$ rpki-client -vvf rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.mft File: 1cNfp3myIZlgnD6gpTHFoNMyrQE.mft (raw, json) Hash identifier: LfKQPV3Hvn09sY0KCNPVBuEdYDROpdd4FFrzLnShKEg= Subject key identifier: C9:23:77:1F:28:11:B4:68:2D:0F:84:E1:E1:C2:16:62:76:0F:4E:48 Authority key identifier: D5:C3:5F:A7:79:B2:21:99:60:9C:3E:A0:A5:31:C5:A0:D3:32:AD:01 Certificate issuer: /CN=A912A8BC/serialNumber=D5C35FA779B22199609C3EA0A531C5A0D332AD01 Certificate serial: 01B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cNfp3myIZlgnD6gpTHFoNMyrQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.mft Manifest number: 01AF Signing time: Wed 13 Aug 2025 03:37:59 +0000 Manifest this update: Wed 13 Aug 2025 03:37:59 +0000 Manifest next update: Wed 20 Aug 2025 03:37:59 +0000 Files and hashes: 1: 1cNfp3myIZlgnD6gpTHFoNMyrQE.crl (hash: jPhHQGUAgvrXiJXWIpnwUsM26hBnmfsPJ9c5D0BcGRk=) 2: 4D962E8AE65111ED90E5833EC4F9AE02.roa (hash: 3SQV1F9slNIO5M7UqEAQZkXcxMO9bvgWNAs/r+smThc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.crl rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cNfp3myIZlgnD6gpTHFoNMyrQE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 03:37:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A8BC, serialNumber=D5C35FA779B22199609C3EA0A531C5A0D332AD01 Validity Not Before: Aug 13 03:37:59 2025 GMT Not After : Aug 20 03:37:59 2025 GMT Subject: CN=689c0897-1721 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c1:10:27:4e:cd:7b:83:32:fd:9d:23:79:d6: c2:ae:6e:fb:74:a7:47:5f:3d:9e:45:97:df:30:cb: 15:04:04:de:82:d9:ed:b2:5b:3f:bc:04:1e:29:2d: 2e:a7:37:c1:2a:5d:6e:e6:d9:a5:ca:2d:1c:7a:f9: 66:50:ed:57:c0:2f:94:1f:39:f0:73:12:32:4d:9e: 42:37:55:5c:f5:bb:14:74:6c:bd:ca:94:c9:e3:c9: 5c:5b:be:09:86:8d:70:de:ad:05:e6:dd:3f:fc:c6: d5:70:28:4e:fe:19:79:e5:ff:82:47:0c:99:4f:1a: 9b:07:4d:57:c6:4e:7a:7d:53:03:dc:97:ae:af:64: d4:7b:71:45:98:bc:3a:08:d9:9d:bb:d6:91:d5:e6: 04:1c:4d:e3:5a:c9:31:70:c4:7c:52:2a:4b:52:5f: 70:f9:b5:c8:4b:a7:31:db:50:c2:61:5a:33:82:8a: dd:5c:22:5b:55:65:41:8f:2d:40:eb:47:a8:dc:9e: 4d:77:10:1d:58:bf:f7:a8:62:86:db:3e:ae:38:7a: 33:4e:a1:cb:7a:bf:ff:d0:d4:58:42:6d:e8:8e:2d: bc:45:31:a3:c6:31:84:eb:fb:02:eb:9e:c1:ff:52: d5:6e:e4:2f:2c:ff:a4:64:e7:4f:50:7d:91:ea:19: 8b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:23:77:1F:28:11:B4:68:2D:0F:84:E1:E1:C2:16:62:76:0F:4E:48 X509v3 Authority Key Identifier: keyid:D5:C3:5F:A7:79:B2:21:99:60:9C:3E:A0:A5:31:C5:A0:D3:32:AD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1cNfp3myIZlgnD6gpTHFoNMyrQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A8BC/054A4C50E64D11EDB3F81737C4F9AE02/1cNfp3myIZlgnD6gpTHFoNMyrQE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:18:3c:75:f4:3a:13:b9:ae:57:3f:68:c2:60:54:e6:9e:5c: 6d:74:01:30:e9:55:4c:94:9d:90:e1:3f:7b:f4:c7:dc:52:b8: ae:7b:d2:d3:ac:e9:09:56:3f:9c:92:f9:d0:4e:72:cc:d1:2d: 9e:53:78:36:54:b6:b5:bf:6d:73:b1:69:ce:07:ca:35:e0:9a: 0f:bd:d6:61:9e:16:6b:ad:8e:aa:6a:cd:de:5f:cc:3d:2c:c2: dd:02:65:bb:4a:cf:33:70:6d:61:41:9c:2d:b6:b3:17:bf:9e: 33:d6:bc:ed:55:9e:ba:56:fd:76:21:f1:2c:e9:34:b7:f7:d4: 0c:0b:28:0a:ac:27:b9:9d:12:1f:68:b7:fa:ea:35:bf:c2:0c: f1:12:a4:e6:d8:5e:00:0f:92:93:0e:fa:18:81:3c:6b:5b:fb: b1:64:3b:b9:d1:67:55:0c:72:66:6e:02:49:b4:bf:41:eb:3e: d1:8d:d3:ea:1e:3a:7b:f3:cb:16:6b:3b:ca:bf:e2:51:40:71: cc:d3:d9:09:e2:45:97:ae:5c:5c:e3:27:6e:27:7f:38:1d:fc: c9:ba:0f:d3:2d:a2:1c:99:f3:40:37:fe:08:fb:d8:5f:ca:74: 8c:29:72:64:1f:de:a6:bb:1e:35:a1:08:68:e8:f4:19:76:a6: 8a:2c:b3:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE4QkMxMTAvBgNVBAUTKEQ1QzM1RkE3NzlCMjIxOTk2MDlDM0VBMEE1MzFDNUEw RDMzMkFEMDEwHhcNMjUwODEzMDMzNzU5WhcNMjUwODIwMDMzNzU5WjAYMRYwFAYD VQQDEw02ODljMDg5Ny0xNzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwsEQJ07Ne4My/Z0jedbCrm77dKdHXz2eRZffMMsVBATegtntsls/vAQeKS0u pzfBKl1u5tmlyi0cevlmUO1XwC+UHznwcxIyTZ5CN1Vc9bsUdGy9ypTJ48lcW74J ho1w3q0F5t0//MbVcChO/hl55f+CRwyZTxqbB01Xxk56fVMD3Jeur2TUe3FFmLw6 CNmdu9aR1eYEHE3jWskxcMR8UipLUl9w+bXIS6cx21DCYVozgordXCJbVWVBjy1A 60eo3J5NdxAdWL/3qGKG2z6uOHozTqHLer//0NRYQm3oji28RTGjxjGE6/sC657B /1LVbuQvLP+kZOdPUH2R6hmLwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkjdx8o EbRoLQ+E4eHCFmJ2D05IMB8GA1UdIwQYMBaAFNXDX6d5siGZYJw+oKUxxaDTMq0B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQThCQy8wNTRBNEM1MEU2 NEQxMUVEQjNGODE3MzdDNEY5QUUwMi8xY05mcDNteUlabGduRDZncFRIRm9OTXly UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFjTmZwM215SVpsZ25ENmdwVEhGb05NeXJRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QThCQy8wNTRBNEM1MEU2NEQxMUVEQjNGODE3MzdDNEY5QUUwMi8xY05mcDNteUla bGduRDZncFRIRm9OTXlyUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNGDx19DoTua5XP2jCYFTmnlxtdAEw6VVMlJ2Q4T979MfcUriue9LT rOkJVj+ckvnQTnLM0S2eU3g2VLa1v21zsWnOB8o14JoPvdZhnhZrrY6qas3eX8w9 LMLdAmW7Ss8zcG1hQZwttrMXv54z1rztVZ66Vv12IfEs6TS399QMCygKrCe5nRIf aLf66jW/wgzxEqTm2F4AD5KTDvoYgTxrW/uxZDu50WdVDHJmbgJJtL9B6z7RjdPq Hjp788sWazvKv+JRQHHM09kJ4kWXrlxc4yduJ384HfzJug/TLaIcmfNAN/4I+9hf ynSMKXJkH96mux41oQho6PQZdqaKLLNk -----END CERTIFICATE-----Generated at Wed Aug 13 08:55:06 2025 by rpki-client