$ rpki-client -vvf rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft File: J_xj2GH0aU96L5UfsShH4H-qkHI.mft (raw, json) Hash identifier: CZc9+wV/5+Y0nsZu8SspHvlMAtGl+7kNeImcoUBsd8g= Subject key identifier: 7E:7E:08:CC:F2:64:8B:51:49:19:55:7B:D4:B8:5A:F7:CF:B0:F6:F5 Authority key identifier: 27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 Certificate issuer: /CN=A9125F95/serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Certificate serial: 1DB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft Manifest number: 1DA8 Signing time: Wed 20 Aug 2025 16:10:47 +0000 Manifest this update: Wed 20 Aug 2025 16:10:46 +0000 Manifest next update: Wed 27 Aug 2025 16:10:46 +0000 Files and hashes: 1: J_xj2GH0aU96L5UfsShH4H-qkHI.crl (hash: dCeBTbHqeXqEyjj33n2TF6d6q6WDYIuT4ldHegVP6DU=) 2: A17F07705FA311EAB1BB612CC4F9AE02.roa (hash: syqFyO0I3Vmcn5bJeGcao6zGLsNLne0ee+UOpu0s0a0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 16:10:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7601 (0x1db1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125F95, serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Validity Not Before: Aug 20 16:10:46 2025 GMT Not After : Aug 27 16:10:46 2025 GMT Subject: CN=68a5f387-35ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b7:ed:0f:3a:25:8b:67:70:1b:e6:62:c9:fe: 4d:65:b2:13:f3:19:9a:fd:6f:79:ba:0c:db:d1:13: 61:97:42:84:0d:f0:0d:cb:c2:ba:85:b1:e1:26:21: 87:69:f8:e2:0d:ab:d5:7e:19:f8:d9:e4:44:36:a5: f0:c1:50:c7:c4:21:40:9f:f1:98:4e:a4:ed:23:fb: 6a:13:37:b4:95:0c:e3:ee:1a:8d:2e:35:a3:f3:19: 97:15:4d:19:12:8e:73:be:f1:6d:51:e6:33:ae:9f: 43:24:b9:60:c1:26:64:21:ba:e1:c7:c5:c2:37:cc: 4e:2e:1c:87:14:d9:94:b2:91:10:46:72:52:ff:6a: 6a:cd:7a:26:51:34:ec:be:27:ef:7b:fb:e6:9b:b7: c4:be:33:81:ee:82:26:92:e1:8c:42:3f:e5:1c:fd: db:9a:a3:f0:e5:13:89:03:56:fe:62:c7:f7:00:35: f3:fd:d3:f3:35:aa:c5:85:14:4c:2e:d9:c8:33:de: e4:38:7f:6d:eb:69:95:1f:12:07:02:a6:be:d1:a2: 1d:c9:61:4e:80:f4:f4:20:6f:b3:44:de:44:34:a8: 4b:61:58:27:08:2e:dc:53:26:58:d5:f0:e7:4e:7f: 32:47:0c:7e:76:a1:28:c7:1e:fb:d4:e1:33:65:49: 9b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:7E:08:CC:F2:64:8B:51:49:19:55:7B:D4:B8:5A:F7:CF:B0:F6:F5 X509v3 Authority Key Identifier: keyid:27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:b6:ed:62:39:2b:3e:50:57:fd:8e:ed:6e:52:43:9b:a0:34: cd:0e:43:dd:e9:0a:b8:54:df:89:16:8d:94:ac:d4:5f:d8:c2: 9f:44:ce:e4:8c:7e:f9:83:ce:63:bc:f6:87:26:53:06:16:c2: b0:06:18:32:7a:d5:09:50:bf:c8:34:a5:ca:78:86:67:aa:7b: 17:cd:a7:32:fb:89:9d:12:57:93:f8:66:40:de:03:96:a0:50: 3d:13:cd:66:fa:9a:4d:29:cf:73:0d:a8:02:c1:f0:87:f4:34: c4:14:7a:12:35:7e:de:c5:bc:24:9e:4d:8f:29:d6:21:ab:ea: c8:e4:d0:96:3b:0b:4b:20:dc:d9:39:2e:d8:92:de:72:5d:25: e1:c0:68:d4:b9:a7:b2:74:32:6b:37:c3:2f:11:af:fa:da:95: a2:17:d6:80:61:0e:c9:fb:75:6f:04:05:e7:71:0c:4c:23:1e: 90:c5:3f:63:1a:e6:97:1d:84:59:b1:47:eb:5c:ee:fa:45:bb: ac:18:82:99:12:bf:6b:db:19:7d:3d:ef:6a:ad:5c:44:a8:9c: 5d:13:79:e9:a5:b6:99:7e:33:c2:27:87:ca:fc:1a:c5:89:ed: 14:fb:07:25:40:2a:dd:64:95:e3:a7:d7:43:5e:81:54:cb:74: 6b:f1:70:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVGOTUxMTAvBgNVBAUTKDI3RkM2M0Q4NjFGNDY5NEY3QTJGOTUxRkIxMjg0N0Uw N0ZBQTkwNzIwHhcNMjUwODIwMTYxMDQ2WhcNMjUwODI3MTYxMDQ2WjAYMRYwFAYD VQQDEw02OGE1ZjM4Ny0zNWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7ftDzoli2dwG+Ziyf5NZbIT8xma/W95ugzb0RNhl0KEDfANy8K6hbHhJiGH afjiDavVfhn42eRENqXwwVDHxCFAn/GYTqTtI/tqEze0lQzj7hqNLjWj8xmXFU0Z Eo5zvvFtUeYzrp9DJLlgwSZkIbrhx8XCN8xOLhyHFNmUspEQRnJS/2pqzXomUTTs vifve/vmm7fEvjOB7oImkuGMQj/lHP3bmqPw5ROJA1b+Ysf3ADXz/dPzNarFhRRM LtnIM97kOH9t62mVHxIHAqa+0aIdyWFOgPT0IG+zRN5ENKhLYVgnCC7cUyZY1fDn Tn8yRwx+dqEoxx771OEzZUmbuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH5+CMzy ZItRSRlVe9S4WvfPsPb1MB8GA1UdIwQYMBaAFCf8Y9hh9GlPei+VH7EoR+B/qpBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUY5NS9DRTJBRkM0NkEy NzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFVOTZMNVVmc1NoSDRILXFr SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pfeGoyR0gwYVU5Nkw1VWZzU2hINEgtcWtISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUY5NS9DRTJBRkM0NkEyNzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFV OTZMNVVmc1NoSDRILXFrSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWtu1iOSs+UFf9ju1uUkOboDTNDkPd6Qq4VN+JFo2UrNRf2MKfRM7k jH75g85jvPaHJlMGFsKwBhgyetUJUL/INKXKeIZnqnsXzacy+4mdEleT+GZA3gOW oFA9E81m+ppNKc9zDagCwfCH9DTEFHoSNX7exbwknk2PKdYhq+rI5NCWOwtLINzZ OS7Ykt5yXSXhwGjUuaeydDJrN8MvEa/62pWiF9aAYQ7J+3VvBAXncQxMIx6QxT9j GuaXHYRZsUfrXO76RbusGIKZEr9r2xl9Pe9qrVxEqJxdE3nppbaZfjPCJ4fK/BrF ie0U+wclQCrdZJXjp9dDXoFUy3Rr8XDn -----END CERTIFICATE-----Generated at Fri Aug 22 16:24:15 2025 by rpki-client