$ rpki-client -vvf rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft File: 1gA1BzfqQktAGySBBT0rwpFsutE.mft (raw, json) Hash identifier: 2hHn9OB9jnliWFtL/jnThXhnKNGN49D74GWx8e0q2GQ= Subject key identifier: 76:02:91:DE:DD:AF:D5:E9:D1:CD:E1:23:6C:60:49:2B:B5:98:F8:41 Authority key identifier: D6:00:35:07:37:EA:42:4B:40:1B:24:81:05:3D:2B:C2:91:6C:BA:D1 Certificate issuer: /CN=A9154973/serialNumber=D600350737EA424B401B2481053D2BC2916CBAD1 Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft Manifest number: CB Signing time: Wed 17 Sep 2025 06:25:08 +0000 Manifest this update: Wed 17 Sep 2025 06:25:08 +0000 Manifest next update: Wed 24 Sep 2025 06:25:07 +0000 Files and hashes: 1: 1gA1BzfqQktAGySBBT0rwpFsutE.crl (hash: kgl9mVekm+YVT/AiJGoK4fNyU+9b3ursOqo3zLnuvGE=) 2: FD557922606A11EF8B9F6820C4F9AE02.roa (hash: WK09suWPiJTW5VawW56fPInSd31p6Tm1C+edtUFR9pU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.crl rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154973, serialNumber=D600350737EA424B401B2481053D2BC2916CBAD1 Validity Not Before: Sep 17 06:25:08 2025 GMT Not After : Sep 24 06:25:07 2025 GMT Subject: CN=68ca5444-703d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5c:12:c0:70:27:93:fb:7e:c0:e0:3b:85:b6: c4:46:d4:03:0c:de:72:ba:36:3a:cf:84:53:4e:1f: 1c:1e:86:31:39:42:b9:dd:57:68:2c:c4:67:6f:1f: 7d:cd:12:a6:26:f6:aa:ee:a0:c5:4d:4a:c2:dc:94: 8b:9d:7e:48:d2:14:9c:35:cd:7f:3d:7c:00:3a:c0: e3:14:f6:d3:59:0c:e6:3a:51:39:63:c4:86:73:37: af:75:6e:be:02:96:0b:3f:74:15:57:e7:20:e4:4a: a8:63:92:eb:96:9c:3e:7e:b6:43:00:f5:f3:67:78: 5c:85:f8:f0:bc:d5:4f:ba:f5:9e:b8:3a:11:00:4c: bb:6d:30:71:5a:0c:76:89:52:48:2d:e1:6d:10:91: b9:e4:64:9a:a4:b6:c8:d0:3a:7c:4f:9c:ee:61:c2: 7b:21:73:05:10:f3:69:ac:1b:48:49:74:ec:20:c5: 7d:93:65:ee:c9:17:eb:af:cc:83:bb:fe:85:a0:9b: 03:6a:68:35:a8:cb:cf:29:ba:bb:d8:32:71:a0:51: db:b0:d5:06:80:70:ff:7c:06:c6:ae:c1:0b:af:f7: 7e:bd:60:22:5d:f3:3b:60:b8:76:30:45:e4:84:9f: 60:0c:50:be:66:7b:a3:39:ec:61:77:fa:9b:af:79: 69:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:02:91:DE:DD:AF:D5:E9:D1:CD:E1:23:6C:60:49:2B:B5:98:F8:41 X509v3 Authority Key Identifier: keyid:D6:00:35:07:37:EA:42:4B:40:1B:24:81:05:3D:2B:C2:91:6C:BA:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:43:af:38:f1:65:f6:e8:cb:bb:f4:f0:a5:ce:4b:f5:a5:c4: 