$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft File: aTyLTLomsG0s-roPm-TTffDd_z0.mft (raw, json) Hash identifier: bt5UCopvHuFksGA8hFRtGt3DiASDRkQ7LVWrXHjYJXY= Subject key identifier: 71:DB:51:0D:4C:39:EE:AA:F3:C8:E2:A6:FB:B9:41:6A:C9:86:6C:70 Authority key identifier: 69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D Certificate issuer: /CN=A911ABF4/serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft Manifest number: 18C8 Signing time: Thu 18 Sep 2025 17:44:42 +0000 Manifest this update: Thu 18 Sep 2025 17:44:42 +0000 Manifest next update: Thu 25 Sep 2025 17:44:42 +0000 Files and hashes: 1: aTyLTLomsG0s-roPm-TTffDd_z0.crl (hash: LCDMYYTISW5T8QtlCpCwSx78jsgRc56YPMSeHtacKIY=) 2: A5A4E4866D3611F08FF30A86C4F9AE02.roa (hash: 9IEVEed/qQg7h6mrT8ekMyn0JnXizeeUHJOjRag0rxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:44:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABF4, serialNumber=693C8B4CBA26B06D2CFABA0F9BE4D37DF0DDFF3D Validity Not Before: Sep 18 17:44:42 2025 GMT Not After : Sep 25 17:44:42 2025 GMT Subject: CN=68cc450a-01a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:92:05:24:db:30:64:53:99:1b:52:05:62:4e: 9d:a9:27:8b:cb:23:b7:a8:91:b8:5c:d7:d1:45:66: 20:e0:04:64:4e:86:6f:96:5c:d5:a4:ff:49:c8:8e: 23:c5:de:54:37:b0:79:76:52:f0:0a:1b:c7:b2:57: 06:69:4c:db:fc:3a:9f:f7:1f:d6:f9:62:52:ac:0d: 39:eb:20:79:7c:e0:4c:20:f7:00:75:ba:0a:d3:19: f8:aa:5d:49:62:86:7e:80:ac:77:39:e3:1d:c5:5c: 30:e9:66:cb:95:a2:89:3f:5a:5f:2b:83:10:c1:20: e7:4a:cd:b4:c2:33:85:39:e9:5f:19:f6:56:5b:e5: be:7c:ea:5f:df:80:54:66:0a:10:fb:cc:23:a3:a5: 34:da:fd:a3:00:03:98:c1:f7:76:b2:1f:f3:80:43: 65:ed:e5:25:a4:6d:5a:02:04:cf:ad:a1:67:d6:a1: 5d:26:07:89:4f:9e:af:70:04:54:fc:8c:9b:98:5e: ed:a1:43:bb:97:a8:0a:ff:a3:1b:53:35:5c:9a:3d: db:1b:ab:b5:89:63:13:2e:63:6c:00:5d:42:2d:37: eb:0f:0a:5b:4f:20:04:90:c6:1c:a4:6c:be:94:8c: 54:ef:1d:66:24:b9:b0:31:85:cd:8e:cc:83:fa:89: c6:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:DB:51:0D:4C:39:EE:AA:F3:C8:E2:A6:FB:B9:41:6A:C9:86:6C:70 X509v3 Authority Key Identifier: keyid:69:3C:8B:4C:BA:26:B0:6D:2C:FA:BA:0F:9B:E4:D3:7D:F0:DD:FF:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTyLTLomsG0s-roPm-TTffDd_z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABF4/EA87185C721B11E9BB748150C4F9AE02/aTyLTLomsG0s-roPm-TTffDd_z0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:e0:6d:c8:e5:26:4a:fc:7a:8e:c6:59:4c:b2:66:a7:48:7b: 