$ rpki-client -vvf rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft File: dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft (raw, json) Hash identifier: unpbiSqgO4fGFtt5tFqQvQbtoypm4E4rdmJD4TanhG4= Subject key identifier: 52:8A:F8:52:9C:1C:A9:92:01:E0:EA:EE:26:91:79:1A:FB:D9:D1:57 Authority key identifier: 76:9D:44:D9:B4:1C:BB:CF:C5:36:71:3B:9B:95:28:F6:CA:B8:7C:5C Certificate issuer: /CN=A9150733/serialNumber=769D44D9B41CBBCFC536713B9B9528F6CAB87C5C Certificate serial: 01A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft Manifest number: 0CFB Signing time: Thu 18 Sep 2025 19:19:32 +0000 Manifest this update: Thu 18 Sep 2025 19:19:31 +0000 Manifest next update: Thu 25 Sep 2025 19:19:31 +0000 Files and hashes: 1: dp1E2bQcu8_FNnE7m5Uo9sq4fFw.crl (hash: O5feCBRk/fzuGnM6597ZZEqBcBf45CB1VwaypMr5J2g=) 2: DC41F9C4214411EEBC685C79C4F9AE02.roa (hash: EII0j0htPqZRd+8Muval63G6bvgUY1532bbGJQef7wo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.crl rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 19:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 416 (0x1a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150733, serialNumber=769D44D9B41CBBCFC536713B9B9528F6CAB87C5C Validity Not Before: Sep 18 19:19:31 2025 GMT Not After : Sep 25 19:19:31 2025 GMT Subject: CN=68cc5b43-3760 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:4e:71:29:29:2a:8b:5b:ee:58:70:83:5f:ad: da:ba:70:aa:df:04:dc:c6:be:37:28:07:1f:f3:70: d3:37:5a:28:23:15:7c:ec:33:0b:f6:81:c7:d8:f2: 88:8c:9d:ac:b1:1a:d5:9e:a3:9c:71:38:78:83:dc: 6b:3a:a8:72:5f:54:2e:1f:bd:82:65:08:42:f8:6d: c6:18:b0:64:1d:c8:09:de:51:38:08:ad:c8:3e:71: d9:a2:b6:52:d9:6d:b1:10:aa:e4:7f:9e:b6:9b:67: ce:b3:2c:8f:c9:a6:f7:7a:07:7c:a9:b0:17:6e:62: 0a:62:15:89:f9:6d:b5:48:2e:fa:c2:d9:96:ba:57: 22:29:12:db:31:81:3b:f2:f5:90:1e:67:7a:d2:cc: 8a:c4:1f:d9:c9:b4:9e:aa:65:1f:54:f8:74:9c:17: dd:1b:8e:71:14:9d:d4:f2:9a:19:90:76:34:a5:a3: c7:0d:62:c1:ab:82:52:5e:64:a4:54:95:96:24:d5: 0c:9a:68:16:cb:1d:e9:e7:4f:ba:4a:15:a3:2f:4d: 8c:41:e1:ba:20:be:6d:67:51:36:c2:0b:b5:d2:cc: b0:b4:1f:e9:0b:02:47:fe:9e:74:83:73:d7:35:67: 72:4c:3a:11:8c:90:e9:68:c1:b7:cd:7f:f9:73:90: 21:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:8A:F8:52:9C:1C:A9:92:01:E0:EA:EE:26:91:79:1A:FB:D9:D1:57 X509v3 Authority Key Identifier: keyid:76:9D:44:D9:B4:1C:BB:CF:C5:36:71:3B:9B:95:28:F6:CA:B8:7C:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150733/217868CE3DB511EAA6491312C4F9AE02/dp1E2bQcu8_FNnE7m5Uo9sq4fFw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:c4:3f:0e:98:7a:38:17:7b:67:4a:0c:29:da:dd:59:b3:fe: 