$ rpki-client -vvf rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft File: cXp42D7DjxcRAnMoE5hEns3RBQA.mft (raw, json) Hash identifier: pzXSCYCKj7MNEKz9GIM7aP3tpaD2vL26qurWV4IxMPY= Subject key identifier: FA:DD:B9:2D:50:18:45:33:74:C6:58:94:1E:7C:79:36:23:AB:F2:4C Authority key identifier: 71:7A:78:D8:3E:C3:8F:17:11:02:73:28:13:98:44:9E:CD:D1:05:00 Certificate issuer: /CN=A9168D20/serialNumber=717A78D83EC38F17110273281398449ECDD10500 Certificate serial: 067E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft Manifest number: 0675 Signing time: Thu 18 Sep 2025 22:48:08 +0000 Manifest this update: Thu 18 Sep 2025 22:48:08 +0000 Manifest next update: Thu 25 Sep 2025 22:48:08 +0000 Files and hashes: 1: cXp42D7DjxcRAnMoE5hEns3RBQA.crl (hash: NU5O3AZv+qsZbrDK1zRf8FQLzHQUjizwvIQBXoVR974=) 2: B9D0CC00D67311EEAD5F8B0FC4F9AE02.roa (hash: xnj1+DqNRGp1sU91Z+zGlbx4vpo9U2+YWkznSk4BLXI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.crl rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:48:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1662 (0x67e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168D20, serialNumber=717A78D83EC38F17110273281398449ECDD10500 Validity Not Before: Sep 18 22:48:08 2025 GMT Not After : Sep 25 22:48:08 2025 GMT Subject: CN=68cc8c28-3676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:fc:fc:f5:a1:43:5b:c7:a9:47:7a:7f:f3:a0: c4:ab:c4:7a:7d:a6:f4:43:7d:39:14:21:99:6a:b0: 95:3c:53:e0:26:73:60:6a:a6:35:a1:e4:7f:f0:1c: 7c:86:1f:78:24:91:60:be:b9:c8:8c:a6:75:3b:bc: f2:7d:d1:dd:35:dc:5e:d2:d0:19:d4:d3:31:dd:54: 19:0a:78:80:55:03:e2:94:7d:d5:ed:95:2b:cc:5c: 87:f9:6b:7a:49:f5:8f:5a:2d:93:f0:5c:90:e1:ee: 17:38:13:9e:02:05:7f:36:8b:08:82:02:d7:3e:ac: 11:1d:e5:d2:36:3d:91:f1:04:ec:ab:26:9d:4f:a6: b1:2e:ec:c1:3d:47:bf:77:ef:ae:ce:f4:93:f4:27: ac:6b:84:0b:a6:89:80:08:1b:2e:c9:f0:51:7f:69: 56:69:70:39:cf:a8:fd:63:a0:7d:ae:4c:a5:dd:91: 4b:b3:44:6b:da:82:1f:a5:0f:91:93:91:44:72:05: 40:1b:95:e1:63:d6:bb:78:40:6a:58:94:37:98:cb: 8c:df:30:7a:cd:c6:2a:64:4e:64:c3:15:3f:e9:ec: e5:b8:bf:ce:e7:d0:a3:f2:4b:db:98:91:09:85:35: de:ce:8c:62:9c:9f:77:34:ec:18:c6:95:a2:50:c3: d1:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:DD:B9:2D:50:18:45:33:74:C6:58:94:1E:7C:79:36:23:AB:F2:4C X509v3 Authority Key Identifier: keyid:71:7A:78:D8:3E:C3:8F:17:11:02:73:28:13:98:44:9E:CD:D1:05:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:b4:57:e7:3a:98:37:62:fc:9f:0b:95:9d:d7:2c:da:fd:21: 