$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft File: -ty5VaOsFGWZfQjySL-GxDNE-3g.mft (raw, json) Hash identifier: d6H03RHCyhphBdKbLZCQKQteX10+iRiVXVrkr0gH2VE= Subject key identifier: E5:05:28:17:BD:C4:34:D9:AE:B3:3D:56:6E:B6:0A:FB:EC:36:65:7C Authority key identifier: FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78 Certificate issuer: /CN=A9148F32/serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78 Certificate serial: 05F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft Manifest number: 05F3 Signing time: Thu 18 Sep 2025 23:15:11 +0000 Manifest this update: Thu 18 Sep 2025 23:15:10 +0000 Manifest next update: Thu 25 Sep 2025 23:15:10 +0000 Files and hashes: 1: -ty5VaOsFGWZfQjySL-GxDNE-3g.crl (hash: CyzGiKlTFyAYBmGx0rlRkjhG3Z3Vb7QHzxgVz61Yg5w=) 2: 4D470362C55811EB981FA987C4F9AE02.roa (hash: wddyNGfZbP1BkMwAL9n/nAwszGpqRHSZopoWbtzoiYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 23:15:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1529 (0x5f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F32, serialNumber=FADCB955A3AC1465997D08F248BF86C43344FB78 Validity Not Before: Sep 18 23:15:10 2025 GMT Not After : Sep 25 23:15:10 2025 GMT Subject: CN=68cc927f-55e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:1e:b1:b6:39:7b:e7:96:50:cd:e6:84:7a:24: 85:b3:4c:40:1a:ff:fb:ad:16:e1:35:41:09:8a:96: e4:d1:21:63:97:c5:a4:42:b9:8d:c0:6b:92:95:6e: f4:67:44:df:d5:36:46:60:df:fa:f2:4e:26:4b:af: d7:c7:dc:a7:12:d0:b1:4f:a3:e5:ad:dd:ff:dc:b2: 00:09:19:52:cd:17:54:eb:7c:63:14:96:c4:0a:ac: d9:f3:13:ef:15:fb:c3:2a:79:d9:80:69:e0:21:d2: f2:e2:5e:de:14:ba:4f:cc:26:41:2c:1c:ba:89:6c: b7:a5:15:f7:b4:7b:72:82:8c:58:a3:6e:2b:64:9e: 61:c6:48:ae:5d:df:8d:4c:ba:75:f5:dd:ac:9d:70: 6a:d5:14:ce:4a:74:d9:c9:51:00:86:3b:d6:a9:69: 41:33:f6:1e:ab:bd:d4:ed:9e:2e:99:75:f4:5c:9d: 63:2d:f6:06:53:e5:af:3e:a1:9e:88:34:35:0e:62: d2:56:52:59:98:99:64:60:42:1d:50:bc:36:9a:f6: 69:c2:73:d9:33:2f:87:08:bc:70:36:46:a9:d1:ea: 75:bc:b2:82:cd:c0:14:14:2f:a1:44:ef:41:be:97: 60:8f:a4:2d:66:6a:13:55:d0:34:17:54:0e:e1:91: 81:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:05:28:17:BD:C4:34:D9:AE:B3:3D:56:6E:B6:0A:FB:EC:36:65:7C X509v3 Authority Key Identifier: keyid:FA:DC:B9:55:A3:AC:14:65:99:7D:08:F2:48:BF:86:C4:33:44:FB:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ty5VaOsFGWZfQjySL-GxDNE-3g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F32/E06475CEC55511EB9AE59E86C4F9AE02/-ty5VaOsFGWZfQjySL-GxDNE-3g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:f3:ee:a6:d6:6a:40:54:68:68:9b:7b:cc:c2:90:36:4c:56: 