$ rpki-client -vvf rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft File: o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft (raw, json) Hash identifier: wBxzdpauef2YaekvSAkwaAeld5h7iUJ3+cVu0ZvoWy0= Subject key identifier: FD:E1:1C:9C:F7:6B:4B:86:03:C2:59:16:DD:A4:A1:28:49:72:90:F5 Authority key identifier: A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 Certificate issuer: /CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Certificate serial: 020C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft Manifest number: 0209 Signing time: Wed 17 Sep 2025 02:42:14 +0000 Manifest this update: Wed 17 Sep 2025 02:42:14 +0000 Manifest next update: Wed 24 Sep 2025 02:42:14 +0000 Files and hashes: 1: o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl (hash: EDLTps8E4VjEyXbUT01Bq1tlHu7QSr6JDu4syWYgkyU=) 2: CCCA3842714711EDBB61A87FC4F9AE02.roa (hash: ph/hTIyNCTBKdvnOQ1KHBJ908JBT9ekK4yiE8SJtW4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 02:42:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 524 (0x20c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F6AF, serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Validity Not Before: Sep 17 02:42:14 2025 GMT Not After : Sep 24 02:42:14 2025 GMT Subject: CN=68ca2006-2a62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cb:57:5c:fd:e4:0e:f6:fb:bf:64:35:6c:41: 72:6d:58:ac:48:28:24:cf:37:57:22:ea:b9:11:88: 15:14:32:bd:03:e3:bf:0f:5d:6b:19:9e:a7:3a:17: 50:1c:c6:cc:73:8c:b1:e1:2e:ee:13:0d:e6:95:2d: f5:f6:d3:42:3d:10:7b:d7:64:b8:9c:fa:d7:f4:8e: 11:62:df:ba:2e:ef:52:63:fb:90:be:ed:a8:95:03: 83:b4:4a:cb:03:3b:a3:88:f5:c0:31:11:20:be:e5: 24:9c:b5:dc:a9:1c:68:77:25:ed:73:64:bc:87:ab: ff:c0:36:37:c3:32:25:97:b5:94:f2:77:22:7f:49: 2d:76:96:36:d8:50:d6:3d:45:08:9b:62:4e:c0:0d: ff:91:8b:22:f3:eb:ff:17:8b:f2:76:dc:bd:13:85: 5d:d4:5d:25:66:1f:9c:41:cb:de:9f:94:16:94:72: a4:a6:f5:e7:61:81:d1:90:11:15:2d:dc:d0:6b:de: d8:95:80:d3:43:61:f6:39:c0:81:be:78:8e:73:3d: 52:d4:58:f3:d9:d4:51:df:51:35:85:5c:d3:ce:a9: d6:65:7d:4b:1d:3a:a4:77:01:9e:d1:a1:c9:bb:73: 1d:b7:03:ee:5d:50:9d:03:af:15:c8:da:f6:22:89: c4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:E1:1C:9C:F7:6B:4B:86:03:C2:59:16:DD:A4:A1:28:49:72:90:F5 X509v3 Authority Key Identifier: keyid:A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:cb:2e:04:77:ba:8d:f4:65:6d:bf:88:89:df:f5:15:e7:ad: 7e:42:e2:a0:13:1d:87:ce:c3:3a:62:43:1e:d3:f7:60:cf:31: 86:05:89:ec:4d:0f:9c:61:7f:e1:54:d0:9d:45:08:a9:77:de: 30:5b:24:3e:e1:e3:f1:9e:27:5e:3f:4e:1c:e6:61:0e:3b:56: d4:4f:59:db:e0:00:cc:a6:36:11:f4:ca:ee:8f:1d:c7:d1:bd: 1c:d1:02:f4:b4:36:e7:c6:d5:37:f4:c3:5d:a7:6b:c1:b2:77: f7:54:00:c3:b7:be:88:3b:0e:0c:63:84:72:00:42:98:20:6d: df:51:10:fd:12:26:14:ad:22:73:76:39:1e:0d:27:a8:25:63: 87:81:d1:1b:5d:f2:e3:b6:76:22:81:62:a9:f4:fb:40:fc:16: bf:47:8e:b7:76:c4:62:67:a1:03:48:11:00:da:99:29:bd:1c: 17:d5:73:27:d9:77:ae:de:7a:14:22:30:6b:7b:61:0f:3d:05: 61:84:52:fd:e7:85:f9:52:ed:32:64:d5:d3:2e:22:63:a5:9a: fc:93:a7:74:f6:5e:3f:14:97:52:68:8c:29:68:e6:0c:54:5b: 26:b1:5b:3d:e3:13:5d:c4:9e:a8:11:c7:29:46:6a:3e:54:5a: fe:6c:d8:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2QUYxMTAvBgNVBAUTKEEzRDI1MEM1RDUyQzVBOEFDNjdCQTAyMTg4NEQxOTFB NUQ0QTcxODIwHhcNMjUwOTE3MDI0MjE0WhcNMjUwOTI0MDI0MjE0WjAYMRYwFAYD VQQDEw02OGNhMjAwNi0yYTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwstXXP3kDvb7v2Q1bEFybVisSCgkzzdXIuq5EYgVFDK9A+O/D11rGZ6nOhdQ HMbMc4yx4S7uEw3mlS319tNCPRB712S4nPrX9I4RYt+6Lu9SY/uQvu2olQODtErL AzujiPXAMREgvuUknLXcqRxodyXtc2S8h6v/wDY3wzIll7WU8ncif0ktdpY22FDW PUUIm2JOwA3/kYsi8+v/F4vydty9E4Vd1F0lZh+cQcven5QWlHKkpvXnYYHRkBEV LdzQa97YlYDTQ2H2OcCBvniOcz1S1Fjz2dRR31E1hVzTzqnWZX1LHTqkdwGe0aHJ u3MdtwPuXVCdA68VyNr2IonEowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3hHJz3 a0uGA8JZFt2koShJcpD1MB8GA1UdIwQYMBaAFKPSUMXVLFqKxnugIYhNGRpdSnGC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjZBRi9GNkQ4REE5Qzcx NDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dvckdlNkFoaUUwWkdsMUtj WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285SlF4ZFVzV29yR2U2QWhpRTBaR2wxS2NZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjZBRi9GNkQ4REE5QzcxNDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dv ckdlNkFoaUUwWkdsMUtjWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRyy4Ed7qN9GVtv4iJ3/UV561+QuKgEx2HzsM6YkMe0/dgzzGGBYns TQ+cYX/hVNCdRQipd94wWyQ+4ePxnideP04c5mEOO1bUT1nb4ADMpjYR9Mrujx3H 0b0c0QL0tDbnxtU39MNdp2vBsnf3VADDt76IOw4MY4RyAEKYIG3fURD9EiYUrSJz djkeDSeoJWOHgdEbXfLjtnYigWKp9PtA/Ba/R463dsRiZ6EDSBEA2pkpvRwX1XMn 2Xeu3noUIjBre2EPPQVhhFL954X5Uu0yZNXTLiJjpZr8k6d09l4/FJdSaIwpaOYM VFsmsVs94xNdxJ6oEccpRmo+VFr+bNgH -----END CERTIFICATE-----Generated at Thu Sep 18 21:55:09 2025 by rpki-client