$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft File: rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft (raw, json) Hash identifier: MKjBqTclFdGVOcbMhP2wRRXVFZrThkSxLpCnxit3rsY= Subject key identifier: DA:C7:5A:ED:A7:51:BA:43:29:CF:24:7C:9A:4F:16:C3:7D:C7:4D:93 Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 07D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft Manifest number: 07CA Signing time: Sat 02 Aug 2025 21:27:59 +0000 Manifest this update: Sat 02 Aug 2025 21:27:58 +0000 Manifest next update: Sat 09 Aug 2025 21:27:58 +0000 Files and hashes: 1: rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl (hash: WKXZHw4yrkCiLKtsd3J9hAqb52IvLnryYjVjh7mEEw4=) 2: 38502DA2029A11EB85BD7B84C4F9AE02.roa (hash: 3OsuoPomkN3KwD+aF1zCoEkkbIN7dOFAl/woMg+7fcw=) 3: CEA093C66CA311ED9DD6425CC4F9AE02.roa (hash: 3rvQwF7VOidxONOxWbJzlS69h1FDkR177X5kmaAbyhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 21:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2005 (0x7d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA, serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Aug 2 21:27:58 2025 GMT Not After : Aug 9 21:27:58 2025 GMT Subject: CN=688e82de-ab5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:10:e9:d7:91:50:9c:f3:87:02:d7:6f:d1:87: 09:fb:23:bb:60:3d:1f:d8:04:df:4a:6f:a4:f0:d5: 08:7f:7c:45:89:08:7c:37:fc:59:df:9e:1e:61:36: 93:90:4a:ff:87:0c:f4:e2:c8:bd:d5:55:3f:f2:05: e3:69:96:04:16:fd:59:c7:12:96:52:5d:87:ed:e4: 07:0d:5e:e3:34:46:21:ce:40:6b:9e:d2:9d:e3:d5: 0a:ea:4c:40:3a:6f:08:37:9c:73:c9:d7:88:b8:64: 9d:75:c8:f6:33:39:f9:64:80:69:a1:ce:39:74:14: 3c:77:59:94:e2:a8:14:5e:27:9b:04:89:c5:01:1e: 4e:55:63:49:02:62:80:45:70:06:1c:0a:0c:d7:25: c0:7a:c7:40:5e:39:51:8d:ba:f7:84:88:0e:8b:95: 90:63:a7:16:7a:3c:28:2f:79:a8:65:c9:ed:6b:34: 47:29:89:60:bb:a5:4e:29:77:f4:8d:86:15:a6:35: 3b:94:cb:4b:37:73:a2:f0:e8:48:21:4e:dc:9d:4c: 9d:ee:e5:50:81:3b:84:d1:f1:8a:48:59:8b:f5:73: ce:c5:19:90:0d:e8:a8:cb:1a:8e:c2:24:60:8b:74: 84:51:17:6b:b8:22:eb:d4:55:89:3d:bb:0a:44:7b: b1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C7:5A:ED:A7:51:BA:43:29:CF:24:7C:9A:4F:16:C3:7D:C7:4D:93 X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:30:da:4b:9e:35:64:e1:92:78:50:72:bc:1f:7f:b2:24:77: f0:53:ed:dc:21:c9:56:63:35:af:4c:80:76:37:c0:75:52:a1: 56:c3:13:81:ef:49:84:4b:23:80:9b:f3:d9:8b:c2:b5:a8:ca: b1:01:a8:e6:2e:df:c8:78:49:5a:46:fb:dd:29:c4:3f:66:7e: b7:6d:2e:41:49:3d:9a:3a:18:0f:9e:8d:0e:46:a8:9f:64:57: ac:ec:7b:95:05:8b:fa:04:1d:f4:36:d8:ba:2a:50:01:46:1c: eb:32:cb:90:57:f9:2b:01:37:53:8b:c5:e0:7d:77:87:15:e7: 40:58:b8:0f:2f:58:8f:a4:5c:fc:68:54:28:8b:6d:3c:b9:b9: 2e:21:65:e7:6b:5b:97:25:45:bd:02:8c:59:5c:35:9c:26:a5: c6:c6:d7:4e:54:8b:2a:0c:27:1c:39:24:d5:6f:c1:43:00:8a: 83:f9:b0:26:11:ef:ae:59:8c:67:d4:a3:a8:97:b6:04:fa:81: 11:da:5a:06:b1:0d:00:32:61:79:dc:1c:53:32:c9:09:19:61: ba:fb:f0:a4:85:54:26:c0:74:a4:e9:16:d9:5d:c1:c9:b1:13: 40:fc:3c:78:98:88:d5:d1:9c:37:29:3a:df:0f:c3:16:95:a0: 23:09:44:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjUwODAyMjEyNzU4WhcNMjUwODA5MjEyNzU4WjAYMRYwFAYD VQQDEw02ODhlODJkZS1hYjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxDp15FQnPOHAtdv0YcJ+yO7YD0f2ATfSm+k8NUIf3xFiQh8N/xZ354eYTaT kEr/hwz04si91VU/8gXjaZYEFv1ZxxKWUl2H7eQHDV7jNEYhzkBrntKd49UK6kxA Om8IN5xzydeIuGSddcj2Mzn5ZIBpoc45dBQ8d1mU4qgUXiebBInFAR5OVWNJAmKA RXAGHAoM1yXAesdAXjlRjbr3hIgOi5WQY6cWejwoL3moZcntazRHKYlgu6VOKXf0 jYYVpjU7lMtLN3Oi8OhIIU7cnUyd7uVQgTuE0fGKSFmL9XPOxRmQDeioyxqOwiRg i3SEURdruCLr1FWJPbsKRHuxkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNrHWu2n UbpDKc8kfJpPFsN9x02TMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REZCQS9EQjlDRTY3ODAyOTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFh V3Vaa3JiRlpCVHJPendyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAMNpLnjVk4ZJ4UHK8H3+yJHfwU+3cIclWYzWvTIB2N8B1UqFWwxOB 70mESyOAm/PZi8K1qMqxAajmLt/IeElaRvvdKcQ/Zn63bS5BST2aOhgPno0ORqif ZFes7HuVBYv6BB30Nti6KlABRhzrMsuQV/krATdTi8XgfXeHFedAWLgPL1iPpFz8 aFQoi208ubkuIWXna1uXJUW9AoxZXDWcJqXGxtdOVIsqDCccOSTVb8FDAIqD+bAm Ee+uWYxn1KOol7YE+oER2loGsQ0AMmF53BxTMskJGWG6+/CkhVQmwHSk6RbZXcHJ sRNA/Dx4mIjV0Zw3KTrfD8MWlaAjCUTn -----END CERTIFICATE-----Generated at Mon Aug 4 14:50:52 2025 by rpki-client