$ rpki-client -vvf rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft File: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft (raw, json) Hash identifier: Z8DIYvmcy3+V5GIAoB7oITEY8g+Q1q9xqdVF4wwKPoY= Subject key identifier: D9:B5:1E:E1:DA:60:6F:EA:37:16:49:6C:15:9F:1D:E4:68:58:F4:C7 Authority key identifier: D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC Certificate issuer: /CN=A914247C/serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC Certificate serial: 0B50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft Manifest number: 0B42 Signing time: Sat 06 Sep 2025 19:24:17 +0000 Manifest this update: Sat 06 Sep 2025 19:24:16 +0000 Manifest next update: Sat 13 Sep 2025 19:24:16 +0000 Files and hashes: 1: 1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl (hash: hFkBUTUbbIi7xjUUM+q3t7p6jUnn7Yc0krkryuaPugM=) 2: 9156042083EB11ECB7EC3B76C4F9AE02.roa (hash: pLnncZW/+2aMcnpBmFNNa8a+AYjIGNXBznPCsUBo+1c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 18:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2896 (0xb50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914247C, serialNumber=D5A0250634DFC03DC9CFCABA9795180FF05158FC Validity Not Before: Sep 6 19:24:16 2025 GMT Not After : Sep 13 19:24:16 2025 GMT Subject: CN=68bc8a61-3ef8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:65:d1:98:f5:bb:42:26:5a:01:b4:72:66:48: b1:a7:0c:ab:c9:f1:4b:b4:e9:10:d5:bf:5b:66:64: 37:e4:14:51:14:3e:19:18:c7:7d:96:fe:a1:fb:c0: ab:9d:e6:cd:d0:ce:61:3c:60:f3:fa:99:3d:eb:81: 00:87:04:ad:45:2c:6d:c5:9b:59:9b:85:32:be:f3: 23:56:bb:d0:f5:97:8b:3d:5d:93:44:1f:cb:ce:09: 40:5e:1a:7d:de:16:45:4d:d7:85:f3:f5:51:d7:f5: 58:37:f3:3f:a3:8a:ef:ca:c7:9c:1b:2c:85:23:d8: ca:33:42:ae:57:97:7c:8e:60:54:dc:d8:99:a8:36: a9:e4:4e:4d:b9:c2:a0:d2:19:7e:83:cd:fa:4a:37: 9c:cf:43:70:61:fc:66:af:58:0e:42:ff:e3:9c:f0: 92:1f:5e:42:a3:34:3c:49:9e:5f:98:6e:b2:56:0e: 34:37:84:9c:43:9f:7d:2f:be:5e:d2:cf:34:c2:05: 50:b1:42:62:44:10:9d:b1:89:b7:30:cf:ee:f8:fb: b5:3c:7a:6e:97:17:56:cd:55:1c:4f:ee:72:96:f5: 0d:b2:ca:22:6c:bf:70:b3:ae:d3:3a:cb:18:94:ab: 34:71:e9:35:eb:eb:f2:6d:e6:a3:2e:d8:32:0b:5a: 75:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B5:1E:E1:DA:60:6F:EA:37:16:49:6C:15:9F:1D:E4:68:58:F4:C7 X509v3 Authority Key Identifier: keyid:D5:A0:25:06:34:DF:C0:3D:C9:CF:CA:BA:97:95:18:0F:F0:51:58:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914247C/8A1C4616430A11EA858CDC76C4F9AE02/1aAlBjTfwD3Jz8q6l5UYD_BRWPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:86:f1:c8:6b:88:fc:93:dc:99:50:93:e9:0a:ba:be:94:c1: 