$ rpki-client -vvf rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft File: A4zy4oB33yytpFdW-12ZpuJA_Qk.mft (raw, json) Hash identifier: YIU/ozNj22Sjbz90uk/a7QblVCaPamZ0axyOXwAF2rI= Subject key identifier: C1:95:F3:A6:63:75:E8:E7:07:CF:12:8B:AF:F2:60:79:33:B4:9C:35 Authority key identifier: 03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09 Certificate issuer: /CN=A9112CEC/serialNumber=038CF2E28077DF2CADA45756FB5D99A6E240FD09 Certificate serial: 34C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft Manifest number: 34B6 Signing time: Sun 24 Aug 2025 15:08:47 +0000 Manifest this update: Sun 24 Aug 2025 15:08:47 +0000 Manifest next update: Sun 31 Aug 2025 15:08:47 +0000 Files and hashes: 1: A4zy4oB33yytpFdW-12ZpuJA_Qk.crl (hash: ij4fNHaDSf2ZmPDfHPhDtLYk9rgTaiyniWX4ZAwFsf0=) 2: 55A4C5C004AA11E8935B7021C4F9AE02.roa (hash: kZdCLZLr7MrW3XdEboMd7BRjcidMEtmhtIWvhKUYQqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.crl rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 15:08:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13505 (0x34c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112CEC, serialNumber=038CF2E28077DF2CADA45756FB5D99A6E240FD09 Validity Not Before: Aug 24 15:08:47 2025 GMT Not After : Aug 31 15:08:47 2025 GMT Subject: CN=68ab2aff-6789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e3:4c:88:52:f3:67:fd:58:bf:52:44:fa:23: 38:a1:e2:b9:ad:f8:92:fe:94:ef:16:c0:35:49:e8: 26:d1:bd:d1:d5:17:58:0d:5b:b0:a1:8d:40:ee:b0: 63:44:4e:37:c1:3c:46:a2:eb:eb:6a:c5:69:48:77: 87:78:61:5d:b2:b0:70:b2:10:7a:84:cd:c6:ba:ec: 66:4f:9d:16:19:f9:c1:d8:6f:03:c1:d7:8c:5d:5c: e7:11:1f:0f:2e:20:5e:40:e0:cd:e9:31:ea:15:5c: 28:15:92:3f:f3:a5:67:6e:24:c2:69:db:1b:a6:c8: 6c:6d:75:a8:3e:5a:1c:3c:5b:1c:79:11:62:00:5d: 0a:42:ec:7b:87:1e:39:33:36:be:14:a0:2b:88:72: c4:af:09:5e:af:0e:5c:62:71:33:90:eb:65:f0:9c: 6f:06:e8:6f:c7:f0:5f:bf:28:e4:de:81:af:e4:f8: 37:30:60:f3:11:ca:e6:2f:44:28:44:37:86:2b:52: e4:06:40:c9:b9:13:0a:7c:d2:50:1d:1d:f2:b3:e0: 1f:a4:05:bd:b2:31:39:2c:0d:fc:e1:33:77:8b:d9: 6c:6c:e8:35:1c:85:9e:e9:92:9b:97:87:d4:1f:c8: 1a:b9:fa:e5:97:11:40:7d:dc:f2:60:d7:47:88:55: 77:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:95:F3:A6:63:75:E8:E7:07:CF:12:8B:AF:F2:60:79:33:B4:9C:35 X509v3 Authority Key Identifier: keyid:03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:c4:f9:4d:2d:2b:fb:1b:f1:0f:db:e0:7d:cd:62:a3:5b:f7: 