6c:87:1c:19:b9:1a:13:94:e0:84:c0:9a:ff:c4:da:0f:14:4f: f7:8c:62:44:2b:64:b9:1e:db:88:8e:58:8e:5a:59:0f:6e:37: a1:e6:64:ef:0c:3a:fa:4b:a0:1d:9b:fe:ed:7d:dc:25:f2:f2: f0:06:a0:40:6d:ab:b6:ee:d5:05:b7:99:e8:3f:e9:39:1f:63: 57:d8:88:d7:e7:a7:e3:19:10:af:31:4c:ad:64:6f:ab:93:d7: 2a:92:85:35:d9:d5:9b:99:16:c5:3a:9e:8f:fc:7e:94:78:18: a6:55:af:21:76:47:b5:c8:d6:21:fc:5c:5e:53:92:30:60:37: 0c:93:63:e0:39:1c:6f:d0:2a:a6:98:e2:96:60:6c:7c:2b:a6: 8e:af:b0:e8:db:8c:ba:bb:b0:08:cc:3d:ff:aa:f1:73:2c:0f: 17:13:5a:85:af:5a:f7:2b:0a:83:16:6e:6d:84:3e:e8:81:49: b7:47:71:eb:46:6d:d7:8e:01:28:e0:12:74:73:57:02:8d:14: b2:ed:b1:f1:31:18:5a:3f:ca:62:c5:30:fe:b7:79:b4:69:1c: 77:3f:aa:a1:75:de:e4:2c:41:4b:0c:3d:cc:9c:4a:24:88:53: 83:b2:19:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGMzIxMTAvBgNVBAUTKEZBRENCOTU1QTNBQzE0NjU5OTdEMDhGMjQ4QkY4NkM0 MzM0NEZCNzgwHhcNMjUwOTE4MjMxNTEwWhcNMjUwOTI1MjMxNTEwWjAYMRYwFAYD VQQDEw02OGNjOTI3Zi01NWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoh6xtjl755ZQzeaEeiSFs0xAGv/7rRbhNUEJipbk0SFjl8WkQrmNwGuSlW70 Z0Tf1TZGYN/68k4mS6/Xx9ynEtCxT6Plrd3/3LIACRlSzRdU63xjFJbECqzZ8xPv FfvDKnnZgGngIdLy4l7eFLpPzCZBLBy6iWy3pRX3tHtygoxYo24rZJ5hxkiuXd+N TLp19d2snXBq1RTOSnTZyVEAhjvWqWlBM/Yeq73U7Z4umXX0XJ1jLfYGU+WvPqGe iDQ1DmLSVlJZmJlkYEIdULw2mvZpwnPZMy+HCLxwNkap0ep1vLKCzcAUFC+hRO9B vpdgj6QtZmoTVdA0F1QO4ZGBSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOUFKBe9 xDTZrrM9Vm62CvvsNmV8MB8GA1UdIwQYMBaAFPrcuVWjrBRlmX0I8ki/hsQzRPt4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEYzMi9FMDY0NzVDRUM1 NTUxMUVCOUFFNTlFODZDNEY5QUUwMi8tdHk1VmFPc0ZHV1pmUWp5U0wtR3hETkUt M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10eTVWYU9zRkdXWmZRanlTTC1HeERORS0zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEYzMi9FMDY0NzVDRUM1NTUxMUVCOUFFNTlFODZDNEY5QUUwMi8tdHk1VmFPc0ZH V1pmUWp5U0wtR3hETkUtM2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd8+6m1mpAVGhom3vMwpA2TFZshxwZuRoTlOCEwJr/xNoPFE/3jGJE K2S5HtuIjliOWlkPbjeh5mTvDDr6S6Adm/7tfdwl8vLwBqBAbau27tUFt5noP+k5 H2NX2IjX56fjGRCvMUytZG+rk9cqkoU12dWbmRbFOp6P/H6UeBimVa8hdke1yNYh /FxeU5IwYDcMk2PgORxv0CqmmOKWYGx8K6aOr7Do24y6u7AIzD3/qvFzLA8XE1qF r1r3KwqDFm5thD7ogUm3R3HrRm3XjgEo4BJ0c1cCjRSy7bHxMRhaP8pixTD+t3m0 aRx3P6qhdd7kLEFLDD3MnEokiFODshnK -----END CERTIFICATE-----Generated at Fri Sep 19 02:49:43 2025 by rpki-client