$ rpki-client -vvf rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft File: cL0aXZUSv23gumklPbvwEQPlOkM.mft (raw, json) Hash identifier: advaVbmQSDmDdWbQbUhIe1U+PXeYNokdCm5rC+obC74= Subject key identifier: A4:43:04:31:CF:53:6C:DC:A0:80:9A:DD:13:AE:E0:F8:57:CC:A7:06 Authority key identifier: 70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 Certificate issuer: /CN=A9129797/serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Certificate serial: 114E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft Manifest number: 1131 Signing time: Thu 18 Sep 2025 17:25:38 +0000 Manifest this update: Thu 18 Sep 2025 17:25:37 +0000 Manifest next update: Thu 25 Sep 2025 17:25:37 +0000 Files and hashes: 1: cL0aXZUSv23gumklPbvwEQPlOkM.crl (hash: YX77vvnlThrkyLAXYezL+xYn6ISefDZSJC80qn0ccO4=) 2: 8818EDF88F2C11EDA558DE4DC4F9AE02.roa (hash: b6hr7IhNuFUDMwuO8Nb6ge3GDbb3DEInCX/HHEiFoVM=) 3: E0A2D2B040C811EE90859140C4F9AE02.roa (hash: skRP+9UcVz6p99ItfpkcWdsCVMpTNN+fUT0lptapL6Y=) 4: 6B5A80B80B8211EAAD5B6B4AC4F9AE02.roa (hash: ShmWGPi16fistc8ldhgNj0wn72/E+SCOVnORBpUTPkI=) 5: 595310E440C911EE9F1D5F41C4F9AE02.roa (hash: Z7+3DvwJtElz8GyUhaEbEO58MPBIQdKLUzyM58gm72k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:25:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4430 (0x114e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129797, serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Validity Not Before: Sep 18 17:25:37 2025 GMT Not After : Sep 25 17:25:37 2025 GMT Subject: CN=68cc4092-a17a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:79:e1:04:38:cc:4f:47:c8:28:72:5f:eb:e6: 81:ab:5f:11:23:87:20:03:75:a7:de:31:4c:cf:cb: bc:82:b2:8d:1d:7a:21:2a:dc:b4:cc:2a:12:86:b9: 7b:17:b0:5b:dd:ff:c2:23:d9:ac:f9:e4:f7:b2:65: 78:3a:3c:f7:d1:87:ac:8f:37:46:36:96:a2:12:75: b3:c8:17:b9:6b:18:eb:94:0f:c1:fc:5a:ce:16:71: 65:49:1f:cd:5c:81:09:6a:d7:9e:03:77:cd:10:4f: 2d:ea:9c:99:f7:e8:a2:d0:4f:6f:2e:d2:6c:9e:bf: ca:eb:8e:0e:ee:07:1e:e6:cb:40:65:e6:bd:84:de: a0:b5:40:3d:81:ef:b2:65:64:48:59:ed:00:4b:c0: b0:48:39:21:6c:0d:66:23:a2:3c:eb:30:3b:67:02: a4:b0:bf:9c:ec:30:f8:f2:0a:ce:c7:22:f4:66:20: 85:b4:7c:ac:08:47:ca:c3:79:62:18:24:4b:85:68: 85:59:8c:75:7d:99:be:c6:62:ea:5f:ee:3e:e5:b0: ca:d4:94:a6:08:6d:28:58:ce:b2:81:bb:a5:b6:23: 1e:ad:eb:d0:3e:37:63:c4:b3:b0:67:18:e1:12:59: 0a:ef:d7:68:d1:8d:7d:69:f6:11:3b:c6:86:71:58: 5b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:43:04:31:CF:53:6C:DC:A0:80:9A:DD:13:AE:E0:F8:57:CC:A7:06 