$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: z2RxJoOWqg6nE36FB5BXGKnv05MpfzizC3sWiBP4AfM= Subject key identifier: 36:23:5E:28:D8:53:F6:76:AB:81:D0:D9:B2:18:92:DE:88:4C:E7:34 Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2D9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2D31 Signing time: Fri 20 Jun 2025 15:32:52 +0000 Manifest this update: Fri 20 Jun 2025 15:32:52 +0000 Manifest next update: Fri 27 Jun 2025 15:32:52 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: ob39MNiT00KfPz9m+FiefXzkppThYAT+/uc580Ib1cI=) 2: 3E0A6ED49E7B11EFBD44280AC4F9AE02.roa (hash: arjppb8o0dAo/PmRzQByMlM088vFXvA0RnVconCK+zU=) 3: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: fUhNa2zvGR6tljYmicsoP8kxi9R8oyVSsotkZ+dJbwI=) 4: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (hash: S4ikhB4wQjYJoUuGIHYvTR4A3rR63MmfA1fRonhKGKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 15:32:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11676 (0x2d9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523, serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: Jun 20 15:32:52 2025 GMT Not After : Jun 27 15:32:52 2025 GMT Subject: CN=68557f24-678b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7f:17:35:13:12:3b:0a:42:14:51:0d:92:46: cb:69:aa:f4:3b:c9:ef:79:eb:c7:24:ac:4d:37:c6: 47:80:fe:3b:13:9f:93:0d:38:1e:77:58:7e:2f:42: eb:91:a1:56:b5:31:9a:f0:77:8c:7a:06:01:70:67: 25:b7:1a:8b:9c:d2:5a:d5:0c:bc:83:d1:c9:69:ad: 82:e9:57:34:88:42:4b:a8:03:b8:ab:ef:54:3d:99: 7e:d9:a5:9c:4d:d9:5f:ba:77:77:e9:c2:7a:0a:75: 7f:d9:02:e7:c2:b3:8e:b9:36:dc:37:79:45:82:cb: 3a:93:ac:46:d2:15:26:b0:72:df:af:2a:2c:e2:52: 82:50:01:95:d1:5e:73:37:6e:d3:5c:b5:8b:bc:f3: 52:a0:0d:81:15:82:6d:4d:a8:2b:64:1a:32:39:4a: 17:0a:f0:c0:6b:ef:5a:14:6f:ab:d0:82:67:d1:69: b1:cf:71:63:7f:85:00:e7:ef:d7:88:95:8d:8f:93: 75:96:af:ff:4b:6f:ca:c5:b4:d1:5a:3d:74:f5:2f: 60:6d:b0:86:57:5e:90:35:60:91:44:a5:bf:0d:f7: 6d:17:f2:be:8a:e6:9d:2c:13:01:88:2c:dc:4d:c8: 62:25:e6:e8:d4:b5:cb:01:fd:86:92:57:2f:28:bf: 43:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:23:5E:28:D8:53:F6:76:AB:81:D0:D9:B2:18:92:DE:88:4C:E7:34 X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:31:03:30:ca:f1:7c:e0:3a:2a:46:44:c1:d4:73:29:7a:22: ee:d1:1b:ee:46:75:1c:50:de:73:e6:88:60:ae:0d:06:57:2f: ff:c8:35:8f:d2:3b:ec:17:23:54:c8:19:41:47:1c:6e:06:2c: 06:5f:c7:5a:44:9f:05:ba:9b:31:d4:73:6c:0a:d8:53:7a:0f: 3b:1a:d5:24:98:2b:7a:a9:81:f2:ae:91:b1:0a:af:6b:88:b5: eb:41:50:f3:44:5d:2a:44:c0:46:34:a2:2b:9e:97:dd:a5:9b: 16:a0:fb:e2:c8:ec:f2:a2:fd:53:94:68:e5:1f:4c:0a:ea:3d: e6:70:33:57:28:cd:ac:8d:81:aa:37:fc:9d:f0:3f:01:e1:90: 44:b2:f6:01:79:d3:2f:31:c2:28:66:63:2e:f5:ae:bf:68:f6: d9:ab:02:cb:d1:aa:bc:46:0e:84:9b:97:48:f4:9d:44:d1:8e: 46:1f:1c:f2:87:6e:64:92:55:54:19:e9:de:29:24:5d:b2:ad: 95:71:06:40:d4:bc:25:15:62:0e:8a:74:ff:d8:fd:eb:45:82: c4:72:e2:0e:23:7d:66:0b:77:f3:52:30:bd:11:0a:2a:7b:47: 7d:2b:fc:40:30:3d:b7:60:60:83:45:49:2c:67:84:73:5f:74: 9e:66:87:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjUwNjIwMTUzMjUyWhcNMjUwNjI3MTUzMjUyWjAYMRYwFAYD VQQDEw02ODU1N2YyNC02NzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvn8XNRMSOwpCFFENkkbLaar0O8nveevHJKxNN8ZHgP47E5+TDTged1h+L0Lr kaFWtTGa8HeMegYBcGcltxqLnNJa1Qy8g9HJaa2C6Vc0iEJLqAO4q+9UPZl+2aWc Tdlfund36cJ6CnV/2QLnwrOOuTbcN3lFgss6k6xG0hUmsHLfryos4lKCUAGV0V5z N27TXLWLvPNSoA2BFYJtTagrZBoyOUoXCvDAa+9aFG+r0IJn0Wmxz3Fjf4UA5+/X iJWNj5N1lq//S2/KxbTRWj109S9gbbCGV16QNWCRRKW/DfdtF/K+iuadLBMBiCzc TchiJebo1LXLAf2GklcvKL9DKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYjXijY U/Z2q4HQ2bIYkt6ITOc0MB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaMQMwyvF84DoqRkTB1HMpeiLu0RvuRnUcUN5z5ohgrg0GVy//yDWP 0jvsFyNUyBlBRxxuBiwGX8daRJ8Fupsx1HNsCthTeg87GtUkmCt6qYHyrpGxCq9r iLXrQVDzRF0qRMBGNKIrnpfdpZsWoPviyOzyov1TlGjlH0wK6j3mcDNXKM2sjYGq N/yd8D8B4ZBEsvYBedMvMcIoZmMu9a6/aPbZqwLL0aq8Rg6Em5dI9J1E0Y5GHxzy h25kklVUGeneKSRdsq2VcQZA1LwlFWIOinT/2P3rRYLEcuIOI31mC3fzUjC9EQoq e0d9K/xAMD23YGCDRUksZ4RzX3SeZofe -----END CERTIFICATE-----Generated at Sat Jun 21 07:56:33 2025 by rpki-client