$ rpki-client -vvf rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft File: pxA_0z9simRI_GOUCql9k_gfgQU.mft (raw, json) Hash identifier: RrVfjmzf0j5GlADYUp0rurX35+F4L14eFauG48solo4= Subject key identifier: F6:D4:CD:71:58:0B:AD:C4:3D:08:6E:41:B1:2D:38:B2:39:DE:46:6B Authority key identifier: A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 Certificate issuer: /CN=A9126D40/serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Certificate serial: 057E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft Manifest number: 0579 Signing time: Thu 18 Sep 2025 23:35:38 +0000 Manifest this update: Thu 18 Sep 2025 23:35:37 +0000 Manifest next update: Thu 25 Sep 2025 23:35:37 +0000 Files and hashes: 1: pxA_0z9simRI_GOUCql9k_gfgQU.crl (hash: wdzG35Jwe/KC5/5Fq2iTAyw0OqcyP40FVEttmSz9+Gk=) 2: 5B0A7AFCF3F611EB8DD81585C4F9AE02.roa (hash: R8hfJ5cUDeHXSHt31Yaxeq/Vdh/2fKfS7Ifq3y/hy0s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 23:35:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1406 (0x57e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126D40, serialNumber=A7103FD33F6C8A6448FC63940AA97D93F81F8105 Validity Not Before: Sep 18 23:35:37 2025 GMT Not After : Sep 25 23:35:37 2025 GMT Subject: CN=68cc9749-8588 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:74:2b:90:d1:56:b2:f8:48:ce:2a:93:88:43: a9:35:be:87:11:6d:ac:51:be:f9:07:f7:da:d0:a9: 9e:fd:d7:37:6b:87:d7:ef:c3:90:4a:ec:f1:f3:29: cd:4d:a3:4b:95:7c:c3:5a:26:24:bb:35:0a:30:18: 6f:c2:9f:f6:23:8b:c1:8d:e2:ef:f7:30:09:d7:02: e2:ae:ad:7d:1a:8b:1c:79:2c:cb:d9:f3:3b:8b:4d: 0e:5b:92:f1:d3:52:f6:b1:97:dd:09:dc:15:cd:5e: 3a:02:7c:58:33:62:9f:62:61:1b:74:30:83:bb:ea: 5d:6b:b4:12:38:0f:89:7d:29:35:0c:2d:46:c5:1d: d4:88:b0:5e:1c:85:e1:0f:d8:bf:d1:ed:dc:82:11: ec:ee:b0:55:45:cb:0d:5a:c5:6a:61:c4:e2:51:3a: 0a:b0:7e:4b:c4:be:9a:d9:45:f1:11:06:f1:b3:3a: 48:8c:ba:95:49:7c:fb:89:33:bb:66:89:8e:c1:3a: 0f:24:39:3d:47:6e:c6:b5:6f:8c:ce:ac:fb:66:2a: e3:c3:1b:fb:73:a7:70:f7:52:31:da:ea:6a:d7:65: 21:fc:e4:1b:bb:2b:d4:6f:7d:15:63:b5:c5:9a:16: 4e:cd:b5:6d:f7:18:9e:c6:7a:bb:48:3c:fa:37:37: ff:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:D4:CD:71:58:0B:AD:C4:3D:08:6E:41:B1:2D:38:B2:39:DE:46:6B X509v3 Authority Key Identifier: keyid:A7:10:3F:D3:3F:6C:8A:64:48:FC:63:94:0A:A9:7D:93:F8:1F:81:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pxA_0z9simRI_GOUCql9k_gfgQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126D40/3C6333C6F3F311EBA292E580C4F9AE02/pxA_0z9simRI_GOUCql9k_gfgQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:90:fa:f9:36:fd:75:a1:33:82:b1:9a:7e:f2:d6:cb:fa:37: 