9f:1c:8a:e7:68:59:29:23:d3:82:b9:f0:bd:37:b2:ca:18:d7: 91:e2:0f:24:33:cb:9f:e7:33:da:00:bb:65:39:da:9c:7b:8c: f7:e3:75:4c:d3:96:21:de:24:2c:6f:35:d5:4f:9f:d2:37:20: de:a7:ae:14:08:da:6a:d0:37:84:62:6c:f2:d3:31:9b:89:00: ee:e0:0a:fd:22:c7:b1:4d:fd:53:d0:e9:c7:26:fa:54:81:6b: 9e:d7:24:61:3e:33:d5:0d:d7:d8:5f:6c:fb:a4:7c:ab:ba:d5: 00:32:95:b0:de:87:82:2a:85:78:67:d3:8c:41:fd:d9:23:c7: 34:c2:b8:33:84:e3:db:3d:02:ef:de:df:1f:f8:65:f2:a2:f5: 95:74:8e:98:62:b5:4d:7d:15:c4:e9:ef:2b:7e:e1:5b:bb:f1: 63:30:d2:b9:53:77:b9:d6:5a:e1:d4:70:3e:58:9d:90:75:0f: 03:1e:09:03:d3:40:82:2f:9d:4d:77:7d:21:19:50:6c:ed:79: 28:f8:4d:62:4b:1a:ab:2c:ec:6b:21:b5:55:af:18:d8:35:4a: 29:6d:9c:5f:70:a8:9c:33:74:4c:d4:5f:5c:e1:3b:38:c7:c8: b3:b9:e3:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJDRUMxMTAvBgNVBAUTKDAzOENGMkUyODA3N0RGMkNBREE0NTc1NkZCNUQ5OUE2 RTI0MEZEMDkwHhcNMjUwODI0MTUwODQ3WhcNMjUwODMxMTUwODQ3WjAYMRYwFAYD VQQDEw02OGFiMmFmZi02Nzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+NMiFLzZ/1Yv1JE+iM4oeK5rfiS/pTvFsA1Segm0b3R1RdYDVuwoY1A7rBj RE43wTxGouvrasVpSHeHeGFdsrBwshB6hM3GuuxmT50WGfnB2G8DwdeMXVznER8P LiBeQODN6THqFVwoFZI/86VnbiTCadsbpshsbXWoPlocPFsceRFiAF0KQux7hx45 Mza+FKAriHLErwlerw5cYnEzkOtl8JxvBuhvx/Bfvyjk3oGv5Pg3MGDzEcrmL0Qo RDeGK1LkBkDJuRMKfNJQHR3ys+AfpAW9sjE5LA384TN3i9lsbOg1HIWe6ZKbl4fU H8gaufrllxFAfdzyYNdHiFV3sQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGV86Zj dejnB88Si6/yYHkztJw1MB8GA1UdIwQYMBaAFAOM8uKAd98sraRXVvtdmabiQP0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkNFQy9COEIwQzc4ODFE QTQxMUUyOEM5M0U3OUEwOEIwMkNEMi9BNHp5NG9CMzN5eXRwRmRXLTEyWnB1SkFf UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0enk0b0IzM3l5dHBGZFctMTJacHVKQV9Ray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkNFQy9COEIwQzc4ODFEQTQxMUUyOEM5M0U3OUEwOEIwMkNEMi9BNHp5NG9CMzN5 eXRwRmRXLTEyWnB1SkFfUWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApxPlNLSv7G/EP2+B9zWKjW/efHIrnaFkpI9OCufC9N7LKGNeR4g8k M8uf5zPaALtlOdqce4z343VM05Yh3iQsbzXVT5/SNyDep64UCNpq0DeEYmzy0zGb iQDu4Ar9IsexTf1T0OnHJvpUgWue1yRhPjPVDdfYX2z7pHyrutUAMpWw3oeCKoV4 Z9OMQf3ZI8c0wrgzhOPbPQLv3t8f+GXyovWVdI6YYrVNfRXE6e8rfuFbu/FjMNK5 U3e51lrh1HA+WJ2QdQ8DHgkD00CCL51Nd30hGVBs7Xko+E1iSxqrLOxrIbVVrxjY NUopbZxfcKicM3RM1F9c4Ts4x8izueNS -----END CERTIFICATE-----Generated at Sun Aug 24 22:04:59 2025 by rpki-client