2b:d6:e2:7c:56:e4:29:a3:f0:a9:57:4f:02:1d:00:30:00:b0: c0:61:54:a9:52:ec:e9:43:0f:0e:7a:e2:77:04:bf:25:43:96: 7e:53:58:b8:a6:17:0e:a4:4b:52:e9:b4:62:2a:38:a4:94:c2: 12:b4:51:a9:be:f6:f0:25:36:52:07:b4:ee:af:2d:ca:95:ab: 88:85:04:e8:bb:03:dc:ed:40:e1:b4:d4:a1:18:a3:b3:63:f1: 90:a1:b8:84:c6:bd:3c:5f:5e:0b:34:79:cc:2d:34:84:59:36: 53:ba:88:a3:19:94:57:af:3b:fa:1c:9a:31:f8:0c:0b:58:d5: 17:03:df:78:0f:22:8c:bb:7a:25:84:1a:d6:55:a6:c3:29:fb: 91:8a:ff:db:d5:f7:47:90:c7:44:2e:79:25:4e:31:b3:27:43: 8b:48:9a:6f:60:81:76:3e:a1:c9:f4:08:97:25:d2:b3:9d:47: 13:2c:41:68:fc:d1:37:84:52:9c:c0:dc:33:a6:e3:88:e8:f5: 31:ca:3f:a6:ad:07:06:1b:2f:41:37:d8:04:de:77:38:22:86: 72:fa:e9:c8:1f:ec:c1:b4:7c:cc:39:1f:6f:f1:5e:6b:4e:5f: b5:a3:c1:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCRjQxMTAvBgNVBAUTKDY5M0M4QjRDQkEyNkIwNkQyQ0ZBQkEwRjlCRTREMzdE RjBEREZGM0QwHhcNMjUwOTE4MTc0NDQyWhcNMjUwOTI1MTc0NDQyWjAYMRYwFAYD VQQDEw02OGNjNDUwYS0wMWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAspIFJNswZFOZG1IFYk6dqSeLyyO3qJG4XNfRRWYg4ARkToZvllzVpP9JyI4j xd5UN7B5dlLwChvHslcGaUzb/Dqf9x/W+WJSrA056yB5fOBMIPcAdboK0xn4ql1J YoZ+gKx3OeMdxVww6WbLlaKJP1pfK4MQwSDnSs20wjOFOelfGfZWW+W+fOpf34BU ZgoQ+8wjo6U02v2jAAOYwfd2sh/zgENl7eUlpG1aAgTPraFn1qFdJgeJT56vcARU /IybmF7toUO7l6gK/6MbUzVcmj3bG6u1iWMTLmNsAF1CLTfrDwpbTyAEkMYcpGy+ lIxU7x1mJLmwMYXNjsyD+onGEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHHbUQ1M Oe6q88jipvu5QWrJhmxwMB8GA1UdIwQYMBaAFGk8i0y6JrBtLPq6D5vk033w3f89 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJGNC9FQTg3MTg1Qzcy MUIxMUU5QkI3NDgxNTBDNEY5QUUwMi9hVHlMVExvbXNHMHMtcm9QbS1UVGZmRGRf ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUeUxUTG9tc0cwcy1yb1BtLVRUZmZEZF96MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUJGNC9FQTg3MTg1QzcyMUIxMUU5QkI3NDgxNTBDNEY5QUUwMi9hVHlMVExvbXNH MHMtcm9QbS1UVGZmRGRfejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCr4G3I5SZK/HqOxllMsmanSHsr1uJ8VuQpo/CpV08CHQAwALDAYVSp UuzpQw8OeuJ3BL8lQ5Z+U1i4phcOpEtS6bRiKjiklMIStFGpvvbwJTZSB7Tury3K lauIhQTouwPc7UDhtNShGKOzY/GQobiExr08X14LNHnMLTSEWTZTuoijGZRXrzv6 HJox+AwLWNUXA994DyKMu3olhBrWVabDKfuRiv/b1fdHkMdELnklTjGzJ0OLSJpv YIF2PqHJ9AiXJdKznUcTLEFo/NE3hFKcwNwzpuOI6PUxyj+mrQcGGy9BN9gE3nc4 IoZy+unIH+zBtHzMOR9v8V5rTl+1o8H7 -----END CERTIFICATE-----Generated at Fri Sep 19 02:29:37 2025 by rpki-client