$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft File: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft (raw, json) Hash identifier: kPIzqQS0Foi7HUFrp4BrZ/8NMFSj7x5nSANhJ+5J/Bc= Subject key identifier: FE:EE:47:50:63:01:B9:A8:97:54:9D:99:B9:A3:5A:85:08:B2:85:C9 Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: 015A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft Manifest number: 0152 Signing time: Fri 19 Sep 2025 04:49:38 +0000 Manifest this update: Fri 19 Sep 2025 04:49:38 +0000 Manifest next update: Fri 26 Sep 2025 04:49:38 +0000 Files and hashes: 1: ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl (hash: 0c5xFEZ0eBJidIvxpOXxiOjhzlSPLPwfKGPmOQ39E9M=) 2: 813EDCA4137E11EF9969A86BC4F9AE02.roa (hash: 8cegSUbUuoPE7mPNDdYwV/tSOtw6Sjag/azXHzK7Lu8=) 3: 210A4EBAC0F211EE99FFBA21C4F9AE02.roa (hash: l/0cV1WqKHlm3zfBuP747PhglBf2SLieAswGuN8ioE8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 04:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33, serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: Sep 19 04:49:38 2025 GMT Not After : Sep 26 04:49:38 2025 GMT Subject: CN=68cce0e2-9c1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:52:2f:23:8b:e0:ce:09:c4:e8:72:7b:66:99: 83:dd:44:9f:c6:9c:29:2d:9f:9a:b6:f0:8a:9a:eb: 73:b1:14:a2:17:ed:7c:8a:95:2c:2f:d8:88:3c:2f: 22:4a:7c:42:b2:42:8f:82:7b:5b:b2:fe:3e:76:8a: 0b:7a:94:08:93:06:cb:c0:61:54:92:0f:8f:c9:46: 54:5a:b8:26:fd:9a:36:85:22:91:24:96:e1:58:e1: ee:83:76:c7:6b:e5:2e:8a:50:ee:9d:98:43:2e:4b: b6:74:18:2d:1b:c2:94:c8:35:eb:ea:a0:f1:dc:9c: f6:24:b0:36:86:1b:11:9b:2a:0b:d5:62:f1:7d:c8: 7e:0a:67:51:5b:b7:15:7e:95:c5:7b:9d:e6:d2:ae: b3:d0:3e:d4:a0:f4:a1:86:07:79:ab:6a:2f:cd:89: 7c:4f:4e:53:87:08:a9:84:c5:d0:da:10:0b:94:c7: 51:e5:48:c1:79:90:75:45:25:d3:4b:cd:30:be:ff: 12:76:6d:6d:f3:5b:58:5a:b9:c0:e1:9d:c7:79:6a: 71:bd:57:22:9b:74:e0:6d:b7:35:0d:1d:d4:11:a8: f2:c5:2b:52:d2:6c:3f:b3:89:e0:e1:4d:ea:5b:93: 6e:3b:da:63:89:14:f3:7a:77:6f:16:84:4d:b3:68: 8e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:EE:47:50:63:01:B9:A8:97:54:9D:99:B9:A3:5A:85:08:B2:85:C9 X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:a3:90:da:2f:c9:4a:7b:29:3e:b5:0d:96:4c:fc:ab:50:55: e5:ae:a4:08:6e:4c:70:f7:40:32:a3:f5:b2:b2:3b:b0:aa:ab: 71:82:78:d8:17:56:d2:c1:22:6c:82:0f:6c:4e:65:d5:a1:22: 8b:b6:8d:45:9b:67:15:fc:78:48:e0:43:de:e5:4e:e5:e8:fe: 5b:67:be:42:e3:e9:3c:5c:6f:bd:69:87:fe:bc:04:a6:e7:ee: b8:c6:1d:a4:37:8f:55:82:16:21:13:41:23:7b:e6:b6:7d:7e: 25:94:ad:b6:a4:f7:3e:2f:5a:4d:8e:23:c2:7e:14:9f:ad:50: 98:47:b1:bd:67:38:35:55:fb:94:48:7e:6d:42:14:3b:57:ff: b1:9b:30:c0:2c:de:94:fd:7e:bc:92:d5:86:30:76:58:5b:84: fe:27:0e:85:b1:de:4f:73:1a:7e:31:99:32:be:f3:9d:9f:22: 86:2a:88:46:8a:77:e0:08:37:e7:5e:18:38:4a:ab:6d:a5:6b: 2b:7c:d8:29:2f:14:9c:3d:3a:bf:40:dd:14:a0:ed:40:cb:14: 7a:e8:cb:ee:4d:19:9b:a8:9f:9c:4c:6e:fc:89:17:70:0f:08: 60:b5:08:a5:d8:eb:4a:19:b2:41:c4:79:4b:a5:d4:b2:b5:4c: 41:ec:e5:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDMzMxMTAvBgNVBAUTKEFGMkVFMDQ0MTIzNTZBQkZEOEUxOUFFMkMxQjIyQTcz N0NERjVFOUUwHhcNMjUwOTE5MDQ0OTM4WhcNMjUwOTI2MDQ0OTM4WjAYMRYwFAYD VQQDEw02OGNjZTBlMi05YzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFIvI4vgzgnE6HJ7ZpmD3USfxpwpLZ+atvCKmutzsRSiF+18ipUsL9iIPC8i SnxCskKPgntbsv4+dooLepQIkwbLwGFUkg+PyUZUWrgm/Zo2hSKRJJbhWOHug3bH a+UuilDunZhDLku2dBgtG8KUyDXr6qDx3Jz2JLA2hhsRmyoL1WLxfch+CmdRW7cV fpXFe53m0q6z0D7UoPShhgd5q2ovzYl8T05ThwiphMXQ2hALlMdR5UjBeZB1RSXT S80wvv8Sdm1t81tYWrnA4Z3HeWpxvVcim3Tgbbc1DR3UEajyxStS0mw/s4ng4U3q W5NuO9pjiRTzendvFoRNs2iOTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7uR1Bj Abmol1SdmbmjWoUIsoXJMB8GA1UdIwQYMBaAFK8u4EQSNWq/2OGa4sGyKnN8316e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEMzMy85NTZDQjA4Njk4 MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFyX1k0WnJpd2JJcWMzemZY cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6ZlhwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEMzMy85NTZDQjA4Njk4MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFy X1k0WnJpd2JJcWMzemZYcDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdo5DaL8lKeyk+tQ2WTPyrUFXlrqQIbkxw90Ayo/WysjuwqqtxgnjY F1bSwSJsgg9sTmXVoSKLto1Fm2cV/HhI4EPe5U7l6P5bZ75C4+k8XG+9aYf+vASm 5+64xh2kN49VghYhE0Eje+a2fX4llK22pPc+L1pNjiPCfhSfrVCYR7G9Zzg1VfuU SH5tQhQ7V/+xmzDALN6U/X68ktWGMHZYW4T+Jw6Fsd5Pcxp+MZkyvvOdnyKGKohG infgCDfnXhg4SqttpWsrfNgpLxScPTq/QN0UoO1AyxR66MvuTRmbqJ+cTG78iRdw DwhgtQil2OtKGbJBxHlLpdSytUxB7OWF -----END CERTIFICATE-----Generated at Fri Sep 19 08:53:22 2025 by rpki-client