$ rpki-client -vvf rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft File: 07chXhZgoZ79Lncvm6envcbuDSg.mft (raw, json) Hash identifier: sFLvafJzSYbYd9Tzgyco6NKKQZthBVAESgxol9kJUhg= Subject key identifier: EA:B3:B6:81:DD:AB:F0:16:9E:F6:9C:2C:BA:FC:85:62:B3:E2:58:38 Authority key identifier: D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 Certificate issuer: /CN=A912BBC9/serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Certificate serial: 096F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft Manifest number: 0952 Signing time: Thu 18 Sep 2025 20:29:14 +0000 Manifest this update: Thu 18 Sep 2025 20:29:13 +0000 Manifest next update: Thu 25 Sep 2025 20:29:13 +0000 Files and hashes: 1: 07chXhZgoZ79Lncvm6envcbuDSg.crl (hash: G2yYLsPnyV4376Y3FbHbsMoROH2Y/zGDiYLzI4zX/X8=) 2: 42B13940C3C011EE86C2C317C4F9AE02.roa (hash: ohub1su2eLkcxe2mnfMUSQeEjo+GPwYrkG+K0CsdsDY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2415 (0x96f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BBC9, serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Validity Not Before: Sep 18 20:29:13 2025 GMT Not After : Sep 25 20:29:13 2025 GMT Subject: CN=68cc6b9a-a4a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:4a:64:9b:4a:24:04:e5:ce:15:4c:13:05:69: 09:0f:e4:58:ee:ac:76:89:54:aa:5c:48:16:da:e5: 41:b0:ba:59:65:24:4f:7c:4f:de:01:35:ea:48:d7: cc:38:17:c1:95:40:c6:06:f9:9e:7a:d6:a5:29:0a: c2:5f:91:9c:12:3a:5b:1c:a7:fc:70:e4:84:1a:9f: 11:40:65:f3:33:a9:ea:f9:07:4e:ac:e6:e5:a5:84: 26:52:d4:5f:2e:74:ff:4e:2e:de:d0:6f:d8:6d:30: 23:ef:f0:a1:1b:ff:64:64:83:52:de:b7:9c:0c:54: 0a:36:48:01:fa:ac:a9:64:2a:3c:bf:9d:68:9e:c3: 18:87:69:f5:bd:08:ce:95:d4:2a:f1:03:b8:e5:87: 33:0a:ab:b4:f5:15:64:55:f6:62:ae:92:90:17:c8: d0:91:27:10:2a:1c:e2:aa:19:3e:69:ac:95:c6:fe: 0c:a7:39:75:4a:d0:1e:17:1d:a4:bd:6f:d4:6f:d2: ea:74:0c:e5:20:af:a2:ed:57:e0:cf:c5:71:53:16: a0:d1:cb:71:47:7c:3b:31:d1:cd:94:24:07:fe:bc: a5:9a:11:7a:71:2a:b6:b2:bd:75:f0:7b:fa:36:5b: f6:20:23:1f:bf:40:af:a3:29:2e:76:a4:44:47:7b: c3:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:B3:B6:81:DD:AB:F0:16:9E:F6:9C:2C:BA:FC:85:62:B3:E2:58:38 X509v3 Authority Key Identifier: keyid:D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:8a:2a:70:a5:79:05:db:f6:e8:9d:10:f6:ad:29:ca:ab:0a: ca:bf:4a:c6:e0:22:9e:3b:aa:04:79:1a:5f:72:4a:7d:f1:48: b6:ca:d4:27:c8:32:21:34:02:e6:f1:18:09:68:a3:52:dd:48: 5c:e1:e6:bc:7c:1a:0c:db:44:76:09:21:51:d5:76:b4:0b:dc: 22:4a:5f:45:c2:21:bf:e0:c4:dd:0a:4b:2a:66:75:95:9a:74: f9:6a:33:93:19:c7:ac:25:c5:b8:73:83:f8:55:3d:a3:97:22: b5:9b:3f:0d:1c:0a:68:61:a3:23:df:ab:7a:1b:86:e5:fa:a1: 97:70:a7:29:a5:dd:80:11:d1:10:38:68:8f:fe:85:15:f8:6d: 32:b4:13:94:c6:5c:d2:ce:84:7d:84:32:60:27:a1:c1:55:74: 60:8b:c5:79:ab:0f:22:db:93:25:39:54:dd:29:53:9f:38:b5: 68:51:5b:05:28:a6:c4:f8:5f:17:60:83:80:58:c0:d9:da:6c: 7d:00:75:51:6d:f1:b1:82:64:6f:fd:a8:8f:d6:86:36:73:75: 88:8a:5d:67:df:1b:27:d8:3a:85:47:62:37:d8:76:0b:5d:1d: b9:60:a6:bc:20:c8:d6:77:18:fa:d9:fa:31:f9:50:60:8a:11: 45:02:90:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJCQzkxMTAvBgNVBAUTKEQzQjcyMTVFMTY2MEExOUVGRDJFNzcyRjlCQTdBN0JE QzZFRTBEMjgwHhcNMjUwOTE4MjAyOTEzWhcNMjUwOTI1MjAyOTEzWjAYMRYwFAYD VQQDEw02OGNjNmI5YS1hNGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlkpkm0okBOXOFUwTBWkJD+RY7qx2iVSqXEgW2uVBsLpZZSRPfE/eATXqSNfM OBfBlUDGBvmeetalKQrCX5GcEjpbHKf8cOSEGp8RQGXzM6nq+QdOrOblpYQmUtRf LnT/Ti7e0G/YbTAj7/ChG/9kZINS3recDFQKNkgB+qypZCo8v51onsMYh2n1vQjO ldQq8QO45YczCqu09RVkVfZirpKQF8jQkScQKhziqhk+aayVxv4Mpzl1StAeFx2k vW/Ub9LqdAzlIK+i7Vfgz8VxUxag0ctxR3w7MdHNlCQH/rylmhF6cSq2sr118Hv6 Nlv2ICMfv0CvoykudqRER3vDoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOqztoHd q/AWnvacLLr8hWKz4lg4MB8GA1UdIwQYMBaAFNO3IV4WYKGe/S53L5unp73G7g0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkJDOS84M0ZGOUZFQ0FB ODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29aNzlMbmN2bTZlbnZjYnVE U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3Y2hYaFpnb1o3OUxuY3ZtNmVudmNidURTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkJDOS84M0ZGOUZFQ0FBODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29a NzlMbmN2bTZlbnZjYnVEU2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjiipwpXkF2/bonRD2rSnKqwrKv0rG4CKeO6oEeRpfckp98Ui2ytQn yDIhNALm8RgJaKNS3Uhc4ea8fBoM20R2CSFR1Xa0C9wiSl9FwiG/4MTdCksqZnWV mnT5ajOTGcesJcW4c4P4VT2jlyK1mz8NHApoYaMj36t6G4bl+qGXcKcppd2AEdEQ OGiP/oUV+G0ytBOUxlzSzoR9hDJgJ6HBVXRgi8V5qw8i25MlOVTdKVOfOLVoUVsF KKbE+F8XYIOAWMDZ2mx9AHVRbfGxgmRv/aiP1oY2c3WIil1n3xsn2DqFR2I32HYL XR25YKa8IMjWdxj62fox+VBgihFFApCo -----END CERTIFICATE-----Generated at Fri Sep 19 06:45:16 2025 by rpki-client