X509v3 Authority Key Identifier: keyid:70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:8c:c8:04:2f:6f:36:56:f5:9c:08:71:99:71:52:2b:69:a5: a8:57:98:d4:fc:ef:57:51:c7:fa:94:a3:0d:36:78:3f:f3:88: 87:ac:40:1b:29:72:8b:1a:72:d4:04:4e:de:03:ae:d7:79:cd: b3:30:11:5f:3e:b7:35:7d:65:e4:a5:00:ba:da:e6:8e:08:f8: 8f:a1:94:07:d3:a1:98:b7:94:d1:e7:53:55:3d:8d:a6:3b:8e: 6b:2e:fb:25:4d:bc:a2:a2:bc:c7:df:8e:24:1b:e4:41:f8:18: 96:df:d4:6b:a5:ef:0c:8c:27:32:de:9f:50:e9:a3:75:6b:3a: 4e:21:02:4a:87:d9:3f:4b:96:25:14:37:fa:c8:ff:e1:64:f5: 09:fb:e9:30:39:62:9f:a7:27:09:9b:b1:8b:a7:3f:9e:6d:10: ca:5f:f5:92:b9:fb:b8:40:0a:11:46:ff:77:d9:9a:70:dd:8e: a9:29:34:ee:1d:65:1e:b1:18:a3:19:a8:0e:2e:5c:b5:b5:3c: 18:aa:ac:a9:dd:c1:6b:8e:f0:5e:a1:4c:fa:d1:14:50:35:73: 83:6f:b8:b5:fe:a4:d5:f0:fc:28:33:46:de:2e:76:c1:e4:58: f9:a2:9c:7a:2a:81:45:23:74:3a:82:23:21:46:49:e6:b0:8a: ca:dd:97:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3OTcxMTAvBgNVBAUTKDcwQkQxQTVEOTUxMkJGNkRFMEJBNjkyNTNEQkJGMDEx MDNFNTNBNDMwHhcNMjUwOTE4MTcyNTM3WhcNMjUwOTI1MTcyNTM3WjAYMRYwFAYD VQQDEw02OGNjNDA5Mi1hMTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23nhBDjMT0fIKHJf6+aBq18RI4cgA3Wn3jFMz8u8grKNHXohKty0zCoShrl7 F7Bb3f/CI9ms+eT3smV4Ojz30YesjzdGNpaiEnWzyBe5axjrlA/B/FrOFnFlSR/N XIEJateeA3fNEE8t6pyZ9+ii0E9vLtJsnr/K644O7gce5stAZea9hN6gtUA9ge+y ZWRIWe0AS8CwSDkhbA1mI6I86zA7ZwKksL+c7DD48grOxyL0ZiCFtHysCEfKw3li GCRLhWiFWYx1fZm+xmLqX+4+5bDK1JSmCG0oWM6ygbultiMerevQPjdjxLOwZxjh ElkK79do0Y19afYRO8aGcVhbrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKRDBDHP U2zcoICa3ROu4PhXzKcGMB8GA1UdIwQYMBaAFHC9Gl2VEr9t4LppJT278BED5TpD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTc5Ny8wOUYyRDk5NDFB MjIxMUU5QkMwNkQzMEFDNEY5QUUwMi9jTDBhWFpVU3YyM2d1bWtsUGJ2d0VRUGxP a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGFYWlVTdjIzZ3Vta2xQYnZ3RVFQbE9rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTc5Ny8wOUYyRDk5NDFBMjIxMUU5QkMwNkQzMEFDNEY5QUUwMi9jTDBhWFpVU3Yy M2d1bWtsUGJ2d0VRUGxPa00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdjMgEL282VvWcCHGZcVIraaWoV5jU/O9XUcf6lKMNNng/84iHrEAb KXKLGnLUBE7eA67Xec2zMBFfPrc1fWXkpQC62uaOCPiPoZQH06GYt5TR51NVPY2m O45rLvslTbyiorzH344kG+RB+BiW39Rrpe8MjCcy3p9Q6aN1azpOIQJKh9k/S5Yl FDf6yP/hZPUJ++kwOWKfpycJm7GLpz+ebRDKX/WSufu4QAoRRv932Zpw3Y6pKTTu HWUesRijGagOLly1tTwYqqyp3cFrjvBeoUz60RRQNXODb7i1/qTV8PwoM0beLnbB 5Fj5opx6KoFFI3Q6giMhRknmsIrK3Zee -----END CERTIFICATE-----Generated at Thu Sep 18 23:30:35 2025 by rpki-client