$ rpki-client -vvf rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft File: _U2MY5rcFYR8e0kRFZ3nG9gTk64.mft (raw, json) Hash identifier: wVvAT1HiO1N0DJ95EavhQG2kyb6oTuLj+orIuDFFY3Q= Subject key identifier: FE:CB:31:70:B2:52:F9:64:9A:0C:DE:25:BB:32:26:77:3C:45:6C:97 Authority key identifier: FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE Certificate issuer: /CN=A9152462/serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Certificate serial: 0849 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft Manifest number: 0843 Signing time: Thu 18 Sep 2025 20:59:04 +0000 Manifest this update: Thu 18 Sep 2025 20:59:04 +0000 Manifest next update: Thu 25 Sep 2025 20:59:04 +0000 Files and hashes: 1: _U2MY5rcFYR8e0kRFZ3nG9gTk64.crl (hash: 97NTwaey+QoaqAQJ6JvuDSPog9CMZMUFvWFEXFJAu38=) 2: 4149D206DC4711EA80D5D916C4F9AE02.roa (hash: fmTA3xXjU3MtioARHLhk0XmrYZWzaoGTX30tUFAbkPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:43:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2121 (0x849) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152462, serialNumber=FD4D8C639ADC15847C7B4911159DE71BD81393AE Validity Not Before: Sep 18 20:59:04 2025 GMT Not After : Sep 25 20:59:04 2025 GMT Subject: CN=68cc7298-b7d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:96:bd:82:b2:06:1f:b4:8d:ff:0d:fb:69:fc: 07:37:ee:84:7f:f2:a9:da:d4:1a:32:f1:90:23:78: e4:8f:e9:2b:ee:5b:c3:7a:95:e4:2c:78:a4:23:5a: 6c:44:2b:cb:6a:83:12:d4:0c:05:ca:13:f5:76:7b: e5:46:6d:88:d1:88:51:f5:27:ae:b5:1a:a9:ca:1c: a0:69:a9:4f:92:3f:e7:4b:2a:c0:bf:b9:ff:26:9e: 9b:5c:46:e1:15:f4:ee:7b:e5:f5:15:b4:b1:3f:0f: 1f:0d:45:86:e3:34:97:ff:39:be:b5:94:6d:d7:4d: 53:51:b7:f7:1b:f3:93:f9:de:14:a1:c7:66:5d:96: 4c:bd:bc:d9:b6:7a:90:c0:8f:ce:2a:e9:cb:89:9c: e5:50:cb:eb:ac:5d:5c:2c:83:45:36:46:5e:9f:4e: fa:a3:33:fc:2a:af:9e:e3:45:40:de:41:d0:bb:9e: d7:a6:c6:fc:be:14:d2:8e:87:ba:d7:0f:63:8b:c7: 78:c7:e9:da:30:dd:5e:0b:ee:f9:f3:94:85:62:f6: c6:61:5b:72:2b:56:bf:46:b7:b2:da:6a:8c:66:da: 52:09:aa:f2:ea:64:3d:15:c5:9d:84:cc:63:17:cd: 68:74:3a:6e:22:2d:15:5c:0d:4f:91:13:39:5e:6b: b8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:CB:31:70:B2:52:F9:64:9A:0C:DE:25:BB:32:26:77:3C:45:6C:97 X509v3 Authority Key Identifier: keyid:FD:4D:8C:63:9A:DC:15:84:7C:7B:49:11:15:9D:E7:1B:D8:13:93:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U2MY5rcFYR8e0kRFZ3nG9gTk64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152462/32C757E6DC4511EA86A73713C4F9AE02/_U2MY5rcFYR8e0kRFZ3nG9gTk64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:3d:0a:26:5a:e9:a2:34:19:ff:f0:27:43:75:81:92:92:63: 