$ rpki-client -vvf rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft File: 909zX9xaW5M28yTDLLpVjrvSjZc.mft (raw, json) Hash identifier: Q1V2mnGs8vDBG4XCv7ozaunYuTbVx227u3qas3+jbjY= Subject key identifier: 49:C2:CB:5D:C4:4B:D1:0F:82:A6:56:A9:03:BA:EF:CE:FA:D0:F8:1A Authority key identifier: F7:4F:73:5F:DC:5A:5B:93:36:F3:24:C3:2C:BA:55:8E:BB:D2:8D:97 Certificate issuer: /CN=A915123C/serialNumber=F74F735FDC5A5B9336F324C32CBA558EBBD28D97 Certificate serial: 12A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft Manifest number: 12A1 Signing time: Sun 24 Aug 2025 17:02:44 +0000 Manifest this update: Sun 24 Aug 2025 17:02:44 +0000 Manifest next update: Sun 31 Aug 2025 17:02:44 +0000 Files and hashes: 1: 909zX9xaW5M28yTDLLpVjrvSjZc.crl (hash: 5uC5k9jwJFMR7Vmo7kxq7HM+TpOekrqnh/WT4SFPbaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.crl rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4769 (0x12a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915123C, serialNumber=F74F735FDC5A5B9336F324C32CBA558EBBD28D97 Validity Not Before: Aug 24 17:02:44 2025 GMT Not After : Aug 31 17:02:44 2025 GMT Subject: CN=68ab45b4-b6e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:df:c6:cf:b5:84:0a:6c:fe:81:63:e4:ef:e4: 0e:a2:37:99:33:32:5f:f9:a9:dd:52:4b:ea:b7:14: 55:9d:ae:73:9a:b9:b1:81:52:10:74:f2:9b:28:c5: c6:d5:72:4c:01:6f:70:b9:72:d1:61:56:72:f4:29: 0a:ba:28:3a:ad:b0:8a:4b:61:42:f0:1b:54:8a:0c: 93:8a:a2:fd:44:84:50:0e:df:36:ec:88:6c:23:c3: af:33:16:01:f6:13:f5:1c:eb:47:0b:0f:5f:3c:b2: cc:49:d1:4e:74:12:53:20:01:29:ad:f4:23:54:24: 89:b4:1c:a5:c7:ec:63:e6:38:f8:4d:66:82:ad:78: 0b:62:ac:15:e6:77:dd:56:04:7f:6f:c3:83:53:15: 1f:b8:42:28:d4:84:bc:2d:9b:c7:c1:5c:25:b7:9b: f1:a2:4e:db:cb:89:13:65:92:a1:be:5f:b6:c5:a9: 47:c4:bc:2f:5f:bc:5b:d0:4e:b7:80:e9:45:f5:8a: 64:e6:70:ed:c7:85:0b:7d:40:66:90:20:9f:ae:20: 57:e2:e4:6b:2d:80:26:d2:76:6c:b8:f9:09:ad:25: 5a:03:5e:ee:60:9f:3f:5a:e5:e0:ce:38:e5:20:9d: 3a:7b:db:15:f7:9c:42:4f:68:db:2b:c2:4f:e4:2c: 55:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:C2:CB:5D:C4:4B:D1:0F:82:A6:56:A9:03:BA:EF:CE:FA:D0:F8:1A X509v3 Authority Key Identifier: keyid:F7:4F:73:5F:DC:5A:5B:93:36:F3:24:C3:2C:BA:55:8E:BB:D2:8D:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/909zX9xaW5M28yTDLLpVjrvSjZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915123C/68F53F32CB3E11E8882CDA3AC4F9AE02/909zX9xaW5M28yTDLLpVjrvSjZc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:8b:9a:66:8d:61:ee:2b:1e:7c:79:fc:aa:70:ee:18:ce:e8: 