$ rpki-client -vvf rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft File: d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft (raw, json) Hash identifier: GnSmJL8yhYExzpPvnkDb8NZ9t3FYPurkXinuZSILVZk= Subject key identifier: 4E:1B:87:4A:0E:BF:39:51:E8:83:B7:96:2C:BE:D6:3C:DE:42:3A:03 Authority key identifier: 77:EC:48:69:2D:04:27:02:97:8D:CD:0B:68:E9:40:B8:D7:72:3E:52 Certificate issuer: /CN=A9112320/serialNumber=77EC48692D042702978DCD0B68E940B8D7723E52 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft Manifest number: 0125 Signing time: Fri 18 Jul 2025 23:48:43 +0000 Manifest this update: Fri 18 Jul 2025 23:48:42 +0000 Manifest next update: Fri 25 Jul 2025 23:48:42 +0000 Files and hashes: 1: d-xIaS0EJwKXjc0LaOlAuNdyPlI.crl (hash: izBWUcEs0824hKDjHhXmbU3b+zqPvDaiFRws+d7coqQ=) 2: 7EE26732EB2411EEBDA7715FC4F9AE02.roa (hash: Kj01wL6hxzZNZ8dZAbJKpipOYkN2WV1ZM26ZUUjGKvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.crl rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:48:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112320, serialNumber=77EC48692D042702978DCD0B68E940B8D7723E52 Validity Not Before: Jul 18 23:48:42 2025 GMT Not After : Jul 25 23:48:42 2025 GMT Subject: CN=687add5a-8c25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f2:1d:4b:5a:ca:3e:bb:a7:a8:c7:a5:d7:3b: 3e:21:49:dd:d8:90:fc:8e:43:e4:34:f2:e4:07:eb: 36:40:eb:a8:9e:de:17:09:71:8c:03:6f:55:bd:58: 55:0c:3b:67:53:b3:df:cc:4e:a2:84:60:6e:8d:b8: c5:fa:c6:14:df:a8:dd:f7:0b:26:95:cd:3e:94:7d: 6d:2b:14:d2:cf:d1:c2:55:c7:db:07:d8:36:8b:83: 51:cd:df:b0:bb:5d:01:1c:5c:99:11:b7:ed:c1:33: 7a:46:7d:db:95:61:1b:e1:cf:a2:6f:39:52:32:22: 09:b4:c7:42:ee:d6:fb:88:7e:60:5c:0c:1b:7e:54: 91:b0:4e:41:14:ab:80:c1:1a:e2:b1:ec:77:26:0f: ef:58:9e:10:20:f7:76:71:64:ad:d4:ec:5c:43:5a: 08:66:d5:0e:c5:db:d6:e1:28:66:f5:e9:08:ba:31: 7d:34:93:48:ae:1a:3a:18:b3:7d:39:ea:52:44:6d: cf:12:18:b0:2f:e9:e6:ca:4d:57:4a:86:e7:d8:dd: 21:7c:95:95:e1:0b:0a:9b:e8:42:7a:e0:29:f8:66: 97:bb:3a:2b:6f:a0:e2:3a:45:86:19:04:48:11:28: 69:57:c4:47:76:c8:83:a0:90:f1:52:a0:67:58:fb: c4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:1B:87:4A:0E:BF:39:51:E8:83:B7:96:2C:BE:D6:3C:DE:42:3A:03 X509v3 Authority Key Identifier: keyid:77:EC:48:69:2D:04:27:02:97:8D:CD:0B:68:E9:40:B8:D7:72:3E:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/d-xIaS0EJwKXjc0LaOlAuNdyPlI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112320/28C6CCE6A9F011EE9315ED6CC4F9AE02/d-xIaS0EJwKXjc0LaOlAuNdyPlI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:10:a0:fe:6f:94:99:9a:f4:5a:31:8a:5e:d6:22:12:c2:4c: