$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft File: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft (raw, json) Hash identifier: FMhJqsUVEgEW+TZlepHsLNyXd9v+uLN1u0VE3+SMbNs= Subject key identifier: 0C:C4:A3:04:1D:5E:ED:66:E9:88:69:30:EC:36:A1:16:83:4B:28:6A Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 04EE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft Manifest number: 04E3 Signing time: Sun 07 Sep 2025 00:06:47 +0000 Manifest this update: Sun 07 Sep 2025 00:06:46 +0000 Manifest next update: Sun 14 Sep 2025 00:06:46 +0000 Files and hashes: 1: d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl (hash: LmLyOh+VsjsfM7Ry+rVHHljHlolX0Pk2o93wSsCTHPY=) 2: B5AC177E3E0411ECABD9496CC4F9AE02.roa (hash: 4FN1ls050r3VusXGiD5QsVc+2i8lsZWUOsjCg4ks1ns=) 3: EBF4C0063C8811EC889B9D78C4F9AE02.roa (hash: xSXFEgaEwRI11lRD4Ufv2Q0UsgFam8SFWBwH7ownsu0=) 4: 9BBDF5DEFFD611EF9AE4D35EC4F9AE02.roa (hash: XhD4C1tmuOJjIi4uib9jXt7/7FR/n9zJv0iU9Ika1Yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:06:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1262 (0x4ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1, serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Sep 7 00:06:46 2025 GMT Not After : Sep 14 00:06:46 2025 GMT Subject: CN=68bccc97-fbcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1f:49:cf:0c:0a:b4:a4:25:8e:4d:8a:d5:bd: 1d:32:41:36:66:08:99:de:4f:eb:05:68:bd:a7:5f: b5:9d:91:7f:b3:5b:f2:43:c2:81:27:55:8a:ee:66: 92:0d:7d:3e:7d:83:43:05:3b:2a:b5:43:dd:ad:e7: 04:d0:24:5a:23:6e:0f:74:c3:fb:f3:ec:98:2c:8f: 4f:93:fd:4e:aa:f4:a3:b8:51:f8:8d:21:82:52:25: bc:c0:9c:44:f0:e6:04:31:38:40:f2:26:45:6d:7d: e3:9b:ea:c4:8a:49:a5:b5:8d:9a:f5:33:d8:50:5d: e9:7a:61:ef:aa:d0:ef:9e:93:28:f2:0f:48:69:4f: f5:4c:e5:3e:6a:5f:25:6c:83:d1:f1:74:da:55:16: be:fd:b7:88:ce:7d:1c:22:fe:a6:c0:42:ef:c7:f8: a3:cc:db:58:00:fe:78:5a:77:51:dc:33:f9:ec:8b: 2c:5f:82:52:d7:ab:fc:13:da:a7:3e:60:3e:85:36: 5a:ea:3b:df:d7:b3:30:b2:59:69:b1:85:20:c3:47: d6:50:0d:86:c5:8f:fc:ac:fe:43:a9:9a:75:0f:86: 8e:9f:36:43:d4:96:fd:37:69:48:88:50:2f:1c:12: bf:91:18:df:ac:36:9f:ff:eb:ae:14:d9:a6:ae:d3: cc:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:C4:A3:04:1D:5E:ED:66:E9:88:69:30:EC:36:A1:16:83:4B:28:6A X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:eb:c7:8c:8c:0d:75:fb:8a:27:d3:d9:ab:22:5d:64:ad:b6: e1:10:3a:5c:fe:50:a5:0f:ee:d3:6e:b1:67:47:6b:22:6b:34: f2:e4:e8:9d:05:98:c9:41:e9:7f:a4:97:c9:76:35:f7:0c:8a: 1a:75:68:21:5a:08:6c:d9:29:b1:10:bd:7d:b3:92:9c:27:cd: 8b:97:fe:23:2b:e7:a5:d4:f9:66:55:17:7e:ee:8f:83:80:4f: d2:cc:16:ac:14:b4:bf:90:74:77:76:70:8c:39:b8:8a:d9:ce: d3:99:d7:f0:b8:10:32:67:eb:4e:1e:7a:f4:9b:da:c5:df:4e: a3:77:75:f9:48:0c:56:03:8f:6d:b3:33:4a:52:48:d9:35:95: d5:a2:fd:44:9a:bc:86:7d:69:a3:b8:aa:86:e3:1d:7e:0a:d9: 57:e6:2a:88:bc:11:d9:df:7a:a0:82:93:83:54:0a:9d:bb:22: 1d:e6:38:75:13:f3:fa:82:eb:87:48:fa:30:88:8e:c9:ba:12: 26:00:2a:fd:8c:9c:db:e5:bf:b1:a4:56:f9:c7:d0:ad:af:08: 15:46:f1:a2:43:53:3b:a3:ee:03:da:ee:4e:dd:ae:fb:15:b6: 51:c6:99:fb:30:50:47:d4:3e:5d:e1:08:8d:e1:a7:9b:81:0a: 3d:33:a7:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjUwOTA3MDAwNjQ2WhcNMjUwOTE0MDAwNjQ2WjAYMRYwFAYD VQQDEw02OGJjY2M5Ny1mYmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAox9JzwwKtKQljk2K1b0dMkE2ZgiZ3k/rBWi9p1+1nZF/s1vyQ8KBJ1WK7maS DX0+fYNDBTsqtUPdrecE0CRaI24PdMP78+yYLI9Pk/1OqvSjuFH4jSGCUiW8wJxE 8OYEMThA8iZFbX3jm+rEikmltY2a9TPYUF3pemHvqtDvnpMo8g9IaU/1TOU+al8l bIPR8XTaVRa+/beIzn0cIv6mwELvx/ijzNtYAP54WndR3DP57IssX4JS16v8E9qn PmA+hTZa6jvf17MwsllpsYUgw0fWUA2GxY/8rP5DqZp1D4aOnzZD1Jb9N2lIiFAv HBK/kRjfrDaf/+uuFNmmrtPMuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzEowQd Xu1m6YhpMOw2oRaDSyhqMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MEFDMS8zNTkwNjVBNjMwOTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZN UXkza2JVdy0yaFQyUXYyaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL68eMjA11+4on09mrIl1krbbhEDpc/lClD+7TbrFnR2siazTy5Oid BZjJQel/pJfJdjX3DIoadWghWghs2SmxEL19s5KcJ82Ll/4jK+el1PlmVRd+7o+D gE/SzBasFLS/kHR3dnCMObiK2c7TmdfwuBAyZ+tOHnr0m9rF306jd3X5SAxWA49t szNKUkjZNZXVov1EmryGfWmjuKqG4x1+CtlX5iqIvBHZ33qggpODVAqduyId5jh1 E/P6guuHSPowiI7JuhImACr9jJzb5b+xpFb5x9CtrwgVRvGiQ1M7o+4D2u5O3a77 FbZRxpn7MFBH1D5d4QiN4aebgQo9M6db -----END CERTIFICATE-----Generated at Mon Sep 8 08:47:59 2025 by rpki-client