$ rpki-client -vvf rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft File: tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft (raw, json) Hash identifier: CrXmQrQmE8FurhorLz2icSMJIScqDE/kQeYdrL9MBN8= Subject key identifier: 18:15:25:97:42:60:EE:31:5F:1B:6E:92:45:8A:83:ED:CC:CE:70:F3 Authority key identifier: B4:8C:B1:80:82:62:B8:09:9B:87:27:2A:57:6F:FE:DC:19:A3:96:BD Certificate issuer: /CN=A9150CF3/serialNumber=B48CB1808262B8099B87272A576FFEDC19A396BD Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft Manifest number: 03AC Signing time: Wed 17 Sep 2025 02:16:40 +0000 Manifest this update: Wed 17 Sep 2025 02:16:40 +0000 Manifest next update: Wed 24 Sep 2025 02:16:40 +0000 Files and hashes: 1: tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl (hash: t0Kfw6dieaPM3KTH88L4a2fYRlBk1jbO+qz4OLQUFwk=) 2: FDB4B8B4E85211EE83F9ED4BC4F9AE02.roa (hash: SCTf0mwZLUHqFVPegVRVJr7Eh8lVpCyL1GKCV+U6N7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 02:16:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150CF3, serialNumber=B48CB1808262B8099B87272A576FFEDC19A396BD Validity Not Before: Sep 17 02:16:40 2025 GMT Not After : Sep 24 02:16:40 2025 GMT Subject: CN=68ca1a08-71d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:45:fc:b8:d1:f4:e1:68:58:63:27:a4:fe:56: c6:37:c5:f1:04:93:3c:de:63:97:ee:25:b6:11:ec: 1f:d2:3d:21:2d:56:7f:0e:25:8c:a4:a1:63:ca:07: 23:92:33:65:83:52:26:a7:1b:0f:c1:0a:ba:72:27: d3:67:4c:74:da:8d:33:04:ec:a6:0c:7e:bc:5e:18: d2:86:5f:06:c3:7e:77:e6:2e:e7:9b:67:85:ee:56: bf:82:31:cf:8a:a1:83:b9:0d:10:d2:d6:ba:51:00: f0:ed:80:0e:e0:40:b0:b8:cc:b9:e4:cc:4f:c5:f0: 4d:ce:26:d1:f8:db:a0:da:32:42:75:9b:1d:fe:46: b5:16:7a:3b:35:97:3c:ae:4d:d4:f1:56:b2:48:ca: 16:db:1c:8b:0a:0c:aa:bf:81:77:a9:d7:95:1c:a9: 25:74:e0:68:8b:c8:15:c6:78:76:51:51:b0:b5:91: 64:f1:63:a6:68:c6:45:19:01:d0:7b:c0:39:a2:63: a5:a9:64:7f:12:1d:de:4e:be:94:06:f8:e2:d7:a3: de:e5:a6:b4:2d:30:46:de:e3:dd:42:cc:85:19:05: f4:e1:86:d5:0b:24:1b:d1:be:fb:34:14:f3:d3:70: f6:b3:ee:82:6e:06:8a:b8:de:ce:eb:7f:74:18:15: b4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:15:25:97:42:60:EE:31:5F:1B:6E:92:45:8A:83:ED:CC:CE:70:F3 X509v3 Authority Key Identifier: keyid:B4:8C:B1:80:82:62:B8:09:9B:87:27:2A:57:6F:FE:DC:19:A3:96:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIyxgIJiuAmbhycqV2_-3Bmjlr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150CF3/028F9EFE2E8611ED9D2EDC4DC4F9AE02/tIyxgIJiuAmbhycqV2_-3Bmjlr0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:37:a1:a1:1a:c2:77:9d:79:7e:c3:5f:95:f4:44:1c:22:99: