$ rpki-client -vvf rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft File: u7bmAQQ3QyUFSIC308E15vx8yrE.mft (raw, json) Hash identifier: QY7sW7ZegnvkEpZyDQ5/e364kDBjGWCOFg3tWaQ9wsw= Subject key identifier: 30:8B:AE:03:51:BD:3D:63:0B:96:86:53:54:6B:C0:53:C9:31:EA:BA Authority key identifier: BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 Certificate issuer: /CN=A912804A/serialNumber=BBB6E60104374325054880B7D3C135E6FC7CCAB1 Certificate serial: 0228 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft Manifest number: 0223 Signing time: Wed 17 Sep 2025 02:30:02 +0000 Manifest this update: Wed 17 Sep 2025 02:30:01 +0000 Manifest next update: Wed 24 Sep 2025 02:30:01 +0000 Files and hashes: 1: u7bmAQQ3QyUFSIC308E15vx8yrE.crl (hash: kpqOvLQX6xjSgzStWTG2DlrVu5HS6Uj/N4nnrenJ/Xc=) 2: CCB0DBA8CB2911EE9CE70483C4F9AE02.roa (hash: +L4H64N18c7HC9b7a2kMN0oPwzUDs4ByILHmodSVj7c=) 3: 003D7FEE15E811F0841B1A7DC4F9AE02.roa (hash: NzfvN2nV9saQebWeBwyNL6bb8Qj6DnzhJ2bxOu8Ukwk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 02:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912804A, serialNumber=BBB6E60104374325054880B7D3C135E6FC7CCAB1 Validity Not Before: Sep 17 02:30:01 2025 GMT Not After : Sep 24 02:30:01 2025 GMT Subject: CN=68ca1d29-5e77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:37:12:75:77:d9:93:9b:0b:da:31:ea:cf:2c: 2a:59:2f:57:bf:ba:3e:9b:d9:9f:60:b0:bb:63:66: 40:18:94:2f:a0:f0:51:61:c9:8f:37:4a:de:ed:85: 52:44:96:cf:82:59:7b:44:71:3f:b2:bd:69:2d:a9: 3c:bf:95:e0:32:99:7a:3a:3d:3b:df:9c:88:1d:bb: cf:5d:f2:a8:0b:19:27:0e:2a:66:58:1a:fc:80:a7: 8d:be:55:a4:4e:37:5e:70:d5:e5:e1:1b:1f:de:75: 5c:d5:f5:64:35:ee:9f:af:7b:de:16:cf:df:16:f7: 8b:5c:cf:8e:56:ec:62:62:b9:93:6d:7a:5e:bb:4d: 98:7d:42:82:1d:cb:23:cd:09:f5:ae:a4:a6:d3:21: 6d:76:50:ce:fc:5b:a9:b9:f4:42:bc:83:a0:b0:78: 6d:52:82:7d:c2:8b:e0:93:18:ad:b8:ed:80:f3:d9: d5:97:53:b8:ef:d7:f4:77:5f:07:49:52:dc:3e:36: cc:d0:78:63:f4:5c:16:f4:5d:90:63:95:d9:19:66: b3:d7:40:e4:68:fd:1d:22:f0:7e:68:67:61:61:9e: ac:8a:a4:d8:b5:92:c9:af:3c:4b:9b:f0:85:f1:d1: cc:1c:a0:4a:69:d5:41:6c:05:28:7a:01:76:0f:c2: 12:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:8B:AE:03:51:BD:3D:63:0B:96:86:53:54:6B:C0:53:C9:31:EA:BA X509v3 Authority Key Identifier: keyid:BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:59:dc:9a:41:78:31:a4:78:06:42:52:81:16:d9:8a:55:e6: e3:4d:1d:c5:00:6d:f3:bc:c6:d7:33:43:85:4a:50:36:28:d3: 36:53:da:69:27:b7:02:c5:9f:f1:72:af:7e:c3:c7:87:c6:5d: e2:a4:f4:18:e3:d2:79:50:45:21:20:04:1f:a4:2c:d4:eb:87: d3:c3:4c:83:6e:0f:0c:c6:10:d7:dd:23:c7:6e:62:a8:91:58: ed:03:13:3b:5e:69:51:1b:32:34:b3:83:5d:98:5d:c2:04:27: 95:b1:b7:53:f7:36:93:2c:3c:cd:32:8a:d6:da:14:39:5f:7b: 78:0f:b7:8c:ad:ea:c4:d7:73:28:a4:60:8a:8b:3a:12:52:a2: f9:c2:5f:99:19:83:2b:e3:52:f7:9f:db:3d:b2:d7:1b:ee:5a: 7f:6b:dd:2d:a3:d9:7e:13:04:1d:34:09:6d:5b:85:14:63:ec: 65:42:08:c9:0e:bc:25:e7:c3:43:7d:3f:a4:33:47:c8:1a:a5: f2:e4:b1:22:e3:dc:6b:28:8c:92:f5:99:65:68:9f:2b:4d:4c: 2b:46:e3:2a:58:a3:d2:be:38:0a:e9:1f:7a:f5:1d:73:6d:68: 0e:f0:4b:0c:0e:dd:90:13:13:67:e1:cf:c5:d9:bd:58:6d:3b: 0a:31:dc:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgwNEExMTAvBgNVBAUTKEJCQjZFNjAxMDQzNzQzMjUwNTQ4ODBCN0QzQzEzNUU2 RkM3Q0NBQjEwHhcNMjUwOTE3MDIzMDAxWhcNMjUwOTI0MDIzMDAxWjAYMRYwFAYD VQQDEw02OGNhMWQyOS01ZTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3zcSdXfZk5sL2jHqzywqWS9Xv7o+m9mfYLC7Y2ZAGJQvoPBRYcmPN0re7YVS RJbPgll7RHE/sr1pLak8v5XgMpl6Oj0735yIHbvPXfKoCxknDipmWBr8gKeNvlWk TjdecNXl4Rsf3nVc1fVkNe6fr3veFs/fFveLXM+OVuxiYrmTbXpeu02YfUKCHcsj zQn1rqSm0yFtdlDO/FupufRCvIOgsHhtUoJ9wovgkxituO2A89nVl1O479f0d18H SVLcPjbM0Hhj9FwW9F2QY5XZGWaz10DkaP0dIvB+aGdhYZ6siqTYtZLJrzxLm/CF 8dHMHKBKadVBbAUoegF2D8ISPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDCLrgNR vT1jC5aGU1RrwFPJMeq6MB8GA1UdIwQYMBaAFLu25gEEN0MlBUiAt9PBNeb8fMqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODA0QS85NUE4MTAxNDUw NzcxMUVEOUY3MjU5MjhDNEY5QUUwMi91N2JtQVFRM1F5VUZTSUMzMDhFMTV2eDh5 ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U3Ym1BUVEzUXlVRlNJQzMwOEUxNXZ4OHlyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODA0QS85NUE4MTAxNDUwNzcxMUVEOUY3MjU5MjhDNEY5QUUwMi91N2JtQVFRM1F5 VUZTSUMzMDhFMTV2eDh5ckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxWdyaQXgxpHgGQlKBFtmKVebjTR3FAG3zvMbXM0OFSlA2KNM2U9pp J7cCxZ/xcq9+w8eHxl3ipPQY49J5UEUhIAQfpCzU64fTw0yDbg8MxhDX3SPHbmKo kVjtAxM7XmlRGzI0s4NdmF3CBCeVsbdT9zaTLDzNMorW2hQ5X3t4D7eMrerE13Mo pGCKizoSUqL5wl+ZGYMr41L3n9s9stcb7lp/a90to9l+EwQdNAltW4UUY+xlQgjJ Drwl58NDfT+kM0fIGqXy5LEi49xrKIyS9ZllaJ8rTUwrRuMqWKPSvjgK6R969R1z bWgO8EsMDt2QExNn4c/F2b1YbTsKMdxf -----END CERTIFICATE-----Generated at Thu Sep 18 21:59:18 2025 by rpki-client