$ rpki-client -vvf rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.mft File: --bA8ysvL8RXYKA0LkO79VK03oU.mft (raw, json) Hash identifier: MSPwYfRDaZAO96SAZMrWq0QoMY9AJhhP/+RT1u+Oa1k= Subject key identifier: 2B:F3:22:B7:0B:A1:56:43:CE:E2:61:8E:33:D7:A4:E6:2A:45:FD:D7 Authority key identifier: FB:E6:C0:F3:2B:2F:2F:C4:57:60:A0:34:2E:43:BB:F5:52:B4:DE:85 Certificate issuer: /CN=A9124BD3/serialNumber=FBE6C0F32B2F2FC45760A0342E43BBF552B4DE85 Certificate serial: 0DBC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/--bA8ysvL8RXYKA0LkO79VK03oU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.mft Manifest number: 0DA7 Signing time: Tue 22 Jul 2025 18:05:19 +0000 Manifest this update: Tue 22 Jul 2025 18:05:18 +0000 Manifest next update: Tue 29 Jul 2025 18:05:18 +0000 Files and hashes: 1: --bA8ysvL8RXYKA0LkO79VK03oU.crl (hash: SWcxmItYu2ButviL5ky3BKxOOXG5EZnD+QNM5XngbHY=) 2: 4C67EC06C68E11E983395515C4F9AE02.roa (hash: tP21nihbHvOPN0o7Q7ZnYvoB4lWQWRK3//ALxViNCn4=) 3: CA761A36760A11EC8FB55C23C4F9AE02.roa (hash: XcKMqxWrgr72X1rDOMRNGWOhRv7K/Bosj9SE1/JpnIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.crl rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/--bA8ysvL8RXYKA0LkO79VK03oU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 18:05:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3516 (0xdbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124BD3, serialNumber=FBE6C0F32B2F2FC45760A0342E43BBF552B4DE85 Validity Not Before: Jul 22 18:05:18 2025 GMT Not After : Jul 29 18:05:18 2025 GMT Subject: CN=687fd2de-1fc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:88:f2:c0:00:1c:cc:38:1f:86:e1:8b:3f:5e: 0c:aa:85:16:23:54:08:c8:5d:8e:5d:07:1c:76:dc: f2:c7:0f:b0:72:c5:28:d6:0c:cd:3e:ef:a1:e7:9b: 7f:bd:12:c9:9c:7e:eb:4e:97:90:36:21:fe:13:9e: 80:36:56:ad:22:50:61:f8:de:f6:8d:8d:5f:3b:a7: 8d:11:b2:7b:6b:d4:67:6b:3f:cf:f3:1f:fe:ba:c4: cd:bf:57:34:02:77:21:88:23:cc:5a:48:f7:ff:78: b9:19:07:12:f2:f8:6d:7f:da:80:36:15:3f:8e:d6: ab:3b:3d:be:14:e0:6e:57:4b:44:b5:fe:a6:4b:79: 4e:85:6f:08:8b:0d:a6:3b:9a:fb:6b:a6:3c:a1:7e: 25:a3:fe:bc:59:37:fc:1e:38:37:cc:c9:cd:b4:ec: f2:5d:0f:15:fd:cf:5a:fd:eb:84:3f:9a:4a:b2:8d: 85:8b:65:d6:85:64:aa:93:9d:34:23:20:78:46:7b: 91:d0:2a:2c:84:f2:9c:d2:55:9c:23:ea:68:7c:ad: fe:91:c8:44:0a:bc:e5:67:9e:79:43:6b:7e:2e:15: c5:a0:2d:9b:7e:0c:dc:32:60:eb:ec:67:cd:e6:30: 25:f6:3d:91:9d:fa:36:7a:fd:87:0f:c4:0f:d8:05: 25:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:F3:22:B7:0B:A1:56:43:CE:E2:61:8E:33:D7:A4:E6:2A:45:FD:D7 X509v3 Authority Key Identifier: keyid:FB:E6:C0:F3:2B:2F:2F:C4:57:60:A0:34:2E:43:BB:F5:52:B4:DE:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/--bA8ysvL8RXYKA0LkO79VK03oU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124BD3/0E4D867AC68D11E99B452D13C4F9AE02/--bA8ysvL8RXYKA0LkO79VK03oU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:1e:cc:ee:19:a2:df:ae:82:b5:5e:89:5f:13:59:87:a2:e3: cb:9b:3b:92:9a:22:05:07:23:da:82:83:a7:d0:bc:88:2b:bc: 74:88:0d:30:e2:50:40:c5:c8:fe:ab:53:2c:0f:91:f0:65:81: 87:a8:9e:39:21:84:21:74:33:fc:33:68:7b:4a:c8:bc:56:c0: 1b:ea:eb:7b:11:34:ab:e6:3f:3a:9b:49:5f:f8:c8:7e:fd:55: 1c:3a:be:03:48:cb:df:98:20:d3:56:90:24:3c:e9:d2:6c:3c: a9:50:78:8a:38:81:d4:73:3d:fd:6b:06:40:93:31:67:c9:b8: a7:84:38:ba:a7:64:87:ff:e8:85:ea:e3:1a:49:5a:92:fe:e5: 58:b5:98:05:a6:7c:f8:ec:c0:67:0b:67:a9:40:0f:17:d1:bf: 7b:31:1a:a9:eb:c6:9f:97:27:f6:7d:6d:8d:fc:31:76:5a:01: e4:32:af:59:67:f0:32:58:47:02:8d:5d:85:de:36:00:3e:1b: 80:7e:2b:46:51:78:e1:5d:c2:b6:fc:fb:c7:25:e5:ac:a9:03: 4d:f3:7a:bb:5c:46:be:a6:95:99:d4:0e:4e:e5:bb:3f:cf:24: 73:ed:8f:34:ce:33:b3:8d:be:df:12:60:cb:50:9a:5e:de:74: af:1a:e4:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjRCRDMxMTAvBgNVBAUTKEZCRTZDMEYzMkIyRjJGQzQ1NzYwQTAzNDJFNDNCQkY1 NTJCNERFODUwHhcNMjUwNzIyMTgwNTE4WhcNMjUwNzI5MTgwNTE4WjAYMRYwFAYD VQQDEw02ODdmZDJkZS0xZmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ojywAAczDgfhuGLP14MqoUWI1QIyF2OXQccdtzyxw+wcsUo1gzNPu+h55t/ vRLJnH7rTpeQNiH+E56ANlatIlBh+N72jY1fO6eNEbJ7a9Rnaz/P8x/+usTNv1c0 AnchiCPMWkj3/3i5GQcS8vhtf9qANhU/jtarOz2+FOBuV0tEtf6mS3lOhW8Iiw2m O5r7a6Y8oX4lo/68WTf8Hjg3zMnNtOzyXQ8V/c9a/euEP5pKso2Fi2XWhWSqk500 IyB4RnuR0CoshPKc0lWcI+pofK3+kchECrzlZ555Q2t+LhXFoC2bfgzcMmDr7GfN 5jAl9j2Rnfo2ev2HD8QP2AUlEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvzIrcL oVZDzuJhjjPXpOYqRf3XMB8GA1UdIwQYMBaAFPvmwPMrLy/EV2CgNC5Du/VStN6F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNEJEMy8wRTREODY3QUM2 OEQxMUU5OUI0NTJEMTNDNEY5QUUwMi8tLWJBOHlzdkw4UlhZS0EwTGtPNzlWSzAz b1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy0tYkE4eXN2TDhSWFlLQTBMa083OVZLMDNvVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NEJEMy8wRTREODY3QUM2OEQxMUU5OUI0NTJEMTNDNEY5QUUwMi8tLWJBOHlzdkw4 UlhZS0EwTGtPNzlWSzAzb1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbHszuGaLfroK1XolfE1mHouPLmzuSmiIFByPagoOn0LyIK7x0iA0w 4lBAxcj+q1MsD5HwZYGHqJ45IYQhdDP8M2h7Ssi8VsAb6ut7ETSr5j86m0lf+Mh+ /VUcOr4DSMvfmCDTVpAkPOnSbDypUHiKOIHUcz39awZAkzFnybinhDi6p2SH/+iF 6uMaSVqS/uVYtZgFpnz47MBnC2epQA8X0b97MRqp68aflyf2fW2N/DF2WgHkMq9Z Z/AyWEcCjV2F3jYAPhuAfitGUXjhXcK2/PvHJeWsqQNN83q7XEa+ppWZ1A5O5bs/ zyRz7Y80zjOzjb7fEmDLUJpe3nSvGuQ2 -----END CERTIFICATE-----Generated at Thu Jul 24 17:22:33 2025 by rpki-client