$ rpki-client -vvf rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft File: NEp3XiRcztCAx5UhWW4yyPBtiMg.mft (raw, json) Hash identifier: 04X7Ai8ZzaNYmtaMWY6jCz9Ocuq1XBId3OmdYSpQEOs= Subject key identifier: 7E:CF:D0:E9:F7:5D:7A:B2:20:FA:A8:68:E9:A7:A9:5A:1D:11:81:F9 Authority key identifier: 34:4A:77:5E:24:5C:CE:D0:80:C7:95:21:59:6E:32:C8:F0:6D:88:C8 Certificate issuer: /CN=A915517D/serialNumber=344A775E245CCED080C79521596E32C8F06D88C8 Certificate serial: 17DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NEp3XiRcztCAx5UhWW4yyPBtiMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft Manifest number: 17C9 Signing time: Thu 18 Sep 2025 16:41:52 +0000 Manifest this update: Thu 18 Sep 2025 16:41:51 +0000 Manifest next update: Thu 25 Sep 2025 16:41:51 +0000 Files and hashes: 1: NEp3XiRcztCAx5UhWW4yyPBtiMg.crl (hash: tskUC8yarjqoReciR8FxifZchNQrHVEFMQwBJpBGsrk=) 2: 2F840DD2740911EDA7146F2DC4F9AE02.roa (hash: YPOOK5AIk3gBw37/F4hGfOPvVpq+0nympVjwZNkZ59I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.crl rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NEp3XiRcztCAx5UhWW4yyPBtiMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:41:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6111 (0x17df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915517D, serialNumber=344A775E245CCED080C79521596E32C8F06D88C8 Validity Not Before: Sep 18 16:41:51 2025 GMT Not After : Sep 25 16:41:51 2025 GMT Subject: CN=68cc3650-5c62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ce:02:6d:13:6b:ed:4d:f2:c9:b1:d5:86:b3: 15:02:b7:d4:c2:1b:21:0b:58:08:40:6e:35:8c:b8: cc:50:43:df:ad:8e:73:cb:40:d2:f2:22:76:31:fe: 04:15:fe:ba:4f:e5:9b:75:78:eb:e3:b7:8b:55:1c: 4e:47:3f:47:58:42:81:db:02:7f:3c:52:1d:03:d0: 45:fa:f8:83:f0:f6:cb:27:61:36:59:3b:4c:73:be: a9:aa:95:fe:22:cd:c4:ce:a0:ac:81:c6:1f:32:2a: c5:ac:1e:66:99:b5:8d:2c:96:cb:7f:94:32:c8:10: 7e:85:18:ff:86:e0:80:20:de:43:1d:b9:7d:c6:fd: 97:4c:87:5d:be:bd:6f:4e:f2:f1:a1:c0:76:44:ea: a6:6c:e6:e0:18:02:df:d0:3d:05:4a:5b:f6:6a:9d: a6:89:53:7c:ef:16:74:70:aa:f9:a8:1d:c6:80:61: d6:1e:fd:8a:10:55:cf:e5:6b:b9:76:64:78:7c:36: 23:8a:7a:30:01:ce:a3:ac:c9:9b:fa:8e:74:25:40: e2:84:2b:9c:41:9e:60:d8:ae:12:68:2b:64:b4:75: 37:ab:c1:f0:8a:97:d8:7e:85:e5:04:a9:78:2b:ec: 7e:40:85:20:0d:85:92:93:63:51:90:ca:ba:11:db: 7f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:CF:D0:E9:F7:5D:7A:B2:20:FA:A8:68:E9:A7:A9:5A:1D:11:81:F9 X509v3 Authority Key Identifier: keyid:34:4A:77:5E:24:5C:CE:D0:80:C7:95:21:59:6E:32:C8:F0:6D:88:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NEp3XiRcztCAx5UhWW4yyPBtiMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915517D/3D7A6286CF5611E7BF695510C4F9AE02/NEp3XiRcztCAx5UhWW4yyPBtiMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:82:09:ff:8a:69:f8:b4:eb:e8:55:0d:9f:4d:67:f5:0e:8e: c7:d5:7f:b7:0d:17:35:50:cf:ba:13:d9:27:ee:79:0b:75:bb: 94:5a:65:b6:63:7e:17:3e:65:1a:19:21:e3:60:33:c0:84:16: ef:be:4e:b4:2c:fe:db:3c:49:3b:96:b4:7a:d1:da:02:d7:6a: 42:0f:df:df:be:86:d8:9b:b7:49:34:52:a4:08:a7:4e:a3:79: 46:00:87:61:48:3d:c8:7b:66:54:06:00:64:3b:b7:18:f6:ab: 82:a0:8c:b7:30:90:e6:bd:24:63:21:6b:c2:ff:74:be:b0:5e: fa:7d:4f:f0:77:22:0b:f4:93:91:7c:a3:8d:f1:41:12:1e:03: ef:7f:cc:f6:e8:7a:5e:e2:19:5c:f1:65:78:40:c5:77:e8:98: 01:4c:f9:92:f9:49:47:22:40:bd:5f:30:7c:4d:a8:54:d1:09: a4:7b:25:8a:6b:0a:f8:02:19:77:7c:1d:80:2a:72:a0:a6:14: af:73:4c:e6:9a:a0:c0:06:ef:e2:1a:1e:23:9d:c8:25:9f:9a: f7:1e:65:96:78:7b:f2:f9:b1:0a:ff:86:c7:83:61:e7:19:09: f5:d9:a0:a2:3b:6f:19:af:8d:7c:a0:5d:c8:7a:b9:f5:47:0d: 96:be:eb:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTUxN0QxMTAvBgNVBAUTKDM0NEE3NzVFMjQ1Q0NFRDA4MEM3OTUyMTU5NkUzMkM4 RjA2RDg4QzgwHhcNMjUwOTE4MTY0MTUxWhcNMjUwOTI1MTY0MTUxWjAYMRYwFAYD VQQDEw02OGNjMzY1MC01YzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvM4CbRNr7U3yybHVhrMVArfUwhshC1gIQG41jLjMUEPfrY5zy0DS8iJ2Mf4E Ff66T+WbdXjr47eLVRxORz9HWEKB2wJ/PFIdA9BF+viD8PbLJ2E2WTtMc76pqpX+ Is3EzqCsgcYfMirFrB5mmbWNLJbLf5QyyBB+hRj/huCAIN5DHbl9xv2XTIddvr1v TvLxocB2ROqmbObgGALf0D0FSlv2ap2miVN87xZ0cKr5qB3GgGHWHv2KEFXP5Wu5 dmR4fDYjinowAc6jrMmb+o50JUDihCucQZ5g2K4SaCtktHU3q8HwipfYfoXlBKl4 K+x+QIUgDYWSk2NRkMq6Edt/DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7P0On3 XXqyIPqoaOmnqVodEYH5MB8GA1UdIwQYMBaAFDRKd14kXM7QgMeVIVluMsjwbYjI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTE3RC8zRDdBNjI4NkNG NTYxMUU3QkY2OTU1MTBDNEY5QUUwMi9ORXAzWGlSY3p0Q0F4NVVoV1c0eXlQQnRp TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05FcDNYaVJjenRDQXg1VWhXVzR5eVBCdGlNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTE3RC8zRDdBNjI4NkNGNTYxMUU3QkY2OTU1MTBDNEY5QUUwMi9ORXAzWGlSY3p0 Q0F4NVVoV1c0eXlQQnRpTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4ggn/imn4tOvoVQ2fTWf1Do7H1X+3DRc1UM+6E9kn7nkLdbuUWmW2 Y34XPmUaGSHjYDPAhBbvvk60LP7bPEk7lrR60doC12pCD9/fvobYm7dJNFKkCKdO o3lGAIdhSD3Ie2ZUBgBkO7cY9quCoIy3MJDmvSRjIWvC/3S+sF76fU/wdyIL9JOR fKON8UESHgPvf8z26Hpe4hlc8WV4QMV36JgBTPmS+UlHIkC9XzB8TahU0QmkeyWK awr4Ahl3fB2AKnKgphSvc0zmmqDABu/iGh4jncgln5r3HmWWeHvy+bEK/4bHg2Hn GQn12aCiO28Zr418oF3Iern1Rw2Wvusl -----END CERTIFICATE-----Generated at Fri Sep 19 00:40:18 2025 by rpki-client