$ rpki-client -vvf rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft File: Ae2EH7lRqvolkYDvkpnk02_ffD0.mft (raw, json) Hash identifier: URE2+KPbGBnL7ooCEWWL7IGWR/GuGwVpqp51DHN4IAY= Subject key identifier: 3A:67:A5:07:30:3B:5A:07:CB:79:EA:BC:FD:D9:69:2F:BF:13:B5:98 Authority key identifier: 01:ED:84:1F:B9:51:AA:FA:25:91:80:EF:92:99:E4:D3:6F:DF:7C:3D Certificate issuer: /CN=A913D125/serialNumber=01ED841FB951AAFA259180EF9299E4D36FDF7C3D Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft Manifest number: 83 Signing time: Wed 17 Sep 2025 07:20:39 +0000 Manifest this update: Wed 17 Sep 2025 07:20:38 +0000 Manifest next update: Wed 24 Sep 2025 07:20:38 +0000 Files and hashes: 1: Ae2EH7lRqvolkYDvkpnk02_ffD0.crl (hash: md6dQEXzxdyzom1LFzziHbkb5Oh9SIeND2cIU0iGnwk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.crl rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:20:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D125, serialNumber=01ED841FB951AAFA259180EF9299E4D36FDF7C3D Validity Not Before: Sep 17 07:20:38 2025 GMT Not After : Sep 24 07:20:38 2025 GMT Subject: CN=68ca6146-981d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:08:9e:71:0a:35:65:e3:1e:fc:a9:f7:1d:d6: e3:f1:8d:c9:12:41:54:c3:90:8f:4e:6b:93:aa:e0: 55:3a:15:7d:46:45:2e:25:86:2c:01:de:e4:ce:bc: c6:a3:8a:8e:d9:37:e6:f4:ad:18:25:f5:36:43:78: b3:32:73:2c:1c:d4:96:2b:2d:fb:1d:81:f8:56:70: 6c:03:59:56:9a:5d:51:0f:95:c5:e4:e9:9f:dc:87: d7:fc:dc:b4:b1:72:77:a4:6d:41:b6:a5:71:dc:fd: 24:d1:16:ad:3b:da:dc:cc:3b:2d:f7:bf:ee:63:75: 07:78:3f:d4:2e:3c:d9:d8:7c:8a:46:3d:5a:79:61: e9:56:1f:59:8c:0f:9c:f0:42:cc:02:8d:61:98:96: 66:54:5d:2e:73:63:1e:93:38:90:27:4f:b0:cd:25: 12:3e:ac:6f:75:41:fd:05:9f:bc:ba:84:10:6a:aa: b3:a7:44:56:85:a5:e5:0d:96:2d:a9:78:3a:23:39: f7:ff:eb:7d:0b:77:f0:dd:e8:35:ee:30:79:08:81: 77:9c:28:64:8a:98:5c:35:c8:55:ce:d0:12:9b:42: 92:3c:8e:30:26:1d:2a:49:34:79:27:a6:c0:f6:5e: b8:75:71:3c:78:23:d7:36:a7:d5:2c:30:0b:33:b4: bf:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:67:A5:07:30:3B:5A:07:CB:79:EA:BC:FD:D9:69:2F:BF:13:B5:98 X509v3 Authority Key Identifier: keyid:01:ED:84:1F:B9:51:AA:FA:25:91:80:EF:92:99:E4:D3:6F:DF:7C:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae2EH7lRqvolkYDvkpnk02_ffD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D125/FE778EC8CC1011EF87396A6EC4F9AE02/Ae2EH7lRqvolkYDvkpnk02_ffD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:83:d5:54:c0:31:40:9e:96:e3:95:6d:6f:28:e5:b9:d9:b4: 