$ rpki-client -vvf rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.mft File: mmZSAdYWDzHXa50heh3_6tEsuoI.mft (raw, json) Hash identifier: YukQ3mvmW7cvUvsaC8ObxvGExXYUMgyC4Dgjy1nlV0Y= Subject key identifier: D1:08:D5:D9:C6:28:5D:2C:18:F7:D1:6D:EA:40:64:8F:8C:21:8D:04 Authority key identifier: 9A:66:52:01:D6:16:0F:31:D7:6B:9D:21:7A:1D:FF:EA:D1:2C:BA:82 Certificate issuer: /CN=A915180C/serialNumber=9A665201D6160F31D76B9D217A1DFFEAD12CBA82 Certificate serial: 1E0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mmZSAdYWDzHXa50heh3_6tEsuoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.mft Manifest number: 1DFE Signing time: Thu 18 Sep 2025 16:12:31 +0000 Manifest this update: Thu 18 Sep 2025 16:12:31 +0000 Manifest next update: Thu 25 Sep 2025 16:12:31 +0000 Files and hashes: 1: mmZSAdYWDzHXa50heh3_6tEsuoI.crl (hash: CWb4GxHjAj9jmtv2LUkws+vrz8csojrpDoNopDSi/+E=) 2: 5F313E6A99D611E6BB89D557C4F9AE02.roa (hash: E6FRFgy91DX39QwXhd6FNmc9ZicG2jWRbQwdVUf8ghA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.crl rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mmZSAdYWDzHXa50heh3_6tEsuoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:12:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7692 (0x1e0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915180C, serialNumber=9A665201D6160F31D76B9D217A1DFFEAD12CBA82 Validity Not Before: Sep 18 16:12:31 2025 GMT Not After : Sep 25 16:12:31 2025 GMT Subject: CN=68cc2f6f-e83a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e7:39:71:16:86:b2:f7:36:f3:4f:b7:17:ec: 97:27:81:b2:3d:0d:db:48:64:26:b6:1c:3a:56:ef: ec:e5:4b:4d:95:2c:24:7a:54:5b:b6:3d:85:e2:58: 43:46:2b:3a:e3:d8:05:3d:1b:9f:bf:48:6a:48:cc: 49:23:3e:06:b4:6e:4c:bd:a5:b0:03:a8:c3:a4:eb: 5c:b7:81:f2:77:b6:ef:4d:9a:83:cc:0d:5c:a8:18: b1:37:d2:58:c8:0a:f1:31:3a:7a:7a:bb:e9:34:ff: 52:16:45:aa:a7:cf:e2:cc:c3:37:2a:f0:1b:3f:02: 67:83:d7:66:00:4c:9b:e5:6d:32:42:54:9d:ce:5f: 4d:de:32:aa:ba:99:ee:5c:f0:97:11:4f:c5:fa:83: f1:01:20:9b:1e:28:54:f9:7e:ae:2b:1b:86:a8:fd: 02:9d:e5:1d:b1:f2:12:5b:d5:a4:1c:48:80:16:7d: 42:71:c8:38:06:2e:d0:7d:07:0c:79:08:80:52:7f: 75:30:8a:73:fc:71:fa:61:31:55:ff:f3:45:2b:2a: 59:11:f7:7d:5d:8b:0c:c3:bb:4a:78:2e:6f:66:67: 18:10:8f:a4:be:a9:9b:1b:bf:05:9f:6a:92:ac:d6: 4f:cb:b9:f3:78:a5:f4:a9:65:b2:2c:26:b0:69:af: 34:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:08:D5:D9:C6:28:5D:2C:18:F7:D1:6D:EA:40:64:8F:8C:21:8D:04 X509v3 Authority Key Identifier: keyid:9A:66:52:01:D6:16:0F:31:D7:6B:9D:21:7A:1D:FF:EA:D1:2C:BA:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mmZSAdYWDzHXa50heh3_6tEsuoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915180C/9A7CD3EA96B511E684F73411C4F9AE02/mmZSAdYWDzHXa50heh3_6tEsuoI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:bf:95:fa:9a:6e:c7:f0:69:85:d5:fc:9a:7e:75:97:8c:05: 9d:e2:ee:1a:64:c8:31:f0:f1:ce:e7:8c:8b:15:d1:93:b8:ca: df:a2:3a:1b:51:64:0f:19:de:01:6d:99:c1:96:4d:c9:0f:89: da:81:36:af:72:3c:93:fc:b0:12:81:22:aa:2f:9d:57:3b:3d: 2a:8c:47:2c:18:89:88:44:a6:a4:05:7a:cd:fe:c4:4e:92:20: 52:7e:29:15:ab:f6:24:03:a5:f0:09:a9:b3:5f:80:4e:2a:b7: 6a:04:d0:9d:2c:14:ed:5e:35:a9:c8:5c:62:3f:4a:18:aa:19: 89:d7:50:09:45:7b:04:1a:54:b1:83:45:d2:f9:7b:ec:e9:be: ff:69:e7:d5:b8:2b:8a:22:60:1e:8f:71:3b:8f:76:47:30:13: 8f:81:51:90:d8:f5:b6:f1:40:42:ff:39:37:69:c4:d3:f3:86: da:45:74:01:5a:cd:84:e4:8d:e5:f9:91:bb:25:73:8f:f8:b9: 8c:76:c3:d2:2c:19:fb:ac:c4:2c:93:51:9f:78:a2:a6:28:11: b1:e2:99:bb:e1:0a:35:14:45:ef:87:fa:6a:0e:36:6b:49:e9: 7e:0d:f2:ff:3e:82:8b:1e:12:58:72:e8:74:fa:e4:43:ac:2b: 31:5c:ba:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE4MEMxMTAvBgNVBAUTKDlBNjY1MjAxRDYxNjBGMzFENzZCOUQyMTdBMURGRkVB RDEyQ0JBODIwHhcNMjUwOTE4MTYxMjMxWhcNMjUwOTI1MTYxMjMxWjAYMRYwFAYD VQQDEw02OGNjMmY2Zi1lODNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzec5cRaGsvc280+3F+yXJ4GyPQ3bSGQmthw6Vu/s5UtNlSwkelRbtj2F4lhD Ris649gFPRufv0hqSMxJIz4GtG5MvaWwA6jDpOtct4Hyd7bvTZqDzA1cqBixN9JY yArxMTp6ervpNP9SFkWqp8/izMM3KvAbPwJng9dmAEyb5W0yQlSdzl9N3jKqupnu XPCXEU/F+oPxASCbHihU+X6uKxuGqP0CneUdsfISW9WkHEiAFn1Cccg4Bi7QfQcM eQiAUn91MIpz/HH6YTFV//NFKypZEfd9XYsMw7tKeC5vZmcYEI+kvqmbG78Fn2qS rNZPy7nzeKX0qWWyLCawaa80kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEI1dnG KF0sGPfRbepAZI+MIY0EMB8GA1UdIwQYMBaAFJpmUgHWFg8x12udIXod/+rRLLqC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTgwQy85QTdDRDNFQTk2 QjUxMUU2ODRGNzM0MTFDNEY5QUUwMi9tbVpTQWRZV0R6SFhhNTBoZWgzXzZ0RXN1 b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21tWlNBZFlXRHpIWGE1MGhlaDNfNnRFc3VvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTgwQy85QTdDRDNFQTk2QjUxMUU2ODRGNzM0MTFDNEY5QUUwMi9tbVpTQWRZV0R6 SFhhNTBoZWgzXzZ0RXN1b0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApv5X6mm7H8GmF1fyafnWXjAWd4u4aZMgx8PHO54yLFdGTuMrfojob UWQPGd4BbZnBlk3JD4nagTavcjyT/LASgSKqL51XOz0qjEcsGImIRKakBXrN/sRO kiBSfikVq/YkA6XwCamzX4BOKrdqBNCdLBTtXjWpyFxiP0oYqhmJ11AJRXsEGlSx g0XS+Xvs6b7/aefVuCuKImAej3E7j3ZHMBOPgVGQ2PW28UBC/zk3acTT84baRXQB Ws2E5I3l+ZG7JXOP+LmMdsPSLBn7rMQsk1GfeKKmKBGx4pm74Qo1FEXvh/pqDjZr Sel+DfL/PoKLHhJYcuh0+uRDrCsxXLq3 -----END CERTIFICATE-----Generated at Thu Sep 18 21:37:35 2025 by rpki-client