$ rpki-client -vvf rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft File: aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft (raw, json) Hash identifier: t0JwxTX+oBYCvVj5PcE+agiMIojq3+3g1l5+BLxvgY4= Subject key identifier: 20:4C:87:1E:DF:1E:41:F6:49:75:2E:B9:DC:6E:0A:04:CB:C0:9B:0D Authority key identifier: 69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 Certificate issuer: /CN=A9119333/serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Certificate serial: 22ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft Manifest number: 22AA Signing time: Thu 04 Sep 2025 15:57:07 +0000 Manifest this update: Thu 04 Sep 2025 15:57:07 +0000 Manifest next update: Thu 11 Sep 2025 15:57:07 +0000 Files and hashes: 1: aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl (hash: PS4a3QK4gU8W1600ZUdrClqiL+T3wpFdbD/AS7WxVCw=) 2: 443C3AF2D3F611EFB03C5C14C4F9AE02.roa (hash: QalrWEPHK1c0+wAh4Y9v/QxVAuOH9u4KL51JrDmBQPs=) 3: DD73806ED3C811EF9D76942FC4F9AE02.roa (hash: yV/SjGOrZoU6XjMAo/QC3pR5jQlSni/vmLDt0r4ftkA=) 4: 1AC9199AD3CB11EF84052053C4F9AE02.roa (hash: 3g8CG6eXI2y/sKSche4ErWaN1/woBDrqwhgjSA2yZ4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:57:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8941 (0x22ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119333, serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Validity Not Before: Sep 4 15:57:07 2025 GMT Not After : Sep 11 15:57:07 2025 GMT Subject: CN=68b9b6d3-5dd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:9f:51:46:e9:47:6a:78:06:63:3d:ae:61:e5: 8c:74:8d:f3:e4:4a:13:98:e6:bc:5a:14:77:08:95: b4:5d:98:4e:bd:08:5e:94:b8:aa:a6:ed:05:00:7e: b7:83:52:73:55:bf:68:7f:46:73:f8:7a:49:12:02: 83:24:1c:bb:8f:aa:01:ea:d1:0e:ba:01:61:fa:38: 5b:b4:40:1f:e2:69:a9:d7:b9:5c:26:ff:75:64:d7: 19:e0:50:18:c3:fd:b6:48:95:a5:bd:a6:17:02:cf: 50:3e:3d:b8:c6:2e:44:c3:df:06:4c:18:6e:16:d5: 33:93:53:85:d4:de:9d:0b:03:f1:d1:52:ae:af:a5: 6a:bd:91:69:fd:ff:82:6a:7f:7a:71:b9:ac:d5:7e: 12:9a:f4:93:a2:a0:a0:65:55:24:fd:fa:b2:a5:2c: 71:c4:c8:97:e4:05:70:0c:a7:28:1d:8c:b4:04:34: 40:f5:44:4c:08:9d:e0:52:f0:5c:8e:3f:f9:23:18: d1:8e:8e:cb:4a:d9:74:d9:c5:81:b0:98:76:80:dc: b1:ee:0f:1c:7d:9a:6c:02:2e:b2:6a:5b:a2:74:1a: 18:88:d6:0e:f3:f0:b6:0d:85:58:ef:e5:bc:92:3c: 8e:4d:2f:df:93:08:aa:ec:f3:f6:2e:15:ba:96:e0: 86:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:4C:87:1E:DF:1E:41:F6:49:75:2E:B9:DC:6E:0A:04:CB:C0:9B:0D X509v3 Authority Key