$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: sy3cx7QXwOGzEExwQcOzJlBDdMcBgkjXoRN+pEutu/0= Subject key identifier: 01:63:1C:21:0E:88:9A:B4:B3:37:D0:15:1B:C5:19:50:71:A0:8B:49 Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 0295 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 0291 Signing time: Tue 09 Sep 2025 01:44:41 +0000 Manifest this update: Tue 09 Sep 2025 01:44:40 +0000 Manifest next update: Tue 16 Sep 2025 01:44:40 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: Vuu7uaSetpXHK7x2bpRD6HEAlEi3/8BgFgOPyIdSpwE=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: sMLXclSpaatsjiefCG2CYL97q01e5mLSlbQCKpyYzHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:44:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 661 (0x295) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: Sep 9 01:44:40 2025 GMT Not After : Sep 16 01:44:40 2025 GMT Subject: CN=68bf8689-3829 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7f:ca:93:ef:cc:8d:9e:8a:b3:13:eb:86:a6: e8:ec:4f:dc:f0:c0:09:7a:d8:b2:13:1e:cd:d5:40: 68:01:de:cc:ee:94:53:b9:3c:0f:0b:36:84:26:4b: 6a:84:cf:79:c1:35:e7:f8:f5:95:17:1a:c7:88:58: c9:3a:f2:9a:cc:11:9c:ef:f4:ab:cb:d5:6d:00:89: 90:15:1d:8e:74:8f:28:7d:f5:24:29:8f:4a:88:ab: 73:c3:a9:1a:bf:df:c5:a8:67:f5:7c:3b:48:33:e5: d9:43:ad:35:bf:8b:64:74:6f:3d:0b:0f:b0:7d:16: 48:76:2e:65:7e:5c:ff:cf:0a:07:f6:83:31:63:8f: ad:c2:44:e7:79:af:77:30:16:ab:13:fe:11:b7:b4: 6d:ae:de:88:d5:d9:6f:bd:b0:9f:73:a2:d7:8e:a1: f6:45:8d:72:f5:17:3a:0f:09:58:af:cb:3e:8f:7e: 2e:50:b8:e6:ae:f3:84:d0:33:e6:b5:1a:7b:1c:f1: 50:34:24:c0:38:93:ce:cc:a2:00:0b:d7:3a:48:ef: 6a:92:02:88:1d:9b:b9:98:bb:00:f3:b0:e1:f3:dc: 38:cb:f4:ba:f5:85:fd:52:51:21:4c:9a:8f:90:92: 45:60:44:cb:f9:14:85:8a:93:1f:fe:4c:e0:9a:09: ec:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:63:1C:21:0E:88:9A:B4:B3:37:D0:15:1B:C5:19:50:71:A0:8B:49 X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:31:7a:23:9e:ce:de:f4:62:99:a5:c9:da:2d:26:18:7a:ae: 1b:63:58:d5:19:18:53:7b:f7:52:01:ee:03:bf:68:23:d1:cb: 42:d2:2a:3a:51:9a:61:c1:fd:ee:cf:be:1a:da:13:25:63:df: 31:49:e0:4b:ae:ba:dc:bc:a2:cf:28:8a:90:1a:b2:67:eb:de: f2:94:c1:e8:da:c6:d9:7b:e1:96:89:b9:af:6f:7d:fb:6c:f8: 1a:e2:2f:4f:39:94:a6:39:80:88:25:35:29:22:cc:97:1c:fd: 06:69:9a:48:e1:fb:c0:c7:26:0a:a6:62:a5:ab:ca:35:f2:b6: d2:20:99:3a:47:06:6a:4e:fe:00:ff:98:aa:ab:e8:68:8e:76: 00:dd:7a:af:d3:eb:3a:f6:dc:7d:56:4b:ae:b3:ab:f2:45:a8: e9:e5:3b:4f:f3:42:ea:2d:ce:db:62:23:fd:fa:b6:c2:54:b2: aa:e0:6c:5a:05:ab:b1:fe:c5:33:c8:9e:88:54:37:ba:df:10: 43:2e:e0:29:ba:f6:66:39:46:2b:51:7b:d5:14:b4:f0:09:5e: 51:e5:2d:e0:93:20:16:9b:39:62:42:8f:9c:2d:f7:5e:db:bc: 16:d9:c7:34:d0:8c:b5:a7:1b:48:5c:7f:31:59:da:cf:0e:74: ec:ab:7c:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjUwOTA5MDE0NDQwWhcNMjUwOTE2MDE0NDQwWjAYMRYwFAYD VQQDEw02OGJmODY4OS0zODI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3/Kk+/MjZ6KsxPrhqbo7E/c8MAJetiyEx7N1UBoAd7M7pRTuTwPCzaEJktq hM95wTXn+PWVFxrHiFjJOvKazBGc7/Sry9VtAImQFR2OdI8offUkKY9KiKtzw6ka v9/FqGf1fDtIM+XZQ601v4tkdG89Cw+wfRZIdi5lflz/zwoH9oMxY4+twkTnea93 MBarE/4Rt7Rtrt6I1dlvvbCfc6LXjqH2RY1y9Rc6DwlYr8s+j34uULjmrvOE0DPm tRp7HPFQNCTAOJPOzKIAC9c6SO9qkgKIHZu5mLsA87Dh89w4y/S69YX9UlEhTJqP kJJFYETL+RSFipMf/kzgmgnskwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAFjHCEO iJq0szfQFRvFGVBxoItJMB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbMXojns7e9GKZpcnaLSYYeq4bY1jVGRhTe/dSAe4Dv2gj0ctC0io6 UZphwf3uz74a2hMlY98xSeBLrrrcvKLPKIqQGrJn697ylMHo2sbZe+GWibmvb337 bPga4i9POZSmOYCIJTUpIsyXHP0GaZpI4fvAxyYKpmKlq8o18rbSIJk6RwZqTv4A /5iqq+hojnYA3Xqv0+s69tx9Vkuus6vyRajp5TtP80LqLc7bYiP9+rbCVLKq4Gxa Baux/sUzyJ6IVDe63xBDLuApuvZmOUYrUXvVFLTwCV5R5S3gkyAWmzliQo+cLfde 27wW2cc00Iy1pxtIXH8xWdrPDnTsq3zq -----END CERTIFICATE-----Generated at Tue Sep 9 05:28:46 2025 by rpki-client