73:02:75:5d:b3:0a:a8:33:fb:71:67:f4:0f:c3:74:e1:81:96: c7:1f:61:ad:60:9c:65:0d:df:ff:b4:09:e8:3e:88:4c:e5:4f: 52:ca:ce:d2:bf:a1:a6:48:f8:1d:12:64:91:5a:4f:ff:e6:59: bd:08:6a:91:24:e3:ba:1b:a2:49:a6:1b:99:63:8f:6a:35:9b: 17:65:b6:91:73:9c:03:17:c7:f9:00:05:8d:87:6d:dd:02:42: bd:9c:00:77:2b:25:55:e4:a8:5f:8a:2c:89:8f:7b:27:59:85: 0a:76:ee:6c:79:86:38:8b:9f:9e:2f:8b:11:54:ce:16:4b:83: 22:b1:f2:18:5f:c7:ff:3b:d6:b3:24:79:5e:e9:34:90:49:3e: ca:0f:8f:a4:5d:43:40:0a:e0:73:c9:72:2e:46:c5:72:01:f3: 01:c3:89:92:cc:e0:f8:f2:53:8a:5a:41:3e:02:e2:d2:f2:ed: 87:65:1d:2d:24:ae:3d:ff:db:5e:8e:51:00:d7:5f:ff:ce:e3: 53:07:79:ef:57:f7:b2:33:f8:2b:73:14:40:55:09:34:e5:ca: 20:22:a4:a0:f5:e3:4e:3b:a3:84:68:c9:6a:8b:b2:7e:2b:b2: e3:db:2e:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEqEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyM0MxMTAvBgNVBAUTKEY3NEY3MzVGREM1QTVCOTMzNkYzMjRDMzJDQkE1NThF QkJEMjhEOTcwHhcNMjUwODI0MTcwMjQ0WhcNMjUwODMxMTcwMjQ0WjAYMRYwFAYD VQQDEw02OGFiNDViNC1iNmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3N/Gz7WECmz+gWPk7+QOojeZMzJf+andUkvqtxRVna5zmrmxgVIQdPKbKMXG 1XJMAW9wuXLRYVZy9CkKuig6rbCKS2FC8BtUigyTiqL9RIRQDt827IhsI8OvMxYB 9hP1HOtHCw9fPLLMSdFOdBJTIAEprfQjVCSJtBylx+xj5jj4TWaCrXgLYqwV5nfd VgR/b8ODUxUfuEIo1IS8LZvHwVwlt5vxok7by4kTZZKhvl+2xalHxLwvX7xb0E63 gOlF9Ypk5nDtx4ULfUBmkCCfriBX4uRrLYAm0nZsuPkJrSVaA17uYJ8/WuXgzjjl IJ06e9sV95xCT2jbK8JP5CxVGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEnCy13E S9EPgqZWqQO678760PgaMB8GA1UdIwQYMBaAFPdPc1/cWluTNvMkwyy6VY670o2X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTIzQy82OEY1M0YzMkNC M0UxMUU4ODgyQ0RBM0FDNEY5QUUwMi85MDl6WDl4YVc1TTI4eVRETExwVmpydlNq WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkwOXpYOXhhVzVNMjh5VERMTHBWanJ2U2paYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTIzQy82OEY1M0YzMkNCM0UxMUU4ODgyQ0RBM0FDNEY5QUUwMi85MDl6WDl4YVc1 TTI4eVRETExwVmpydlNqWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPi5pmjWHuKx58efyqcO4YzuhzAnVdswqoM/txZ/QPw3ThgZbHH2Gt YJxlDd//tAnoPohM5U9Sys7Sv6GmSPgdEmSRWk//5lm9CGqRJOO6G6JJphuZY49q NZsXZbaRc5wDF8f5AAWNh23dAkK9nAB3KyVV5KhfiiyJj3snWYUKdu5seYY4i5+e L4sRVM4WS4MisfIYX8f/O9azJHle6TSQST7KD4+kXUNACuBzyXIuRsVyAfMBw4mS zOD48lOKWkE+AuLS8u2HZR0tJK49/9tejlEA11//zuNTB3nvV/eyM/grcxRAVQk0 5cogIqSg9eNOO6OEaMlqi7J+K7Lj2y4p -----END CERTIFICATE-----Generated at Sun Aug 24 22:07:12 2025 by rpki-client