$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft File: rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft (raw, json) Hash identifier: A5KsjpXwuv9ZSsvXZ6iiGcsGbzAUrKs1Sld7xSDuEvU= Subject key identifier: 15:D0:C0:D9:63:6B:E5:98:B9:D8:BB:D6:3F:B5:FC:E1:95:04:36:10 Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 07EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft Manifest number: 07E1 Signing time: Tue 16 Sep 2025 21:19:38 +0000 Manifest this update: Tue 16 Sep 2025 21:19:37 +0000 Manifest next update: Tue 23 Sep 2025 21:19:37 +0000 Files and hashes: 1: rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl (hash: rrk3UWjIXtOj9URexlA6qMmFmkvOzdcam5Ud/p0ljr4=) 2: 38502DA2029A11EB85BD7B84C4F9AE02.roa (hash: 3OsuoPomkN3KwD+aF1zCoEkkbIN7dOFAl/woMg+7fcw=) 3: CEA093C66CA311ED9DD6425CC4F9AE02.roa (hash: 3rvQwF7VOidxONOxWbJzlS69h1FDkR177X5kmaAbyhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 21:19:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2028 (0x7ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA, serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Sep 16 21:19:37 2025 GMT Not After : Sep 23 21:19:37 2025 GMT Subject: CN=68c9d46a-5a70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2f:bd:c1:6c:0f:ce:22:51:71:15:8d:37:d0: a4:50:66:0d:68:4a:71:a9:18:f3:52:98:41:03:90: 1f:00:96:9c:a4:99:2b:be:a8:69:49:56:8d:25:4b: 23:21:77:45:47:9d:4b:92:7c:ee:18:3a:1b:51:ee: 70:21:2d:01:2c:1a:d9:b0:32:ef:24:cf:9d:e4:91: 83:af:3a:39:30:83:d7:8a:25:e6:6b:d6:31:cc:59: 72:44:61:c2:ee:8e:6f:d4:9a:16:4a:66:99:1b:c8: c8:f6:31:0f:eb:d8:57:9f:be:9c:2b:71:a5:a2:91: 23:8b:32:80:72:ba:f7:f2:81:f8:7e:39:38:59:6a: c0:8d:91:53:e8:a4:da:a6:01:a1:bb:66:d6:5d:23: 82:01:12:05:3e:09:15:93:1e:de:06:37:0a:34:fe: ad:03:ad:12:92:f5:f7:95:19:c6:2c:9f:14:50:65: 6c:29:0e:fa:23:cf:7a:c4:9d:d4:ff:ae:7a:33:82: 6e:cb:49:f4:55:91:c5:af:4b:1a:48:77:66:08:8b: 42:25:04:92:4d:ce:31:71:12:55:2a:cc:dc:10:c5: 3a:85:4e:5e:08:4b:4e:de:98:20:03:b6:d2:20:72: 68:42:f2:c0:15:af:57:21:98:f4:06:f3:dd:64:c7: 52:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D0:C0:D9:63:6B:E5:98:B9:D8:BB:D6:3F:B5:FC:E1:95:04:36:10 X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:2e:6f:f7:75:09:1a:ad:c6:70:14:0e:b9:0d:38:cd:d5:15: 0a:3c:e0:6a:5d:a9:20:ff:72:78:fe:e6:41:91:dd:0b:99:05: 06:35:51:df:0c:f6:58:f5:3f:db:a7:7f:99:1d:29:0d:ad:60: 71:5d:ce:da:2b:e8:db:be:ec:66:62:58:67:c5:4f:c1:e2:a5: 6a:81:3f:4b:e2:45:ae:98:38:2e:9a:21:40:4a:74:6e:62:a9: bb:11:fc:38:93:68:a1:9a:8f:ed:28:2f:50:f3:70:30:f3:80: ea:e3:52:91:2f:d9:f6:20:31:32:b4:ac:29:c4:28:b2:d0:ac: 47:bd:85:16:45:3c:d5:83:6b:62:c8:4b:9e:0f:45:71:de:0e: 36:e7:b1:a8:ef:f7:dd:41:bf:91:3a:14:34:c2:e3:33:4d:54: a2:24:a0:13:86:6b:62:c7:b0:62:18:ac:c2:65:b0:e3:d0:3a: 69:a1:b9:80:77:a5:c0:bd:9a:36:d9:c7:a0:56:07:f7:d7:25: aa:45:3c:fc:f6:ee:7e:cf:95:49:b5:80:5d:15:6d:2b:f1:fe: 41:14:db:83:53:87:6d:6b:62:2f:af:ba:fc:aa:a8:71:a3:1c: ac:54:71:76:25:1c:0e:1a:95:b4:f0:6d:14:97:d1:1c:f9:71: da:3d:11:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjUwOTE2MjExOTM3WhcNMjUwOTIzMjExOTM3WjAYMRYwFAYD VQQDEw02OGM5ZDQ2YS01YTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsS+9wWwPziJRcRWNN9CkUGYNaEpxqRjzUphBA5AfAJacpJkrvqhpSVaNJUsj IXdFR51LknzuGDobUe5wIS0BLBrZsDLvJM+d5JGDrzo5MIPXiiXma9YxzFlyRGHC 7o5v1JoWSmaZG8jI9jEP69hXn76cK3GlopEjizKAcrr38oH4fjk4WWrAjZFT6KTa pgGhu2bWXSOCARIFPgkVkx7eBjcKNP6tA60SkvX3lRnGLJ8UUGVsKQ76I896xJ3U /656M4Juy0n0VZHFr0saSHdmCItCJQSSTc4xcRJVKszcEMU6hU5eCEtO3pggA7bS IHJoQvLAFa9XIZj0BvPdZMdS1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBXQwNlj a+WYudi71j+1/OGVBDYQMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REZCQS9EQjlDRTY3ODAyOTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFh V3Vaa3JiRlpCVHJPendyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfLm/3dQkarcZwFA65DTjN1RUKPOBqXakg/3J4/uZBkd0LmQUGNVHf DPZY9T/bp3+ZHSkNrWBxXc7aK+jbvuxmYlhnxU/B4qVqgT9L4kWumDgumiFASnRu Yqm7Efw4k2ihmo/tKC9Q83Aw84Dq41KRL9n2IDEytKwpxCiy0KxHvYUWRTzVg2ti yEueD0Vx3g4257Go7/fdQb+ROhQ0wuMzTVSiJKAThmtix7BiGKzCZbDj0DppobmA d6XAvZo22cegVgf31yWqRTz89u5+z5VJtYBdFW0r8f5BFNuDU4dta2Ivr7r8qqhx oxysVHF2JRwOGpW08G0Ul9Ec+XHaPRGe -----END CERTIFICATE-----Generated at Thu Sep 18 20:21:40 2025 by rpki-client