2a:1c:9b:0b:ea:6c:42:9a:03:cd:28:b2:62:2e:8a:b0:d9:15: d0:f8:28:72:0b:ac:29:c9:c4:bf:d8:4d:24:4d:06:30:c3:94: 38:65:7e:74:b4:c8:32:1d:50:83:dc:bf:39:60:c3:f9:f5:3a: 1e:f5:dc:ff:68:4d:b2:ab:2a:8b:b6:6b:9e:03:3a:b3:b5:dc: ac:b4:ce:75:9e:a7:80:cd:39:60:4a:f4:2b:76:1e:79:5d:62: d5:6f:75:44:50:91:80:1a:c7:fc:5d:3f:58:07:9e:3e:3c:f2: 81:2f:1a:79:e6:3a:84:e4:5f:99:1a:5f:6c:c5:79:9d:b9:ef: b1:21:f2:32:6d:42:4c:73:4c:79:32:d2:52:09:84:ab:77:f9: 92:4b:78:63:c2:5a:24:47:40:ac:0e:c1:b8:75:22:91:b3:d7: 32:e6:0a:90:cc:ef:9d:0e:42:84:13:f6:ad:4d:ac:58:56:b8: a3:a5:d7:d5:48:5e:99:d2:d3:b6:eb:e2:b0:ad:af:9b:ec:e8: da:4a:f8:22:bb:8d:98:23:62:17:7b:1a:c6:d9:98:1b:89:18: 9a:e4:1f:f7:e3:f2:8a:f2:19:79:0e:c9:a0:47:04:93:f6:c1: 71:9d:a8:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0NjIxMTAvBgNVBAUTKEZENEQ4QzYzOUFEQzE1ODQ3QzdCNDkxMTE1OURFNzFC RDgxMzkzQUUwHhcNMjUwOTE4MjA1OTA0WhcNMjUwOTI1MjA1OTA0WjAYMRYwFAYD VQQDEw02OGNjNzI5OC1iN2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJa9grIGH7SN/w37afwHN+6Ef/Kp2tQaMvGQI3jkj+kr7lvDepXkLHikI1ps RCvLaoMS1AwFyhP1dnvlRm2I0YhR9SeutRqpyhygaalPkj/nSyrAv7n/Jp6bXEbh FfTue+X1FbSxPw8fDUWG4zSX/zm+tZRt101TUbf3G/OT+d4UocdmXZZMvbzZtnqQ wI/OKunLiZzlUMvrrF1cLINFNkZen076ozP8Kq+e40VA3kHQu57Xpsb8vhTSjoe6 1w9ji8d4x+naMN1eC+7585SFYvbGYVtyK1a/Rrey2mqMZtpSCary6mQ9FcWdhMxj F81odDpuIi0VXA1PkRM5Xmu4XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP7LMXCy UvlkmgzeJbsyJnc8RWyXMB8GA1UdIwQYMBaAFP1NjGOa3BWEfHtJERWd5xvYE5Ou MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjQ2Mi8zMkM3NTdFNkRD NDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZUjhlMGtSRlozbkc5Z1Rr NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19VMk1ZNXJjRllSOGUwa1JGWjNuRzlnVGs2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjQ2Mi8zMkM3NTdFNkRDNDUxMUVBODZBNzM3MTNDNEY5QUUwMi9fVTJNWTVyY0ZZ UjhlMGtSRlozbkc5Z1RrNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGPQomWumiNBn/8CdDdYGSkmMqHJsL6mxCmgPNKLJiLoqw2RXQ+Chy C6wpycS/2E0kTQYww5Q4ZX50tMgyHVCD3L85YMP59Toe9dz/aE2yqyqLtmueAzqz tdystM51nqeAzTlgSvQrdh55XWLVb3VEUJGAGsf8XT9YB54+PPKBLxp55jqE5F+Z Gl9sxXmdue+xIfIybUJMc0x5MtJSCYSrd/mSS3hjwlokR0CsDsG4dSKRs9cy5gqQ zO+dDkKEE/atTaxYVrijpdfVSF6Z0tO26+Kwra+b7OjaSvgiu42YI2IXexrG2Zgb iRia5B/34/KK8hl5DsmgRwST9sFxnaiv -----END CERTIFICATE-----Generated at Thu Sep 18 22:12:40 2025 by rpki-client