$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft File: 5D3SMzFr8OKboG0g3sJdtMwRbgg.mft (raw, json) Hash identifier: 9xsAT7k6zkE3Ds/1g3eYc0OxWG9DiSIWi3aBNBDFjfY= Subject key identifier: 0F:F4:2F:46:95:3F:EE:94:F2:0C:C4:8B:77:67:62:AF:1C:33:D6:31 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 04D5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft Manifest number: 04CA Signing time: Sat 19 Jul 2025 00:12:34 +0000 Manifest this update: Sat 19 Jul 2025 00:12:33 +0000 Manifest next update: Sat 26 Jul 2025 00:12:33 +0000 Files and hashes: 1: 5D3SMzFr8OKboG0g3sJdtMwRbgg.crl (hash: sFnkgw99YurhRS1eY432jJ7VvZxHC64Bxd1ShO9MJg0=) 2: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (hash: aUDrwRtGsUzrY00Rmj3XgznPDP2fmFZxHTp5GIqGdmE=) 3: ECC109EA3C8811EC889B9D78C4F9AE02.roa (hash: qsT6gdrcrYiz10awZz/5+uahx1IUYSEl585Lltn+07o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:12:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1237 (0x4d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Jul 19 00:12:33 2025 GMT Not After : Jul 26 00:12:33 2025 GMT Subject: CN=687ae2f2-6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:bb:89:27:fc:e7:73:d0:a2:df:dd:69:fa:8e: 2f:b9:8f:c3:06:58:ca:24:41:8d:18:d7:9a:71:cc: ed:bc:12:bb:d8:2d:f8:02:e3:e9:f2:15:79:c8:2f: 22:85:01:29:55:93:40:b2:35:aa:63:a9:df:1e:53: 99:af:2f:3b:ad:fd:4f:fa:e3:07:5a:30:e6:1b:82: 67:8d:7e:c2:0b:4e:f4:02:57:34:6e:71:ca:16:91: ea:13:2e:b0:d9:8f:12:fb:67:2c:a0:c7:5b:56:cd: 40:59:ab:a3:73:b5:01:3e:64:65:8f:aa:f4:26:8d: 16:7e:c5:0d:24:06:69:f6:ac:d3:4e:3d:06:a6:8e: 5a:47:a3:0d:bf:a7:c6:07:51:35:25:64:29:09:3f: 15:20:47:4a:87:b3:f5:a8:43:54:3d:45:e4:00:97: fe:ae:91:0b:8e:70:b2:63:7a:78:aa:b0:2f:60:46: 2e:19:0a:77:14:f0:53:7b:77:c7:04:bb:07:62:3a: d0:2c:37:0c:62:86:4d:24:5d:00:96:40:7e:07:ab: d8:25:a3:b7:9f:4f:7d:0b:7f:6a:3e:55:91:5f:07: 8f:11:b4:9b:a1:65:09:56:97:1f:91:10:9c:3d:cd: 30:80:7f:18:be:c3:45:89:2c:d1:7a:0f:cd:5e:9e: a0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:F4:2F:46:95:3F:EE:94:F2:0C:C4:8B:77:67:62:AF:1C:33:D6:31 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:69:72:fa:84:88:6c:bf:61:e3:6c:aa:57:d8:d1:86:e8:44: f9:19:c8:15:c2:60:0c:78:da:41:85:9e:20:81:da:4b:e2:7b: b0:da:24:88:42:df:a4:45:82:4f:9f:c2:6c:e5:34:57:9f:3a: 57:ba:cd:5f:d9:95:09:97:a3:12:2b:04:c4:4c:89:5f:eb:ff: c4:c9:04:00:40:bf:f5:36:5f:40:24:a8:7d:85:cf:0a:7f:6f: d5:e1:25:4b:9d:25:f8:1b:d3:5e:a3:97:30:5f:d4:eb:28:03: 88:c2:68:d3:13:32:ec:7b:ce:09:1b:46:e0:c2:c6:b1:7e:ce: 39:6d:fc:68:e3:21:ed:a1:72:a3:aa:d8:73:03:83:5a:60:92: 19:f3:1f:eb:d8:6f:9c:25:be:f0:06:f4:a8:0e:4d:29:ce:cb: 0c:71:7d:9d:22:fd:e2:59:4f:27:9e:78:26:e1:c7:7e:c1:72: 13:9b:07:1f:42:67:e0:4b:2a:5b:c0:b1:ad:d1:5b:8f:5e:ab: 73:6d:7f:3c:5d:7a:30:d0:16:80:9e:54:a0:f9:cd:82:8d:73: 0b:f6:5c:42:4e:42:ea:b8:a4:a2:d5:6a:9d:b7:03:26:46:e8: 5e:85:22:61:cb:8f:98:49:75:de:d5:e9:10:a5:38:67:e2:85: 2c:ac:ad:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjUwNzE5MDAxMjMzWhcNMjUwNzI2MDAxMjMzWjAYMRYwFAYD VQQDEw02ODdhZTJmMi02MjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2LuJJ/znc9Ci391p+o4vuY/DBljKJEGNGNeaccztvBK72C34AuPp8hV5yC8i hQEpVZNAsjWqY6nfHlOZry87rf1P+uMHWjDmG4JnjX7CC070Alc0bnHKFpHqEy6w 2Y8S+2csoMdbVs1AWaujc7UBPmRlj6r0Jo0WfsUNJAZp9qzTTj0Gpo5aR6MNv6fG B1E1JWQpCT8VIEdKh7P1qENUPUXkAJf+rpELjnCyY3p4qrAvYEYuGQp3FPBTe3fH BLsHYjrQLDcMYoZNJF0AlkB+B6vYJaO3n099C39qPlWRXwePEbSboWUJVpcfkRCc Pc0wgH8YvsNFiSzReg/NXp6gZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA/0L0aV P+6U8gzEi3dnYq8cM9YxMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zRTlBNEFFMDMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhP S2JvRzBnM3NKZHRNd1JiZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiaXL6hIhsv2HjbKpX2NGG6ET5GcgVwmAMeNpBhZ4ggdpL4nuw2iSI Qt+kRYJPn8Js5TRXnzpXus1f2ZUJl6MSKwTETIlf6//EyQQAQL/1Nl9AJKh9hc8K f2/V4SVLnSX4G9Neo5cwX9TrKAOIwmjTEzLse84JG0bgwsaxfs45bfxo4yHtoXKj qthzA4NaYJIZ8x/r2G+cJb7wBvSoDk0pzssMcX2dIv3iWU8nnngm4cd+wXITmwcf QmfgSypbwLGt0VuPXqtzbX88XXow0BaAnlSg+c2CjXML9lxCTkLquKSi1WqdtwMm RuhehSJhy4+YSXXe1ekQpThn4oUsrK1T -----END CERTIFICATE-----Generated at Sun Jul 20 06:24:39 2025 by rpki-client