48:53:2c:22:cd:ab:93:ff:70:de:92:39:ce:16:b4:c1:dd:37: 78:e8:30:f8:48:2b:50:27:b7:b7:4d:a1:88:cc:e7:3e:fe:45: e6:a1:06:73:00:7d:10:78:3c:11:0a:9e:e9:e1:24:f7:38:46: 11:3d:3f:6d:af:b3:4f:ad:52:8a:9b:b0:2f:21:9b:34:70:be: 08:59:54:38:2f:49:cb:39:07:63:9e:55:b9:67:8d:cd:49:61: 7a:85:ac:44:92:68:ce:66:b4:6b:9f:f7:14:36:27:0a:18:d4: 00:45:af:aa:fa:81:60:9c:ba:36:82:53:d7:b2:2d:13:58:c6: 9b:93:f4:4b:f5:e4:cb:41:b8:57:e4:d6:b9:6a:20:0c:31:d8: 56:5c:cf:23:88:b2:29:a0:b6:33:da:38:5f:ed:89:b4:57:bd: 1d:cf:be:37:68:26:23:ed:b2:c0:bc:92:15:4f:de:38:eb:79: 0a:58:55:ab:f4:8b:fd:ca:06:87:fc:41:7b:e8:34:57:5f:1f: b7:b6:c1:94:b3:5e:2a:91:6c:f6:d5:9f:52:1a:0c:2d:3f:1a: 67:ae:a9:bd:83:99:59:80:2a:44:c8:eb:9a:9e:33:31:6c:9e: 6a:57:c2:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA3MzMxMTAvBgNVBAUTKDc2OUQ0NEQ5QjQxQ0JCQ0ZDNTM2NzEzQjlCOTUyOEY2 Q0FCODdDNUMwHhcNMjUwOTE4MTkxOTMxWhcNMjUwOTI1MTkxOTMxWjAYMRYwFAYD VQQDEw02OGNjNWI0My0zNzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7U5xKSkqi1vuWHCDX63aunCq3wTcxr43KAcf83DTN1ooIxV87DML9oHH2PKI jJ2ssRrVnqOccTh4g9xrOqhyX1QuH72CZQhC+G3GGLBkHcgJ3lE4CK3IPnHZorZS 2W2xEKrkf562m2fOsyyPyab3egd8qbAXbmIKYhWJ+W21SC76wtmWulciKRLbMYE7 8vWQHmd60syKxB/ZybSeqmUfVPh0nBfdG45xFJ3U8poZkHY0paPHDWLBq4JSXmSk VJWWJNUMmmgWyx3p50+6ShWjL02MQeG6IL5tZ1E2wgu10sywtB/pCwJH/p50g3PX NWdyTDoRjJDpaMG3zX/5c5AhCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFKK+FKc HKmSAeDq7iaReRr72dFXMB8GA1UdIwQYMBaAFHadRNm0HLvPxTZxO5uVKPbKuHxc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDczMy8yMTc4NjhDRTNE QjUxMUVBQTY0OTEzMTJDNEY5QUUwMi9kcDFFMmJRY3U4X0ZObkU3bTVVbzlzcTRm RncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RwMUUyYlFjdThfRk5uRTdtNVVvOXNxNGZGdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MDczMy8yMTc4NjhDRTNEQjUxMUVBQTY0OTEzMTJDNEY5QUUwMi9kcDFFMmJRY3U4 X0ZObkU3bTVVbzlzcTRmRncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCixD8OmHo4F3tnSgwp2t1Zs/5IUywizauT/3DekjnOFrTB3Td46DD4 SCtQJ7e3TaGIzOc+/kXmoQZzAH0QeDwRCp7p4ST3OEYRPT9tr7NPrVKKm7AvIZs0 cL4IWVQ4L0nLOQdjnlW5Z43NSWF6haxEkmjOZrRrn/cUNicKGNQARa+q+oFgnLo2 glPXsi0TWMabk/RL9eTLQbhX5Na5aiAMMdhWXM8jiLIpoLYz2jhf7Ym0V70dz743 aCYj7bLAvJIVT94463kKWFWr9Iv9ygaH/EF76DRXXx+3tsGUs14qkWz21Z9SGgwt Pxpnrqm9g5lZgCpEyOuanjMxbJ5qV8Lu -----END CERTIFICATE-----Generated at Thu Sep 18 23:27:44 2025 by rpki-client