05:aa:e4:dd:9c:fe:56:2e:70:17:12:11:9f:11:c5:b0:09:7e: 95:3c:de:41:2f:a9:5a:d2:73:2b:8a:3b:8b:39:59:83:63:ce: 01:8f:d4:5d:10:9b:a9:b2:a7:cb:78:f0:95:03:ba:6f:cb:5d: 1e:8c:ab:38:8b:6d:5a:5b:a4:8e:8e:42:0c:fb:b0:a4:38:d4: 7a:24:4f:c9:83:28:77:32:fe:d7:9a:0b:d1:f1:43:8a:20:be: aa:0c:d1:d7:6a:f3:3a:0a:71:fd:c5:dd:74:66:30:59:f0:d7: d6:f3:63:ae:25:d7:b8:9f:cc:c2:69:d6:a9:78:b8:20:3a:e6: 3c:e7:51:53:d8:9b:50:b8:5a:6c:3b:18:39:4e:be:4e:b1:23: 6c:62:9c:e8:16:9e:aa:51:63:dd:3d:60:c3:cd:fe:50:e4:96: 42:2c:81:b3:cf:3a:44:83:b1:50:e2:ba:f4:23:d8:ba:bd:ce: 7b:df:83:e9:23:7f:6b:e4:c4:86:c9:be:bf:c4:3b:cb:c1:fd: 85:d8:52:b5:6e:3b:3b:ec:e6:a3:b1:e0:90:fe:14:5b:c8:c8: 69:dc:7a:d0:96:19:93:6c:58:51:93:f6:83:7b:33:49:16:b9: a2:28:4a:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxMjUxMTAvBgNVBAUTKDAxRUQ4NDFGQjk1MUFBRkEyNTkxODBFRjkyOTlFNEQz NkZERjdDM0QwHhcNMjUwOTE3MDcyMDM4WhcNMjUwOTI0MDcyMDM4WjAYMRYwFAYD VQQDEw02OGNhNjE0Ni05ODFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQiecQo1ZeMe/Kn3Hdbj8Y3JEkFUw5CPTmuTquBVOhV9RkUuJYYsAd7kzrzG o4qO2Tfm9K0YJfU2Q3izMnMsHNSWKy37HYH4VnBsA1lWml1RD5XF5Omf3IfX/Ny0 sXJ3pG1BtqVx3P0k0RatO9rczDst97/uY3UHeD/ULjzZ2HyKRj1aeWHpVh9ZjA+c 8ELMAo1hmJZmVF0uc2MekziQJ0+wzSUSPqxvdUH9BZ+8uoQQaqqzp0RWhaXlDZYt qXg6Izn3/+t9C3fw3eg17jB5CIF3nChkiphcNchVztASm0KSPI4wJh0qSTR5J6bA 9l64dXE8eCPXNqfVLDALM7S/5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpnpQcw O1oHy3nqvP3ZaS+/E7WYMB8GA1UdIwQYMBaAFAHthB+5Uar6JZGA75KZ5NNv33w9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDEyNS9GRTc3OEVDOEND MTAxMUVGODczOTZBNkVDNEY5QUUwMi9BZTJFSDdsUnF2b2xrWUR2a3BuazAyX2Zm RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlMkVIN2xScXZvbGtZRHZrcG5rMDJfZmZEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDEyNS9GRTc3OEVDOENDMTAxMUVGODczOTZBNkVDNEY5QUUwMi9BZTJFSDdsUnF2 b2xrWUR2a3BuazAyX2ZmRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMg9VUwDFAnpbjlW1vKOW52bQFquTdnP5WLnAXEhGfEcWwCX6VPN5B L6la0nMrijuLOVmDY84Bj9RdEJupsqfLePCVA7pvy10ejKs4i21aW6SOjkIM+7Ck ONR6JE/Jgyh3Mv7XmgvR8UOKIL6qDNHXavM6CnH9xd10ZjBZ8NfW82OuJde4n8zC adapeLggOuY851FT2JtQuFpsOxg5Tr5OsSNsYpzoFp6qUWPdPWDDzf5Q5JZCLIGz zzpEg7FQ4rr0I9i6vc5734PpI39r5MSGyb6/xDvLwf2F2FK1bjs77OajseCQ/hRb yMhp3HrQlhmTbFhRk/aDezNJFrmiKEpk -----END CERTIFICATE-----Generated at Thu Sep 18 23:26:16 2025 by rpki-client