$ rpki-client -vvf rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft File: cHDFVlzC_kVsMWBAi25_toDAjBk.mft (raw, json) Hash identifier: QJ5RDJhgEaFW85k+X9IMsVzQ5MAE93zZMlUIS8OsNXY= Subject key identifier: 2E:83:E5:A3:A9:E1:CA:42:CF:0E:91:FA:7F:46:EF:0F:F7:A3:B0:DC Authority key identifier: 70:70:C5:56:5C:C2:FE:45:6C:31:60:40:8B:6E:7F:B6:80:C0:8C:19 Certificate issuer: /CN=A915B77C/serialNumber=7070C5565CC2FE456C3160408B6E7FB680C08C19 Certificate serial: 0A93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cHDFVlzC_kVsMWBAi25_toDAjBk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft Manifest number: 0A81 Signing time: Mon 08 Sep 2025 19:39:36 +0000 Manifest this update: Mon 08 Sep 2025 19:39:36 +0000 Manifest next update: Mon 15 Sep 2025 19:39:36 +0000 Files and hashes: 1: cHDFVlzC_kVsMWBAi25_toDAjBk.crl (hash: 3yjbaDTUyauf/SdS6HZH+LZ0SHcf/LtWTph9fkI86pQ=) 2: 96ACE9CE8E8F11EE8915FE78C4F9AE02.roa (hash: R4xHtrMxN1c5iDWMnVRL8nAiEpy4Y4o7VWQJMa2QgSY=) 3: 6EA165728E8F11EEA8A9EE68C4F9AE02.roa (hash: lqCVN/RdBlCCTJpxacPdT4SGQm9YuvVTkcWZpCdTrhc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.crl rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cHDFVlzC_kVsMWBAi25_toDAjBk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 19:39:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2707 (0xa93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B77C, serialNumber=7070C5565CC2FE456C3160408B6E7FB680C08C19 Validity Not Before: Sep 8 19:39:36 2025 GMT Not After : Sep 15 19:39:36 2025 GMT Subject: CN=68bf30f8-f33e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:00:10:94:8e:54:2a:4a:87:36:00:df:2e:f2: 1a:7a:81:45:0a:83:44:de:15:b2:33:13:4b:96:a7: 7b:71:7d:23:62:70:35:21:b5:a6:36:7d:29:d1:af: b8:a2:24:a3:dd:f8:f5:78:76:06:77:43:5f:76:dd: 2a:29:4c:41:f2:51:88:cb:e2:cd:4a:3d:9d:90:55: 5b:8a:ac:70:ba:ab:d7:f8:12:04:ee:2e:10:10:2e: 93:c9:d3:7b:d5:5a:08:41:d2:ca:7f:d3:d8:46:ca: 82:29:9e:e3:fa:61:14:6e:b3:db:98:47:8d:c6:39: 38:cd:48:88:cd:e7:77:30:fb:b5:d4:b0:52:23:bf: 43:b5:59:9c:15:ad:ae:30:ee:07:12:02:63:e8:79: bc:17:34:29:31:fb:d3:32:3f:f4:80:bf:5d:7c:09: 3e:3f:b1:3f:64:38:79:5c:a8:15:17:02:39:0a:ed: ea:8e:8a:99:fa:d6:ec:02:e0:5a:7b:ba:64:90:83: 6c:bc:4b:bd:75:5a:0e:93:1e:da:a3:9a:50:f4:10: eb:ab:b1:9a:a0:9e:ca:b1:1b:db:46:68:b3:66:2e: 8e:4c:d5:0b:1c:e7:28:9d:bb:2d:a6:7b:a0:e1:a5: b7:c2:76:71:d7:f4:75:64:6e:f7:6f:fc:9c:f0:1e: 9c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:83:E5:A3:A9:E1:CA:42:CF:0E:91:FA:7F:46:EF:0F:F7:A3:B0:DC X509v3 Authority Key Identifier: keyid:70:70:C5:56:5C:C2:FE:45:6C:31:60:40:8B:6E:7F:B6:80:C0:8C:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cHDFVlzC_kVsMWBAi25_toDAjBk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B77C/2814F77A69B511EABA601752C4F9AE02/cHDFVlzC_kVsMWBAi25_toDAjBk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:9c:7b:3e:ca:11:14:6b:db:0c:d5:38:29:2f:0a:9d:56:27: 67:0b:d6:54:44:a0:b8:c7:7f:5e:ff:47:f4:cd:bd:7b:42:2b: 15:60:9d:df:4d:b1:05:8d:d8:e2:4a:a8:c7:a1:3c:4a:1e:18: 09:36:2f:30:9f:bd:63:7c:6f:e8:4d:0c:6d:bc:3f:fc:60:cf: b1:3f:9f:55:0e:1e:94:11:80:95:f5:46:2c:04:ee:d0:83:08: 34:01:e0:73:b9:88:3d:36:78:76:83:ba:f5:0d:ed:97:48:99: 2d:f8:fc:f6:52:6f:52:43:d8:48:47:18:56:06:c8:dc:0d:b9: a9:1c:92:36:69:44:24:25:bc:ac:79:15:72:00:bb:b6:e7:af: 29:77:dc:88:e9:6e:18:a8:9a:94:2e:16:8a:d8:26:af:93:f0: b6:be:b0:b9:7d:1d:2e:b3:6b:69:69:28:d9:4e:df:e0:8f:d8: 8e:04:76:49:0a:1a:8b:74:04:85:64:8d:e6:8e:91:1d:b3:47: a9:4b:a4:62:2e:e9:9c:38:d0:4a:fc:df:30:b5:6b:db:9f:64: ca:93:f4:16:1f:04:6e:b6:54:bf:9d:2d:8b:20:11:cd:c2:59: 4c:18:67:68:f3:ce:c2:8e:e0:7e:4a:01:50:79:d2:b2:89:09: cb:d6:2b:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI3N0MxMTAvBgNVBAUTKDcwNzBDNTU2NUNDMkZFNDU2QzMxNjA0MDhCNkU3RkI2 ODBDMDhDMTkwHhcNMjUwOTA4MTkzOTM2WhcNMjUwOTE1MTkzOTM2WjAYMRYwFAYD VQQDEw02OGJmMzBmOC1mMzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArAAQlI5UKkqHNgDfLvIaeoFFCoNE3hWyMxNLlqd7cX0jYnA1IbWmNn0p0a+4 oiSj3fj1eHYGd0Nfdt0qKUxB8lGIy+LNSj2dkFVbiqxwuqvX+BIE7i4QEC6TydN7 1VoIQdLKf9PYRsqCKZ7j+mEUbrPbmEeNxjk4zUiIzed3MPu11LBSI79DtVmcFa2u MO4HEgJj6Hm8FzQpMfvTMj/0gL9dfAk+P7E/ZDh5XKgVFwI5Cu3qjoqZ+tbsAuBa e7pkkINsvEu9dVoOkx7ao5pQ9BDrq7GaoJ7KsRvbRmizZi6OTNULHOconbstpnug 4aW3wnZx1/R1ZG73b/yc8B6c2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC6D5aOp 4cpCzw6R+n9G7w/3o7DcMB8GA1UdIwQYMBaAFHBwxVZcwv5FbDFgQItuf7aAwIwZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Qjc3Qy8yODE0Rjc3QTY5 QjUxMUVBQkE2MDE3NTJDNEY5QUUwMi9jSERGVmx6Q19rVnNNV0JBaTI1X3RvREFq QmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NIREZWbHpDX2tWc01XQkFpMjVfdG9EQWpCay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Qjc3Qy8yODE0Rjc3QTY5QjUxMUVBQkE2MDE3NTJDNEY5QUUwMi9jSERGVmx6Q19r VnNNV0JBaTI1X3RvREFqQmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2nHs+yhEUa9sM1TgpLwqdVidnC9ZURKC4x39e/0f0zb17QisVYJ3f TbEFjdjiSqjHoTxKHhgJNi8wn71jfG/oTQxtvD/8YM+xP59VDh6UEYCV9UYsBO7Q gwg0AeBzuYg9Nnh2g7r1De2XSJkt+Pz2Um9SQ9hIRxhWBsjcDbmpHJI2aUQkJbys eRVyALu2568pd9yI6W4YqJqULhaK2Cavk/C2vrC5fR0us2tpaSjZTt/gj9iOBHZJ ChqLdASFZI3mjpEds0epS6RiLumcONBK/N8wtWvbn2TKk/QWHwRutlS/nS2LIBHN wllMGGdo887CjuB+SgFQedKyiQnL1itu -----END CERTIFICATE-----Generated at Tue Sep 9 06:38:42 2025 by rpki-client