ae:a3:e2:55:a0:25:a1:a4:78:b0:da:78:8f:91:e2:53:2a:a8: f0:3a:4e:e7:68:0b:2b:cc:63:c8:b0:02:79:48:28:9e:56:32: 34:14:5d:a7:87:13:74:a9:12:ab:ed:e2:e9:cd:b9:56:76:d4: 65:5b:2b:79:84:57:04:2e:8a:d5:86:48:3d:57:89:0b:a5:ea: d9:c9:2f:cb:ce:4b:ad:45:04:f1:8b:44:1b:1e:3f:a2:22:2b: 86:03:ac:65:54:df:00:34:d0:b6:cf:51:e7:4f:27:e5:a8:66: df:3a:da:ab:37:11:ed:28:a2:82:76:20:e0:9e:05:1e:58:09: 38:03:f9:dd:09:27:bd:a7:61:d4:ad:b3:0b:f5:fd:34:1b:9f: 59:c6:9b:e2:6f:74:b2:f3:a6:e9:1a:aa:8e:c8:79:f3:ab:16: 1a:94:71:f7:66:47:58:3e:13:44:5e:8d:24:8a:15:87:07:50: 81:91:dc:a0:b3:97:0b:21:ea:8b:53:b5:6d:a5:96:58:bb:c3: 7e:e8:30:60:64:fd:a3:db:27:a1:af:11:95:ee:51:ce:a7:39: 45:4f:56:92:66:30:ba:53:64:5e:72:a7:ce:bc:25:7a:31:6e: 03:af:4b:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIzMjAxMTAvBgNVBAUTKDc3RUM0ODY5MkQwNDI3MDI5NzhEQ0QwQjY4RTk0MEI4 RDc3MjNFNTIwHhcNMjUwNzE4MjM0ODQyWhcNMjUwNzI1MjM0ODQyWjAYMRYwFAYD VQQDEw02ODdhZGQ1YS04YzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvIdS1rKPrunqMel1zs+IUnd2JD8jkPkNPLkB+s2QOuont4XCXGMA29VvVhV DDtnU7PfzE6ihGBujbjF+sYU36jd9wsmlc0+lH1tKxTSz9HCVcfbB9g2i4NRzd+w u10BHFyZEbftwTN6Rn3blWEb4c+ibzlSMiIJtMdC7tb7iH5gXAwbflSRsE5BFKuA wRrisex3Jg/vWJ4QIPd2cWSt1OxcQ1oIZtUOxdvW4Shm9ekIujF9NJNIrho6GLN9 OepSRG3PEhiwL+nmyk1XSobn2N0hfJWV4QsKm+hCeuAp+GaXuzorb6DiOkWGGQRI EShpV8RHdsiDoJDxUqBnWPvE3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4bh0oO vzlR6IO3liy+1jzeQjoDMB8GA1UdIwQYMBaAFHfsSGktBCcCl43NC2jpQLjXcj5S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjMyMC8yOEM2Q0NFNkE5 RjAxMUVFOTMxNUVENkNDNEY5QUUwMi9kLXhJYVMwRUp3S1hqYzBMYU9sQXVOZHlQ bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2QteElhUzBFSndLWGpjMExhT2xBdU5keVBsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjMyMC8yOEM2Q0NFNkE5RjAxMUVFOTMxNUVENkNDNEY5QUUwMi9kLXhJYVMwRUp3 S1hqYzBMYU9sQXVOZHlQbEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdEKD+b5SZmvRaMYpe1iISwkyuo+JVoCWhpHiw2niPkeJTKqjwOk7n aAsrzGPIsAJ5SCieVjI0FF2nhxN0qRKr7eLpzblWdtRlWyt5hFcELorVhkg9V4kL perZyS/LzkutRQTxi0QbHj+iIiuGA6xlVN8ANNC2z1HnTyflqGbfOtqrNxHtKKKC diDgngUeWAk4A/ndCSe9p2HUrbML9f00G59Zxpvib3Sy86bpGqqOyHnzqxYalHH3 ZkdYPhNEXo0kihWHB1CBkdygs5cLIeqLU7VtpZZYu8N+6DBgZP2j2yehrxGV7lHO pzlFT1aSZjC6U2RecqfOvCV6MW4Dr0sV -----END CERTIFICATE-----Generated at Sun Jul 20 20:40:41 2025 by rpki-client