$ rpki-client -vvf rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft File: 0pm8o5yZPbgNETe5mbIhhGrPVWs.mft (raw, json) Hash identifier: BBhhvaXlYl5EWhoQp7FCqACcTVXJpNlkUZYKtEg64yQ= Subject key identifier: 61:5D:6D:7C:99:C0:08:1E:52:C6:7C:FF:22:02:DD:C7:28:50:65:6F Authority key identifier: D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B Certificate issuer: /CN=A9115C2E/serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Certificate serial: 0505 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft Manifest number: 04FF Signing time: Sat 06 Sep 2025 20:04:29 +0000 Manifest this update: Sat 06 Sep 2025 20:04:29 +0000 Manifest next update: Sat 13 Sep 2025 20:04:29 +0000 Files and hashes: 1: 0pm8o5yZPbgNETe5mbIhhGrPVWs.crl (hash: MNOWCyRqEfhbeEjK58wTtsYuWXDJgNhcdBuX1eAmlpw=) 2: F490AE2431D811ECA3C4CE3EC4F9AE02.roa (hash: /oifx1YqYxKOVaxnhM6Z6BMW1b5AcpZK0vDtcYNO6Zg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 18:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1285 (0x505) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115C2E, serialNumber=D299BCA39C993DB80D1137B999B221846ACF556B Validity Not Before: Sep 6 20:04:29 2025 GMT Not After : Sep 13 20:04:29 2025 GMT Subject: CN=68bc93cd-fef4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:7f:7d:a9:65:28:b6:6e:96:5b:f1:85:eb:5a: a1:ff:f5:f0:f7:9b:dc:9a:eb:8d:48:11:fe:70:bb: 2e:63:51:6c:e8:56:11:b7:8c:04:fe:63:46:98:44: 50:fe:18:7a:d4:26:dc:f4:82:96:94:99:3f:f0:1a: 33:bf:20:2d:a8:3d:1f:1e:3c:97:ef:09:65:89:48: 90:42:5b:4b:32:4f:59:9b:51:be:86:e8:54:62:8c: 0e:bf:48:fd:ae:2d:5a:5c:4f:b7:09:ae:84:9b:8b: ea:c6:19:0c:0e:2c:32:a1:4e:39:82:86:77:49:2d: 28:89:65:7a:5d:9c:59:61:90:6f:ff:da:ef:ff:18: a1:33:8b:9a:97:db:c4:12:e6:9c:01:f5:8a:d0:db: 30:02:c2:98:97:18:59:cf:4f:c6:c5:87:7f:06:4f: f7:20:09:9c:ef:fb:ee:57:42:47:5c:79:06:5b:91: bd:f8:62:97:9d:cb:87:61:17:0b:6e:9b:dd:80:19: 54:db:ae:a2:df:21:4b:69:fc:b2:1d:b3:fd:6c:cb: 7f:4c:63:af:ab:ce:a5:ad:5f:5c:4d:66:8b:e9:e7: 0a:1a:67:6c:91:6c:63:86:48:fb:0f:7c:71:df:e5: 7b:7f:39:2a:ff:5f:ae:64:13:3d:76:55:6a:5f:33: 85:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:5D:6D:7C:99:C0:08:1E:52:C6:7C:FF:22:02:DD:C7:28:50:65:6F X509v3 Authority Key Identifier: keyid:D2:99:BC:A3:9C:99:3D:B8:0D:11:37:B9:99:B2:21:84:6A:CF:55:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0pm8o5yZPbgNETe5mbIhhGrPVWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115C2E/9527E6B4268E11EC8ED0BA6EC4F9AE02/0pm8o5yZPbgNETe5mbIhhGrPVWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:fb:e9:3f:46:1f:83:4e:bb:4f:9f:74:c9:90:de:77:d6:61: 