9b:86:85:00:85:27:be:03:45:0d:5b:3c:67:bf:ad:21:7d:36: 55:ed:9c:14:0d:80:ed:b3:42:c0:2b:d0:78:ee:47:fb:75:d7: 41:26:7b:b9:92:01:d5:55:a1:c9:37:ed:be:f5:5e:a3:d1:fe: ed:02:9c:cd:59:01:fa:cc:0f:df:31:2f:fe:02:2a:7d:8a:03: d2:4d:61:f1:a7:fa:5a:7a:0c:6f:1d:df:43:8f:d0:16:ce:f6: 88:fd:25:db:77:1b:41:ef:9d:30:fc:97:9c:fd:d0:e1:e6:81: 92:3e:a5:97:3c:99:7b:4c:a3:cf:e7:bc:fa:89:16:82:f1:b2: 8e:56:dd:1f:32:3a:32:83:81:66:1c:3b:5b:69:09:6a:a3:64: 8a:c3:dc:4b:0b:8b:a1:f8:fa:bc:63:4a:2b:b2:6c:66:d4:52: 9f:06:54:88:81:c0:79:d8:dd:b3:22:28:99:42:87:91:2e:c8: da:d9:25:ef:d6:d5:55:4a:c3:df:64:64:2b:29:4f:27:0b:df: cb:0a:0b:d1:bd:79:35:a4:ff:99:9f:f0:35:a1:6c:8e:af:95: ea:40:ab:66:5a:eb:0e:98:bb:cd:06:1e:10:7d:83:06:d0:31: 08:36:a8:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhEMjAxMTAvBgNVBAUTKDcxN0E3OEQ4M0VDMzhGMTcxMTAyNzMyODEzOTg0NDlF Q0REMTA1MDAwHhcNMjUwOTE4MjI0ODA4WhcNMjUwOTI1MjI0ODA4WjAYMRYwFAYD VQQDEw02OGNjOGMyOC0zNjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvz89aFDW8epR3p/86DEq8R6fab0Q305FCGZarCVPFPgJnNgaqY1oeR/8Bx8 hh94JJFgvrnIjKZ1O7zyfdHdNdxe0tAZ1NMx3VQZCniAVQPilH3V7ZUrzFyH+Wt6 SfWPWi2T8FyQ4e4XOBOeAgV/NosIggLXPqwRHeXSNj2R8QTsqyadT6axLuzBPUe/ d++uzvST9Cesa4QLpomACBsuyfBRf2lWaXA5z6j9Y6B9rkyl3ZFLs0Rr2oIfpQ+R k5FEcgVAG5XhY9a7eEBqWJQ3mMuM3zB6zcYqZE5kwxU/6ezluL/O59Cj8kvbmJEJ hTXezoxinJ93NOwYxpWiUMPRSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPrduS1Q GEUzdMZYlB58eTYjq/JMMB8GA1UdIwQYMBaAFHF6eNg+w48XEQJzKBOYRJ7N0QUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEQyMC9DMEM2QUU1Qzkz NUIxMUVCOTEwODZENTVDNEY5QUUwMi9jWHA0MkQ3RGp4Y1JBbk1vRTVoRW5zM1JC UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NYcDQyRDdEanhjUkFuTW9FNWhFbnMzUkJRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEQyMC9DMEM2QUU1QzkzNUIxMUVCOTEwODZENTVDNEY5QUUwMi9jWHA0MkQ3RGp4 Y1JBbk1vRTVoRW5zM1JCUUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDOtFfnOpg3YvyfC5Wd1yza/SGbhoUAhSe+A0UNWzxnv60hfTZV7ZwU DYDts0LAK9B47kf7dddBJnu5kgHVVaHJN+2+9V6j0f7tApzNWQH6zA/fMS/+Aip9 igPSTWHxp/paegxvHd9Dj9AWzvaI/SXbdxtB750w/Jec/dDh5oGSPqWXPJl7TKPP 57z6iRaC8bKOVt0fMjoyg4FmHDtbaQlqo2SKw9xLC4uh+Pq8Y0orsmxm1FKfBlSI gcB52N2zIiiZQoeRLsja2SXv1tVVSsPfZGQrKU8nC9/LCgvRvXk1pP+Zn/A1oWyO r5XqQKtmWusOmLvNBh4QfYMG0DEINqjX -----END CERTIFICATE-----Generated at Fri Sep 19 12:16:54 2025 by rpki-client