$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft File: ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft (raw, json) Hash identifier: uzSF1vMmqXIeAb/1+LrWRYKQjtpfCtudH8DbtLkQ/KE= Subject key identifier: CE:C7:D3:61:C1:2C:1C:DB:C8:13:86:00:16:F1:36:D4:BE:95:48:29 Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 10AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft Manifest number: 10A2 Signing time: Thu 18 Sep 2025 17:30:05 +0000 Manifest this update: Thu 18 Sep 2025 17:30:05 +0000 Manifest next update: Thu 25 Sep 2025 17:30:05 +0000 Files and hashes: 1: ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl (hash: m/m+6EvV6dIrimZRYc05L7UutW6bImPTIL14H7K3dT4=) 2: 39C6EF3688BF11EABC04973FC4F9AE02.roa (hash: yd71n8eugD8WrOND6JHlcb+DlT4vihP97eJVROksTM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:30:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4268 (0x10ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D, serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Sep 18 17:30:05 2025 GMT Not After : Sep 25 17:30:05 2025 GMT Subject: CN=68cc419d-f1f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:9e:80:a1:15:04:cc:c4:a0:ee:a7:d8:19:5a: 8a:38:4e:a1:03:7f:2a:90:2a:b7:8b:de:80:79:db: a1:46:eb:79:38:6d:e3:e8:b8:65:91:a7:0b:4c:a9: c4:4a:53:21:3e:e2:ac:cc:d6:ff:af:e2:4a:23:ce: 2e:78:83:94:b5:0b:a9:ab:10:bc:02:70:80:09:2b: 1a:e2:0a:0a:73:ad:08:d1:b8:16:48:83:43:08:e5: 0b:f0:91:94:c5:65:23:76:91:24:d1:78:46:b1:07: b3:ca:95:9e:03:43:81:ef:97:af:3f:40:f2:8a:8c: 01:04:3b:50:0d:1e:34:0d:87:ac:26:c1:aa:aa:2c: d9:2e:30:10:f8:4c:f5:aa:51:54:31:2c:3f:f4:6d: 24:65:e4:c2:ca:d6:1d:c7:c2:f2:3f:ff:fd:ec:52: bd:ab:8d:52:21:c7:6f:e2:08:58:6d:05:05:51:73: ce:c9:7e:7f:2d:1c:f9:4e:19:5e:51:e2:33:93:77: 95:8c:a1:09:2d:22:d3:52:47:fe:02:a1:10:d7:6a: c1:4a:c3:33:1b:d2:c2:37:fe:74:2c:0d:75:f9:2e: ff:06:11:2f:1f:45:e2:45:75:11:f9:d9:0f:ed:26: ff:3e:04:5c:c5:71:39:e6:be:37:f3:5e:49:d9:8c: e1:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:C7:D3:61:C1:2C:1C:DB:C8:13:86:00:16:F1:36:D4:BE:95:48:29 X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:c0:e0:84:20:a6:9b:ed:d0:20:39:a5:17:6d:5b:f0:bc:e9: 11:8a:66:9e:91:64:e8:82:1a:13:19:65:56:54:83:7f:6e:1a: 41:11:8f:b5:37:2b:63:07:8b:a1:ee:bd:2a:3e:0b:98:25:f2: 9e:c0:ef:cd:54:8d:81:04:f3:20:02:a6:07:44:6d:d9:38:6d: 00:e2:16:5e:9f:d3:28:0a:8a:f5:46:48:71:0a:44:cb:5c:85: 1c:e4:d3:26:28:ac:a2:91:26:e8:4f:9a:e4:89:3d:bb:74:77: df:d4:d3:1a:7f:22:02:e3:ca:a6:20:fd:4c:af:0e:22:94:16: 27:4b:d4:1b:c9:5c:3b:4a:ba:73:a1:0f:e7:5c:10:49:41:94: 21:93:50:e7:89:23:9c:a5:fa:ac:b0:c3:46:25:e4:35:c2:4a: fb:7c:41:1f:b1:e9:92:1e:37:15:89:c5:21:01:b3:ec:2a:ff: e4:a9:2a:18:03:42:c6:60:36:1d:7f:2c:44:d9:cf:a5:cc:f8: 38:b4:73:e3:48:a6:5d:cf:37:b5:75:ec:23:26:61:fe:2f:0e: 7b:68:56:75:ae:fa:fa:bd:07:33:38:a9:8f:1e:4a:f0:16:5e: 6c:02:79:21:6f:79:dd:81:97:15:ab:9d:30:45:58:1b:cc:5d: d0:a4:04:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjUwOTE4MTczMDA1WhcNMjUwOTI1MTczMDA1WjAYMRYwFAYD VQQDEw02OGNjNDE5ZC1mMWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5p6AoRUEzMSg7qfYGVqKOE6hA38qkCq3i96AeduhRut5OG3j6LhlkacLTKnE SlMhPuKszNb/r+JKI84ueIOUtQupqxC8AnCACSsa4goKc60I0bgWSINDCOUL8JGU xWUjdpEk0XhGsQezypWeA0OB75evP0DyiowBBDtQDR40DYesJsGqqizZLjAQ+Ez1 qlFUMSw/9G0kZeTCytYdx8LyP//97FK9q41SIcdv4ghYbQUFUXPOyX5/LRz5Thle UeIzk3eVjKEJLSLTUkf+AqEQ12rBSsMzG9LCN/50LA11+S7/BhEvH0XiRXUR+dkP 7Sb/PgRcxXE55r43815J2YzhBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM7H02HB LBzbyBOGABbxNtS+lUgpMB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzkxRC9EOTBDRDg3NDM1ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9K anpiMEUzV1V6SF9zTDZLS00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8wOCEIKab7dAgOaUXbVvwvOkRimaekWToghoTGWVWVIN/bhpBEY+1 NytjB4uh7r0qPguYJfKewO/NVI2BBPMgAqYHRG3ZOG0A4hZen9MoCor1RkhxCkTL XIUc5NMmKKyikSboT5rkiT27dHff1NMafyIC48qmIP1Mrw4ilBYnS9QbyVw7Srpz oQ/nXBBJQZQhk1DniSOcpfqssMNGJeQ1wkr7fEEfsemSHjcVicUhAbPsKv/kqSoY A0LGYDYdfyxE2c+lzPg4tHPjSKZdzze1dewjJmH+Lw57aFZ1rvr6vQczOKmPHkrw Fl5sAnkhb3ndgZcVq50wRVgbzF3QpAQd -----END CERTIFICATE-----Generated at Thu Sep 18 21:55:09 2025 by rpki-client