3e:13:d7:e9:8b:71:d8:89:af:0b:09:e1:23:de:b0:d2:1b:f2: d3:61:28:1b:a6:2b:9f:32:01:ed:51:0f:83:da:1a:0f:99:bb: 98:65:a1:ea:6c:17:5a:46:70:04:74:68:af:8d:b4:6e:7f:c4: 3d:c0:68:af:69:49:67:80:42:c9:63:bc:6e:49:2a:01:76:d6: f2:e6:46:b1:89:33:d2:53:88:df:43:69:ee:6c:40:92:21:fc: 30:2a:1a:fc:5d:37:ed:2d:88:d1:53:c7:b6:33:72:8a:2b:c4: 0b:10:a2:2c:b4:39:f8:2a:74:1e:7d:c4:4b:ad:bd:68:5e:89: 86:0b:8d:3f:75:9a:9d:6d:08:0b:cc:b5:5c:08:bf:35:8b:62: 2a:08:10:3f:e8:cc:a1:61:78:7e:7e:12:a3:ba:72:09:c0:88: d5:7d:b1:e5:2d:cb:98:22:1d:e6:b5:95:26:e9:ae:2e:a9:53: 97:90:9e:07:02:90:f2:d4:c2:f5:c8:1f:65:b3:0a:93:1e:01: 95:82:eb:db:5b:3e:c6:71:c4:3b:43:9f:d8:16:4d:fb:a6:4a: 9f:2d:58:9a:4f:3e:14:80:c4:b2:8a:89:79:60:8f:2c:cc:c7: 5d:1b:1c:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZENDAxMTAvBgNVBAUTKEE3MTAzRkQzM0Y2QzhBNjQ0OEZDNjM5NDBBQTk3RDkz RjgxRjgxMDUwHhcNMjUwOTE4MjMzNTM3WhcNMjUwOTI1MjMzNTM3WjAYMRYwFAYD VQQDEw02OGNjOTc0OS04NTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXQrkNFWsvhIziqTiEOpNb6HEW2sUb75B/fa0Kme/dc3a4fX78OQSuzx8ynN TaNLlXzDWiYkuzUKMBhvwp/2I4vBjeLv9zAJ1wLirq19GosceSzL2fM7i00OW5Lx 01L2sZfdCdwVzV46AnxYM2KfYmEbdDCDu+pda7QSOA+JfSk1DC1GxR3UiLBeHIXh D9i/0e3cghHs7rBVRcsNWsVqYcTiUToKsH5LxL6a2UXxEQbxszpIjLqVSXz7iTO7 ZomOwToPJDk9R27GtW+Mzqz7Zirjwxv7c6dw91Ix2upq12Uh/OQbuyvUb30VY7XF mhZOzbVt9xiexnq7SDz6Nzf/bQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPbUzXFY C63EPQhuQbEtOLI53kZrMB8GA1UdIwQYMBaAFKcQP9M/bIpkSPxjlAqpfZP4H4EF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkQ0MC8zQzYzMzNDNkYz RjMxMUVCQTI5MkU1ODBDNEY5QUUwMi9weEFfMHo5c2ltUklfR09VQ3FsOWtfZ2Zn UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B4QV8wejlzaW1SSV9HT1VDcWw5a19nZmdRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkQ0MC8zQzYzMzNDNkYzRjMxMUVCQTI5MkU1ODBDNEY5QUUwMi9weEFfMHo5c2lt UklfR09VQ3FsOWtfZ2ZnUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOkPr5Nv11oTOCsZp+8tbL+jc+E9fpi3HYia8LCeEj3rDSG/LTYSgb piufMgHtUQ+D2hoPmbuYZaHqbBdaRnAEdGivjbRuf8Q9wGivaUlngELJY7xuSSoB dtby5kaxiTPSU4jfQ2nubECSIfwwKhr8XTftLYjRU8e2M3KKK8QLEKIstDn4KnQe fcRLrb1oXomGC40/dZqdbQgLzLVcCL81i2IqCBA/6MyhYXh+fhKjunIJwIjVfbHl LcuYIh3mtZUm6a4uqVOXkJ4HApDy1ML1yB9lswqTHgGVguvbWz7GccQ7Q5/YFk37 pkqfLViaTz4UgMSyiol5YI8szMddGxzl -----END CERTIFICATE-----Generated at Fri Sep 19 05:30:15 2025 by rpki-client