$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft File: imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft (raw, json) Hash identifier: WdkxiY7MMRRKgFvYnZs59x2OLTumd5o4nkZjLrRTzTU= Subject key identifier: 36:CD:52:A2:C9:E9:A7:94:4D:0C:3B:AC:4B:22:35:28:43:13:97:27 Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2D97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft Manifest number: 2D2C Signing time: Tue 10 Jun 2025 15:31:22 +0000 Manifest this update: Tue 10 Jun 2025 15:31:22 +0000 Manifest next update: Tue 17 Jun 2025 15:31:22 +0000 Files and hashes: 1: imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl (hash: pZW/SuZe6l3LQh3tbiG9JHPUcSG1lt9S60Tt+zv1SSo=) 2: 3E0A6ED49E7B11EFBD44280AC4F9AE02.roa (hash: arjppb8o0dAo/PmRzQByMlM088vFXvA0RnVconCK+zU=) 3: 4221CE240EC211EB9F6B1914C4F9AE02.roa (hash: fUhNa2zvGR6tljYmicsoP8kxi9R8oyVSsotkZ+dJbwI=) 4: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (hash: S4ikhB4wQjYJoUuGIHYvTR4A3rR63MmfA1fRonhKGKU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 15:31:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11671 (0x2d97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523, serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: Jun 10 15:31:22 2025 GMT Not After : Jun 17 15:31:22 2025 GMT Subject: CN=68484fca-cc5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9c:a8:82:a5:de:40:fe:80:9f:eb:09:19:47: 80:0b:e3:72:41:a3:a1:73:0b:b1:e5:ac:5e:ac:9d: 63:87:0c:65:08:56:bc:db:ea:aa:25:95:e4:a6:55: 26:1c:6c:22:b3:4d:8e:74:03:71:64:46:be:48:b4: 29:83:bb:e9:3b:5e:e6:a9:27:dc:98:e2:2f:0c:7d: 5d:34:2a:9c:57:2a:6d:39:70:d9:3b:bb:a9:5d:2e: c2:bf:32:cf:83:b3:59:47:bc:ab:aa:56:38:e9:7f: ab:e3:69:1c:88:9b:83:7a:6e:22:bf:5e:6f:bd:c5: c7:86:45:13:58:a4:a0:e2:57:ba:09:52:4c:a8:12: b0:7c:3c:90:f6:1a:64:fa:73:bb:21:a7:7d:07:d0: 79:47:ea:9b:d0:c9:6a:7b:75:36:02:10:df:f5:b0: cd:ad:fe:6c:24:3e:a6:38:8c:34:31:f7:3f:0d:8d: ed:bb:dd:ad:c7:5e:e0:0a:e9:aa:59:ee:e6:c7:e3: ad:e6:38:1e:ee:9e:21:6d:f3:b2:37:67:c1:83:4a: a1:17:82:97:cf:df:c0:f0:0e:9b:60:64:be:ee:b5: 08:11:5e:89:88:4c:ba:32:0a:ca:e2:70:aa:95:2c: 0b:bc:81:4e:00:1a:68:c0:6e:d5:08:9e:eb:1b:94: d9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:CD:52:A2:C9:E9:A7:94:4D:0C:3B:AC:4B:22:35:28:43:13:97:27 X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:54:ee:69:af:ec:9c:64:60:1c:18:f0:d1:66:3a:7a:a4:d1: 6c:ea:57:3e:09:92:54:35:5c:2a:8e:f3:9d:fa:94:b0:9f:ae: 06:47:09:35:b1:95:ac:42:c1:fa:14:65:91:1c:c0:0f:61:65: f8:a8:07:61:08:b0:69:74:1d:93:66:a3:b3:f9:72:1f:54:7e: 5b:a1:d6:6a:b4:0e:3d:44:20:30:cf:52:a7:c9:10:e4:e2:bb: c1:96:c6:86:81:a3:21:55:e4:7a:78:30:35:69:d2:d6:72:37: c5:d5:84:ed:28:07:d8:51:a1:79:d7:ec:55:9e:20:ad:b1:11: a1:08:0f:83:3b:55:76:ef:0f:fd:d0:88:31:74:95:b0:46:0c: 04:26:24:ea:c3:1a:a7:07:24:91:06:77:33:42:15:e2:3f:47: ab:d5:66:da:c8:0d:ed:20:c0:a5:b8:a2:fe:1d:f6:e0:b5:4b: 68:c5:04:de:e5:59:2b:5f:c5:0b:95:48:20:72:35:94:a9:d9: a6:a3:ab:6f:e0:23:7d:56:6b:78:b5:f4:d4:1d:67:32:fb:76: 89:1a:21:9c:09:e2:28:68:a4:a6:86:39:b0:80:87:cf:62:6c: 18:c4:30:63:7e:46:bc:dc:39:1c:66:67:2c:50:21:05:17:e4: 49:47:8a:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjUwNjEwMTUzMTIyWhcNMjUwNjE3MTUzMTIyWjAYMRYwFAYD VQQDEw02ODQ4NGZjYS1jYzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJyogqXeQP6An+sJGUeAC+NyQaOhcwux5axerJ1jhwxlCFa82+qqJZXkplUm HGwis02OdANxZEa+SLQpg7vpO17mqSfcmOIvDH1dNCqcVyptOXDZO7upXS7CvzLP g7NZR7yrqlY46X+r42kciJuDem4iv15vvcXHhkUTWKSg4le6CVJMqBKwfDyQ9hpk +nO7Iad9B9B5R+qb0Mlqe3U2AhDf9bDNrf5sJD6mOIw0Mfc/DY3tu92tx17gCumq We7mx+Ot5jge7p4hbfOyN2fBg0qhF4KXz9/A8A6bYGS+7rUIEV6JiEy6MgrK4nCq lSwLvIFOABpowG7VCJ7rG5TZrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbNUqLJ 6aeUTQw7rEsiNShDE5cnMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzUyMy8xMkI5OTdFODlBRTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01k RDBkanBOdmRYVXpBSDlaTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqVO5pr+ycZGAcGPDRZjp6pNFs6lc+CZJUNVwqjvOd+pSwn64GRwk1 sZWsQsH6FGWRHMAPYWX4qAdhCLBpdB2TZqOz+XIfVH5bodZqtA49RCAwz1KnyRDk 4rvBlsaGgaMhVeR6eDA1adLWcjfF1YTtKAfYUaF51+xVniCtsRGhCA+DO1V27w/9 0IgxdJWwRgwEJiTqwxqnBySRBnczQhXiP0er1WbayA3tIMCluKL+HfbgtUtoxQTe 5VkrX8ULlUggcjWUqdmmo6tv4CN9Vmt4tfTUHWcy+3aJGiGcCeIoaKSmhjmwgIfP YmwYxDBjfka83DkcZmcsUCEFF+RJR4ow -----END CERTIFICATE-----Generated at Wed Jun 11 23:16:53 2025 by rpki-client