$ rpki-client -vvf rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft File: AgtgbdnoiYp9XfXqHKPZlgKOddk.mft (raw, json) Hash identifier: 6RsMS+btwKbZ25R9HxkzJ1cqYJM9iJPzTO3wKkLTziI= Subject key identifier: C9:2F:25:F0:B5:6F:2F:BD:C0:40:73:CC:A9:2B:71:A0:B1:ED:03:E1 Authority key identifier: 02:0B:60:6D:D9:E8:89:8A:7D:5D:F5:EA:1C:A3:D9:96:02:8E:75:D9 Certificate issuer: /CN=A913E23F/serialNumber=020B606DD9E8898A7D5DF5EA1CA3D996028E75D9 Certificate serial: 0248 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft Manifest number: 023F Signing time: Fri 19 Sep 2025 02:18:58 +0000 Manifest this update: Fri 19 Sep 2025 02:18:58 +0000 Manifest next update: Fri 26 Sep 2025 02:18:58 +0000 Files and hashes: 1: AgtgbdnoiYp9XfXqHKPZlgKOddk.crl (hash: AA0ooCR+HQVK1LMv6jEkyVl5lQ7igoIqdUzXFSWE6rI=) 2: D9F1B3C036DA11EEA0D3EE61C4F9AE02.roa (hash: KFPYG7z3ovj/gDTTmWKC0rC1bedBGEtuFgPr4XMRScs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.crl rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 02:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 584 (0x248) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E23F, serialNumber=020B606DD9E8898A7D5DF5EA1CA3D996028E75D9 Validity Not Before: Sep 19 02:18:58 2025 GMT Not After : Sep 26 02:18:58 2025 GMT Subject: CN=68ccbd92-8caa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:68:08:fa:4b:5d:27:cb:ea:29:07:59:33:38: 3b:3c:4f:fd:58:05:86:6e:ef:11:fc:45:66:c4:de: b5:52:8c:9e:af:59:d2:a9:38:86:88:ad:83:58:87: cb:e6:6e:66:3b:4e:ac:4f:5d:de:20:ba:b0:3d:56: 19:da:13:54:6b:fb:dc:62:09:6c:28:79:72:88:20: f5:90:10:57:a4:60:0c:47:83:26:01:7b:4b:7f:69: e3:74:c8:4b:1f:78:52:e0:63:cb:93:b0:c0:f1:36: d7:40:aa:83:98:3a:83:2c:cf:05:6c:eb:3e:dd:69: 43:d6:c4:66:90:88:d3:3d:32:be:ec:1c:11:4e:79: fa:06:3c:b0:7c:ef:c7:90:24:3d:72:e9:d8:aa:1d: c0:ee:a6:10:bb:0d:57:c8:a5:29:09:6b:82:10:10: c5:0d:38:a1:8e:f2:90:dd:bc:0e:1e:57:df:7e:f1: 12:d3:5e:b5:7c:f0:1d:96:62:48:65:ed:22:e1:3e: f0:4c:c3:fc:ca:b0:80:ee:01:8f:c4:58:a5:ef:d1: 59:44:4c:b4:0f:1c:64:c5:4b:c2:35:95:73:74:98: 05:6e:47:14:4c:4b:c3:e4:73:19:b2:0c:93:4f:09: 41:10:1f:b4:fb:63:84:20:19:96:ee:4a:61:cb:e5: b4:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:2F:25:F0:B5:6F:2F:BD:C0:40:73:CC:A9:2B:71:A0:B1:ED:03:E1 X509v3 Authority Key Identifier: keyid:02:0B:60:6D:D9:E8:89:8A:7D:5D:F5:EA:1C:A3:D9:96:02:8E:75:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:8b:81:f6:7c:66:27:c2:98:94:23:7e:bd:34:1e:9e:31:5b: 