$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: qcsyMauGlzQIIZNmpcRMGnbV9thy53HKlgLdk0In0MA= Subject key identifier: 19:20:BB:5D:5F:CC:E1:97:37:BD:C3:A7:13:C5:77:1E:CC:EC:BC:61 Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2DBD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2D52 Signing time: Sun 24 Aug 2025 15:29:15 +0000 Manifest this update: Sun 24 Aug 2025 15:29:14 +0000 Manifest next update: Sun 31 Aug 2025 15:29:14 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: mW3eDDA3AhC0LRXQHawZ+POfq+0dZKcsWIUw+MX9sHA=) 2: 3E0A6ED49E7B11EFBD44280AC4F9AE02.roa (hash: arjppb8o0dAo/PmRzQByMlM088vFXvA0RnVconCK+zU=) 3: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: fUhNa2zvGR6tljYmicsoP8kxi9R8oyVSsotkZ+dJbwI=) 4: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (hash: S4ikhB4wQjYJoUuGIHYvTR4A3rR63MmfA1fRonhKGKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 15:29:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11709 (0x2dbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523, serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: Aug 24 15:29:14 2025 GMT Not After : Aug 31 15:29:14 2025 GMT Subject: CN=68ab2fca-d672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ae:16:ce:18:82:5f:15:a3:a0:2a:2a:0d:d0: 9e:02:7c:52:0c:8c:87:9f:40:66:d7:e0:2d:c5:fb: b4:1a:11:a9:24:11:60:99:10:02:f6:df:8d:c3:26: 0a:d3:a4:06:eb:7e:de:37:9d:b5:b3:5e:23:04:ed: c1:75:e0:62:58:46:dd:9b:26:1a:7c:3a:40:c2:e2: 82:f5:3f:df:24:2f:8d:7d:b0:4d:ac:90:6c:8a:ba: 21:46:1a:7b:d6:b5:74:ab:87:11:db:26:79:3f:41: e0:41:fb:84:cf:3d:6e:a9:cc:ce:c1:6f:d9:cf:26: 7d:5b:4b:ad:88:00:77:94:3f:2a:67:c0:00:c1:a6: 95:41:46:90:f4:ce:f0:79:b5:7b:f1:ad:df:d0:fd: f1:74:14:d1:ad:35:c7:cd:22:28:50:e9:0d:d3:24: 52:f0:c0:77:bf:7b:21:4d:5c:ef:75:0a:3d:1a:c1: c7:fe:3e:ea:72:90:00:05:08:b3:2a:fd:d5:d5:b8: 1a:37:e8:5e:e9:7c:ad:bb:fb:cd:ba:eb:79:14:e9: cc:a5:d9:1f:58:56:ee:0e:f4:3a:37:19:54:51:64: fb:e8:e4:d5:fc:ef:77:93:9f:87:49:e4:37:e5:a4: 52:b5:08:e7:91:6d:57:fd:ff:4a:91:5d:61:f8:de: 34:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:20:BB:5D:5F:CC:E1:97:37:BD:C3:A7:13:C5:77:1E:CC:EC:BC:61 X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:ff:da:41:2c:6e:d4:f9:9f:bf:6c:5d:33:d8:e8:ff:c1:20: 7a:48:c8:62:66:b6:0c:cb:20:4c:db:e1:24:7f:a1:8d:72:e8: 78:34:93:20:96:28:7f:df:d7:78:ac:57:aa:cd:70:5d:f0:b7: 19:5e:06:f5:9a:b0:fe:c7:63:70:bd:ac:81:ba:e1:ec:fd:39: 64:cb:d0:19:7e:e7:0e:87:20:01:92:b1:7c:9a:65:10:0d:7b: bd:3e:e6:1f:e9:4b:39:ae:89:86:a0:c2:2f:05:63:3d:9e:e2: 32:82:ac:7d:cf:11:a1:02:7b:e0:33:89:49:bc:eb:40:e2:29: 3c:1e:b0:c8:14:05:b8:5a:08:0e:5e:9f:b0:6f:40:1e:fc:4c: e6:3f:a1:20:13:4a:6a:87:13:49:ca:f5:fe:78:ce:43:f6:50: 5b:72:2a:5e:0a:35:b3:94:d3:a7:b0:ba:7f:da:89:40:8e:5a: 71:cd:cf:8a:39:5b:e2:d2:b4:e6:99:b5:6f:9a:e4:e9:8a:15: dc:a5:37:59:26:6c:99:28:94:4e:ab:33:a8:24:24:b2:c7:91: 8a:42:b7:d9:aa:74:e2:27:0d:ec:6e:dc:c5:30:75:0b:b0:5e: 71:9c:94:a2:3c:d8:9f:3f:a8:e8:55:eb:08:28:4e:bc:70:43: 23:63:41:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjUwODI0MTUyOTE0WhcNMjUwODMxMTUyOTE0WjAYMRYwFAYD VQQDEw02OGFiMmZjYS1kNjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7a4WzhiCXxWjoCoqDdCeAnxSDIyHn0Bm1+Atxfu0GhGpJBFgmRAC9t+NwyYK 06QG637eN521s14jBO3BdeBiWEbdmyYafDpAwuKC9T/fJC+NfbBNrJBsirohRhp7 1rV0q4cR2yZ5P0HgQfuEzz1uqczOwW/ZzyZ9W0utiAB3lD8qZ8AAwaaVQUaQ9M7w ebV78a3f0P3xdBTRrTXHzSIoUOkN0yRS8MB3v3shTVzvdQo9GsHH/j7qcpAABQiz Kv3V1bgaN+he6Xytu/vNuut5FOnMpdkfWFbuDvQ6NxlUUWT76OTV/O93k5+HSeQ3 5aRStQjnkW1X/f9KkV1h+N406wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBkgu11f zOGXN73DpxPFdx7M7LxhMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCT/9pBLG7U+Z+/bF0z2Oj/wSB6SMhiZrYMyyBM2+Ekf6GNcuh4NJMg lih/39d4rFeqzXBd8LcZXgb1mrD+x2NwvayBuuHs/Tlky9AZfucOhyABkrF8mmUQ DXu9PuYf6Us5romGoMIvBWM9nuIygqx9zxGhAnvgM4lJvOtA4ik8HrDIFAW4WggO Xp+wb0Ae/EzmP6EgE0pqhxNJyvX+eM5D9lBbcipeCjWzlNOnsLp/2olAjlpxzc+K OVvi0rTmmbVvmuTpihXcpTdZJmyZKJROqzOoJCSyx5GKQrfZqnTiJw3sbtzFMHUL sF5xnJSiPNifP6joVesIKE68cEMjY0Gt -----END CERTIFICATE-----Generated at Sun Aug 24 22:20:52 2025 by rpki-client