$ rpki-client -vvf rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft File: loNUUNMhwefEjKDF3NK6bB0tSPE.mft (raw, json) Hash identifier: OKrJ1ZoE5VprB2ggpkvS8YVFlTsAFLTKqesKm+9M9MY= Subject key identifier: D1:A3:33:90:9D:36:52:AB:D8:CC:13:82:EB:B4:56:C8:D0:97:80:FE Authority key identifier: 96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 Certificate issuer: /CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft Manifest number: CE Signing time: Wed 17 Sep 2025 06:17:36 +0000 Manifest this update: Wed 17 Sep 2025 06:17:35 +0000 Manifest next update: Wed 24 Sep 2025 06:17:35 +0000 Files and hashes: 1: loNUUNMhwefEjKDF3NK6bB0tSPE.crl (hash: 7Kpu8SnhBJSlvdg/7rthtOYhCoi4GiSn8gA74jCM3c4=) 2: 050079585AC911EF9DF4275AC4F9AE02.roa (hash: FQoFMhaO39gGEcc2pn8CyPB8yz5sPKJ5LS8scOVr+nU=) 3: 047C04705AC911EF9DF4275AC4F9AE02.roa (hash: UGCPOMHQWDHdKMVZEIClF1yCBQsAp0GOZkBRwsHoCKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DF25, serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Validity Not Before: Sep 17 06:17:35 2025 GMT Not After : Sep 24 06:17:35 2025 GMT Subject: CN=68ca527f-a2e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:80:99:2c:03:bc:ec:d2:76:76:60:b2:a8:86: 88:ac:96:f7:95:4b:0f:bf:34:19:b4:fe:25:fe:94: df:2e:11:b1:f1:f0:5c:40:36:e9:60:8a:cf:63:b6: c7:0c:c7:8d:9e:e1:91:01:bd:fe:7b:1d:dd:81:5c: de:95:d2:30:0a:e0:6a:98:47:45:49:06:c9:19:05: af:8a:d6:7c:85:21:90:db:d7:49:75:8c:40:b2:35: d5:05:cc:78:9a:97:07:c2:82:46:48:d7:29:68:10: a5:2b:5c:1b:41:a1:a7:f5:36:81:1a:bd:1a:02:b1: 95:f5:e1:32:38:0f:ff:86:53:10:7c:7c:c1:29:01: d7:d9:85:26:15:e8:dc:a2:ce:5b:22:6f:6e:d9:b8: b4:83:0e:7c:38:7d:7b:b3:13:e0:3e:a1:8a:e7:0e: 1f:22:5d:db:7c:ee:79:bb:b3:0d:4a:c6:55:32:3c: f2:59:e7:29:d7:d5:fe:12:b6:03:7c:b5:ae:e0:05: cf:7a:90:6f:20:c0:99:fe:c8:9f:7b:f4:fc:2d:b8: 3a:55:37:d0:54:1c:74:de:6e:6d:e4:e1:ce:c9:ad: b9:8f:75:65:9e:2f:b3:dc:f9:27:4f:41:7f:4e:f3: 76:2a:2f:87:7d:b1:0c:1f:6f:9d:c9:d3:49:73:20: c0:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:A3:33:90:9D:36:52:AB:D8:CC:13:82:EB:B4:56:C8:D0:97:80:FE X509v3 Authority Key Identifier: keyid:96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:7e:5d:22:03:ad:2c:a9:90:9e:c4:ba:a9:99:74:12:ab:be: 7a:18:68:fc:c0:38:bd:c9:5a:6b:04:a6:34:fd:89:5e:f7:5d: e4:92:b4:a5:31:3c:ca:ea:9d:7b:62:60:f3:a2:47:89:43:1c: 41:80:32:fe:96:f0:16:1a:a2:df:fc:1c:3a:96:86:5b:35:96: 29:b1:11:19:d9:05:98:dd:39:46:8d:4d:e3:32:f9:5a:22:b8: ac:fc:12:02:6e:5e:1f:11:a2:53:29:15:7a:62:5b:97:0a:ad: 16:ac:19:5f:e7:da:c9:95:3f:61:d5:16:14:a6:5c:77:ed:a0: 0f:f6:61:65:32:67:7e:b9:c9:63:82:21:33:c2:0d:cd:0f:25: a1:ec:56:2e:d3:80:ac:b3:59:46:d8:7f:d8:3a:91:b0:ac:ee: 46:9c:6c:c3:b8:37:fe:7f:62:50:b7:e3:34:a2:a5:85:90:a5: 00:44:74:1d:f5:9b:29:31:21:09:3c:a9:12:94:e2:4d:e4:2b: 88:22:2f:ef:6f:01:4c:68:a4:59:b9:eb:d4:b8:27:4c:31:d2: 89:89:f9:b3:eb:76:b9:f4:ce:bc:c6:26:1f:b6:63:a1:12:ec: 45:67:7a:c6:76:94:7b:da:d7:1a:bc:c8:6d:5f:d9:e3:f0:04: 70:c1:16:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGMjUxMTAvBgNVBAUTKDk2ODM1NDUwRDMyMUMxRTdDNDhDQTBDNURDRDJCQTZD MUQyRDQ4RjEwHhcNMjUwOTE3MDYxNzM1WhcNMjUwOTI0MDYxNzM1WjAYMRYwFAYD VQQDEw02OGNhNTI3Zi1hMmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6YCZLAO87NJ2dmCyqIaIrJb3lUsPvzQZtP4l/pTfLhGx8fBcQDbpYIrPY7bH DMeNnuGRAb3+ex3dgVzeldIwCuBqmEdFSQbJGQWvitZ8hSGQ29dJdYxAsjXVBcx4 mpcHwoJGSNcpaBClK1wbQaGn9TaBGr0aArGV9eEyOA//hlMQfHzBKQHX2YUmFejc os5bIm9u2bi0gw58OH17sxPgPqGK5w4fIl3bfO55u7MNSsZVMjzyWecp19X+ErYD fLWu4AXPepBvIMCZ/sife/T8Lbg6VTfQVBx03m5t5OHOya25j3Vlni+z3PknT0F/ TvN2Ki+HfbEMH2+dydNJcyDARQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGjM5Cd NlKr2MwTguu0VsjQl4D+MB8GA1UdIwQYMBaAFJaDVFDTIcHnxIygxdzSumwdLUjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREYyNS83RjdCMURBQzVB QzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdlZkVqS0RGM05LNmJCMHRT UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvTlVVTk1od2VmRWpLREYzTks2YkIwdFNQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REYyNS83RjdCMURBQzVBQzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdl ZkVqS0RGM05LNmJCMHRTUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzfl0iA60sqZCexLqpmXQSq756GGj8wDi9yVprBKY0/Yle913kkrSl MTzK6p17YmDzokeJQxxBgDL+lvAWGqLf/Bw6loZbNZYpsREZ2QWY3TlGjU3jMvla Iris/BICbl4fEaJTKRV6YluXCq0WrBlf59rJlT9h1RYUplx37aAP9mFlMmd+uclj giEzwg3NDyWh7FYu04Css1lG2H/YOpGwrO5GnGzDuDf+f2JQt+M0oqWFkKUARHQd 9ZspMSEJPKkSlOJN5CuIIi/vbwFMaKRZuevUuCdMMdKJifmz63a59M68xiYftmOh EuxFZ3rGdpR72tcavMhtX9nj8ARwwRYu -----END CERTIFICATE-----Generated at Fri Sep 19 03:57:16 2025 by rpki-client