$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft File: U78N14DbA47OFNQEWbq5xo9phTs.mft (raw, json) Hash identifier: cggmXV22sGtvwTZKuqZT5V0vfgnpoOVjQr905hV9AsQ= Subject key identifier: 4E:42:97:B1:E2:EB:AB:A2:53:40:49:E1:4E:12:F9:76:77:A7:D9:33 Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Certificate serial: 22A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft Manifest number: 2249 Signing time: Sat 06 Sep 2025 15:55:26 +0000 Manifest this update: Sat 06 Sep 2025 15:55:26 +0000 Manifest next update: Sat 13 Sep 2025 15:55:26 +0000 Files and hashes: 1: U78N14DbA47OFNQEWbq5xo9phTs.crl (hash: bToMeAGVe2/bKMpcyuBV9nFqumHKKlLQ3GizVnTVX28=) 2: 848CD92660A611F0806EB31DC4F9AE02.roa (hash: E2krETd7neWC8d4xIatDnIbAfqIHXkBF6iProCmPjFo=) 3: E9B9A0BE72C011F09E92A72CC4F9AE02.roa (hash: brhrVYasbtkKB/logdhK7nfprZmJuQ7vbr91yFIr0oU=) 4: 17F2F96C72C111F09268602EC4F9AE02.roa (hash: VH7hz66PgVnwG6C7/7dzj+0U30bmqdz9zfd98NwQfn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 15:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8869 (0x22a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCD6, serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Validity Not Before: Sep 6 15:55:26 2025 GMT Not After : Sep 13 15:55:26 2025 GMT Subject: CN=68bc596e-7c20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c2:f2:41:4f:8d:fb:67:b7:d1:ea:9d:cb:a7: db:19:48:6f:2b:65:26:99:b3:ad:3b:81:d1:d0:14: 27:f6:cf:a0:d9:92:52:ff:ff:a0:42:d2:5d:4b:b6: 64:75:de:5d:2f:ca:73:06:73:e3:90:5f:8e:51:8f: 9f:c5:f4:7c:23:b8:26:c9:46:2d:dc:df:85:ac:0d: 29:e2:17:74:cd:71:c1:9d:98:56:98:06:51:85:41: 30:ae:e9:f5:92:4d:96:dc:f4:62:7c:01:be:65:70: 06:25:84:c4:54:da:be:44:e9:90:ca:22:10:a6:95: 98:b1:c5:cc:4b:19:cf:a8:c2:c2:32:08:8f:77:bb: 15:db:d9:6b:80:6b:4f:95:6e:3f:4f:68:4e:ba:1f: 9b:90:34:3f:0f:87:f7:50:31:d5:a7:7b:a2:9f:03: c1:75:a6:37:42:ad:0e:0c:c1:20:6b:e7:8b:3f:dd: 83:bf:38:e0:f4:81:64:ef:fc:66:0b:0f:4e:38:5d: 37:6b:12:f4:45:0d:a5:4f:43:dd:a6:3f:5a:67:fb: f3:72:35:68:d6:36:c3:3a:0e:4f:10:ed:db:00:81: ad:ae:84:b6:ed:33:52:c7:ca:cf:d2:d7:dd:23:73: eb:69:05:6d:fe:9e:17:81:c1:13:4a:85:c0:2f:36: 4b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:42:97:B1:E2:EB:AB:A2:53:40:49:E1:4E:12:F9:76:77:A7:D9:33 X509v3 Authority Key Identifier: keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:2b:79:7e:3e:15:41:92:ef:8b:73:a9:35:38:8c:1c:1b:53: 44:08:f5:39:2a:a3:f6:aa:f2:93:fe:03:87:cd:4b:44:90:67: 3f:7d:9f:d5:71:6f:1f:2b:ac:1c:fc:f7:18:28:f3:f0:80:02: 5f:ab:33:c2:a7:a3:47:dd:3b:7a:3a:60:cc:c9:86:22:11:97: 00:1f:b0:86:b1:00:6f:f9:11:80:f0:3f:37:e9:fc:3c:42:9b: 2b:cc:6b:80:ab:7a:5f:64:4a:cc:b1:b4:6f:b2:3d:b3:e2:6f: b0:83:3a:87:f4:c3:4e:06:64:2f:f8:e7:95:b1:25:41:65:1c: 43:b6:50:f7:24:d7:b2:15:04:42:16:b1:19:b9:e3:fa:fc:b5: 4b:9e:f1:b6:5f:a3:9a:a7:3f:8c:e4:2e:a7:5b:15:e7:2c:ca: 82:14:7f:60:ee:73:7d:fa:cd:90:2d:9b:fe:b6:49:ff:f0:63: 3b:92:18:98:3a:74:5e:57:65:5e:29:ba:03:9f:63:1f:0e:f0: 1c:fb:71:f0:7c:fc:39:bf:79:28:0c:1f:96:fb:b6:d5:29:2e: 75:15:bf:71:4e:ac:47:b9:be:9c:20:8e:29:82:4b:70:4b:fa: 11:29:2d:33:97:40:83:9e:4d:36:09:73:76:38:46:f3:fc:0d: a6:a1:a8:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2 OEY2OTg1M0IwHhcNMjUwOTA2MTU1NTI2WhcNMjUwOTEzMTU1NTI2WjAYMRYwFAYD VQQDEw02OGJjNTk2ZS03YzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcLyQU+N+2e30eqdy6fbGUhvK2UmmbOtO4HR0BQn9s+g2ZJS//+gQtJdS7Zk dd5dL8pzBnPjkF+OUY+fxfR8I7gmyUYt3N+FrA0p4hd0zXHBnZhWmAZRhUEwrun1 kk2W3PRifAG+ZXAGJYTEVNq+ROmQyiIQppWYscXMSxnPqMLCMgiPd7sV29lrgGtP lW4/T2hOuh+bkDQ/D4f3UDHVp3uinwPBdaY3Qq0ODMEga+eLP92Dvzjg9IFk7/xm Cw9OOF03axL0RQ2lT0Pdpj9aZ/vzcjVo1jbDOg5PEO3bAIGtroS27TNSx8rP0tfd I3PraQVt/p4XgcETSoXALzZLwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5Cl7Hi 66uiU0BJ4U4S+XZ3p9kzMB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkNENi8xRTlFMUFBQ0QyRUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0 N09GTlFFV2JxNXhvOXBoVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAK3l+PhVBku+Lc6k1OIwcG1NECPU5KqP2qvKT/gOHzUtEkGc/fZ/V cW8fK6wc/PcYKPPwgAJfqzPCp6NH3Tt6OmDMyYYiEZcAH7CGsQBv+RGA8D836fw8 QpsrzGuAq3pfZErMsbRvsj2z4m+wgzqH9MNOBmQv+OeVsSVBZRxDtlD3JNeyFQRC FrEZueP6/LVLnvG2X6Oapz+M5C6nWxXnLMqCFH9g7nN9+s2QLZv+tkn/8GM7khiY OnReV2VeKboDn2MfDvAc+3HwfPw5v3koDB+W+7bVKS51Fb9xTqxHub6cII4pgktw S/oRKS0zl0CDnk02CXN2OEbz/A2moajJ -----END CERTIFICATE-----Generated at Mon Sep 8 08:49:42 2025 by rpki-client