:fa:dc:a5:75:28:b2:ce:d9:be:5c:1a:f1:5d:e1:8c: fa:b9:9e:d5:18:0d:c9:c3:2e:0a:f7:3b:35:ef:46:d5:6b:42: f9:87:51:39:9d:04:6d:c5:90:0b:a0:46:f3:31:57:b6:38:62: b4:3d:78:06:ea:25:51:53:2b:82:63:3b:d6:87:ee:34:4f:ad: 4e:00:80:22:aa:92:96:08:20:ce:d3:57:e0:b6:e9:2d:4c:25: 1c:b5:3a:bb:77:fa:ec:65:0c:c9:f3:04:fb:bc:a2:a8:47:63: 9d:f4:14:f1:89:ff:fe:24:60:fe:d5:6c:e0:39:b8:26:c4:1f: f9:59:28:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjUwODEwMTUyODIzWhcNMjUwODE3MTUyODIzWjAYMRYwFAYD VQQDEw02ODk4YmE5OC1kYzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs7ju5QkKRhh7t7NQH4i9Ph5ICiAMOOIvSHAKxlYzrRHVjPMAetO+Je6UKK26 aqHg42YugCCF8vF+5cOhlXA21/HWrYGkdz4V0ow+jVRlc/nF/EayOBl03QxC+jTu K7xOCAq9kUtxd59Axc9aflVklGZ2/K32IcKpiC7P3PnY5ZpnyEohUTxhiZRxiaMz CuRSZkAEcG9Pv7tWWw3oG4rqEi+I+0NtUZB4mJE4Ljgxiuu5Hig6fG6mLwQilFuy CNsgib6GYjegnVkUvKcYdX330pVI12p1De5jjP4HXW9OPrs4YRDLvv6zNtBDAqng 0rz3Uv7Z50FWskuPL+s0q3nzNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZ1X/x0 h5091Nx+AiT7FyqqWMCMMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQECcU30zlkKYoD5sUUGdl7I6bX9exw3HFxPh//YDNy0uUUMvhsiPd H6iP3lDuZs2s6IdU3atC51PSOlmGPi1GuAzbDJM6zJhj4pXzvVg+gZxPjtAzTL3S OQDo88TKmCfokJKLZq1l9NuoqxB/J0IsuJ3fU81QJn897QV0yVLxCiv63KV1KLLO 2b5cGvFd4Yz6uZ7VGA3Jwy4K9zs170bVa0L5h1E5nQRtxZALoEbzMVe2OGK0PXgG 6iVRUyuCYzvWh+40T61OAIAiqpKWCCDO01fgtuktTCUctTq7d/rsZQzJ8wT7vKKo R2Od9BTxif/+JGD+1WzgObgmxB/5WSj1 -----END CERTIFICATE-----Generated at Sun Aug 10 18:59:09 2025 by rpki-client