$ rpki-client -vvf rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft File: c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft (raw, json) Hash identifier: VGnaik+Qx6jVkiTA/YvoTAcOazEtyp3rMlze3t1nqc8= Subject key identifier: 6E:A2:37:B8:F9:F1:4A:9E:2B:B1:1D:D4:8F:90:9B:B4:10:0E:A3:0E Authority key identifier: 73:FB:B5:8F:55:71:F3:F4:C6:2A:63:FD:F5:AF:EF:9C:B7:0E:74:03 Certificate issuer: /CN=A911C3BB/serialNumber=73FBB58F5571F3F4C62A63FDF5AFEF9CB70E7403 Certificate serial: 01EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c_u1j1Vx8_TGKmP99a_vnLcOdAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft Manifest number: 01E7 Signing time: Wed 17 Sep 2025 03:04:58 +0000 Manifest this update: Wed 17 Sep 2025 03:04:58 +0000 Manifest next update: Wed 24 Sep 2025 03:04:58 +0000 Files and hashes: 1: c_u1j1Vx8_TGKmP99a_vnLcOdAM.crl (hash: C8C8C3eLtNNyxJP6+j2VZBQk/Ag+o2hnrp1zgssyxMQ=) 2: CB2788CAAB4C11EDB3DC7336C4F9AE02.roa (hash: 5/W5EqvBYrwaBbNXisgVsa/BWjLPbFWwbLiAWCjCMGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.crl rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c_u1j1Vx8_TGKmP99a_vnLcOdAM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 03:04:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 491 (0x1eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C3BB, serialNumber=73FBB58F5571F3F4C62A63FDF5AFEF9CB70E7403 Validity Not Before: Sep 17 03:04:58 2025 GMT Not After : Sep 24 03:04:58 2025 GMT Subject: CN=68ca255a-acfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bf:5f:68:0c:a2:47:da:75:5c:51:03:0d:7b: 4f:b8:d0:2c:c7:50:f1:17:44:74:a7:9e:b9:84:4a: 2b:4b:70:33:11:a4:70:be:f5:be:c5:45:c7:91:04: 9d:60:4d:22:38:3e:0f:dd:b1:8c:03:fe:3c:9b:47: 19:8f:22:29:b7:62:fa:12:0c:8d:f2:7b:fa:83:b8: 31:6f:61:6d:69:93:f0:0a:96:33:40:c3:f7:c7:35: 66:fd:53:7b:bf:5a:9a:67:9c:e2:0b:99:98:37:ca: 21:25:63:8a:f6:9e:14:00:f2:38:a6:d5:a3:5e:e3: 2b:56:93:1f:44:2d:66:d9:3f:9e:d1:ea:87:1e:94: 9f:75:67:61:a8:bf:46:57:11:bd:56:0b:b6:05:73: c0:5a:7c:5c:3f:81:18:3d:9d:0d:06:ac:76:da:ab: b4:e1:1d:47:e1:4a:e2:1f:29:aa:3e:43:db:75:91: 97:e1:ed:69:9a:2c:90:eb:b4:81:5e:ca:95:13:d1: 89:5f:b3:f8:61:28:41:ca:07:04:2b:c0:a0:56:6d: f7:c7:4f:75:7f:64:0b:fa:d6:2b:e7:c3:7d:bb:dc: 5f:87:d2:74:04:ef:ce:83:26:a3:25:0e:06:fe:6c: 80:b4:98:05:4d:7e:6c:bd:50:e9:c2:8c:89:d7:b5: ff:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:A2:37:B8:F9:F1:4A:9E:2B:B1:1D:D4:8F:90:9B:B4:10:0E:A3:0E X509v3 Authority Key Identifier: