$ rpki-client -vvf rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft File: DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft (raw, json) Hash identifier: tpCjllfgKH0Rbp4EvEeUMwL+dfsB4d27yOjdOpNuoIs= Subject key identifier: B2:13:A6:58:AF:7B:3E:FC:17:91:33:EE:35:35:46:79:10:6F:33:7A Authority key identifier: 0C:EE:0D:96:77:3D:5D:DA:D4:67:9E:0E:83:9A:8D:C1:26:69:E2:32 Certificate issuer: /CN=A9132742/serialNumber=0CEE0D96773D5DDAD4679E0E839A8DC12669E232 Certificate serial: 03FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft Manifest number: 03FA Signing time: Wed 13 Aug 2025 01:00:07 +0000 Manifest this update: Wed 13 Aug 2025 01:00:07 +0000 Manifest next update: Wed 20 Aug 2025 01:00:07 +0000 Files and hashes: 1: DO4Nlnc9XdrUZ54Og5qNwSZp4jI.crl (hash: cIC7SOUgUkRdIDxGTFuUDkUuIxuYfzF7DiHHg6p+JfU=) 2: 41A312C684BB11EC95CF1D6DC4F9AE02.roa (hash: gOa0TpZKNAKtEp1z7Y7hA0Mkc96+IudmzfWq1Ab24PI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.crl rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 01:00:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1022 (0x3fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132742, serialNumber=0CEE0D96773D5DDAD4679E0E839A8DC12669E232 Validity Not Before: Aug 13 01:00:07 2025 GMT Not After : Aug 20 01:00:07 2025 GMT Subject: CN=689be397-25de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:07:7f:be:f2:6b:36:1d:28:5e:6c:f6:03:d7: cd:7d:e0:ee:92:89:a4:f6:de:86:ff:b9:f3:bd:f2: 5b:28:48:10:79:6e:dc:4f:23:98:61:2c:80:09:d4: a9:10:dd:d8:b5:84:c7:56:1c:70:e7:12:9b:91:ed: 8e:05:a3:ff:b5:ce:0a:5e:f8:04:d9:ae:26:32:48: c8:48:80:b5:e2:8a:d5:de:a9:fd:90:e9:15:45:fc: 93:37:a8:35:aa:10:e2:17:6e:d7:bd:03:1a:c0:75: 15:19:79:48:e5:c6:2c:09:e9:ce:51:00:12:5e:0d: f8:22:b7:f8:dc:2d:70:29:67:bc:b1:b7:76:0f:66: 2b:47:26:ec:e7:71:3c:88:a3:bc:24:71:19:60:29: 87:55:c1:46:64:96:9e:14:2c:fb:31:54:a6:46:69: 62:b7:26:47:76:6b:61:95:72:65:5c:92:a9:3d:32: b8:bd:fb:69:c7:aa:50:0f:8e:c8:4f:34:05:cd:09: da:0e:9e:93:df:4c:ad:b4:9d:79:e7:14:37:c2:aa: ba:30:1d:60:99:3c:0a:f2:61:e9:3d:49:5f:7c:00: 2e:65:1b:1f:49:03:6d:67:37:e7:72:13:bf:5a:73: fe:ef:f9:4d:9e:61:d3:dd:40:b9:37:fa:46:65:f7: ee:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:13:A6:58:AF:7B:3E:FC:17:91:33:EE:35:35:46:79:10:6F:33:7A X509v3 Authority Key Identifier: keyid:0C:EE:0D:96:77:3D:5D:DA:D4:67:9E:0E:83:9A:8D:C1:26:69:E2:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132742/0415D6FE84B711ECB5A71B42C4F9AE02/DO4Nlnc9XdrUZ54Og5qNwSZp4jI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:19:64:50:fa:30:0b:de:c9:8e:59:d9:59:d3:8c:0c:54:54: 47:ff:2b:8b:a4:61:41:95:fc:9b:41:9e:08:3b:aa:84:b7:f3: ee:ae:2e:4e:6d:ed:3d:b2:5e:82:3c:1a:f0:cc:64:20:46:6d: 35:c3:5a:db:0c:97:02:dd:9f:7f:af:0d:ed:91:63:a9:51:58: 6b:b1:5d:f4:f1:fb:c3:9a:13:77:2b:0f:c5:d5:6f:c1:24:87: d0:b4:cd:ed:ae:1a:5f:d3:7c:de:7d:5b:26:a8:cb:40:36:b8: c4:75:b7:82:30:d0:7d:86:bb:1a:30:05:f0:b8:5e:b1:5b:bc: 1a:04:ae:40:db:bc:a3:c4:67:db:82:f5:91:cc:1d:bb:05:6b: bc:1e:c3:5f:94:7b:57:17:8d:e3:98:b4:dd:7e:83:ed:8b:3d: db:eb:60:92:77:39:ce:4e:c5:5b:6a:6c:bd:e1:36:f3:9d:29: c6:37:39:f9:23:52:74:3d:01:03:db:bc:0c:bd:1a:1d:56:70: 54:83:9d:e9:90:97:9f:23:40:42:3f:6d:88:1a:03:e8:d9:ef: 59:f1:37:ea:68:60:06:b4:3d:4f:91:f5:57:67:cb:1a:45:f4: 2f:0f:93:d5:27:91:00:84:94:1a:6e:98:f1:9e:e3:03:8e:e3: 80:02:dc:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI3NDIxMTAvBgNVBAUTKDBDRUUwRDk2NzczRDVEREFENDY3OUUwRTgzOUE4REMx MjY2OUUyMzIwHhcNMjUwODEzMDEwMDA3WhcNMjUwODIwMDEwMDA3WjAYMRYwFAYD VQQDEw02ODliZTM5Ny0yNWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQd/vvJrNh0oXmz2A9fNfeDukomk9t6G/7nzvfJbKEgQeW7cTyOYYSyACdSp EN3YtYTHVhxw5xKbke2OBaP/tc4KXvgE2a4mMkjISIC14orV3qn9kOkVRfyTN6g1 qhDiF27XvQMawHUVGXlI5cYsCenOUQASXg34Irf43C1wKWe8sbd2D2YrRybs53E8 iKO8JHEZYCmHVcFGZJaeFCz7MVSmRmlityZHdmthlXJlXJKpPTK4vftpx6pQD47I TzQFzQnaDp6T30yttJ155xQ3wqq6MB1gmTwK8mHpPUlffAAuZRsfSQNtZzfnchO/ WnP+7/lNnmHT3UC5N/pGZffujwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLITpliv ez78F5Ez7jU1RnkQbzN6MB8GA1UdIwQYMBaAFAzuDZZ3PV3a1GeeDoOajcEmaeIy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjc0Mi8wNDE1RDZGRTg0 QjcxMUVDQjVBNzFCNDJDNEY5QUUwMi9ETzRObG5jOVhkclVaNTRPZzVxTndTWnA0 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RPNE5sbmM5WGRyVVo1NE9nNXFOd1NacDRqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz Mjc0Mi8wNDE1RDZGRTg0QjcxMUVDQjVBNzFCNDJDNEY5QUUwMi9ETzRObG5jOVhk clVaNTRPZzVxTndTWnA0akkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEGWRQ+jAL3smOWdlZ04wMVFRH/yuLpGFBlfybQZ4IO6qEt/Puri5O be09sl6CPBrwzGQgRm01w1rbDJcC3Z9/rw3tkWOpUVhrsV308fvDmhN3Kw/F1W/B JIfQtM3trhpf03zefVsmqMtANrjEdbeCMNB9hrsaMAXwuF6xW7waBK5A27yjxGfb gvWRzB27BWu8HsNflHtXF43jmLTdfoPtiz3b62CSdznOTsVbamy94TbznSnGNzn5 I1J0PQED27wMvRodVnBUg53pkJefI0BCP22IGgPo2e9Z8TfqaGAGtD1PkfVXZ8sa RfQvD5PVJ5EAhJQabpjxnuMDjuOAAtzJ -----END CERTIFICATE-----Generated at Wed Aug 13 02:47:35 2025 by rpki-client