$ rpki-client -vvf rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft File: 9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft (raw, json) Hash identifier: QhqWLJ+EMuBEuf8OEWriIMMzC2Lk95+Uz83L9QDrSNc= Subject key identifier: B1:5F:6F:66:F8:F9:55:C4:AD:98:04:4C:4B:E0:8A:90:DD:F9:A3:88 Authority key identifier: F5:80:2D:90:3D:A1:0C:D0:3F:CF:3E:8E:16:55:F5:21:C1:D8:57:83 Certificate issuer: /CN=A915AA2E/serialNumber=F5802D903DA10CD03FCF3E8E1655F521C1D85783 Certificate serial: CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft Manifest number: CA Signing time: Tue 09 Sep 2025 05:49:25 +0000 Manifest this update: Tue 09 Sep 2025 05:49:24 +0000 Manifest next update: Tue 16 Sep 2025 05:49:24 +0000 Files and hashes: 1: 9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl (hash: 2+x37QO9Q5nVprJ1uU50KG33tioqnbIuQT6Jt7zEGew=) 2: BBC65AEC5AE511EFBC1FAA45C4F9AE02.roa (hash: Gqrui0OpB1CczHELSAaN90W0H5eLSv922/lG6tauLOk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 05:49:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915AA2E, serialNumber=F5802D903DA10CD03FCF3E8E1655F521C1D85783 Validity Not Before: Sep 9 05:49:24 2025 GMT Not After : Sep 16 05:49:24 2025 GMT Subject: CN=68bfbfe5-ca63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e6:2e:cb:10:e9:ae:a3:9a:fa:5e:96:ec:bb: c1:8a:25:0f:25:37:7a:78:fa:97:6a:f9:75:fe:19: 4d:1b:5a:01:9f:c2:01:88:88:92:31:63:63:1a:a1: 3c:3d:e4:25:89:c0:3d:e2:24:e0:6e:81:b6:4a:94: a4:20:cd:d7:15:46:38:c8:a6:bf:9b:24:41:9f:f4: 9e:7b:09:59:5c:c6:b5:89:eb:9b:ca:b2:41:29:b7: e5:fa:9c:13:32:aa:4b:7d:02:27:74:ae:55:99:9a: d6:69:10:64:2f:0c:5d:06:16:54:b1:5f:2c:a9:c5: 0a:c9:b6:ca:39:0e:0f:bd:69:7a:17:dc:d8:0d:71: cd:98:38:8a:95:5a:fc:12:ef:7e:df:47:83:25:d5: df:4b:45:34:4a:ef:73:93:c0:a6:55:db:49:53:ea: 65:81:53:54:64:40:39:81:ed:79:4e:a0:fb:21:91: 3b:de:40:46:eb:cc:97:82:13:3a:bb:cb:ff:4a:fa: 5d:79:dc:fe:b5:ce:61:64:89:d3:f2:6a:fb:c5:bc: 7c:73:5a:39:43:3c:17:b4:5f:bd:da:5b:1f:01:51: f3:5e:19:1a:6b:81:74:07:9a:90:52:20:df:c5:70: 12:39:a0:28:7f:8b:00:6d:ce:4a:55:17:ac:7a:7b: e8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:5F:6F:66:F8:F9:55:C4:AD:98:04:4C:4B:E0:8A:90:DD:F9:A3:88 X509v3 Authority Key Identifier: keyid:F5:80:2D:90:3D:A1:0C:D0:3F:CF:3E:8E:16:55:F5:21:C1:D8:57:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9YAtkD2hDNA_zz6OFlX1IcHYV4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915AA2E/7AFC9DF05AE511EFB11C4945C4F9AE02/9YAtkD2hDNA_zz6OFlX1IcHYV4M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:05:79:49:fb:04:dc:1c:a8:95:50:cd:b6:b4:cf:6c:94:36: a7:7d:ff:39:54:38:5f:c3:8f:79:79:13:5c:77:db:68:af:cc: 7f:22:12:5d:88:8c:e2:99:91:2e:dd:46:fb:ba:6e:0b:c4:ef: 67:72:5e:b8:aa:e3:31:45:5c:f2:e3:a8:e0:ec:d9:97:04:45: ab:32:cd:1f:68:5e:7c:fc:38:a2:9a:e4:f6:00:bb:f1:4a:ed: ff:bc:e3:6e:43:ff:46:db:ba:02:c2:e4:12:46:b1:cd:bd:d7: 46:b3:14:0d:71:4a:cf:ae:6a:12:e0:6e:fc:19:30:0d:c6:4e: e2:94:e5:2c:00:d4:93:1e:65:8f:fb:b0:71:67:79:e2:be:5c: ae:a1:2b:bc:90:57:c0:e1:5b:60:8c:89:d8:e6:d4:01:9c:bb: 8b:78:32:b1:e5:66:e6:7d:84:44:ae:a9:ec:df:92:af:29:9f: 37:ad:4a:a8:ef:a4:cb:31:88:9e:89:82:ce:4c:89:06:85:d2: 9b:6a:89:2f:56:5b:91:13:f6:d2:1f:9b:0f:01:d7:1c:fa:94: 6b:40:a0:28:09:d7:3e:41:79:0a:8a:78:29:fd:cf:47:ca:b8: 97:53:66:39:22:fb:7b:bc:ed:e5:db:c2:d2:82:b1:f6:4a:1f: e8:4e:84:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUFBMkUxMTAvBgNVBAUTKEY1ODAyRDkwM0RBMTBDRDAzRkNGM0U4RTE2NTVGNTIx QzFEODU3ODMwHhcNMjUwOTA5MDU0OTI0WhcNMjUwOTE2MDU0OTI0WjAYMRYwFAYD VQQDEw02OGJmYmZlNS1jYTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2uYuyxDprqOa+l6W7LvBiiUPJTd6ePqXavl1/hlNG1oBn8IBiIiSMWNjGqE8 PeQlicA94iTgboG2SpSkIM3XFUY4yKa/myRBn/SeewlZXMa1ieubyrJBKbfl+pwT MqpLfQIndK5VmZrWaRBkLwxdBhZUsV8sqcUKybbKOQ4PvWl6F9zYDXHNmDiKlVr8 Eu9+30eDJdXfS0U0Su9zk8CmVdtJU+plgVNUZEA5ge15TqD7IZE73kBG68yXghM6 u8v/Svpdedz+tc5hZInT8mr7xbx8c1o5QzwXtF+92lsfAVHzXhkaa4F0B5qQUiDf xXASOaAof4sAbc5KVResenvozQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLFfb2b4 +VXErZgETEvgipDd+aOIMB8GA1UdIwQYMBaAFPWALZA9oQzQP88+jhZV9SHB2FeD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QUEyRS83QUZDOURGMDVB RTUxMUVGQjExQzQ5NDVDNEY5QUUwMi85WUF0a0QyaEROQV96ejZPRmxYMUljSFlW NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlZQXRrRDJoRE5BX3p6Nk9GbFgxSWNIWVY0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QUEyRS83QUZDOURGMDVBRTUxMUVGQjExQzQ5NDVDNEY5QUUwMi85WUF0a0QyaERO QV96ejZPRmxYMUljSFlWNE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChBXlJ+wTcHKiVUM22tM9slDanff85VDhfw495eRNcd9tor8x/IhJd iIzimZEu3Ub7um4LxO9ncl64quMxRVzy46jg7NmXBEWrMs0faF58/DiimuT2ALvx Su3/vONuQ/9G27oCwuQSRrHNvddGsxQNcUrPrmoS4G78GTANxk7ilOUsANSTHmWP +7BxZ3nivlyuoSu8kFfA4VtgjInY5tQBnLuLeDKx5WbmfYRErqns35KvKZ83rUqo 76TLMYieiYLOTIkGhdKbaokvVluRE/bSH5sPAdcc+pRrQKAoCdc+QXkKingp/c9H yriXU2Y5Ivt7vO3l28LSgrH2Sh/oToQi -----END CERTIFICATE-----Generated at Tue Sep 9 14:18:15 2025 by rpki-client