$ rpki-client -vvf rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft File: 0AZhDr1oKXhFffitopEQATORAZI.mft (raw, json) Hash identifier: JPACOO10EKmgVgK9iSuxUsKZN9PXaQzOgAF+DEWN6uc= Subject key identifier: 97:87:EA:FB:40:DF:CF:87:D0:AC:05:05:F4:16:D7:50:BD:F9:06:FD Authority key identifier: D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 Certificate issuer: /CN=A9153A6E/serialNumber=D006610EBD682978457DF8ADA291100133910192 Certificate serial: 0EBD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft Manifest number: 0EAE Signing time: Thu 18 Sep 2025 17:50:51 +0000 Manifest this update: Thu 18 Sep 2025 17:50:50 +0000 Manifest next update: Thu 25 Sep 2025 17:50:50 +0000 Files and hashes: 1: 0AZhDr1oKXhFffitopEQATORAZI.crl (hash: HeRvgxn8bC9jnSzg/F6MPz8NqxmP47XInbBM1jhHX68=) 2: CBD704945F5F11EFB99ABA76C4F9AE02.roa (hash: FyQYY0MU08e6kSNLp/WlThzg7KnlPeR081y6rj64cL8=) 3: 42431FFC8FF711EEA0FC990FC4F9AE02.roa (hash: YFP7eBTQi2LSXP0RAmqpULUvPlrkmlQWua4tsLRcOaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:50:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3773 (0xebd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153A6E, serialNumber=D006610EBD682978457DF8ADA291100133910192 Validity Not Before: Sep 18 17:50:50 2025 GMT Not After : Sep 25 17:50:50 2025 GMT Subject: CN=68cc467b-9cc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ef:e0:0d:e1:d3:45:c4:03:14:0d:41:e1:a2: b9:7a:6d:0d:ae:43:8e:bd:e4:7f:4f:1a:68:34:ad: 6e:85:fa:81:aa:c6:14:61:13:1a:1c:24:97:ee:65: 77:87:d1:1a:b2:07:8b:ca:96:50:ad:c8:16:5c:ae: 8a:03:41:8c:7d:a8:c6:78:50:b2:c9:b5:ff:34:79: 62:9d:25:22:c4:21:84:de:c7:a4:e5:7c:f5:44:f0: a2:0a:5a:b8:85:97:83:0b:46:e3:f7:5d:6d:74:64: c3:fb:d6:0e:93:16:c6:48:36:3c:1c:ce:11:08:73: d1:bc:05:6b:e9:f1:88:48:91:84:76:64:f7:8d:10: cd:d3:d1:01:77:58:93:a6:b2:24:ce:18:04:4e:03: f6:73:1a:55:bf:a2:70:d7:e7:64:ad:33:17:93:78: 85:85:62:64:34:6f:b7:8a:db:92:0c:62:41:7e:e6: bf:6c:ed:ed:d2:67:c5:a0:a0:cd:1f:8e:7a:fa:0c: 2a:c5:72:ed:18:1f:98:bb:39:1d:62:17:b5:9d:b2: e6:e9:28:e4:fb:ef:ed:97:35:25:c7:9a:1b:2e:f8: 0d:54:d3:30:31:d1:34:aa:0c:d2:d3:e7:0d:53:ba: 49:2e:48:4b:aa:0c:61:51:fe:fd:23:48:ca:fa:4b: e9:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:87:EA:FB:40:DF:CF:87:D0:AC:05:05:F4:16:D7:50:BD:F9:06:FD X509v3 Authority Key Identifier: keyid:D0:06:61:0E:BD:68:29:78:45:7D:F8:AD:A2:91:10:01:33:91:01:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0AZhDr1oKXhFffitopEQATORAZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153A6E/79ECE83898BD11E9AC99E74EC4F9AE02/0AZhDr1oKXhFffitopEQATORAZI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:6e:60:cd:5b:af:20:0a:d3:07:25:cc:36:dd:63:65:ea:f0: da:d1:4f:e4:8f:5f:9c:88:ce:b1:c9:8f:26:ba:cb:62:b8:2b: a6:18:69:ff:dd:3d:28:0d:db:7d:a8:b7:13:63:79:5a:f5:64: c9:c4:bd:e0:ff:e2:b9:9e:a1:0b:ca:de:5f:6d:2c:d1:f1:3f: d0:69:0d:40:32:10:17:f0:73:75:d1:b2:f4:fb:53:a2:2d:98: 9c:b2:27:ba:ad:a0:80:27:a0:d0:74:02:4e:c3:a3:18:bb:bf: 1e:21:c0:a0:cf:6f:b7:b6:5a:8a:e4:b5:ca:fd:9b:f9:70:89: b4:7b:d6:a8:74:3a:46:84:15:07:83:6c:26:0f:fa:5a:e8:bf: a2:ea:8c:eb:c4:b6:c9:fe:94:24:ae:d3:62:4a:c2:6b:39:20: 7b:ae:b8:d5:89:68:f1:76:35:50:c5:d3:95:d5:fc:53:df:83: e2:0c:1f:e2:42:ae:09:d5:38:3a:f4:6f:7f:f3:95:be:79:e0: 41:b4:de:ec:15:13:98:f4:40:b4:b4:ae:a8:33:8d:ea:13:c2: f4:c1:4c:5f:c4:9c:7f:39:c6:b0:12:80:45:70:5e:99:a6:a9: 27:9d:b8:14:d0:bb:fd:34:3f:a3:f2:03:6b:d7:fa:f5:46:d2: 5b:3d:e5:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNBNkUxMTAvBgNVBAUTKEQwMDY2MTBFQkQ2ODI5Nzg0NTdERjhBREEyOTExMDAx MzM5MTAxOTIwHhcNMjUwOTE4MTc1MDUwWhcNMjUwOTI1MTc1MDUwWjAYMRYwFAYD VQQDEw02OGNjNDY3Yi05Y2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoe/gDeHTRcQDFA1B4aK5em0NrkOOveR/TxpoNK1uhfqBqsYUYRMaHCSX7mV3 h9EasgeLypZQrcgWXK6KA0GMfajGeFCyybX/NHlinSUixCGE3sek5Xz1RPCiClq4 hZeDC0bj911tdGTD+9YOkxbGSDY8HM4RCHPRvAVr6fGISJGEdmT3jRDN09EBd1iT prIkzhgETgP2cxpVv6Jw1+dkrTMXk3iFhWJkNG+3ituSDGJBfua/bO3t0mfFoKDN H456+gwqxXLtGB+YuzkdYhe1nbLm6Sjk++/tlzUlx5obLvgNVNMwMdE0qgzS0+cN U7pJLkhLqgxhUf79I0jK+kvppwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJeH6vtA 38+H0KwFBfQW11C9+Qb9MB8GA1UdIwQYMBaAFNAGYQ69aCl4RX34raKREAEzkQGS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0E2RS83OUVDRTgzODk4 QkQxMUU5QUM5OUU3NEVDNEY5QUUwMi8wQVpoRHIxb0tYaEZmZml0b3BFUUFUT1JB WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBBWmhEcjFvS1hoRmZmaXRvcEVRQVRPUkFaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0E2RS83OUVDRTgzODk4QkQxMUU5QUM5OUU3NEVDNEY5QUUwMi8wQVpoRHIxb0tY aEZmZml0b3BFUUFUT1JBWkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDbmDNW68gCtMHJcw23WNl6vDa0U/kj1+ciM6xyY8mustiuCumGGn/ 3T0oDdt9qLcTY3la9WTJxL3g/+K5nqELyt5fbSzR8T/QaQ1AMhAX8HN10bL0+1Oi LZicsie6raCAJ6DQdAJOw6MYu78eIcCgz2+3tlqK5LXK/Zv5cIm0e9aodDpGhBUH g2wmD/pa6L+i6ozrxLbJ/pQkrtNiSsJrOSB7rrjViWjxdjVQxdOV1fxT34PiDB/i Qq4J1Tg69G9/85W+eeBBtN7sFROY9EC0tK6oM43qE8L0wUxfxJx/OcawEoBFcF6Z pqknnbgU0Lv9ND+j8gNr1/r1RtJbPeUP -----END CERTIFICATE-----Generated at Fri Sep 19 08:51:04 2025 by rpki-client