$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft File: 320AK7yrolDSrmtEVOPL_WfSx-o.mft (raw, json) Hash identifier: +AOHVW/wzU+EQkq6VNA37FP+ORLJqBLVt8LDZQMycJs= Subject key identifier: 4F:E6:3B:B0:D8:A0:6E:38:8F:7D:E7:C9:9F:3B:FE:62:93:BA:57:C6 Authority key identifier: DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA Certificate issuer: /CN=A9143DE2/serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Certificate serial: 09C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft Manifest number: 09BF Signing time: Thu 18 Sep 2025 20:14:33 +0000 Manifest this update: Thu 18 Sep 2025 20:14:33 +0000 Manifest next update: Thu 25 Sep 2025 20:14:33 +0000 Files and hashes: 1: 320AK7yrolDSrmtEVOPL_WfSx-o.crl (hash: l5Uzuzo2wkB5Nw+mD4LaTiNSjUkOjgwxvDLvt7/1nqk=) 2: C07738FE9F4511EB88EBCA76C4F9AE02.roa (hash: EW5gw++/Nv/7XkyhmrGAdJFCyCQBgQSX+Pdw0qIT5p4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:14:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2505 (0x9c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DE2, serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Validity Not Before: Sep 18 20:14:33 2025 GMT Not After : Sep 25 20:14:33 2025 GMT Subject: CN=68cc6829-f87f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e0:ad:c1:f9:45:f1:3b:5e:af:ce:95:fa:bd: 2c:a5:b7:4d:e8:32:89:c0:14:92:82:ce:92:01:5a: 8f:6e:5d:5a:fb:5e:de:5f:e2:67:90:bb:38:b6:a5: 71:17:ff:b1:b8:cf:d4:78:1b:ce:31:4a:63:64:5b: 7a:c5:69:78:da:df:98:e5:91:0e:b7:9e:1a:db:db: fc:84:9b:bd:6a:f1:1c:6f:cd:51:78:5c:d8:33:2d: 63:01:4c:78:7f:49:16:e7:3b:9d:e7:44:87:51:a4: 0f:a7:ae:7b:00:f3:59:1a:07:9b:f6:6b:fd:2f:71: 23:19:9a:6a:95:7a:b8:62:f8:59:a5:f9:cb:78:15: ad:33:cb:5c:67:8e:ba:d9:5e:93:78:82:8b:c4:ef: a8:9c:67:3d:34:20:67:6b:68:1a:69:ca:f1:e3:a9: f9:28:3b:7f:4c:c9:5a:13:86:8e:41:6f:c0:9b:0f: 00:55:84:44:bd:52:72:23:9d:2b:d7:cf:86:64:42: 57:69:d4:20:69:fa:33:5a:90:3e:d7:33:df:3c:74: 09:33:e5:ac:a5:87:a8:22:b3:f9:b8:01:17:8f:d0: 59:0f:20:93:39:eb:54:62:fd:4a:8d:b5:4b:c0:75: a4:70:30:73:e9:d0:2c:39:fe:b7:ce:c1:d3:4f:20: 12:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:E6:3B:B0:D8:A0:6E:38:8F:7D:E7:C9:9F:3B:FE:62:93:BA:57:C6 X509v3 Authority Key Identifier: keyid:DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:c5:38:ee:83:f7:64:44:e4:4a:8c:62:eb:dc:bb:e5:0a:34: 20:05:67:fa:3a:d7:6a:1b:ea:64:94:62:7c:bb:fc:c3:0c:2f: 75:ee:38:a2:4b:cc:40:4f:7d:88:f8:e5:17:0d:d8:9b:7d:44: 24:2c:58:5c:f5:fe:a4:03:d8:15:21:d8:f0:28:d9:2a:20:16: 0f:2f:8b:75:7b:bb:41:b7:2d:54:e9:bc:19:0d:d9:05:74:45: d1:0e:bf:ff:1c:30:43:7b:f0:87:31:cb:b4:60:89:b1:e7:b4: b9:43:eb:4a:fe:7b:8d:d8:f7:6c:d6:66:de:49:e2:a7:60:a4: fd:e4:67:5a:91:19:ac:f1:77:e2:76:40:3a:f9:b0:22:55:03: 25:5e:27:97:f1:5e:e3:c3:e4:90:9c:26:b6:5e:e1:5d:31:22: 16:a7:e8:46:d5:d2:b8:37:ca:ce:a9:5b:67:6a:11:c8:d9:b3: 3c:ef:83:61:85:a4:c1:44:e0:6f:52:39:a8:e0:24:98:2a:d5: ab:88:3b:5c:89:a1:7d:d3:b6:3e:5d:17:9d:2d:45:92:36:98: 5e:63:af:13:27:34:17:c0:bb:f1:ea:3c:88:84:b7:36:9e:2f: 26:ba:23:27:90:e2:ca:94:b3:23:e7:18:c8:48:c8:7f:fc:8a: 4c:98:4a:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNERTIxMTAvBgNVBAUTKERGNkQwMDJCQkNBQkEyNTBEMkFFNkI0NDU0RTNDQkZE NjdEMkM3RUEwHhcNMjUwOTE4MjAxNDMzWhcNMjUwOTI1MjAxNDMzWjAYMRYwFAYD VQQDEw02OGNjNjgyOS1mODdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOCtwflF8Tter86V+r0spbdN6DKJwBSSgs6SAVqPbl1a+17eX+JnkLs4tqVx F/+xuM/UeBvOMUpjZFt6xWl42t+Y5ZEOt54a29v8hJu9avEcb81ReFzYMy1jAUx4 f0kW5zud50SHUaQPp657APNZGgeb9mv9L3EjGZpqlXq4YvhZpfnLeBWtM8tcZ466 2V6TeIKLxO+onGc9NCBna2gaacrx46n5KDt/TMlaE4aOQW/Amw8AVYREvVJyI50r 18+GZEJXadQgafozWpA+1zPfPHQJM+WspYeoIrP5uAEXj9BZDyCTOetUYv1KjbVL wHWkcDBz6dAsOf63zsHTTyASaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/mO7DY oG44j33nyZ87/mKTulfGMB8GA1UdIwQYMBaAFN9tACu8q6JQ0q5rRFTjy/1n0sfq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RFMi9EMjE4REQ1MjhF OTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9sRFNybXRFVk9QTF9XZlN4 LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyMEFLN3lyb2xEU3JtdEVWT1BMX1dmU3gtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0RFMi9EMjE4REQ1MjhFOTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9s RFNybXRFVk9QTF9XZlN4LW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZxTjug/dkRORKjGLr3LvlCjQgBWf6OtdqG+pklGJ8u/zDDC917jii S8xAT32I+OUXDdibfUQkLFhc9f6kA9gVIdjwKNkqIBYPL4t1e7tBty1U6bwZDdkF dEXRDr//HDBDe/CHMcu0YImx57S5Q+tK/nuN2Pds1mbeSeKnYKT95GdakRms8Xfi dkA6+bAiVQMlXieX8V7jw+SQnCa2XuFdMSIWp+hG1dK4N8rOqVtnahHI2bM874Nh haTBROBvUjmo4CSYKtWriDtciaF907Y+XRedLUWSNpheY68TJzQXwLvx6jyIhLc2 ni8muiMnkOLKlLMj5xjISMh//IpMmEpO -----END CERTIFICATE-----Generated at Fri Sep 19 12:36:17 2025 by rpki-client