24:1c:74:fb:1c:d0:83:75:d8:c1:be:28:7e:55:47:71:a5:62: 31:01:51:05:a9:30:0a:4c:81:1d:f0:3d:69:48:7d:23:d0:8a: 54:0d:24:72:02:a1:21:61:c5:96:d0:de:31:ca:8f:da:33:a6: 1e:3f:4a:95:59:92:88:17:5e:c7:ec:76:e7:a1:83:53:75:91: 84:0d:0b:f7:23:32:4d:57:0c:07:ca:d3:84:c0:2b:31:ea:6d: 0e:0f:82:8d:55:0d:a4:b5:8b:4d:12:28:2e:8c:74:a4:f3:88: 52:e3:a6:90:5c:2b:4b:82:82:fe:78:ca:7e:b2:22:c5:dc:01: 96:dc:1b:09:b2:e7:1f:44:c9:a6:f6:76:12:cd:6e:3a:47:a3: 87:28:9e:59:96:cc:c3:e7:88:ed:89:94:06:ca:87:34:fe:97: d4:4b:ec:53:2a:8f:0c:b4:94:cf:82:0d:22:67:62:89:81:b0: b3:6a:a3:ca:57:d9:e7:74:ae:e6:ad:18:e0:9f:f1:4c:b7:10: 3b:7d:7a:0e:80:e7:03:b7:e8:95:2f:ff:7b:b9:8c:e1:8f:39: 11:06:3a:32:39:73:cb:98:12:d0:8e:2c:e3:4b:07:64:aa:fb: 4d:ec:2a:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ5NzMxMTAvBgNVBAUTKEQ2MDAzNTA3MzdFQTQyNEI0MDFCMjQ4MTA1M0QyQkMy OTE2Q0JBRDEwHhcNMjUwOTE3MDYyNTA4WhcNMjUwOTI0MDYyNTA3WjAYMRYwFAYD VQQDEw02OGNhNTQ0NC03MDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1FwSwHAnk/t+wOA7hbbERtQDDN5yujY6z4RTTh8cHoYxOUK53VdoLMRnbx99 zRKmJvaq7qDFTUrC3JSLnX5I0hScNc1/PXwAOsDjFPbTWQzmOlE5Y8SGczevdW6+ ApYLP3QVV+cg5EqoY5Lrlpw+frZDAPXzZ3hchfjwvNVPuvWeuDoRAEy7bTBxWgx2 iVJILeFtEJG55GSapLbI0Dp8T5zuYcJ7IXMFEPNprBtISXTsIMV9k2XuyRfrr8yD u/6FoJsDamg1qMvPKbq72DJxoFHbsNUGgHD/fAbGrsELr/d+vWAiXfM7YLh2MEXk hJ9gDFC+ZnujOexhd/qbr3lpQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHYCkd7d r9Xp0c3hI2xgSSu1mPhBMB8GA1UdIwQYMBaAFNYANQc36kJLQBskgQU9K8KRbLrR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDk3My9BNjVCQzYyNjYw NkExMUVGODk4RURCMUZDNEY5QUUwMi8xZ0ExQnpmcVFrdEFHeVNCQlQwcndwRnN1 dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFnQTFCemZxUWt0QUd5U0JCVDByd3BGc3V0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDk3My9BNjVCQzYyNjYwNkExMUVGODk4RURCMUZDNEY5QUUwMi8xZ0ExQnpmcVFr dEFHeVNCQlQwcndwRnN1dEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChQ6848WX26Mu79PClzkv1pcQkHHT7HNCDddjBvih+VUdxpWIxAVEF qTAKTIEd8D1pSH0j0IpUDSRyAqEhYcWW0N4xyo/aM6YeP0qVWZKIF17H7HbnoYNT dZGEDQv3IzJNVwwHytOEwCsx6m0OD4KNVQ2ktYtNEigujHSk84hS46aQXCtLgoL+ eMp+siLF3AGW3BsJsucfRMmm9nYSzW46R6OHKJ5ZlszD54jtiZQGyoc0/pfUS+xT Ko8MtJTPgg0iZ2KJgbCzaqPKV9nndK7mrRjgn/FMtxA7fXoOgOcDt+iVL/97uYzh jzkRBjoyOXPLmBLQjizjSwdkqvtN7CrD -----END CERTIFICATE-----Generated at Fri Sep 19 00:48:04 2025 by rpki-client