e6:69:79:68:18:d3:a4:3a:d9:ec:23:13:48:27:49:9f:d7:a7: ee:f4:e5:8f:f7:9b:83:0d:92:f0:2a:f4:e3:88:d7:8e:f3:41: 7f:42:87:86:10:2a:25:1b:b6:59:25:bb:0c:3c:c0:2a:ac:ce: e5:8c:66:b2:8c:4b:c8:fa:11:0a:35:f4:a7:64:e6:1e:8a:e9: 40:84:c3:7e:37:a0:c8:19:2c:1a:ef:9a:9c:e0:c2:41:4c:c3: 79:a0:5d:31:0f:92:a7:94:f5:5a:cd:d9:2c:66:4c:e1:98:0f: 95:1d:43:85:b9:6f:c5:68:db:b2:bd:19:36:81:fd:84:53:11: 13:81:3d:f3:90:89:86:40:3b:c8:83:69:0a:47:5a:82:1d:45: 1e:92:6a:7c:c0:60:3e:df:a9:5c:66:8e:55:5d:8e:41:d7:4e: 26:45:94:64:a2:2e:6f:2f:86:f8:20:5b:6f:84:f3:18:e4:21: b4:b7:b0:cb:12:f8:46:aa:96:6f:dd:30:e9:3a:26:b0:b4:f7: 0c:a1:29:b3:db:0b:65:20:09:ed:02:41:57:26:ae:fa:b7:c0: f9:60:4a:54:05:dc:bf:9e:b6:bf:ab:10:9b:29:ed:0a:5d:6e: 47:01:20:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBDRjMxMTAvBgNVBAUTKEI0OENCMTgwODI2MkI4MDk5Qjg3MjcyQTU3NkZGRURD MTlBMzk2QkQwHhcNMjUwOTE3MDIxNjQwWhcNMjUwOTI0MDIxNjQwWjAYMRYwFAYD VQQDEw02OGNhMWEwOC03MWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7kX8uNH04WhYYyek/lbGN8XxBJM83mOX7iW2Eewf0j0hLVZ/DiWMpKFjygcj kjNlg1ImpxsPwQq6cifTZ0x02o0zBOymDH68XhjShl8Gw3535i7nm2eF7la/gjHP iqGDuQ0Q0ta6UQDw7YAO4ECwuMy55MxPxfBNzibR+Nug2jJCdZsd/ka1Fno7NZc8 rk3U8VaySMoW2xyLCgyqv4F3qdeVHKkldOBoi8gVxnh2UVGwtZFk8WOmaMZFGQHQ e8A5omOlqWR/Eh3eTr6UBvji16Pe5aa0LTBG3uPdQsyFGQX04YbVCyQb0b77NBTz 03D2s+6CbgaKuN7O6390GBW0uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBgVJZdC YO4xXxtukkWKg+3MznDzMB8GA1UdIwQYMBaAFLSMsYCCYrgJm4cnKldv/twZo5a9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MENGMy8wMjhGOUVGRTJF ODYxMUVEOUQyRURDNERDNEY5QUUwMi90SXl4Z0lKaXVBbWJoeWNxVjJfLTNCbWps cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJeXhnSUppdUFtYmh5Y3FWMl8tM0JtamxyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MENGMy8wMjhGOUVGRTJFODYxMUVEOUQyRURDNERDNEY5QUUwMi90SXl4Z0lKaXVB bWJoeWNxVjJfLTNCbWpscjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgN6GhGsJ3nXl+w1+V9EQcIpnmaXloGNOkOtnsIxNIJ0mf16fu9OWP 95uDDZLwKvTjiNeO80F/QoeGEColG7ZZJbsMPMAqrM7ljGayjEvI+hEKNfSnZOYe iulAhMN+N6DIGSwa75qc4MJBTMN5oF0xD5KnlPVazdksZkzhmA+VHUOFuW/FaNuy vRk2gf2EUxETgT3zkImGQDvIg2kKR1qCHUUekmp8wGA+36lcZo5VXY5B104mRZRk oi5vL4b4IFtvhPMY5CG0t7DLEvhGqpZv3TDpOiawtPcMoSmz2wtlIAntAkFXJq76 t8D5YEpUBdy/nra/qxCbKe0KXW5HASBi -----END CERTIFICATE-----Generated at Fri Sep 19 01:17:36 2025 by rpki-client