$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft File: joN3gQz5wgS7ElhPPltfBQNoJG8.mft (raw, json) Hash identifier: KHuIkl1BVTk3TU1CgEeHMWQ2RvvTjXyCfUeIsP2b7qA= Subject key identifier: D8:43:96:58:F8:CE:29:57:D8:4A:BD:86:7F:63:02:1E:CE:6D:C0:57 Authority key identifier: 8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F Certificate issuer: /CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Certificate serial: 1F1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft Manifest number: 1EF3 Signing time: Tue 16 Sep 2025 16:07:08 +0000 Manifest this update: Tue 16 Sep 2025 16:07:08 +0000 Manifest next update: Tue 23 Sep 2025 16:07:08 +0000 Files and hashes: 1: joN3gQz5wgS7ElhPPltfBQNoJG8.crl (hash: YY3ZiFI8CMQoMX4E0rHQTVqxHBc7/omxKniP17/k1qk=) 2: 48BB49E8763A11EFA077F11CC4F9AE02.roa (hash: kbKWOZNJMc5q48ZGAPJwk/No5hClmF4tRx65umSQzAA=) 3: A63484760E7511F0B651A474C4F9AE02.roa (hash: E5E7M+KU38t2hoCZnvux4qAliD8ibl/Vp9X6gykPlbI=) 4: 2D70A1AE0DFE11F087A25C3FC4F9AE02.roa (hash: yrblWteuMzwUMPHL56NEpj1u/5SILXxLN8wP92DwqIY=) 5: 2E2A74580DFE11F087A25C3FC4F9AE02.roa (hash: fmsgiPf9NAexR5vlu7jiK+Ra4ISg07n1PLjbPNsyZNQ=) 6: 31603938763B11EF810E6D1FC4F9AE02.roa (hash: 7bLJ+6dveh56SJZSGgZCe9J26eijaiEXg9KDAFNqlo0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 16:07:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7966 (0x1f1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0E3, serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Validity Not Before: Sep 16 16:07:08 2025 GMT Not After : Sep 23 16:07:08 2025 GMT Subject: CN=68c98b2c-6cfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:08:91:02:f7:f7:3c:92:ae:62:ea:03:96:66: 41:d5:56:3f:e9:37:36:17:24:e2:e9:ac:50:97:51: 65:00:05:01:5c:e1:ad:d5:f1:b0:60:e4:3c:9a:b7: eb:50:88:1c:3f:71:d8:6e:df:bf:be:b6:98:fe:85: 8a:b2:e0:55:bc:a0:2a:71:4d:ed:3b:24:76:7f:05: a5:ef:1d:29:17:cc:7a:22:1a:4c:20:e9:22:cb:d7: 9b:31:87:5b:64:ba:24:b0:15:f6:28:4c:c8:a3:b1: 1a:64:80:c4:b0:ba:c6:cf:65:c0:88:26:c3:aa:27: fc:04:5a:8e:ae:d1:fa:0b:27:fc:d0:a8:f7:5a:5d: 68:26:d2:9d:e4:b0:75:ad:22:f0:bf:e7:19:d6:9d: e2:7d:c9:ae:4c:d6:98:c6:90:a1:45:5f:f2:52:20: ae:a9:41:96:16:ee:87:fa:f4:57:34:aa:21:97:fe: 7c:de:c6:a3:80:4b:66:87:2d:c5:3c:af:41:1f:c7: f3:c1:eb:4e:19:53:4c:27:81:5c:88:98:ba:3b:8e: 03:cd:d3:8a:98:b9:d9:11:30:32:a4:40:2b:d8:9f: e1:99:66:76:38:81:22:4e:55:59:cc:71:6f:65:01: 43:66:62:7f:51:9c:4b:21:b0:c6:22:f7:25:64:f0: f3:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:43:96:58:F8:CE:29:57:D8:4A:BD:86:7F:63:02:1E:CE:6D:C0:57 