$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft File: -1uWlTzNsR6SaDs-tbekV0lLJfA.mft (raw, json) Hash identifier: o95ikmjTeiDaGu8H1BAsqotibseBbqR2QHzgKDvVu7k= Subject key identifier: 3B:D2:41:BE:F8:2B:EB:37:83:98:45:FE:4C:15:EA:33:02:FC:04:AF Authority key identifier: FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 Certificate issuer: /CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft Manifest number: 0161 Signing time: Sat 06 Sep 2025 15:32:10 +0000 Manifest this update: Sat 06 Sep 2025 15:32:09 +0000 Manifest next update: Sat 13 Sep 2025 15:32:09 +0000 Files and hashes: 1: -1uWlTzNsR6SaDs-tbekV0lLJfA.crl (hash: xhJxpDGULPW8sfqnnQdF/NATI4fGoCw1OeSUFqpN3po=) 2: 67B0ACBC8E5011EE95DFC141C4F9AE02.roa (hash: v8nxYYW0hF0+DI8v9AY4Ub2lKaqI81YP/TyFzHf/96E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 15:32:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72, serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Validity Not Before: Sep 6 15:32:09 2025 GMT Not After : Sep 13 15:32:09 2025 GMT Subject: CN=68bc53fa-502c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fe:d9:f4:0b:95:61:20:a5:6e:b1:f4:f3:96: 73:99:40:59:d0:62:b1:01:34:45:a1:7e:59:a9:1f: 67:e9:73:bd:d2:da:58:67:76:44:fd:d2:9e:e3:3e: db:85:dc:41:58:1f:4a:a2:35:92:9b:81:5d:69:d8: 2c:9a:73:03:16:fb:f1:78:98:46:f5:4a:b7:92:4d: 6c:a0:29:72:fc:53:6b:2f:6d:eb:0e:26:e6:03:91: 58:64:68:1e:1f:0d:27:17:03:26:d7:c0:60:72:70: 24:59:7f:da:0e:f9:d4:0a:c7:aa:e4:43:4a:2c:1a: 7f:1c:5c:08:6d:b4:fa:f9:cf:77:b0:cd:98:19:38: 0c:fe:f0:b0:d9:4d:17:22:cc:de:62:06:8c:f7:7a: fa:6a:16:64:bc:5c:e3:11:a8:c2:3a:af:0b:73:c3: 0a:b2:02:76:a9:0f:5d:8b:65:ee:f5:c0:02:c0:a5: 48:74:d6:f9:87:7f:25:bf:1c:10:95:8e:1d:04:60: 28:42:f3:f9:20:39:1a:a9:2c:85:39:0b:f9:23:89: b0:26:39:bd:85:c0:98:be:c2:ae:61:58:b7:d8:b3: f0:39:49:18:ec:f4:65:80:80:46:bd:35:a0:f2:bd: a0:13:c2:e1:f2:d5:d5:db:9b:1a:99:d3:6e:bc:17: e2:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:D2:41:BE:F8:2B:EB:37:83:98:45:FE:4C:15:EA:33:02:FC:04:AF X509v3 Authority Key Identifier: keyid:FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:30:65:c8:09:96:fb:72:d4:69:c1:a4:52:29:76:74:41:25: dc:f7:58:e6:e5:5a:d8:46:fd:6c:c0:73:31:6b:92:37:8c:8d: 20:fb:d9:e0:84:f9:0b:ef:3d:17:5e:b7:8f:0f:97:1d:80:90: d0:9e:47:92:c3:97:0b:38:c1:e5:1d:fd:4a:48:6d:75:fa:ff: 13:dd:73:db:12:df:91:bc:4f:f5:d9:d8:4b:5c:d0:5a:ae:ec: b7:19:ec:0e:38:33:6d:5a:db:86:ff:98:34:f8:84:ea:d4:09: 1c:67:57:8f:e1:b5:b4:77:1a:bf:d2:8d:84:4d:c8:f1:cd:01: c3:a4:4f:31:30:e0:a3:65:a0:4e:5b:c0:cd:9c:8f:d0:4e:6d: 6c:c3:15:50:ef:54:1d:38:30:4f:27:07:bf:4b:23:7b:27:5f: b4:7d:20:b2:88:d3:07:34:cd:a9:82:29:13:a0:ce:bb:e6:0a: 8d:ab:be:ce:97:a6:0b:ce:84:bd:60:2a:c6:82:36:3c:be:a3: d7:47:6c:33:36:be:7f:44:a9:ea:5a:e0:76:38:22:90:8b:48: 94:65:5a:37:7b:1e:db:9b:ce:a0:62:a9:4b:72:c0:db:2a:86: 82:84:d5:88:8b:6b:21:97:17:c9:66:9f:f8:2c:1c:14:98:97: 6d:7e:9f:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKEZCNUI5Njk1M0NDREIxMUU5MjY4M0IzRUI1QjdBNDU3 NDk0QjI1RjAwHhcNMjUwOTA2MTUzMjA5WhcNMjUwOTEzMTUzMjA5WjAYMRYwFAYD VQQDEw02OGJjNTNmYS01MDJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzv7Z9AuVYSClbrH085ZzmUBZ0GKxATRFoX5ZqR9n6XO90tpYZ3ZE/dKe4z7b hdxBWB9KojWSm4FdadgsmnMDFvvxeJhG9Uq3kk1soCly/FNrL23rDibmA5FYZGge Hw0nFwMm18BgcnAkWX/aDvnUCseq5ENKLBp/HFwIbbT6+c93sM2YGTgM/vCw2U0X IszeYgaM93r6ahZkvFzjEajCOq8Lc8MKsgJ2qQ9di2Xu9cACwKVIdNb5h38lvxwQ lY4dBGAoQvP5IDkaqSyFOQv5I4mwJjm9hcCYvsKuYVi32LPwOUkY7PRlgIBGvTWg 8r2gE8Lh8tXV25samdNuvBfibQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvSQb74 K+s3g5hF/kwV6jMC/ASvMB8GA1UdIwQYMBaAFPtblpU8zbEekmg7PrW3pFdJSyXw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi80RjU2QzAxQzc3 OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNSNlNhRHMtdGJla1YwbExK ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy0xdVdsVHpOc1I2U2FEcy10YmVrVjBsTEpmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi80RjU2QzAxQzc3OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNS NlNhRHMtdGJla1YwbExKZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3MGXICZb7ctRpwaRSKXZ0QSXc91jm5VrYRv1swHMxa5I3jI0g+9ng hPkL7z0XXrePD5cdgJDQnkeSw5cLOMHlHf1KSG11+v8T3XPbEt+RvE/12dhLXNBa ruy3GewOODNtWtuG/5g0+ITq1AkcZ1eP4bW0dxq/0o2ETcjxzQHDpE8xMOCjZaBO W8DNnI/QTm1swxVQ71QdODBPJwe/SyN7J1+0fSCyiNMHNM2pgikToM675gqNq77O l6YLzoS9YCrGgjY8vqPXR2wzNr5/RKnqWuB2OCKQi0iUZVo3ex7bm86gYqlLcsDb KoaChNWIi2shlxfJZp/4LBwUmJdtfp+J -----END CERTIFICATE-----Generated at Sat Sep 6 21:10:13 2025 by rpki-client