0c:d4:18:ff:2b:16:05:5c:62:dd:c4:5c:2d:6f:80:30:c2:eb: cc:8e:be:34:a2:cf:00:46:af:43:9b:b4:0e:fe:b1:87:d8:f6: 73:c0:75:a5:de:20:41:01:de:c2:f7:01:e8:ee:ef:07:74:08: 8f:7d:74:c2:9d:61:58:7d:61:83:87:ea:e6:7a:ac:03:e4:3b: 98:85:f1:26:f0:b9:ed:bb:13:a5:b0:0e:7a:dd:6c:7a:de:d1: 29:e7:c4:67:69:74:d9:4a:ee:6f:51:b4:3b:94:24:21:ff:32: f4:03:88:ec:79:85:b5:dd:b5:b0:2c:ce:5d:b5:dc:85:1d:1f: d6:20:30:9c:42:10:66:ab:e1:fc:a0:87:57:91:dc:23:93:c3: bd:76:19:9f:92:da:75:5d:6f:b0:6e:99:97:1d:a8:ca:f9:ec: 1f:5b:69:63:9d:75:47:97:b2:27:fa:ea:75:d5:a2:46:cd:76: 82:21:1c:b5:0e:1c:fc:ac:47:38:0a:0d:f5:6b:71:1d:e8:9f: 1d:16:5d:e5:4e:d3:05:52:bc:8b:c2:16:82:52:ce:20:98:11: 60:4e:4e:18:a8:bc:c9:2c:44:e9:e8:4b:39:73:d0:12:16:2f: 14:fe:5f:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI0N0MxMTAvBgNVBAUTKEQ1QTAyNTA2MzRERkMwM0RDOUNGQ0FCQTk3OTUxODBG RjA1MTU4RkMwHhcNMjUwOTA2MTkyNDE2WhcNMjUwOTEzMTkyNDE2WjAYMRYwFAYD VQQDEw02OGJjOGE2MS0zZWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2XRmPW7QiZaAbRyZkixpwyryfFLtOkQ1b9bZmQ35BRRFD4ZGMd9lv6h+8Cr nebN0M5hPGDz+pk964EAhwStRSxtxZtZm4UyvvMjVrvQ9ZeLPV2TRB/LzglAXhp9 3hZFTdeF8/VR1/VYN/M/o4rvysecGyyFI9jKM0KuV5d8jmBU3NiZqDap5E5NucKg 0hl+g836Sjecz0NwYfxmr1gOQv/jnPCSH15CozQ8SZ5fmG6yVg40N4ScQ599L75e 0s80wgVQsUJiRBCdsYm3MM/u+Pu1PHpulxdWzVUcT+5ylvUNssoibL9ws67TOssY lKs0cek16+vybeajLtgyC1p1mQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNm1HuHa YG/qNxZJbBWfHeRoWPTHMB8GA1UdIwQYMBaAFNWgJQY038A9yc/KupeVGA/wUVj8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjQ3Qy84QTFDNDYxNjQz MEExMUVBODU4Q0RDNzZDNEY5QUUwMi8xYUFsQmpUZndEM0p6OHE2bDVVWURfQlJX UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFhQWxCalRmd0QzSno4cTZsNVVZRF9CUldQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjQ3Qy84QTFDNDYxNjQzMEExMUVBODU4Q0RDNzZDNEY5QUUwMi8xYUFsQmpUZndE M0p6OHE2bDVVWURfQlJXUHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+hvHIa4j8k9yZUJPpCrq+lMEM1Bj/KxYFXGLdxFwtb4AwwuvMjr40 os8ARq9Dm7QO/rGH2PZzwHWl3iBBAd7C9wHo7u8HdAiPfXTCnWFYfWGDh+rmeqwD 5DuYhfEm8LntuxOlsA563Wx63tEp58RnaXTZSu5vUbQ7lCQh/zL0A4jseYW13bWw LM5dtdyFHR/WIDCcQhBmq+H8oIdXkdwjk8O9dhmfktp1XW+wbpmXHajK+ewfW2lj nXVHl7In+up11aJGzXaCIRy1Dhz8rEc4Cg31a3Ed6J8dFl3lTtMFUryLwhaCUs4g mBFgTk4YqLzJLETp6Es5c9ASFi8U/l9W -----END CERTIFICATE-----Generated at Sat Sep 6 21:31:28 2025 by rpki-client