0c:b1:cf:f3:4d:52:5d:3d:c5:df:9e:30:42:9a:87:ce:21:81: 6b:9a:20:29:c0:3c:f4:99:6f:3d:77:9b:48:2c:9c:c6:af:96: 28:e3:51:fa:6a:0f:df:64:a4:9f:b8:14:4f:83:54:29:ed:85: 1a:6e:2a:f5:4a:d9:49:12:9a:5b:5d:84:f2:9f:cd:c0:5d:38: 0a:bf:60:c9:4f:74:71:2b:8b:c4:f3:08:78:fe:b4:66:d0:f5: 91:30:8c:17:f4:db:44:4e:0e:21:bc:cf:10:32:38:98:9e:04: c6:1b:e3:3f:fc:32:f9:6e:57:0d:6a:ea:65:d1:eb:e1:f3:5d: 5d:63:4f:5a:1f:70:a4:d7:dc:0c:bd:30:08:0d:74:6d:f2:c3: f8:95:bb:a3:4b:db:fb:3f:cc:18:20:2c:ae:46:07:c1:62:4a: ac:3f:15:7c:68:df:32:ac:db:4c:63:1e:0e:cf:57:d7:34:84: 13:4c:66:53:fa:58:c5:cc:8c:aa:83:16:77:aa:b1:11:04:45: 29:07:73:7b:9b:20:5d:b5:70:fc:a6:c1:2b:b1:aa:77:47:9b: 91:83:86:32:4b:48:1f:e6:8a:59:18:50:50:fa:8f:2b:3b:22: 6d:9a:47:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyM0YxMTAvBgNVBAUTKDAyMEI2MDZERDlFODg5OEE3RDVERjVFQTFDQTNEOTk2 MDI4RTc1RDkwHhcNMjUwOTE5MDIxODU4WhcNMjUwOTI2MDIxODU4WjAYMRYwFAYD VQQDEw02OGNjYmQ5Mi04Y2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3mgI+ktdJ8vqKQdZMzg7PE/9WAWGbu8R/EVmxN61Uoyer1nSqTiGiK2DWIfL 5m5mO06sT13eILqwPVYZ2hNUa/vcYglsKHlyiCD1kBBXpGAMR4MmAXtLf2njdMhL H3hS4GPLk7DA8TbXQKqDmDqDLM8FbOs+3WlD1sRmkIjTPTK+7BwRTnn6BjywfO/H kCQ9cunYqh3A7qYQuw1XyKUpCWuCEBDFDTihjvKQ3bwOHlfffvES0161fPAdlmJI Ze0i4T7wTMP8yrCA7gGPxFil79FZREy0DxxkxUvCNZVzdJgFbkcUTEvD5HMZsgyT TwlBEB+0+2OEIBmW7kphy+W0RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkvJfC1 by+9wEBzzKkrcaCx7QPhMB8GA1UdIwQYMBaAFAILYG3Z6ImKfV316hyj2ZYCjnXZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTIzRi9DNjRDQUFBNDNF NTIxMUVEQUFENEI2NEZDNEY5QUUwMi9BZ3RnYmRub2lZcDlYZlhxSEtQWmxnS09k ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FndGdiZG5vaVlwOVhmWHFIS1BabGdLT2Rkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RTIzRi9DNjRDQUFBNDNFNTIxMUVEQUFENEI2NEZDNEY5QUUwMi9BZ3RnYmRub2lZ cDlYZlhxSEtQWmxnS09kZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBi4H2fGYnwpiUI369NB6eMVsMsc/zTVJdPcXfnjBCmofOIYFrmiAp wDz0mW89d5tILJzGr5Yo41H6ag/fZKSfuBRPg1Qp7YUabir1StlJEppbXYTyn83A XTgKv2DJT3RxK4vE8wh4/rRm0PWRMIwX9NtETg4hvM8QMjiYngTGG+M//DL5blcN aupl0evh811dY09aH3Ck19wMvTAIDXRt8sP4lbujS9v7P8wYICyuRgfBYkqsPxV8 aN8yrNtMYx4Oz1fXNIQTTGZT+ljFzIyqgxZ3qrERBEUpB3N7myBdtXD8psErsap3 R5uRg4YyS0gf5opZGFBQ+o8rOyJtmkdw -----END CERTIFICATE-----Generated at Fri Sep 19 09:06:59 2025 by rpki-client