$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft File: RoxqeSq7PkX-7iIo0o54AxNytFU.mft (raw, json) Hash identifier: CXGI/UgZWNUTyAMOETBFyefeZvZOhyy/TPK0HMJxt/4= Subject key identifier: 8F:53:ED:B9:30:91:A7:48:3B:0A:8B:D7:3E:E5:A6:9D:FB:61:13:82 Authority key identifier: 46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 Certificate issuer: /CN=A912DD15/serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Certificate serial: 01D7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft Manifest number: 01D1 Signing time: Fri 05 Sep 2025 03:12:39 +0000 Manifest this update: Fri 05 Sep 2025 03:12:39 +0000 Manifest next update: Fri 12 Sep 2025 03:12:39 +0000 Files and hashes: 1: RoxqeSq7PkX-7iIo0o54AxNytFU.crl (hash: +fpwUPudnXbkXPXcfMPM4xaDF8AMYAvFZ+a4E/+7ifw=) 2: 43CE5D5A236911EEAC33285DC4F9AE02.roa (hash: frHxqt/yG7rr6fCbelfcQdfPa8QFjBnwgHPUnZu57so=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 03:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD15, serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Validity Not Before: Sep 5 03:12:39 2025 GMT Not After : Sep 12 03:12:39 2025 GMT Subject: CN=68ba5527-4bdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b7:7f:3e:1f:e0:f5:83:1a:ab:26:79:fe:67: 45:20:be:7a:00:67:df:a4:ee:9a:87:6c:83:98:17: 46:70:0c:8a:8e:11:84:1c:8b:5f:72:c5:1f:5b:92: 85:e3:06:12:df:ee:96:1a:94:17:2e:eb:9b:3e:8e: 7f:e9:bb:c0:84:0f:01:ea:01:03:df:89:81:2f:c0: d4:ae:4c:48:9d:6c:8d:2e:35:26:42:66:b2:3f:ca: e8:be:bc:d2:26:73:c7:7e:d8:67:12:78:d2:f3:80: a2:bc:d1:81:23:0f:32:d8:0d:ad:27:42:bc:b4:f4: 91:6a:50:7f:73:45:ca:25:82:a3:da:37:da:d9:5c: 8b:b2:70:4f:27:7f:27:a9:fc:20:f7:b5:67:be:c2: 15:55:87:11:cb:9c:a7:a3:7a:c5:39:a3:e8:05:89: dc:03:57:a4:98:9b:0d:7f:24:d7:5c:22:4f:7f:94: 34:7e:57:b3:dc:16:57:d6:02:a0:fc:87:d0:79:f3: ab:5c:c3:54:c4:41:87:ff:d6:a5:ec:50:96:c7:1c: bc:6c:51:07:5e:31:35:04:ed:f1:97:37:a1:d5:07: 90:f6:94:55:e2:05:03:b1:52:44:88:52:98:27:5c: b1:38:4f:85:86:b0:b5:30:32:52:49:41:d2:a3:a1: d0:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:53:ED:B9:30:91:A7:48:3B:0A:8B:D7:3E:E5:A6:9D:FB:61:13:82 X509v3 Authority Key Identifier: keyid:46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:fd:1b:ae:84:92:25:7f:42:ef:af:1d:35:4f:a3:b9:77:cd: 27:e1:69:34:ac:0a:47:cf:03:ad:01:19:77:01:0e:04:26:15: 0e:8b:25:3b:eb:72:f9:ec:a7:e2:9a:c1:52:78:a0:93:d3:5f: 53:be:08:bb:5f:76:ab:41:ec:ef:a7:54:12:12:a2:35:ca:b3: 4d:25:00:a8:15:c3:ab:3b:ab:9f:4e:e2:05:c0:39:a1:48:27: 65:83:a8:d2:51:9e:9a:c1:f8:21:f8:62:da:6f:cb:49:73:7c: b0:82:a0:b4:31:6e:2e:45:1c:f6:a1:cb:20:6d:ab:21:1b:82: 54:27:a1:fe:99:6e:4d:94:e3:61:75:3d:13:c4:09:25:80:94: 58:e3:1b:05:5f:5c:0f:0c:b4:6c:89:81:3a:bd:c1:64:98:b4: 59:9a:a2:43:43:43:ea:b7:e7:9e:cc:23:66:7c:87:7a:8c:b4: 47:24:32:49:a6:e6:2d:e6:04:39:bc:69:f0:eb:31:66:95:24: 1d:da:d0:4c:e5:09:b1:85:69:0f:20:bd:a4:58:02:77:4c:70: 79:92:3f:f9:56:1e:4d:cd:63:e0:2c:39:ea:ea:0a:0a:ec:2f: cc:14:72:fd:1b:81:3f:c4:96:c3:61:a7:ec:18:be:c9:f1:be: eb:7c:76:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMTUxMTAvBgNVBAUTKDQ2OEM2QTc5MkFCQjNFNDVGRUVFMjIyOEQyOEU3ODAz MTM3MkI0NTUwHhcNMjUwOTA1MDMxMjM5WhcNMjUwOTEyMDMxMjM5WjAYMRYwFAYD VQQDEw02OGJhNTUyNy00YmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAord/Ph/g9YMaqyZ5/mdFIL56AGffpO6ah2yDmBdGcAyKjhGEHItfcsUfW5KF 4wYS3+6WGpQXLuubPo5/6bvAhA8B6gED34mBL8DUrkxInWyNLjUmQmayP8rovrzS JnPHfthnEnjS84CivNGBIw8y2A2tJ0K8tPSRalB/c0XKJYKj2jfa2VyLsnBPJ38n qfwg97VnvsIVVYcRy5yno3rFOaPoBYncA1ekmJsNfyTXXCJPf5Q0flez3BZX1gKg /IfQefOrXMNUxEGH/9al7FCWxxy8bFEHXjE1BO3xlzeh1QeQ9pRV4gUDsVJEiFKY J1yxOE+FhrC1MDJSSUHSo6HQfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9T7bkw kadIOwqL1z7lpp37YROCMB8GA1UdIwQYMBaAFEaMankquz5F/u4iKNKOeAMTcrRV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQxNS9CREFEQTg2MEND NTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1BrWC03aUlvMG81NEF4Tnl0 RlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JveHFlU3E3UGtYLTdpSW8wbzU0QXhOeXRGVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQxNS9CREFEQTg2MENDNTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1Br WC03aUlvMG81NEF4Tnl0RlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQ/RuuhJIlf0Lvrx01T6O5d80n4Wk0rApHzwOtARl3AQ4EJhUOiyU7 63L57KfimsFSeKCT019Tvgi7X3arQezvp1QSEqI1yrNNJQCoFcOrO6ufTuIFwDmh SCdlg6jSUZ6awfgh+GLab8tJc3ywgqC0MW4uRRz2ocsgbashG4JUJ6H+mW5NlONh dT0TxAklgJRY4xsFX1wPDLRsiYE6vcFkmLRZmqJDQ0Pqt+eezCNmfId6jLRHJDJJ puYt5gQ5vGnw6zFmlSQd2tBM5QmxhWkPIL2kWAJ3THB5kj/5Vh5NzWPgLDnq6goK 7C/MFHL9G4E/xJbDYafsGL7J8b7rfHaG -----END CERTIFICATE-----Generated at Sat Sep 6 21:12:19 2025 by rpki-client