X509v3 Authority Key Identifier: keyid:8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:23:68:0d:6f:42:f4:ea:37:f9:34:02:46:20:d2:7d:a4:6e: 3f:fc:0e:d9:b6:93:41:fc:1c:73:66:e2:aa:ff:8e:94:65:76: 86:b0:0b:08:cb:67:2f:c1:1d:90:4f:1e:48:25:12:bc:0e:1c: 04:40:fb:b5:70:11:2f:dc:5e:85:67:b9:42:20:15:5c:99:44: 7d:f2:ca:c0:1c:dc:99:47:cc:8f:68:88:03:a2:11:b2:96:77: b7:80:56:97:b2:84:01:1e:38:cb:7a:f8:ba:7d:24:c5:f1:d4: 40:9c:51:50:0e:dc:72:07:ed:f5:30:b3:b6:47:80:8f:e2:f2: 71:ea:1a:5d:08:2f:31:96:28:c4:53:53:8b:9e:25:97:72:10: 2b:5f:88:07:db:9b:0d:c4:4e:1e:cb:10:38:89:92:4e:fe:c4: 88:86:c3:86:2c:3e:ea:07:ee:a1:ce:74:ba:dc:a8:60:b9:0f: ab:e2:a9:45:31:2b:46:62:4e:bf:7c:7c:8a:39:a4:06:56:af: 74:7d:6f:bf:af:e2:1c:12:cc:13:09:35:d6:e4:e8:80:52:41: 70:36:a9:39:d6:1c:aa:52:cd:16:a1:8c:f9:2e:60:65:e3:19: 47:8b:2d:ce:21:60:64:63:da:54:7c:36:ea:f6:cb:15:bd:ee: da:89:1d:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YwRTMxMTAvBgNVBAUTKDhFODM3NzgxMENGOUMyMDRCQjEyNTg0RjNFNUI1RjA1 MDM2ODI0NkYwHhcNMjUwOTE2MTYwNzA4WhcNMjUwOTIzMTYwNzA4WjAYMRYwFAYD VQQDEw02OGM5OGIyYy02Y2ZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3giRAvf3PJKuYuoDlmZB1VY/6Tc2FyTi6axQl1FlAAUBXOGt1fGwYOQ8mrfr UIgcP3HYbt+/vraY/oWKsuBVvKAqcU3tOyR2fwWl7x0pF8x6IhpMIOkiy9ebMYdb ZLoksBX2KEzIo7EaZIDEsLrGz2XAiCbDqif8BFqOrtH6Cyf80Kj3Wl1oJtKd5LB1 rSLwv+cZ1p3ifcmuTNaYxpChRV/yUiCuqUGWFu6H+vRXNKohl/583sajgEtmhy3F PK9BH8fzwetOGVNMJ4FciJi6O44DzdOKmLnZETAypEAr2J/hmWZ2OIEiTlVZzHFv ZQFDZmJ/UZxLIbDGIvclZPDzcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNhDllj4 zilX2Eq9hn9jAh7ObcBXMB8GA1UdIwQYMBaAFI6Dd4EM+cIEuxJYTz5bXwUDaCRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjBFMy8yOTE1NzZCRTZC MzQxMUU2OTE4NEI2NkNDNEY5QUUwMi9qb04zZ1F6NXdnUzdFbGhQUGx0ZkJRTm9K RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvTjNnUXo1d2dTN0VsaFBQbHRmQlFOb0pHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjBFMy8yOTE1NzZCRTZCMzQxMUU2OTE4NEI2NkNDNEY5QUUwMi9qb04zZ1F6NXdn UzdFbGhQUGx0ZkJRTm9KRzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8I2gNb0L06jf5NAJGINJ9pG4//A7ZtpNB/BxzZuKq/46UZXaGsAsI y2cvwR2QTx5IJRK8DhwEQPu1cBEv3F6FZ7lCIBVcmUR98srAHNyZR8yPaIgDohGy lne3gFaXsoQBHjjLevi6fSTF8dRAnFFQDtxyB+31MLO2R4CP4vJx6hpdCC8xlijE U1OLniWXchArX4gH25sNxE4eyxA4iZJO/sSIhsOGLD7qB+6hznS63KhguQ+r4qlF MStGYk6/fHyKOaQGVq90fW+/r+IcEswTCTXW5OiAUkFwNqk51hyqUs0WoYz5LmBl 4xlHiy3OIWBkY9pUfDbq9ssVve7aiR0n -----END CERTIFICATE-----Generated at Thu Sep 18 01:07:06 2025 by rpki-client