$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft File: 89pR_oC82pcIdSXiBGIeqfVXQZk.mft (raw, json) Hash identifier: m03NrfSORo8d1PoYASqgBe40C8DIMAZfL0wv+iEeF48= Subject key identifier: 77:19:C9:D4:7F:D1:AE:9F:A5:AF:E1:5A:5C:4D:79:62:AC:60:D7:E5 Authority key identifier: F3:DA:51:FE:80:BC:DA:97:08:75:25:E2:04:62:1E:A9:F5:57:41:99 Certificate issuer: /CN=A9147CDA/serialNumber=F3DA51FE80BCDA97087525E204621EA9F5574199 Certificate serial: 01F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89pR_oC82pcIdSXiBGIeqfVXQZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft Manifest number: 01DA Signing time: Wed 17 Sep 2025 03:41:32 +0000 Manifest this update: Wed 17 Sep 2025 03:41:31 +0000 Manifest next update: Wed 24 Sep 2025 03:41:31 +0000 Files and hashes: 1: 89pR_oC82pcIdSXiBGIeqfVXQZk.crl (hash: XHwgVe/BNKDwwiqOZqB/sNI4x4c9EjSvpKSPSByqiag=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.crl rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89pR_oC82pcIdSXiBGIeqfVXQZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 03:41:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 502 (0x1f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CDA, serialNumber=F3DA51FE80BCDA97087525E204621EA9F5574199 Validity Not Before: Sep 17 03:41:31 2025 GMT Not After : Sep 24 03:41:31 2025 GMT Subject: CN=68ca2deb-5952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:f4:37:72:d1:c8:f5:5d:48:9a:e1:4f:36:ed: 12:5d:14:50:e6:1c:a0:0e:f5:f4:07:9e:1d:03:ab: 2c:10:76:77:fd:f8:3e:a1:82:11:a6:17:0d:d5:e7: cb:5f:d4:2a:de:44:05:4e:d1:6a:18:d0:fe:4e:63: a0:25:61:c7:47:c6:2f:37:27:91:93:0f:23:9f:08: 96:19:13:38:6f:83:49:30:d7:0c:89:cd:b7:88:39: 81:0e:86:d0:b9:7e:e7:b4:20:ff:a2:62:65:74:5f: 00:43:34:fe:3b:c7:de:aa:94:88:c9:c6:7f:25:0d: f4:93:50:41:33:c9:ba:f9:0f:bd:8a:b1:1a:c2:65: 02:e3:d5:1b:1b:91:5d:e3:db:6a:9a:03:39:e5:d5: fd:9e:bf:64:58:3c:44:e4:9d:33:f3:f9:30:ae:9c: 15:32:f7:f5:a1:0c:d4:3b:5b:7d:0d:40:f9:56:72: e1:21:5d:db:ab:64:e4:77:b5:cc:48:81:50:7b:06: 12:1f:55:f8:de:f5:e0:56:be:66:b8:92:18:f7:07: 42:9d:4a:e8:f7:ea:02:e7:5b:3b:ce:5b:de:a0:e0: 88:54:b8:1f:9b:ae:4a:10:d7:a4:ee:a6:ad:81:e0: c5:1b:7d:df:9e:1e:e4:b6:76:70:9e:d1:4c:40:c2: 5c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:19:C9:D4:7F:D1:AE:9F:A5:AF:E1:5A:5C:4D:79:62:AC:60:D7:E5 X509v3 Authority Key Identifier: keyid:F3:DA:51:FE:80:BC:DA:97:08:75:25:E2:04:62:1E:A9:F5:57:41:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89pR_oC82pcIdSXiBGIeqfVXQZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CDA/49B27D8A054D11EE9DFC1624C4F9AE02/89pR_oC82pcIdSXiBGIeqfVXQZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:95:ac:97:6f:f1:fa:e9:15:47:fb:c0:f0:42:af:94:1e:5c: a9:3e:4c:a7:be:fd:59:66:30:c0:ba:1b:df:6a:b3:ab:a6:1a: 09:0f:18:7a:e2:47:76:99:18:e8:e9:0d:c5:3b:17:9b:62:93: 0a:d5:a6:34:4f:04:c2:e9:5d:56:e3:2c:cd:16:6b:84:f7:21: 74:3d:27:30:21:44:8e:77:ce:74:b2:94:c7:8c:e0:80:a7:de: 7e:b6:7c:29:9d:c9:a0:f2:ac:32:7a:f6:bf:8d:10:f7:ca:2c: 2d:04:36:e8:84:6b:cc:f2:03:79:2e:be:dd:8e:dc:8c:44:84: c2:93:35:5a:63:95:1a:7b:c0:5c:20:35:61:f9:a4:9c:6c:6e: 79:97:05:b9:5e:c5:59:b0:3b:7a:a9:d8:5f:1b:be:e1:18:c1: f2:4c:c0:46:ed:70:29:72:cd:01:ab:09:5e:3c:ca:b1:c3:61: 93:9c:9a:24:78:d7:11:a6:10:86:4d:9b:d6:39:87:04:fb:c6: 69:1e:b2:00:a0:e9:98:95:74:b3:d4:d2:e5:f2:af:3f:76:41: 21:d7:cf:28:71:aa:03:0e:d5:e6:77:42:de:02:0e:8e:e1:d8: 4f:3d:a0:75:c0:c0:d6:62:cc:75:5b:b6:27:94:63:3d:f8:10: 8a:4e:7d:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdDREExMTAvBgNVBAUTKEYzREE1MUZFODBCQ0RBOTcwODc1MjVFMjA0NjIxRUE5 RjU1NzQxOTkwHhcNMjUwOTE3MDM0MTMxWhcNMjUwOTI0MDM0MTMxWjAYMRYwFAYD VQQDEw02OGNhMmRlYi01OTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PQ3ctHI9V1ImuFPNu0SXRRQ5hygDvX0B54dA6ssEHZ3/fg+oYIRphcN1efL X9Qq3kQFTtFqGND+TmOgJWHHR8YvNyeRkw8jnwiWGRM4b4NJMNcMic23iDmBDobQ uX7ntCD/omJldF8AQzT+O8feqpSIycZ/JQ30k1BBM8m6+Q+9irEawmUC49UbG5Fd 49tqmgM55dX9nr9kWDxE5J0z8/kwrpwVMvf1oQzUO1t9DUD5VnLhIV3bq2Tkd7XM SIFQewYSH1X43vXgVr5muJIY9wdCnUro9+oC51s7zlveoOCIVLgfm65KENek7qat geDFG33fnh7ktnZwntFMQMJcTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHcZydR/ 0a6fpa/hWlxNeWKsYNflMB8GA1UdIwQYMBaAFPPaUf6AvNqXCHUl4gRiHqn1V0GZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0NEQS80OUIyN0Q4QTA1 NEQxMUVFOURGQzE2MjRDNEY5QUUwMi84OXBSX29DODJwY0lkU1hpQkdJZXFmVlhR WmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5cFJfb0M4MnBjSWRTWGlCR0llcWZWWFFaay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 N0NEQS80OUIyN0Q4QTA1NEQxMUVFOURGQzE2MjRDNEY5QUUwMi84OXBSX29DODJw Y0lkU1hpQkdJZXFmVlhRWmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/layXb/H66RVH+8DwQq+UHlypPkynvv1ZZjDAuhvfarOrphoJDxh6 4kd2mRjo6Q3FOxebYpMK1aY0TwTC6V1W4yzNFmuE9yF0PScwIUSOd850spTHjOCA p95+tnwpncmg8qwyeva/jRD3yiwtBDbohGvM8gN5Lr7djtyMRITCkzVaY5Uae8Bc IDVh+aScbG55lwW5XsVZsDt6qdhfG77hGMHyTMBG7XApcs0BqwlePMqxw2GTnJok eNcRphCGTZvWOYcE+8ZpHrIAoOmYlXSz1NLl8q8/dkEh188ocaoDDtXmd0LeAg6O 4dhPPaB1wMDWYsx1W7YnlGM9+BCKTn3v -----END CERTIFICATE-----Generated at Fri Sep 19 00:57:38 2025 by rpki-client