$ rpki-client -vvf rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft File: rSHioIh9gBBYg2nxR4WWAoR3zb4.mft (raw, json) Hash identifier: Z1j3/63aqii0lsILDy+IfEcFxmsbb4abXfRteHs6+Ko= Subject key identifier: E8:6F:DD:FB:34:74:CD:40:DD:4A:29:04:BB:B7:12:2B:4F:8F:DD:E1 Authority key identifier: AD:21:E2:A0:88:7D:80:10:58:83:69:F1:47:85:96:02:84:77:CD:BE Certificate issuer: /CN=A913344F/serialNumber=AD21E2A0887D8010588369F1478596028477CDBE Certificate serial: 10F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft Manifest number: 10F0 Signing time: Thu 18 Sep 2025 17:26:40 +0000 Manifest this update: Thu 18 Sep 2025 17:26:39 +0000 Manifest next update: Thu 25 Sep 2025 17:26:39 +0000 Files and hashes: 1: rSHioIh9gBBYg2nxR4WWAoR3zb4.crl (hash: 5cYpWeNYehtdZ6rSJZfGB+/VZDCvjBH6MEmxo5DjTks=) 2: 2CDBC1B0251111E997B74770C4F9AE02.roa (hash: CkHze899oLtDE8NmW64bq/+8jNoI8+T8tB+dRDVhSSY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.crl rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:26:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4344 (0x10f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913344F, serialNumber=AD21E2A0887D8010588369F1478596028477CDBE Validity Not Before: Sep 18 17:26:39 2025 GMT Not After : Sep 25 17:26:39 2025 GMT Subject: CN=68cc40d0-a21c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c7:bc:5e:f3:d8:b4:89:f3:d9:e2:62:83:6d: 59:a3:2d:f8:14:fc:6c:c7:49:57:ea:ef:21:2c:00: e7:0d:95:06:40:d9:fc:f1:4f:03:d0:f3:6d:34:30: 83:94:51:8c:20:cb:86:29:4a:eb:84:f9:a9:d0:14: f9:7a:50:ca:b3:4e:cf:db:07:73:57:06:3d:9e:12: 73:fa:dd:e9:d4:8a:2d:0e:ea:5e:98:07:a9:2e:11: 2c:dc:b5:61:fe:17:76:03:a5:82:c1:cf:c1:95:b6: b8:ee:b1:36:da:7b:28:f4:31:66:b1:b7:6d:94:d2: 98:f3:38:ee:17:a8:8f:28:25:c5:85:ba:05:dd:83: 63:7e:d4:bc:e6:21:5d:6b:c0:fc:bd:e6:25:ad:8d: 33:2a:cd:d7:fd:b6:9e:cb:d0:28:9d:9b:1d:d7:3f: a7:bc:75:0c:99:2d:92:48:e0:44:74:7b:3c:98:40: 7f:c1:b8:a9:2d:ee:0a:f3:db:b1:78:20:54:05:0b: b6:68:39:95:59:04:61:43:57:26:10:8d:9a:f2:5b: ce:3c:bd:38:f1:73:11:f5:c9:55:b4:76:ff:6d:01: 68:f5:37:7e:55:f9:f1:80:fd:3f:e7:f2:a9:aa:ce: fa:53:92:f0:5e:3e:c4:3b:f4:48:69:3a:17:bb:a2: b7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:6F:DD:FB:34:74:CD:40:DD:4A:29:04:BB:B7:12:2B:4F:8F:DD:E1 X509v3 Authority Key Identifier: keyid:AD:21:E2:A0:88:7D:80:10:58:83:69:F1:47:85:96:02:84:77:CD:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rSHioIh9gBBYg2nxR4WWAoR3zb4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913344F/94FFBAA0250F11E990DDE36CC4F9AE02/rSHioIh9gBBYg2nxR4WWAoR3zb4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:05:30:64:0d:19:3c:c3:45:c0:05:a2:c9:6e:45:35:6e:35: d0:db:f0:d1:df:63:58:57:8b:dc:23:33:bd:f3:6c:10:8f:60: 81:f0:48:f9:b6:58:13:5c:52:33:95:8e:c8:aa:5b:d5:73:12: e3:08:f7:1a:65:05:29:1d:f6:a7:b1:a5:99:f2:0d:4d:d3:8d: aa:d2:ca:5d:c0:f5:a1:6e:36:8e:f3:24:7e:42:41:bf:f2:43: 74:fa:dd:c0:70:f7:36:f1:05:90:a0:a1:73:f1:56:9b:c2:43: 66:9e:f3:97:6a:f5:bb:1e:46:72:a4:be:71:0f:59:df:c0:f0: 7e:26:04:c7:58:44:d6:a9:58:d8:8e:6d:8b:e0:59:d9:d5:5d: 33:57:e9:57:03:4c:cc:e2:c1:ce:ee:55:67:cc:0b:98:c5:71: 67:4b:ff:ff:21:93:d3:46:a2:79:14:48:2c:18:9e:f0:9e:f4: 72:67:4e:63:75:88:63:35:c9:a9:50:46:ad:e9:4c:e3:17:1d: c8:ea:d3:3d:30:78:43:92:10:29:37:d4:2b:75:ef:a2:89:90: 22:04:61:6b:34:ef:27:53:a6:fd:0f:05:00:4c:d9:eb:e9:b8: db:75:a1:73:3a:d9:95:d2:a2:cf:83:0d:55:4d:4b:53:d7:e2: 55:ab:7a:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM0NEYxMTAvBgNVBAUTKEFEMjFFMkEwODg3RDgwMTA1ODgzNjlGMTQ3ODU5NjAy ODQ3N0NEQkUwHhcNMjUwOTE4MTcyNjM5WhcNMjUwOTI1MTcyNjM5WjAYMRYwFAYD VQQDEw02OGNjNDBkMC1hMjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Me8XvPYtInz2eJig21Zoy34FPxsx0lX6u8hLADnDZUGQNn88U8D0PNtNDCD lFGMIMuGKUrrhPmp0BT5elDKs07P2wdzVwY9nhJz+t3p1IotDupemAepLhEs3LVh /hd2A6WCwc/Blba47rE22nso9DFmsbdtlNKY8zjuF6iPKCXFhboF3YNjftS85iFd a8D8veYlrY0zKs3X/baey9AonZsd1z+nvHUMmS2SSOBEdHs8mEB/wbipLe4K89ux eCBUBQu2aDmVWQRhQ1cmEI2a8lvOPL048XMR9clVtHb/bQFo9Td+VfnxgP0/5/Kp qs76U5LwXj7EO/RIaToXu6K3dwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOhv3fs0 dM1A3UopBLu3EitPj93hMB8GA1UdIwQYMBaAFK0h4qCIfYAQWINp8UeFlgKEd82+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzQ0Ri85NEZGQkFBMDI1 MEYxMUU5OTBEREUzNkNDNEY5QUUwMi9yU0hpb0loOWdCQllnMm54UjRXV0FvUjN6 YjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JTSGlvSWg5Z0JCWWcybnhSNFdXQW9SM3piNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MzQ0Ri85NEZGQkFBMDI1MEYxMUU5OTBEREUzNkNDNEY5QUUwMi9yU0hpb0loOWdC QllnMm54UjRXV0FvUjN6YjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByBTBkDRk8w0XABaLJbkU1bjXQ2/DR32NYV4vcIzO982wQj2CB8Ej5 tlgTXFIzlY7IqlvVcxLjCPcaZQUpHfansaWZ8g1N042q0spdwPWhbjaO8yR+QkG/ 8kN0+t3AcPc28QWQoKFz8VabwkNmnvOXavW7HkZypL5xD1nfwPB+JgTHWETWqVjY jm2L4FnZ1V0zV+lXA0zM4sHO7lVnzAuYxXFnS///IZPTRqJ5FEgsGJ7wnvRyZ05j dYhjNcmpUEat6UzjFx3I6tM9MHhDkhApN9Qrde+iiZAiBGFrNO8nU6b9DwUATNnr 6bjbdaFzOtmV0qLPgw1VTUtT1+JVq3ol -----END CERTIFICATE-----Generated at Fri Sep 19 00:58:49 2025 by rpki-client