Identifier: keyid:69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:87:fe:e8:84:3d:7d:8e:23:ea:c3:f3:8f:49:9a:a7:bc:98: 9b:26:3c:41:38:aa:ee:2e:1b:24:b7:b5:ef:07:d9:68:7f:0a: 86:b0:a9:46:d5:e1:57:1e:d9:d0:62:7e:96:f6:2e:f2:24:b4: a9:78:1f:4c:cb:d7:50:33:61:12:da:a3:b9:73:fe:83:5e:c8: 00:b5:4c:cd:a7:4d:e1:ff:32:cc:5a:4a:83:74:a5:81:44:21: bc:47:0c:c0:cc:2a:08:af:2c:f4:c1:ca:23:a8:77:84:a1:5b: 05:a7:df:1c:64:a4:9c:e5:5f:c0:bb:09:e4:14:2b:8d:1d:3e: ef:89:60:80:e8:00:15:4c:cf:50:98:1c:4b:3f:8a:ae:b4:62: 8e:20:53:94:db:73:63:48:e9:d8:ee:bd:0c:a9:e8:3e:b7:8b: 89:ae:1c:4f:14:ec:ce:b5:3a:30:d1:ec:b9:14:c5:e4:ad:d9: 12:44:39:ed:4e:89:5e:fb:eb:4a:a6:05:8d:c0:60:a1:b3:b5: 55:01:ac:08:d2:82:60:d4:88:76:ac:bc:1b:70:4a:01:31:6f: bb:8c:48:07:e0:da:7c:9d:70:1b:2d:eb:bc:0b:df:19:ec:11: ef:d1:ad:81:ec:b0:a1:15:0a:a1:ab:7d:44:7e:c8:5e:a9:8b: 8f:71:db:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkzMzMxMTAvBgNVBAUTKDY5OUU2NzQyNTY3QkU3MzI5Q0MzQTc4NkRFQjc4NTdF MkMyNDIwRjkwHhcNMjUwOTA0MTU1NzA3WhcNMjUwOTExMTU1NzA3WjAYMRYwFAYD VQQDEw02OGI5YjZkMy01ZGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Z9RRulHangGYz2uYeWMdI3z5EoTmOa8WhR3CJW0XZhOvQhelLiqpu0FAH63 g1JzVb9of0Zz+HpJEgKDJBy7j6oB6tEOugFh+jhbtEAf4mmp17lcJv91ZNcZ4FAY w/22SJWlvaYXAs9QPj24xi5Ew98GTBhuFtUzk1OF1N6dCwPx0VKur6VqvZFp/f+C an96cbms1X4SmvSToqCgZVUk/fqypSxxxMiX5AVwDKcoHYy0BDRA9URMCJ3gUvBc jj/5IxjRjo7LStl02cWBsJh2gNyx7g8cfZpsAi6yaluidBoYiNYO8/C2DYVY7+W8 kjyOTS/fkwiq7PP2LhW6luCGYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBMhx7f HkH2SXUuudxuCgTLwJsNMB8GA1UdIwQYMBaAFGmeZ0JWe+cynMOnht63hX4sJCD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTMzMy8wNjVEQTNCQUI4 NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6S2N3NmVHM3JlRmZpd2tJ UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaNW5RbFo3NXpLY3c2ZUczcmVGZml3a0lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTMzMy8wNjVEQTNCQUI4NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6 S2N3NmVHM3JlRmZpd2tJUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJh/7ohD19jiPqw/OPSZqnvJibJjxBOKruLhskt7XvB9lofwqGsKlG 1eFXHtnQYn6W9i7yJLSpeB9My9dQM2ES2qO5c/6DXsgAtUzNp03h/zLMWkqDdKWB RCG8RwzAzCoIryz0wcojqHeEoVsFp98cZKSc5V/AuwnkFCuNHT7viWCA6AAVTM9Q mBxLP4qutGKOIFOU23NjSOnY7r0Mqeg+t4uJrhxPFOzOtTow0ey5FMXkrdkSRDnt Tole++tKpgWNwGChs7VVAawI0oJg1Ih2rLwbcEoBMW+7jEgH4Np8nXAbLeu8C98Z 7BHv0a2B7LChFQqhq31EfsheqYuPcdvC -----END CERTIFICATE-----Generated at Sat Sep 6 12:06:39 2025 by rpki-client