$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft File: 1AsQwSJMYeDTGML8YAOTeOz3LQA.mft (raw, json) Hash identifier: SD/Bz0WEyEXJe5bUtZBGKXZVP+cTuZYPm3s1a6XYrjU= Subject key identifier: CC:E1:99:50:1E:B5:51:EC:9D:9F:C8:5C:08:5B:B0:5C:F7:D0:E9:C5 Authority key identifier: D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 Certificate issuer: /CN=A9167C20/serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Certificate serial: 0B0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft Manifest number: 0B03 Signing time: Thu 18 Sep 2025 19:33:45 +0000 Manifest this update: Thu 18 Sep 2025 19:33:45 +0000 Manifest next update: Thu 25 Sep 2025 19:33:45 +0000 Files and hashes: 1: 1AsQwSJMYeDTGML8YAOTeOz3LQA.crl (hash: zot0T+O3+G/GyqfKWkPOOkmp5I8YLDUBrkYQ6o5S1sk=) 2: AD35C0044EA511EAAB9DBE7DC4F9AE02.roa (hash: vRrkQ11gFoedPJsbqh7nQv1lr6X8LYa0tpYVg51dxDk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 19:33:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2827 (0xb0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C20, serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Validity Not Before: Sep 18 19:33:45 2025 GMT Not After : Sep 25 19:33:45 2025 GMT Subject: CN=68cc5e99-5bc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:54:fb:92:44:3d:73:d6:35:81:98:ec:91:3c: be:db:ae:69:78:14:aa:78:ab:38:cd:b3:02:d3:a5: 8e:81:8e:df:87:21:80:04:05:74:ee:a3:22:02:1b: b0:85:08:91:a8:35:58:dc:87:9e:e3:37:83:70:0e: 27:90:6c:1e:d7:3a:7e:a8:33:4e:3a:01:c6:e9:c2: 56:1f:0b:47:a8:b1:b8:21:d5:be:2b:f3:82:f4:84: e2:9c:fa:e4:20:eb:e9:f3:a2:b3:fd:5d:c2:b0:12: 03:c2:08:05:3f:95:a2:d3:70:a1:24:41:fd:b8:0a: 65:56:a5:12:7f:89:bd:fb:37:a6:96:33:9c:35:0e: 8b:4f:42:19:65:3a:f7:65:71:48:6c:ad:6c:ed:6c: 4a:3e:f9:b6:24:59:b1:1a:77:de:57:1a:71:b1:d1: f7:7c:9a:9e:9f:53:d2:e4:a8:15:66:6d:17:e6:9f: 3e:3b:41:f8:26:27:92:81:d2:08:a2:08:9d:83:9c: 8c:ec:fc:d6:36:6f:8e:0e:ad:41:72:de:e9:e3:e5: 1c:8a:33:5c:0a:9c:10:0d:5f:f5:e2:cc:15:31:07: 2d:06:07:ca:3a:7a:20:cd:21:ae:45:81:61:90:09: 8a:a5:38:0d:85:21:78:fa:32:fa:e8:c7:ed:95:e6: 60:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:E1:99:50:1E:B5:51:EC:9D:9F:C8:5C:08:5B:B0:5C:F7:D0:E9:C5 X509v3 Authority Key Identifier: keyid:D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:80:a4:d8:c5:5f:ab:fc:6d:e8:13:dc:10:df:b2:a2:ab:da: 4f:cb:14:64:43:6b:7f:14:99:11:95:6c:09:9b:5c:b8:23:0a: 9c:f1:03:f1:e4:c0:ba:92:5e:e2:20:26:0e:2f:b7:3d:01:64: 91:93:64:39:d4:3b:72:a5:f1:7a:f4:2a:2b:30:0e:5a:8b:12: e3:d5:3e:e5:98:2f:a4:13:8f:33:f3:35:14:4d:de:ea:8f:be: 2e:b6:90:a8:a1:3f:31:c2:3a:8e:a7:40:6c:72:52:a7:65:6b: d9:61:7e:39:40:d3:b4:d3:51:b5:a3:89:a8:fd:86:7d:d2:78: ae:b3:df:cc:98:c2:4e:13:b7:f9:8a:34:75:4e:cf:43:ad:45: 28:78:21:b6:50:70:0e:2c:6c:ad:68:03:41:a8:f9:37:b0:af: 44:3a:39:ad:11:0c:5e:0f:d4:cb:f8:0b:08:aa:1b:96:62:bd: 38:a5:ce:88:b6:0a:d0:3f:49:44:97:b9:52:c3:77:79:80:b9: f7:13:52:b5:e1:51:38:1a:06:ff:48:51:20:9f:e8:90:7e:a1: ea:c7:63:09:01:03:06:4b:6b:70:48:ff:c8:5f:74:9a:18:2c: ad:0a:f0:fb:38:59:cf:e6:c2:44:d4:99:ea:11:39:e0:77:1b: 87:c0:e1:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDMjAxMTAvBgNVBAUTKEQ0MEIxMEMxMjI0QzYxRTBEMzE4QzJGQzYwMDM5Mzc4 RUNGNzJEMDAwHhcNMjUwOTE4MTkzMzQ1WhcNMjUwOTI1MTkzMzQ1WjAYMRYwFAYD VQQDEw02OGNjNWU5OS01YmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVT7kkQ9c9Y1gZjskTy+265peBSqeKs4zbMC06WOgY7fhyGABAV07qMiAhuw hQiRqDVY3Iee4zeDcA4nkGwe1zp+qDNOOgHG6cJWHwtHqLG4IdW+K/OC9ITinPrk IOvp86Kz/V3CsBIDwggFP5Wi03ChJEH9uAplVqUSf4m9+zemljOcNQ6LT0IZZTr3 ZXFIbK1s7WxKPvm2JFmxGnfeVxpxsdH3fJqen1PS5KgVZm0X5p8+O0H4JieSgdII ogidg5yM7PzWNm+ODq1Bct7p4+UcijNcCpwQDV/14swVMQctBgfKOnogzSGuRYFh kAmKpTgNhSF4+jL66MftleZg9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzhmVAe tVHsnZ/IXAhbsFz30OnFMB8GA1UdIwQYMBaAFNQLEMEiTGHg0xjC/GADk3js9y0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0MyMC84NjU3MUMxMDRF QTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVllRFRHTUw4WUFPVGVPejNM UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBc1F3U0pNWWVEVEdNTDhZQU9UZU96M0xRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0MyMC84NjU3MUMxMDRFQTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVll RFRHTUw4WUFPVGVPejNMUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmgKTYxV+r/G3oE9wQ37Kiq9pPyxRkQ2t/FJkRlWwJm1y4Iwqc8QPx 5MC6kl7iICYOL7c9AWSRk2Q51DtypfF69CorMA5aixLj1T7lmC+kE48z8zUUTd7q j74utpCooT8xwjqOp0BsclKnZWvZYX45QNO001G1o4mo/YZ90nius9/MmMJOE7f5 ijR1Ts9DrUUoeCG2UHAOLGytaANBqPk3sK9EOjmtEQxeD9TL+AsIqhuWYr04pc6I tgrQP0lEl7lSw3d5gLn3E1K14VE4Ggb/SFEgn+iQfqHqx2MJAQMGS2twSP/IX3Sa GCytCvD7OFnP5sJE1JnqETngdxuHwOGA -----END CERTIFICATE-----Generated at Thu Sep 18 23:26:23 2025 by rpki-client