$ rpki-client -vvf rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft File: 7dKmloaGUlbJsP3da3FJZtU3jzM.mft (raw, json) Hash identifier: +qh6srKLmeZUPhmG76aphB1kOzsxChc61Lr7Bm7ZRMQ= Subject key identifier: 16:92:01:74:60:ED:BA:D3:C7:A9:01:86:33:90:AF:C7:BA:C8:C5:89 Authority key identifier: ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 Certificate issuer: /CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Certificate serial: 0A95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft Manifest number: 0A80 Signing time: Mon 08 Sep 2025 19:39:28 +0000 Manifest this update: Mon 08 Sep 2025 19:39:28 +0000 Manifest next update: Mon 15 Sep 2025 19:39:28 +0000 Files and hashes: 1: 7dKmloaGUlbJsP3da3FJZtU3jzM.crl (hash: rAJ3Adl3rW/QJQzmfWmMnzOF3IOVB1MjO5/e6YTQwt4=) 2: 923B6404466B11EE8B37E13CC4F9AE02.roa (hash: horX5P75gumDA8WyF+ghzmHcSe0CjNBHMfSInHVl7ao=) 3: C2E32E34466B11EE988B243DC4F9AE02.roa (hash: hBn0Qcv2Wj2OFO1BXPRpxsQ8U4zswJ2i/kTyMm1Zr1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 19:39:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2709 (0xa95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D3CB, serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Validity Not Before: Sep 8 19:39:28 2025 GMT Not After : Sep 15 19:39:28 2025 GMT Subject: CN=68bf30f0-684d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:08:84:7e:64:c8:30:b9:ed:db:ca:01:e7:e8: f3:db:50:13:92:41:cb:d8:e2:ea:5f:5f:96:85:12: ed:ff:ba:c6:0d:e8:46:10:58:e0:7f:93:0e:4d:dc: 74:6d:15:df:27:6a:c4:b5:5a:a3:39:4e:37:b5:ea: 93:d1:28:32:25:b7:7a:2f:12:f6:47:6c:79:e1:b6: ed:c8:ff:13:a8:d3:33:3e:29:31:df:b4:58:41:ca: e1:8d:a4:c2:a8:cd:75:e2:7a:69:c0:db:76:6b:4a: f1:d2:5c:57:ea:38:07:36:6e:be:b6:b2:13:4c:6b: c4:39:3f:c1:ad:dd:d0:a0:7f:1e:4a:b6:c3:4d:f7: 32:1f:55:28:e8:cf:0b:4a:f2:c6:aa:f4:10:99:48: 05:45:01:6d:17:dc:bf:8f:d6:ec:d9:b4:c0:d3:8c: f0:39:e2:3d:16:e4:a8:8f:fa:7d:ab:33:33:f5:20: 9a:97:81:13:ae:eb:98:7d:5a:90:03:7c:e9:39:aa: f4:a3:8a:32:f8:2a:21:25:f7:87:0c:3b:e7:28:a2: f1:5a:9a:5a:e2:ed:9e:0f:cf:d9:8a:a0:19:dc:2f: ba:2e:64:aa:b9:83:83:dc:dd:5b:11:6c:26:be:1f: 52:8a:2c:86:6e:61:a5:26:0a:16:d5:56:82:f5:47: 79:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:92:01:74:60:ED:BA:D3:C7:A9:01:86:33:90:AF:C7:BA:C8:C5:89 X509v3 Authority Key Identifier: keyid:ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:c4:c6:f0:26:25:54:ea:51:4f:7c:51:9f:96:aa:7f:a6:21: e7:c8:ce:41:12:2f:0b:a2:a3:a3:4e:0d:6c:70:9b:93:47:a0: ba:59:ab:10:9c:88:ec:64:f9:46:4b:5c:8a:2c:ae:17:dc:10: 1e:1b:ad:b7:86:60:1e:56:89:67:e4:f4:7f:7e:6a:9a:2f:44: a4:35:3f:cb:f1:44:3f:70:31:d7:cc:8d:50:a5:af:4d:a9:3c: 26:4c:62:f0:ae:77:da:01:08:db:ca:bf:92:3c:32:68:1b:f9: c6:f5:98:c1:1b:01:96:63:f9:1d:13:6a:91:e7:cd:73:3d:c2: b1:f8:da:75:39:12:0c:21:90:9c:a2:43:aa:02:87:0b:f4:a3: d4:be:b6:b6:4e:10:8f:37:56:a2:7e:f9:7a:16:32:01:b2:4a: 83:14:dd:1b:17:1c:db:93:dc:75:35:0a:0c:d5:ce:e3:21:9b: 78:95:cc:9c:2d:15:cc:d0:6d:78:13:a2:4b:fe:08:39:a1:30: 2c:04:d5:2c:43:88:f3:2c:99:00:9d:89:d6:b6:44:d9:e2:25: 48:3b:e8:d9:7a:2d:aa:e6:44:09:09:89:a0:bb:65:61:d1:32: e1:65:22:9f:97:a0:d3:47:d1:be:1d:df:1e:f6:2c:c7:68:8f: 40:92:ad:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQzQ0IxMTAvBgNVBAUTKEVERDJBNjk2ODY4NjUyNTZDOUIwRkRERDZCNzE0OTY2 RDUzNzhGMzMwHhcNMjUwOTA4MTkzOTI4WhcNMjUwOTE1MTkzOTI4WjAYMRYwFAYD VQQDEw02OGJmMzBmMC02ODRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAiEfmTIMLnt28oB5+jz21ATkkHL2OLqX1+WhRLt/7rGDehGEFjgf5MOTdx0 bRXfJ2rEtVqjOU43teqT0SgyJbd6LxL2R2x54bbtyP8TqNMzPikx37RYQcrhjaTC qM114nppwNt2a0rx0lxX6jgHNm6+trITTGvEOT/Brd3QoH8eSrbDTfcyH1Uo6M8L SvLGqvQQmUgFRQFtF9y/j9bs2bTA04zwOeI9FuSoj/p9qzMz9SCal4ETruuYfVqQ A3zpOar0o4oy+CohJfeHDDvnKKLxWppa4u2eD8/ZiqAZ3C+6LmSquYOD3N1bEWwm vh9SiiyGbmGlJgoW1VaC9Ud5zwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBaSAXRg 7brTx6kBhjOQr8e6yMWJMB8GA1UdIwQYMBaAFO3SppaGhlJWybD93WtxSWbVN48z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDNDQi9BOUE0MzlGQzY5 QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1VsYkpzUDNkYTNGSlp0VTNq ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdkS21sb2FHVWxiSnNQM2RhM0ZKWnRVM2p6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDNDQi9BOUE0MzlGQzY5QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1Vs YkpzUDNkYTNGSlp0VTNqek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtxMbwJiVU6lFPfFGflqp/piHnyM5BEi8LoqOjTg1scJuTR6C6WasQ nIjsZPlGS1yKLK4X3BAeG623hmAeVoln5PR/fmqaL0SkNT/L8UQ/cDHXzI1Qpa9N qTwmTGLwrnfaAQjbyr+SPDJoG/nG9ZjBGwGWY/kdE2qR581zPcKx+Np1ORIMIZCc okOqAocL9KPUvra2ThCPN1aifvl6FjIBskqDFN0bFxzbk9x1NQoM1c7jIZt4lcyc LRXM0G14E6JL/gg5oTAsBNUsQ4jzLJkAnYnWtkTZ4iVIO+jZei2q5kQJCYmgu2Vh 0TLhZSKfl6DTR9G+Hd8e9izHaI9Akq1e -----END CERTIFICATE-----Generated at Tue Sep 9 08:49:22 2025 by rpki-client