$ rpki-client -vvf rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft File: R1JQ5qBVR49Kwerx7TLVZyw80bM.mft (raw, json) Hash identifier: bKdkVkcbkIT1W8lmiV7lK9I24xAYw7vOQgti6B5cmxA= Subject key identifier: 85:E5:3D:C5:C3:D1:94:6A:4D:82:18:6C:D8:33:22:10:BC:D1:DD:C5 Authority key identifier: 47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 Certificate issuer: /CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Certificate serial: 0D4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft Manifest number: 0D3B Signing time: Sun 24 Aug 2025 17:59:34 +0000 Manifest this update: Sun 24 Aug 2025 17:59:33 +0000 Manifest next update: Sun 31 Aug 2025 17:59:33 +0000 Files and hashes: 1: R1JQ5qBVR49Kwerx7TLVZyw80bM.crl (hash: pYuCDpIPiMZDuerxZe+M+JiZ9JxLZubsfWUN9LU0cxs=) 2: B523DAE68C9211EABC682867C4F9AE02.roa (hash: /Vmvob4Ba5JT6xBzlUxuOFxxM0jXE2HEf4/pjk43Tpk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:59:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3402 (0xd4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140EE2, serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Validity Not Before: Aug 24 17:59:33 2025 GMT Not After : Aug 31 17:59:33 2025 GMT Subject: CN=68ab5306-ce4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:cb:7f:72:bd:49:58:c1:08:27:59:8b:47:58: 1c:8a:61:94:49:4b:a8:2a:38:26:d8:9e:42:8f:36: a6:fd:83:38:9f:03:fb:98:53:e3:fd:ad:5c:58:09: 3d:9c:9d:39:48:8f:20:7a:8b:64:44:b7:1f:03:23: e2:5f:2f:6d:45:00:6b:f5:ac:29:5d:98:d7:61:75: 49:5e:39:01:aa:35:a0:88:5d:26:4c:a9:56:a9:08: 72:dc:89:55:8d:99:95:c9:05:d8:a2:3e:a5:34:d1: 7d:c7:6f:da:5c:66:58:c0:bf:03:95:6c:4f:a9:9b: c8:3f:41:4a:95:b4:e8:f9:9b:7b:d1:ed:35:3a:56: 7d:a6:16:f2:8e:55:ab:18:2d:34:68:51:2a:b9:66: af:20:20:3b:b7:43:bd:cf:14:cd:1b:83:62:af:57: 69:97:55:3f:37:09:3c:5e:f1:d4:1c:3a:9b:ed:bb: 05:78:bb:01:75:89:f8:83:dd:4f:7f:d7:8d:ff:86: 22:e4:c0:16:d1:ae:a9:05:08:ed:09:18:f7:c0:25: cd:8b:0f:d9:40:f5:9f:ce:bb:c4:62:05:7a:49:a0: 5e:00:56:f5:b0:c8:80:34:fd:7f:fd:a9:5e:cb:31: b0:c1:c7:b3:65:c8:62:7a:31:44:d4:9d:5e:c7:4f: e1:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E5:3D:C5:C3:D1:94:6A:4D:82:18:6C:D8:33:22:10:BC:D1:DD:C5 X509v3 Authority Key Identifier: keyid:47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:54:d7:0e:ca:6f:7c:3a:87:a8:62:b6:37:40:7b:fb:a3:c9: b0:33:04:0b:51:a3:7b:5a:19:23:de:20:1f:13:fd:85:5d:8f: c8:32:f8:c8:88:5f:4a:03:7e:7c:8f:9b:43:6e:6c:c5:5f:61: 8b:00:48:4c:ce:14:cc:80:ce:96:5e:bd:96:8c:3d:3d:4d:fa: 99:63:b9:e0:9b:1c:96:78:9e:99:74:de:d1:61:4b:b0:76:2e: 16:c3:14:0c:f9:34:30:51:0f:28:41:2a:cf:23:c1:f3:2e:ec: bf:e4:29:7d:11:9d:3a:e9:b8:8a:af:70:e5:75:11:3c:44:4f: 12:7a:da:7d:61:7f:e8:f8:c7:aa:98:91:a2:29:32:f9:2f:2f: ff:74:86:ec:d1:e7:de:5e:56:f0:75:a8:7d:dd:fb:e6:1c:4f: 40:a2:94:be:11:8e:20:d2:7f:36:90:70:05:74:e9:9e:33:b0: 4e:15:11:10:e6:ad:d4:49:39:ca:27:fb:b3:f6:64:16:a1:2d: 89:1b:8c:ec:0c:75:32:06:bd:07:21:0a:9b:ee:65:f1:a3:19: 5d:8d:3c:79:ad:b1:19:70:2e:8e:66:51:f9:77:7b:0a:11:a8: 0d:8c:c2:65:d8:80:24:b1:11:38:77:89:ce:c1:91:f8:c4:3a: b7:10:8f:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFRTIxMTAvBgNVBAUTKDQ3NTI1MEU2QTA1NTQ3OEY0QUMxRUFGMUVEMzJENTY3 MkMzQ0QxQjMwHhcNMjUwODI0MTc1OTMzWhcNMjUwODMxMTc1OTMzWjAYMRYwFAYD VQQDEw02OGFiNTMwNi1jZTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Mt/cr1JWMEIJ1mLR1gcimGUSUuoKjgm2J5Cjzam/YM4nwP7mFPj/a1cWAk9 nJ05SI8geotkRLcfAyPiXy9tRQBr9awpXZjXYXVJXjkBqjWgiF0mTKlWqQhy3IlV jZmVyQXYoj6lNNF9x2/aXGZYwL8DlWxPqZvIP0FKlbTo+Zt70e01OlZ9phbyjlWr GC00aFEquWavICA7t0O9zxTNG4Nir1dpl1U/Nwk8XvHUHDqb7bsFeLsBdYn4g91P f9eN/4Yi5MAW0a6pBQjtCRj3wCXNiw/ZQPWfzrvEYgV6SaBeAFb1sMiANP1//ale yzGwwcezZchiejFE1J1ex0/hgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIXlPcXD 0ZRqTYIYbNgzIhC80d3FMB8GA1UdIwQYMBaAFEdSUOagVUePSsHq8e0y1WcsPNGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEVFMi9FQTAxRDU1QURG NzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0OUt3ZXJ4N1RMVlp5dzgw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxSlE1cUJWUjQ5S3dlcng3VExWWnl3ODBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEVFMi9FQTAxRDU1QURGNzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0 OUt3ZXJ4N1RMVlp5dzgwYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXVNcOym98OoeoYrY3QHv7o8mwMwQLUaN7Whkj3iAfE/2FXY/IMvjI iF9KA358j5tDbmzFX2GLAEhMzhTMgM6WXr2WjD09TfqZY7ngmxyWeJ6ZdN7RYUuw di4WwxQM+TQwUQ8oQSrPI8HzLuy/5Cl9EZ066biKr3DldRE8RE8Setp9YX/o+Meq mJGiKTL5Ly//dIbs0efeXlbwdah93fvmHE9AopS+EY4g0n82kHAFdOmeM7BOFREQ 5q3USTnKJ/uz9mQWoS2JG4zsDHUyBr0HIQqb7mXxoxldjTx5rbEZcC6OZlH5d3sK EagNjMJl2IAksRE4d4nOwZH4xDq3EI/Z -----END CERTIFICATE-----Generated at Sun Aug 24 21:44:35 2025 by rpki-client