keyid:73:FB:B5:8F:55:71:F3:F4:C6:2A:63:FD:F5:AF:EF:9C:B7:0E:74:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c_u1j1Vx8_TGKmP99a_vnLcOdAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C3BB/C908879AAB4911ED9FB40B35C4F9AE02/c_u1j1Vx8_TGKmP99a_vnLcOdAM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:a5:e2:e7:f6:40:9c:3f:ac:f7:b2:63:fe:58:10:f2:dd:76: e8:7f:8e:82:2e:5d:79:3b:cf:d4:35:20:86:92:4b:f8:17:86: 8f:72:b8:63:d3:39:83:2a:fd:b3:eb:58:e7:40:26:d2:07:59: 8a:15:97:ed:cc:21:7f:f6:30:0a:a5:43:d8:79:80:7c:a9:b9: 00:00:30:d2:04:a3:97:63:4f:99:e1:d6:25:18:e9:c1:5a:19: e3:cf:03:c1:ad:6b:02:de:2e:0e:cb:36:47:6c:26:5c:6c:1a: a1:03:7c:d8:10:73:09:d4:8b:ab:36:f9:85:56:fc:d7:5e:19: 6a:43:d4:e5:bc:36:f8:f2:3a:83:50:f4:d9:58:45:46:a4:ff: a3:ac:67:b1:20:25:76:ed:d9:94:fd:49:55:f0:2c:9e:52:59: e1:0a:4a:8d:72:24:d4:ec:89:76:ad:e2:5e:90:a5:6e:4d:93: 82:13:9d:e1:8e:22:a3:f8:51:1e:f0:d2:85:9a:0e:08:d4:d4: ec:d3:f8:b1:ea:3e:74:69:2b:88:4b:9c:a9:83:63:23:bc:07: 0a:ed:d0:97:b6:84:75:1a:ef:60:f4:9e:b2:d2:12:54:96:bb: fc:fa:50:c1:4e:04:63:b2:5a:ee:ce:e0:c3:d3:2b:e1:05:f1: a9:47:ea:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMzQkIxMTAvBgNVBAUTKDczRkJCNThGNTU3MUYzRjRDNjJBNjNGREY1QUZFRjlD QjcwRTc0MDMwHhcNMjUwOTE3MDMwNDU4WhcNMjUwOTI0MDMwNDU4WjAYMRYwFAYD VQQDEw02OGNhMjU1YS1hY2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwb9faAyiR9p1XFEDDXtPuNAsx1DxF0R0p565hEorS3AzEaRwvvW+xUXHkQSd YE0iOD4P3bGMA/48m0cZjyIpt2L6EgyN8nv6g7gxb2FtaZPwCpYzQMP3xzVm/VN7 v1qaZ5ziC5mYN8ohJWOK9p4UAPI4ptWjXuMrVpMfRC1m2T+e0eqHHpSfdWdhqL9G VxG9Vgu2BXPAWnxcP4EYPZ0NBqx22qu04R1H4UriHymqPkPbdZGX4e1pmiyQ67SB XsqVE9GJX7P4YShBygcEK8CgVm33x091f2QL+tYr58N9u9xfh9J0BO/OgyajJQ4G /myAtJgFTX5svVDpwoyJ17X/OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG6iN7j5 8UqeK7Ed1I+Qm7QQDqMOMB8GA1UdIwQYMBaAFHP7tY9VcfP0xipj/fWv75y3DnQD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzNCQi9DOTA4ODc5QUFC NDkxMUVEOUZCNDBCMzVDNEY5QUUwMi9jX3UxajFWeDhfVEdLbVA5OWFfdm5MY09k QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NfdTFqMVZ4OF9UR0ttUDk5YV92bkxjT2RBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzNCQi9DOTA4ODc5QUFCNDkxMUVEOUZCNDBCMzVDNEY5QUUwMi9jX3UxajFWeDhf VEdLbVA5OWFfdm5MY09kQU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzpeLn9kCcP6z3smP+WBDy3Xbof46CLl15O8/UNSCGkkv4F4aPcrhj 0zmDKv2z61jnQCbSB1mKFZftzCF/9jAKpUPYeYB8qbkAADDSBKOXY0+Z4dYlGOnB WhnjzwPBrWsC3i4OyzZHbCZcbBqhA3zYEHMJ1IurNvmFVvzXXhlqQ9TlvDb48jqD UPTZWEVGpP+jrGexICV27dmU/UlV8CyeUlnhCkqNciTU7Il2reJekKVuTZOCE53h jiKj+FEe8NKFmg4I1NTs0/ix6j50aSuIS5ypg2MjvAcK7dCXtoR1Gu9g9J6y0hJU lrv8+lDBTgRjslruzuDD0yvhBfGpR+ow -----END CERTIFICATE-----Generated at Fri Sep 19 00:37:20 2025 by rpki-client