$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft File: aIdCVFR7NLOvid21tI0CAj9Xrhc.mft (raw, json) Hash identifier: CSls9vFniQmQqR6iTdxQnUqjg95iXNwWhMAYmqS5UmM= Subject key identifier: 5D:73:20:B6:38:28:D6:81:7D:7E:50:DD:A4:FC:53:F1:BE:08:55:BF Authority key identifier: 68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 Certificate issuer: /CN=A9148D52/serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Certificate serial: 0D48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft Manifest number: 0D3F Signing time: Fri 08 Aug 2025 18:13:38 +0000 Manifest this update: Fri 08 Aug 2025 18:13:37 +0000 Manifest next update: Fri 15 Aug 2025 18:13:37 +0000 Files and hashes: 1: aIdCVFR7NLOvid21tI0CAj9Xrhc.crl (hash: PCzRz6ME8GkjyACjNOIpZySIGQRmL1lgyU3FOIT33Ik=) 2: 0198539E94F311EA9429BF86C4F9AE02.roa (hash: 5GX92aioe88puPmyzGflssCck3bnuW06XT8lCNmGXB4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3400 (0xd48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D52, serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Validity Not Before: Aug 8 18:13:37 2025 GMT Not After : Aug 15 18:13:37 2025 GMT Subject: CN=68963e52-d837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e7:a3:3a:73:fa:eb:2d:35:05:00:ab:bf:70: 1c:42:b3:3c:62:ef:41:90:9d:a8:b8:18:19:b9:32: 9d:ab:89:11:44:39:bb:93:b2:90:7a:8b:2d:5f:da: cb:58:95:64:1d:38:6d:01:f3:d4:36:8f:02:00:b1: c3:f5:1f:a2:f2:80:ed:a1:3a:da:80:ac:1f:e0:c7: ed:52:cb:93:32:ed:44:79:41:8c:b6:19:c4:7e:e6: eb:01:3e:05:d8:2a:42:96:07:8b:30:21:25:77:c4: ee:ad:65:65:d8:67:3b:af:eb:b9:b8:19:87:60:b2: 61:08:a9:e5:50:dc:ed:95:60:60:59:59:6c:88:09: 9b:ff:c5:ed:dc:e0:13:4c:0c:d7:b0:45:45:ec:f8: 46:31:8b:37:56:a9:dc:2c:0f:22:57:8e:4f:b0:cb: a4:7a:54:2f:91:91:6d:25:66:45:32:82:a1:2b:58: 0e:5a:27:fc:f6:3f:87:b6:78:1a:2c:09:14:25:9b: 30:e6:5b:06:ff:fb:31:41:ca:9c:31:cd:b7:8a:66: e0:d6:41:0e:42:80:64:bf:f9:3f:28:a9:16:53:db: 87:0c:5f:13:31:a7:73:fe:8d:be:a8:77:cf:4e:66: 0f:5a:fe:d9:09:50:d3:86:63:bd:f5:64:16:99:7f: 63:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:73:20:B6:38:28:D6:81:7D:7E:50:DD:A4:FC:53:F1:BE:08:55:BF X509v3 Authority Key Identifier: keyid:68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:e1:12:01:a1:bd:59:ea:26:f5:42:aa:5c:8d:39:72:c3:78: 01:46:4d:65:01:a1:75:32:c3:70:47:ce:28:b3:4c:40:8c:73: 6c:fd:d9:ef:98:39:c0:01:b3:a5:0e:e0:07:d0:cc:ba:79:93: a3:dc:b3:78:b3:cc:c8:c6:c0:55:7d:cf:cd:a1:46:4d:41:51: d3:cb:4a:85:01:05:ff:42:ba:29:7d:c4:9d:7a:05:5d:fb:28: c9:63:b6:b2:00:7c:1f:7e:08:cc:df:cd:57:23:3f:6c:3c:22: 30:06:03:61:ba:67:36:f1:83:c2:f1:fb:bd:7c:67:10:67:a7: db:51:3a:af:77:63:a1:32:78:f6:f8:5a:ba:48:5c:6c:61:84: 46:aa:77:ae:94:c5:41:5b:12:ff:c7:b1:9e:eb:03:66:20:91: 9c:2d:80:65:49:16:09:50:dd:c4:de:8e:3d:bc:6a:bc:07:29: 11:16:59:81:08:c2:b5:6c:63:5a:8a:cf:27:b0:eb:29:22:b3: 9a:c5:a9:ee:e5:d4:ba:e1:e8:cd:76:29:2a:53:19:4e:5d:8b: 68:88:d3:c0:43:52:97:dd:8b:37:2c:13:58:5b:14:dd:7d:04: 19:84:48:83:0f:c0:b5:bb:80:98:7f:37:da:d7:2b:7f:76:8a: 75:f1:ae:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENTIxMTAvBgNVBAUTKDY4ODc0MjU0NTQ3QjM0QjNBRjg5RERCNUI0OEQwMjAy M0Y1N0FFMTcwHhcNMjUwODA4MTgxMzM3WhcNMjUwODE1MTgxMzM3WjAYMRYwFAYD VQQDEw02ODk2M2U1Mi1kODM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuejOnP66y01BQCrv3AcQrM8Yu9BkJ2ouBgZuTKdq4kRRDm7k7KQeostX9rL WJVkHThtAfPUNo8CALHD9R+i8oDtoTragKwf4MftUsuTMu1EeUGMthnEfubrAT4F 2CpClgeLMCEld8TurWVl2Gc7r+u5uBmHYLJhCKnlUNztlWBgWVlsiAmb/8Xt3OAT TAzXsEVF7PhGMYs3VqncLA8iV45PsMukelQvkZFtJWZFMoKhK1gOWif89j+Htnga LAkUJZsw5lsG//sxQcqcMc23imbg1kEOQoBkv/k/KKkWU9uHDF8TMadz/o2+qHfP TmYPWv7ZCVDThmO99WQWmX9jRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF1zILY4 KNaBfX5Q3aT8U/G+CFW/MB8GA1UdIwQYMBaAFGiHQlRUezSzr4ndtbSNAgI/V64X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ1Mi8xRDRCNDRFRURC NkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05MT3ZpZDIxdEkwQ0FqOVhy aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJZENWRlI3TkxPdmlkMjF0STBDQWo5WHJoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ1Mi8xRDRCNDRFRURCNkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05M T3ZpZDIxdEkwQ0FqOVhyaGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM4RIBob1Z6ib1QqpcjTlyw3gBRk1lAaF1MsNwR84os0xAjHNs/dnv mDnAAbOlDuAH0My6eZOj3LN4s8zIxsBVfc/NoUZNQVHTy0qFAQX/QropfcSdegVd +yjJY7ayAHwffgjM381XIz9sPCIwBgNhumc28YPC8fu9fGcQZ6fbUTqvd2OhMnj2 +Fq6SFxsYYRGqneulMVBWxL/x7Ge6wNmIJGcLYBlSRYJUN3E3o49vGq8BykRFlmB CMK1bGNais8nsOspIrOaxanu5dS64ejNdikqUxlOXYtoiNPAQ1KX3Ys3LBNYWxTd fQQZhEiDD8C1u4CYfzfa1yt/dop18a5/ -----END CERTIFICATE-----Generated at Sun Aug 10 04:49:02 2025 by rpki-client