$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.mft File: CkXFDjcjWiqiI-nzEzH2lCjg2UY.mft (raw, json) Hash identifier: 6kROyYHlzlVDvzygDAvRNsYJNKhSpoL67eV/pWDGlWo= Subject key identifier: 83:27:F2:D7:2C:BC:EC:6D:37:BB:C1:3D:ED:39:0D:5E:D8:A6:68:20 Authority key identifier: 0A:45:C5:0E:37:23:5A:2A:A2:23:E9:F3:13:31:F6:94:28:E0:D9:46 Certificate issuer: /CN=A9128C53/serialNumber=0A45C50E37235A2AA223E9F31331F69428E0D946 Certificate serial: 0133 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkXFDjcjWiqiI-nzEzH2lCjg2UY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.mft Manifest number: 0131 Signing time: Mon 21 Jul 2025 04:39:23 +0000 Manifest this update: Mon 21 Jul 2025 04:39:22 +0000 Manifest next update: Mon 28 Jul 2025 04:39:22 +0000 Files and hashes: 1: CkXFDjcjWiqiI-nzEzH2lCjg2UY.crl (hash: Sw5qUVbOtV2LWivXLnn9B3h394LKV8wMfwtKuSDFkes=) 2: 04A9BC6EDAC011EE94B8705AC4F9AE02.roa (hash: KPnhqjLLs6yDc2UwZmMfmiNxRsrivufpZvf1sQ6QcZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.crl rsync://rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkXFDjcjWiqiI-nzEzH2lCjg2UY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:39:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C53, serialNumber=0A45C50E37235A2AA223E9F31331F69428E0D946 Validity Not Before: Jul 21 04:39:22 2025 GMT Not After : Jul 28 04:39:22 2025 GMT Subject: CN=687dc47a-7293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:0d:74:96:cd:51:79:04:01:29:96:ad:a4:83: 0a:53:8b:25:60:d6:0f:a5:ab:ce:dd:e1:d6:33:bb: d0:7e:db:9c:3d:21:46:4a:42:eb:2a:18:76:2d:22: a0:1c:87:bf:d6:43:5c:00:51:8c:9e:ca:e7:68:c2: b9:b2:f8:45:3d:2f:4e:40:87:cc:dd:48:b6:86:68: 4a:b9:7e:0a:af:e5:4f:a2:15:b6:f3:82:d7:e8:30: d0:04:18:9a:12:4b:ec:bd:49:00:1d:04:a6:b4:02: 8f:08:a8:f4:bf:01:bc:8d:85:cf:23:da:21:97:41: 42:a7:1f:00:8e:22:7b:df:bc:2b:b5:bb:6c:e9:6b: 6c:80:17:79:6e:5f:75:91:53:c7:b7:73:8d:7a:27: 0e:2e:f7:f2:72:7d:6a:3a:1f:8a:97:7c:a3:72:64: 78:0b:80:49:3c:4b:5d:d0:76:ac:f1:e0:bf:06:e5: 7e:aa:be:ce:3f:6a:e9:35:da:70:cd:62:b7:e2:37: 97:a3:bc:81:09:0e:4f:c8:05:d8:aa:4e:2a:fe:fe: 5f:c0:c1:1a:a3:85:8d:b8:54:ba:b5:0f:7a:8b:3a: 15:ce:ca:13:f1:ae:24:e4:9b:af:99:15:69:f3:bd: 29:7f:21:01:67:32:15:26:92:33:a4:f7:cc:a7:74: b8:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:27:F2:D7:2C:BC:EC:6D:37:BB:C1:3D:ED:39:0D:5E:D8:A6:68:20 X509v3 Authority Key Identifier: keyid:0A:45:C5:0E:37:23:5A:2A:A2:23:E9:F3:13:31:F6:94:28:E0:D9:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkXFDjcjWiqiI-nzEzH2lCjg2UY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C53/EA6ECE0A938111EEBFCBFF24C4F9AE02/CkXFDjcjWiqiI-nzEzH2lCjg2UY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:e3:3a:76:f4:58:d9:84:c7:41:b7:53:a5:63:7f:6a:6e:34: 58:be:62:15:80:41:f1:ff:8f:8b:29:cb:47:a5:fd:ea:fd:c9: 21:76:0b:e8:d5:8c:a5:ea:4a:bc:fa:fd:ac:b4:e4:72:aa:44: 86:74:cb:b9:39:8b:c7:45:b8:e2:e2:76:86:dd:e5:6d:b8:eb: 64:e0:73:5a:7c:f6:dc:8b:5a:77:a3:84:b0:89:7c:48:78:97: 97:14:79:55:91:97:08:51:9d:5a:44:f6:52:10:a0:ad:55:be: a9:75:48:fb:4c:0c:12:20:09:b9:9b:db:92:6a:38:f4:54:29: db:e3:fc:db:64:f4:1a:1b:27:e2:2d:89:2d:b8:18:6e:7e:7b: 8e:b8:f4:7d:53:ad:50:68:b0:2c:de:56:ad:28:e7:54:85:06: fc:14:4a:3f:23:ac:39:1a:b4:63:9c:19:18:56:7f:bf:7a:54: 18:da:2e:a7:5e:2c:90:37:ff:71:48:07:7a:e5:57:35:47:92: b0:85:85:67:c6:0b:e8:4a:0c:c9:10:d7:d0:d7:a9:8b:10:86: 81:61:11:63:4a:a1:c9:0e:73:7c:01:dd:f2:74:72:59:73:62: d3:29:41:63:87:88:23:99:1e:73:f8:b0:d2:b9:cb:29:96:1f: 70:0a:7f:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDNTMxMTAvBgNVBAUTKDBBNDVDNTBFMzcyMzVBMkFBMjIzRTlGMzEzMzFGNjk0 MjhFMEQ5NDYwHhcNMjUwNzIxMDQzOTIyWhcNMjUwNzI4MDQzOTIyWjAYMRYwFAYD VQQDEw02ODdkYzQ3YS03MjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3A10ls1ReQQBKZatpIMKU4slYNYPpavO3eHWM7vQftucPSFGSkLrKhh2LSKg HIe/1kNcAFGMnsrnaMK5svhFPS9OQIfM3Ui2hmhKuX4Kr+VPohW284LX6DDQBBia EkvsvUkAHQSmtAKPCKj0vwG8jYXPI9ohl0FCpx8AjiJ737wrtbts6WtsgBd5bl91 kVPHt3ONeicOLvfycn1qOh+Kl3yjcmR4C4BJPEtd0Has8eC/BuV+qr7OP2rpNdpw zWK34jeXo7yBCQ5PyAXYqk4q/v5fwMEao4WNuFS6tQ96izoVzsoT8a4k5JuvmRVp 870pfyEBZzIVJpIzpPfMp3S4NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMn8tcs vOxtN7vBPe05DV7YpmggMB8GA1UdIwQYMBaAFApFxQ43I1oqoiPp8xMx9pQo4NlG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEM1My9FQTZFQ0UwQTkz ODExMUVFQkZDQkZGMjRDNEY5QUUwMi9Da1hGRGpjaldpcWlJLW56RXpIMmxDamcy VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrWEZEamNqV2lxaUktbnpFekgybENqZzJVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEM1My9FQTZFQ0UwQTkzODExMUVFQkZDQkZGMjRDNEY5QUUwMi9Da1hGRGpjaldp cWlJLW56RXpIMmxDamcyVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe4zp29FjZhMdBt1OlY39qbjRYvmIVgEHx/4+LKctHpf3q/ckhdgvo 1Yyl6kq8+v2stORyqkSGdMu5OYvHRbji4naG3eVtuOtk4HNafPbci1p3o4SwiXxI eJeXFHlVkZcIUZ1aRPZSEKCtVb6pdUj7TAwSIAm5m9uSajj0VCnb4/zbZPQaGyfi LYktuBhufnuOuPR9U61QaLAs3latKOdUhQb8FEo/I6w5GrRjnBkYVn+/elQY2i6n XiyQN/9xSAd65Vc1R5KwhYVnxgvoSgzJENfQ16mLEIaBYRFjSqHJDnN8Ad3ydHJZ c2LTKUFjh4gjmR5z+LDSucsplh9wCn/p -----END CERTIFICATE-----Generated at Mon Jul 21 13:26:19 2025 by rpki-client