$ rpki-client -vvf rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft File: A2aKIfDwHwaydP2IzJ4KboPVX4U.mft (raw, json) Hash identifier: a57ZkJhZbJJ/j3A5cqtZ8oQflM5AAAhhdFSxWcUPyC0= Subject key identifier: 6C:74:09:82:30:11:45:14:D8:F6:4A:54:F5:CC:24:4E:64:A0:07:D6 Authority key identifier: 03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 Certificate issuer: /CN=A9141620/serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Certificate serial: 078D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft Manifest number: 0785 Signing time: Thu 18 Sep 2025 21:46:44 +0000 Manifest this update: Thu 18 Sep 2025 21:46:44 +0000 Manifest next update: Thu 25 Sep 2025 21:46:44 +0000 Files and hashes: 1: A2aKIfDwHwaydP2IzJ4KboPVX4U.crl (hash: 3VtWnBh0CuGK8IG3cMrU3MHZnbO1yWdIYOp9knqNJlY=) 2: 5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa (hash: dyvPcZxPt0csBuZZARHE9y3XiMCjfKdl2w86flcHLuE=) 3: CE899F0A66C311F08BE17B42C4F9AE02.roa (hash: XycQAAjR4EYRiIJrbriGrgbwnZEgUHk+CyGzEa7IeHA=) 4: 2C0DD994525511F0A544424DC4F9AE02.roa (hash: neek5srr+aWcWmnY+eA9qwIexbf1EgEc62zGldwiimQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 21:46:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1933 (0x78d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141620, serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Validity Not Before: Sep 18 21:46:44 2025 GMT Not After : Sep 25 21:46:44 2025 GMT Subject: CN=68cc7dc4-490a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a4:18:70:f5:dd:0d:32:9d:f1:1e:c3:1d:30: ca:b0:6c:70:e1:d8:ba:bc:2c:6c:56:25:5f:43:b3: ae:ef:1c:4a:48:ba:8b:76:7a:04:05:b3:e1:2d:62: a4:c8:9b:00:df:60:19:cf:06:e7:d4:a5:e5:8a:af: ce:c3:71:cc:3f:f1:fb:f3:c3:7e:0e:59:18:97:1d: 9c:de:71:8d:bd:ce:53:1c:75:0a:15:82:df:0d:6f: d0:60:17:65:9f:c3:a0:35:0d:a8:98:d1:8c:ab:2a: 6a:fb:c1:25:0f:37:b7:6e:bb:5e:8f:ee:8f:61:36: ff:86:38:3e:de:32:4c:14:6a:71:3c:7d:e5:34:f2: 93:2c:8e:4b:fb:0f:52:39:92:95:44:c2:a5:98:33: 80:d7:32:af:c5:ea:75:c5:a0:58:88:61:36:f8:3f: 08:20:57:cb:ba:48:8f:30:5a:b2:24:c5:2a:d9:6b: 68:5a:c7:97:a6:03:24:59:e4:9c:54:09:00:e3:e5: c0:df:2a:65:a3:d8:0d:f9:74:7c:5e:73:0b:2b:1d: fd:9d:cb:f6:c2:f6:3d:b4:9b:3a:51:e0:31:07:fd: bd:7e:9b:4b:73:53:ba:1f:30:56:38:e6:80:23:0f: dc:c9:46:7d:47:56:9c:90:54:6b:9a:d3:e1:7e:0a: d4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:74:09:82:30:11:45:14:D8:F6:4A:54:F5:CC:24:4E:64:A0:07:D6 X509v3 Authority Key Identifier: keyid:03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:0f:88:45:77:a8:0b:d2:f0:39:dc:26:3c:b5:8d:e6:2b:2f: be:cc:3f:b6:63:3b:fe:04:42:af:cf:59:10:f8:44:8f:2d:3b: 46:04:15:93:f8:56:3f:71:36:d1:d8:da:aa:1a:0d:b4:99:c6: 62:69:34:5f:2c:a1:8d:ed:9e:e8:12:b7:ae:0d:66:75:e6:87: 9c:13:fa:dd:50:e5:0b:36:4d:42:40:b4:4c:23:19:f8:83:48: d8:c6:81:11:93:dd:17:49:42:d7:93:0d:19:56:6e:dd:aa:35: c6:ab:bb:13:bb:02:3f:e5:25:3c:5a:6f:77:b1:9c:cc:1f:57: a1:af:83:7b:e7:74:8b:15:99:df:7a:aa:02:82:2b:ed:fd:69: bc:45:41:30:24:5a:01:4c:92:0b:41:80:77:69:19:ec:49:fc: 52:c4:f5:38:cd:9b:2f:55:76:b4:71:8b:56:96:52:b7:67:64: 7b:da:63:25:46:e7:d8:5a:50:f6:9a:7e:bf:72:e5:73:b5:ab: 2a:51:db:18:dd:0f:f9:28:b1:7c:0b:9d:67:58:b2:43:9b:72: f9:04:61:10:77:95:1c:ec:7d:03:f2:43:6a:63:5b:63:53:94: 6f:d0:ef:01:13:69:15:d1:39:a5:f2:59:5e:c1:d2:4d:3e:79: c5:d5:db:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE2MjAxMTAvBgNVBAUTKDAzNjY4QTIxRjBGMDFGMDZCMjc0RkQ4OENDOUUwQTZF ODNENTVGODUwHhcNMjUwOTE4MjE0NjQ0WhcNMjUwOTI1MjE0NjQ0WjAYMRYwFAYD VQQDEw02OGNjN2RjNC00OTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaQYcPXdDTKd8R7DHTDKsGxw4di6vCxsViVfQ7Ou7xxKSLqLdnoEBbPhLWKk yJsA32AZzwbn1KXliq/Ow3HMP/H788N+DlkYlx2c3nGNvc5THHUKFYLfDW/QYBdl n8OgNQ2omNGMqypq+8ElDze3brtej+6PYTb/hjg+3jJMFGpxPH3lNPKTLI5L+w9S OZKVRMKlmDOA1zKvxep1xaBYiGE2+D8IIFfLukiPMFqyJMUq2WtoWseXpgMkWeSc VAkA4+XA3yplo9gN+XR8XnMLKx39ncv2wvY9tJs6UeAxB/29fptLc1O6HzBWOOaA Iw/cyUZ9R1ackFRrmtPhfgrUcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGx0CYIw EUUU2PZKVPXMJE5koAfWMB8GA1UdIwQYMBaAFANmiiHw8B8GsnT9iMyeCm6D1V+F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTYyMC8yMTk4MTZBQTI5 M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3YXlkUDJJeko0S2JvUFZY NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EyYUtJZkR3SHdheWRQMkl6SjRLYm9QVlg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTYyMC8yMTk4MTZBQTI5M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3 YXlkUDJJeko0S2JvUFZYNFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxD4hFd6gL0vA53CY8tY3mKy++zD+2Yzv+BEKvz1kQ+ESPLTtGBBWT +FY/cTbR2NqqGg20mcZiaTRfLKGN7Z7oEreuDWZ15oecE/rdUOULNk1CQLRMIxn4 g0jYxoERk90XSULXkw0ZVm7dqjXGq7sTuwI/5SU8Wm93sZzMH1ehr4N753SLFZnf eqoCgivt/Wm8RUEwJFoBTJILQYB3aRnsSfxSxPU4zZsvVXa0cYtWllK3Z2R72mMl RufYWlD2mn6/cuVztasqUdsY3Q/5KLF8C51nWLJDm3L5BGEQd5Uc7H0D8kNqY1tj U5Rv0O8BE2kV0Tml8llewdJNPnnF1dvO -----END CERTIFICATE-----Generated at Fri Sep 19 00:40:51 2025 by rpki-client