1e:2d:b6:8b:de:7c:89:71:e4:87:cb:15:cb:78:5f:09:e2:98: ca:07:e3:2c:fb:d7:ce:17:e3:56:19:bb:a0:d9:14:c5:cc:84: 0b:a2:5a:4a:89:90:e2:20:ae:6e:d6:4f:37:b8:ae:48:ca:f3: 70:8b:03:3e:55:fd:f0:66:d5:a6:55:36:ed:f7:f8:aa:96:c4: 6b:64:f2:6a:1e:e7:74:eb:4a:27:d7:ac:b1:f5:99:68:5e:e5: 54:43:12:46:fa:09:72:1a:27:28:25:84:45:40:f4:8f:ae:b0: 97:2d:70:e4:87:93:47:ce:2f:4e:a1:12:5c:24:40:5c:e1:4f: 60:46:a8:6d:ae:de:da:13:82:1c:73:65:5a:cf:1e:4a:da:dc: 4b:25:a7:aa:24:af:86:a9:50:d2:0e:3d:98:01:d0:11:cb:9c: 9b:39:32:16:fa:3b:c4:ca:50:03:bb:41:5f:4d:32:21:0d:7f: b7:95:9a:17:16:44:70:59:11:32:88:c8:8b:63:a1:ca:00:24: c1:4a:ad:d7:f9:04:37:99:6e:ec:e4:35:69:81:08:7e:b3:51: a9:3a:99:c4:29:48:57:ce:4e:ae:71:63:f1:8b:9c:36:9d:e4: ef:26:93:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDMkUxMTAvBgNVBAUTKEQyOTlCQ0EzOUM5OTNEQjgwRDExMzdCOTk5QjIyMTg0 NkFDRjU1NkIwHhcNMjUwOTA2MjAwNDI5WhcNMjUwOTEzMjAwNDI5WjAYMRYwFAYD VQQDEw02OGJjOTNjZC1mZWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3H99qWUotm6WW/GF61qh//Xw95vcmuuNSBH+cLsuY1Fs6FYRt4wE/mNGmERQ /hh61Cbc9IKWlJk/8BozvyAtqD0fHjyX7wlliUiQQltLMk9Zm1G+huhUYowOv0j9 ri1aXE+3Ca6Em4vqxhkMDiwyoU45goZ3SS0oiWV6XZxZYZBv/9rv/xihM4ual9vE EuacAfWK0NswAsKYlxhZz0/GxYd/Bk/3IAmc7/vuV0JHXHkGW5G9+GKXncuHYRcL bpvdgBlU266i3yFLafyyHbP9bMt/TGOvq86lrV9cTWaL6ecKGmdskWxjhkj7D3xx 3+V7fzkq/1+uZBM9dlVqXzOF8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFdbXyZ wAgeUsZ8/yIC3ccoUGVvMB8GA1UdIwQYMBaAFNKZvKOcmT24DRE3uZmyIYRqz1Vr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUMyRS85NTI3RTZCNDI2 OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBiZ05FVGU1bWJJaGhHclBW V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBwbThvNXlaUGJnTkVUZTVtYkloaEdyUFZXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NUMyRS85NTI3RTZCNDI2OEUxMUVDOEVEMEJBNkVDNEY5QUUwMi8wcG04bzV5WlBi Z05FVGU1bWJJaGhHclBWV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1++k/Rh+DTrtPn3TJkN531mEeLbaL3nyJceSHyxXLeF8J4pjKB+Ms +9fOF+NWGbug2RTFzIQLolpKiZDiIK5u1k83uK5IyvNwiwM+Vf3wZtWmVTbt9/iq lsRrZPJqHud060on16yx9ZloXuVUQxJG+glyGicoJYRFQPSPrrCXLXDkh5NHzi9O oRJcJEBc4U9gRqhtrt7aE4Icc2Vazx5K2txLJaeqJK+GqVDSDj2YAdARy5ybOTIW +jvEylADu0FfTTIhDX+3lZoXFkRwWREyiMiLY6HKACTBSq3X+QQ3mW7s5DVpgQh+ s1GpOpnEKUhXzk6ucWPxi5w2neTvJpM9 -----END CERTIFICATE-----Generated at Sat Sep 6 22:50:55 2025 by rpki-client