$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft File: 8bck5A2FxU9R1iHHL4lskXXJsRk.mft (raw, json) Hash identifier: HffroP6LrJQbqjoFyeimrqgbuRHT0GxQoqYAP7lZbUE= Subject key identifier: 54:60:36:C6:06:CB:8B:F1:50:FB:65:9F:2A:F8:D6:30:5D:78:A5:D7 Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 0A40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft Manifest number: 0A39 Signing time: Thu 18 Sep 2025 19:57:48 +0000 Manifest this update: Thu 18 Sep 2025 19:57:48 +0000 Manifest next update: Thu 25 Sep 2025 19:57:48 +0000 Files and hashes: 1: 8bck5A2FxU9R1iHHL4lskXXJsRk.crl (hash: rkhpFOm5+Wen7zOIqyRFjBwTUquvvjbIEHNnXg6QS7E=) 2: 354725E6763311EABAE64466C4F9AE02.roa (hash: Cq3lv6Zk0IbD7VRfp29jZdbfC7fvyWbXvi/cd+0Sx0c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 19:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2624 (0xa40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5, serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: Sep 18 19:57:48 2025 GMT Not After : Sep 25 19:57:48 2025 GMT Subject: CN=68cc643c-6638 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:87:90:f7:b1:84:56:ab:d3:34:aa:8a:6b:cb: 17:e5:f3:86:9b:fc:fe:4b:4c:9d:46:63:a5:48:27: 60:0c:c0:56:7d:3c:17:72:74:96:00:ba:2e:bc:5a: 7c:c2:ae:9f:12:b8:c0:18:b6:1d:08:98:fa:96:14: cd:4f:ff:8b:64:e0:30:ef:7c:bb:37:e5:32:2e:40: 31:69:61:10:35:fe:a8:05:e0:09:e8:cd:83:d5:0d: 7f:3f:23:30:27:66:7c:29:df:a3:fd:e5:99:2e:fd: 6f:9a:06:cc:cf:c1:21:20:91:1d:49:09:ef:8d:8c: 42:cd:d7:06:82:7e:89:58:0b:fd:d8:b0:5e:14:e6: 91:43:14:26:cf:c9:59:1a:28:83:54:94:70:fd:b9: 43:9b:89:a3:f7:32:8a:df:5e:91:e9:a4:d1:68:6b: c3:76:18:63:79:0f:e3:44:30:48:48:10:11:a6:56: 5e:d8:89:9a:d2:f2:e1:48:f1:a4:b9:e0:14:63:ed: 72:b6:77:d2:1e:cc:ce:0f:1f:96:85:ed:42:36:72: a9:c1:6f:b8:03:70:ac:4b:9b:23:58:23:07:d4:06: 6d:a0:a7:06:76:9f:d0:2b:0d:91:e9:07:62:42:e2: af:34:c1:2d:8a:ff:ed:50:78:00:de:86:ed:c6:ad: af:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:60:36:C6:06:CB:8B:F1:50:FB:65:9F:2A:F8:D6:30:5D:78:A5:D7 X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:3e:d6:2e:95:12:fe:7a:8c:38:00:04:d3:a4:ab:e7:09:3e: bb:54:41:48:97:9e:f4:bf:1e:28:ab:40:cf:fc:cc:2b:b6:c5: f1:ce:0f:b1:dc:f4:f5:9a:0f:a8:f1:02:fe:5c:c8:51:10:6a: ba:33:bc:b1:e3:52:e1:75:5e:0f:79:ea:d5:0b:be:3f:64:e1: f6:44:23:06:16:d6:22:95:1b:55:f9:77:11:97:7b:0a:fe:20: e0:40:79:55:ec:16:e2:ef:39:63:7a:15:37:26:7b:8e:34:86: 67:f0:2f:76:7e:06:2c:21:e5:c5:bb:cc:9e:79:da:d7:cd:bd: cb:c8:13:2d:2d:8f:ba:7c:05:b0:8f:92:b0:bb:72:8f:93:26: 6d:5a:a9:54:5b:47:4e:62:0a:55:f5:af:f5:ea:2a:9c:b0:4c: 2b:0e:d6:f5:b0:b8:7c:18:58:db:ff:3a:3a:97:9a:78:77:28: 17:57:05:51:4d:2a:ad:44:aa:2c:3f:fc:05:ea:08:37:95:bd: 85:26:3b:be:c8:6c:23:13:41:ea:3e:cc:cc:d1:d2:06:ed:a0: d6:11:88:25:02:3b:07:a0:9c:28:8a:0a:67:2f:c1:31:ce:a9: d9:27:47:cf:f2:65:00:9d:a2:72:65:9f:89:14:de:6c:54:8a: 43:72:b8:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjUwOTE4MTk1NzQ4WhcNMjUwOTI1MTk1NzQ4WjAYMRYwFAYD VQQDEw02OGNjNjQzYy02NjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYeQ97GEVqvTNKqKa8sX5fOGm/z+S0ydRmOlSCdgDMBWfTwXcnSWALouvFp8 wq6fErjAGLYdCJj6lhTNT/+LZOAw73y7N+UyLkAxaWEQNf6oBeAJ6M2D1Q1/PyMw J2Z8Kd+j/eWZLv1vmgbMz8EhIJEdSQnvjYxCzdcGgn6JWAv92LBeFOaRQxQmz8lZ GiiDVJRw/blDm4mj9zKK316R6aTRaGvDdhhjeQ/jRDBISBARplZe2Ima0vLhSPGk ueAUY+1ytnfSHszODx+Whe1CNnKpwW+4A3CsS5sjWCMH1AZtoKcGdp/QKw2R6Qdi QuKvNMEtiv/tUHgA3obtxq2vLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFRgNsYG y4vxUPtlnyr41jBdeKXXMB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTNGNS84MTFCNjA0Qzc2MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhV OVIxaUhITDRsc2tYWEpzUmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrPtYulRL+eow4AATTpKvnCT67VEFIl570vx4oq0DP/MwrtsXxzg+x 3PT1mg+o8QL+XMhREGq6M7yx41LhdV4PeerVC74/ZOH2RCMGFtYilRtV+XcRl3sK /iDgQHlV7Bbi7zljehU3JnuONIZn8C92fgYsIeXFu8yeedrXzb3LyBMtLY+6fAWw j5Kwu3KPkyZtWqlUW0dOYgpV9a/16iqcsEwrDtb1sLh8GFjb/zo6l5p4dygXVwVR TSqtRKosP/wF6gg3lb2FJju+yGwjE0HqPszM0dIG7aDWEYglAjsHoJwoigpnL8Ex zqnZJ0fP8mUAnaJyZZ+JFN5sVIpDcrgK -----END CERTIFICATE-----Generated at Fri Sep 19 00:57:15 2025 by rpki-client