$ rpki-client -vvf rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft File: 2UW2DwCc3xVcQp1Aha62z-BrzgA.mft (raw, json) Hash identifier: GaDw8ledJ5NsoCuZWxiQBAroo5ohqtFhLSAFfNpsDu4= Subject key identifier: 0B:AB:3A:45:A4:B9:1D:4B:C4:D4:60:BA:08:37:B5:E9:09:AB:74:71 Authority key identifier: D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 Certificate issuer: /CN=A9149CEF/serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Certificate serial: 04FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft Manifest number: 04F1 Signing time: Fri 19 Sep 2025 00:02:41 +0000 Manifest this update: Fri 19 Sep 2025 00:02:40 +0000 Manifest next update: Fri 26 Sep 2025 00:02:40 +0000 Files and hashes: 1: 2UW2DwCc3xVcQp1Aha62z-BrzgA.crl (hash: bfwRP+MV/F6pWgxRrFiniKsvCLsYyVMfKtW+DLXP+w4=) 2: AFAC764C2C1711EC817C5912C4F9AE02.roa (hash: 4OzF15EHWUJWQROMnU+Ow7V0ACuwuCPbuqKLd0rV0bw=) 3: AF22E83C2C1711EC817C5912C4F9AE02.roa (hash: HFOpeRCt7KhrBfeMokpcxjR3KWcuUKe5Td59DEe/ljE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 00:02:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1275 (0x4fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149CEF, serialNumber=D945B60F009CDF155C429D4085AEB6CFE06BCE00 Validity Not Before: Sep 19 00:02:40 2025 GMT Not After : Sep 26 00:02:40 2025 GMT Subject: CN=68cc9da0-b24d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:27:65:d9:99:e6:98:e3:35:e4:bd:38:7e:4b: 9d:83:62:d6:da:d2:19:7e:e9:92:02:99:8f:85:a4: f5:71:fd:f6:c9:3b:0d:a8:20:7e:5d:3d:1b:9c:80: 6a:b0:95:73:7f:66:9b:c2:e5:91:20:81:3c:39:fb: 0c:c4:62:ae:cb:ae:2f:97:92:31:84:d5:2f:77:ab: 09:26:34:97:9f:74:98:28:bd:4a:13:31:e5:13:c0: f1:f0:73:d8:c8:da:c0:1d:af:18:fa:d1:6b:45:04: 56:ac:a2:ec:63:04:a0:45:b8:ef:c8:00:b9:23:d1: 5a:85:c1:6d:27:de:09:90:ff:7b:4a:78:b7:e1:0a: a6:90:33:fb:f3:4e:b3:6d:53:94:d1:9a:6e:53:72: 40:a2:79:70:95:71:71:5c:dc:50:da:c5:ac:63:40: e3:18:4c:54:a2:76:03:29:7b:fa:40:7a:5a:cc:e9: fd:e9:5d:76:e8:46:3e:c9:2e:60:b6:34:7f:0e:a2: 11:a0:47:29:28:0d:3b:cd:ff:07:2d:92:d7:34:eb: d7:88:54:f6:67:ab:8f:de:e2:13:b0:2b:3e:73:da: 8e:b2:0d:84:99:90:94:ca:db:c1:65:05:28:0d:ab: 3e:77:a1:61:3c:80:aa:e8:99:ee:4c:90:85:bd:25: 6f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:AB:3A:45:A4:B9:1D:4B:C4:D4:60:BA:08:37:B5:E9:09:AB:74:71 X509v3 Authority Key Identifier: keyid:D9:45:B6:0F:00:9C:DF:15:5C:42:9D:40:85:AE:B6:CF:E0:6B:CE:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2UW2DwCc3xVcQp1Aha62z-BrzgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149CEF/C4019D242C1311ECB4580842C4F9AE02/2UW2DwCc3xVcQp1Aha62z-BrzgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:c3:f4:a7:15:a1:8c:c5:f9:8c:39:ae:72:bf:e9:38:e0:79: 41:e3:3d:dc:0e:6a:ea:1d:d2:ee:f9:80:74:a3:d4:9c:87:98: 64:31:ab:2d:20:23:ef:36:e7:a5:1c:54:9f:85:19:f9:dc:ee: cc:e0:45:16:86:06:b9:1e:b3:ca:4e:45:ba:ab:86:f9:c0:0f: b3:a5:0f:c0:dd:35:e2:65:33:80:53:c0:97:44:25:89:67:d6: 89:45:7f:f5:fe:ee:36:9a:c0:84:40:d3:5b:16:b0:1b:b6:95: 1a:42:6c:37:a3:54:4d:0d:d7:0e:b7:f8:bc:2e:a3:a8:bc:98: 93:4c:b8:22:2a:5b:4d:84:5b:a9:c4:ff:31:29:91:01:34:c7: 65:69:76:b5:01:47:a2:47:24:8a:bc:19:8b:12:e7:fc:01:27: 0b:8f:ee:7c:af:a8:75:94:2a:8f:7e:0d:a6:5c:3d:fa:74:cd: 92:29:05:1b:5e:6e:7d:cf:a2:ab:bd:74:a3:1b:6d:25:3f:59: d2:f5:fc:39:8e:a8:6c:e6:07:8e:71:43:0a:23:de:29:73:b6: 43:59:ed:92:ab:68:f1:45:8a:3d:77:6c:00:8a:72:d8:29:4c: b7:1f:0c:e3:d0:bb:8c:0c:74:53:cc:29:53:85:51:87:15:43: f0:e4:26:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDRUYxMTAvBgNVBAUTKEQ5NDVCNjBGMDA5Q0RGMTU1QzQyOUQ0MDg1QUVCNkNG RTA2QkNFMDAwHhcNMjUwOTE5MDAwMjQwWhcNMjUwOTI2MDAwMjQwWjAYMRYwFAYD VQQDEw02OGNjOWRhMC1iMjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSdl2ZnmmOM15L04fkudg2LW2tIZfumSApmPhaT1cf32yTsNqCB+XT0bnIBq sJVzf2abwuWRIIE8OfsMxGKuy64vl5IxhNUvd6sJJjSXn3SYKL1KEzHlE8Dx8HPY yNrAHa8Y+tFrRQRWrKLsYwSgRbjvyAC5I9FahcFtJ94JkP97Sni34QqmkDP7806z bVOU0ZpuU3JAonlwlXFxXNxQ2sWsY0DjGExUonYDKXv6QHpazOn96V126EY+yS5g tjR/DqIRoEcpKA07zf8HLZLXNOvXiFT2Z6uP3uITsCs+c9qOsg2EmZCUytvBZQUo Das+d6FhPICq6JnuTJCFvSVvDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAurOkWk uR1LxNRgugg3tekJq3RxMB8GA1UdIwQYMBaAFNlFtg8AnN8VXEKdQIWuts/ga84A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUNFRi9DNDAxOUQyNDJD MTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4VmNRcDFBaGE2MnotQnJ6 Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJVVzJEd0NjM3hWY1FwMUFoYTYyei1CcnpnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUNFRi9DNDAxOUQyNDJDMTMxMUVDQjQ1ODA4NDJDNEY5QUUwMi8yVVcyRHdDYzN4 VmNRcDFBaGE2MnotQnJ6Z0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbw/SnFaGMxfmMOa5yv+k44HlB4z3cDmrqHdLu+YB0o9Sch5hkMast ICPvNuelHFSfhRn53O7M4EUWhga5HrPKTkW6q4b5wA+zpQ/A3TXiZTOAU8CXRCWJ Z9aJRX/1/u42msCEQNNbFrAbtpUaQmw3o1RNDdcOt/i8LqOovJiTTLgiKltNhFup xP8xKZEBNMdlaXa1AUeiRySKvBmLEuf8AScLj+58r6h1lCqPfg2mXD36dM2SKQUb Xm59z6KrvXSjG20lP1nS9fw5jqhs5geOcUMKI94pc7ZDWe2Sq2jxRYo9d2wAinLY KUy3Hwzj0LuMDHRTzClThVGHFUPw5Can -----END CERTIFICATE-----Generated at Fri Sep 19 09:07:56 2025 by rpki-client