$ rpki-client -vvf rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft File: tUdigfNZTThknMz_UvWLtJtHXwk.mft (raw, json) Hash identifier: 7zf5YfVBBKJn3vToJxupSVW3tn+hE+WKlF5cVU0LwrU= Subject key identifier: 0E:5D:5B:DA:76:79:AD:62:9B:AE:B3:38:EF:62:44:80:75:E3:2E:0C Authority key identifier: B5:47:62:81:F3:59:4D:38:64:9C:CC:FF:52:F5:8B:B4:9B:47:5F:09 Certificate issuer: /CN=A9169351/serialNumber=B5476281F3594D38649CCCFF52F58BB49B475F09 Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUdigfNZTThknMz_UvWLtJtHXwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft Manifest number: 0156 Signing time: Fri 19 Sep 2025 04:47:53 +0000 Manifest this update: Fri 19 Sep 2025 04:47:52 +0000 Manifest next update: Fri 26 Sep 2025 04:47:52 +0000 Files and hashes: 1: tUdigfNZTThknMz_UvWLtJtHXwk.crl (hash: 4BxJbHtTY2s9f6PV58F54pCzsKgYlxokRBDU22Z3A8Q=) 2: 86080D8A940511EE8A83F00DC4F9AE02.roa (hash: 6vLkVoo3xeixncmkuul2aavr7vLSk2WGgm6lp66mNlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.crl rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUdigfNZTThknMz_UvWLtJtHXwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 04:47:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169351, serialNumber=B5476281F3594D38649CCCFF52F58BB49B475F09 Validity Not Before: Sep 19 04:47:52 2025 GMT Not After : Sep 26 04:47:52 2025 GMT Subject: CN=68cce078-7d2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6b:d1:91:f2:7e:0c:5c:a1:b4:39:cc:09:94: c0:37:97:ef:a3:26:91:48:f5:a9:77:35:4a:85:47: 93:17:7c:06:4e:d1:94:c3:76:0e:6d:c5:ba:94:48: 00:57:13:91:a4:6a:32:78:68:6f:eb:88:28:1a:4d: 8b:93:fa:da:1f:8b:ef:c2:fd:e5:9c:e0:be:be:9c: fa:82:82:94:42:74:d1:0f:44:b4:35:ef:55:27:55: e0:e8:d1:07:19:7c:99:75:38:cc:21:35:f3:a2:e7: 44:b2:ed:fe:81:0b:1b:7d:fe:dc:17:07:d2:a3:36: e1:64:3e:2b:a6:8d:2e:19:6d:bd:87:cd:1a:cb:3a: 72:80:bc:2c:ee:dc:d1:a6:ff:b3:ff:5d:cc:ae:a7: d5:17:d6:9b:7a:6d:30:0c:23:3b:45:e3:f1:36:7f: 79:be:ab:a5:fd:76:35:58:73:2e:ca:a7:a8:a5:29: fb:38:65:b6:6c:f6:69:11:f5:c0:1f:e6:ea:b9:65: 09:1b:b3:cc:c7:97:1d:87:4c:5c:1e:c0:bf:1f:17: 85:9f:fb:37:1b:b0:31:11:b5:7d:06:f6:b8:41:88: 21:4b:33:86:ab:e1:49:6c:7a:19:ab:07:01:b5:a7: 9d:2e:98:29:42:b4:a6:0b:33:aa:80:94:0a:15:1f: 62:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:5D:5B:DA:76:79:AD:62:9B:AE:B3:38:EF:62:44:80:75:E3:2E:0C X509v3 Authority Key Identifier: keyid:B5:47:62:81:F3:59:4D:38:64:9C:CC:FF:52:F5:8B:B4:9B:47:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tUdigfNZTThknMz_UvWLtJtHXwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169351/31A0D182940511EEA8687547C4F9AE02/tUdigfNZTThknMz_UvWLtJtHXwk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:dc:52:4b:25:78:d8:c6:2f:85:dc:af:a6:c6:41:fb:2b:66: bb:20:ee:cb:bc:0a:10:66:a8:ff:c2:92:1a:9d:bf:01:2c:76: 74:27:03:cf:bf:8d:f5:3c:5a:67:e2:94:c9:bf:f9:08:a5:cc: ca:35:12:7c:f1:aa:a3:e2:0d:8e:e5:e4:b6:af:57:eb:ef:df: eb:bc:72:8e:dc:9d:0f:13:49:f1:46:99:1e:66:c6:3e:af:41: db:14:3b:17:a9:3e:16:d9:20:b2:40:aa:05:1e:98:eb:8b:ec: f6:d9:69:73:5f:11:d8:bd:2e:c7:2c:d6:10:b3:e5:da:7d:c4: 57:1d:a3:6a:f6:9a:7a:50:14:36:8d:4e:1e:41:4d:f1:ca:cd: 78:65:83:eb:2a:df:03:9f:8c:c8:2a:72:8a:95:d6:fa:4e:20: 85:3c:27:58:bf:4d:05:ab:cb:0e:0b:47:39:a3:2f:02:fc:eb: 1b:08:4d:f2:70:0c:dd:7c:fa:ae:f2:63:bb:c1:f7:c6:af:e8: 65:77:d5:a4:35:c1:53:6c:9c:c5:d5:5d:f8:a1:11:83:75:c9: 6d:fb:d1:da:07:80:ae:ad:ad:27:28:a5:b6:39:48:f2:29:c7: b2:ed:cd:99:31:3a:f9:39:4a:1f:52:df:a8:92:bf:77:de:7f: 8f:fc:11:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjkzNTExMTAvBgNVBAUTKEI1NDc2MjgxRjM1OTREMzg2NDlDQ0NGRjUyRjU4QkI0 OUI0NzVGMDkwHhcNMjUwOTE5MDQ0NzUyWhcNMjUwOTI2MDQ0NzUyWjAYMRYwFAYD VQQDEw02OGNjZTA3OC03ZDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42vRkfJ+DFyhtDnMCZTAN5fvoyaRSPWpdzVKhUeTF3wGTtGUw3YObcW6lEgA VxORpGoyeGhv64goGk2Lk/raH4vvwv3lnOC+vpz6goKUQnTRD0S0Ne9VJ1Xg6NEH GXyZdTjMITXzoudEsu3+gQsbff7cFwfSozbhZD4rpo0uGW29h80ayzpygLws7tzR pv+z/13MrqfVF9abem0wDCM7RePxNn95vqul/XY1WHMuyqeopSn7OGW2bPZpEfXA H+bquWUJG7PMx5cdh0xcHsC/HxeFn/s3G7AxEbV9Bva4QYghSzOGq+FJbHoZqwcB taedLpgpQrSmCzOqgJQKFR9i6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA5dW9p2 ea1im66zOO9iRIB14y4MMB8GA1UdIwQYMBaAFLVHYoHzWU04ZJzM/1L1i7SbR18J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTM1MS8zMUEwRDE4Mjk0 MDUxMUVFQTg2ODc1NDdDNEY5QUUwMi90VWRpZ2ZOWlRUaGtuTXpfVXZXTHRKdEhY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RVZGlnZk5aVFRoa25Nel9VdldMdEp0SFh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTM1MS8zMUEwRDE4Mjk0MDUxMUVFQTg2ODc1NDdDNEY5QUUwMi90VWRpZ2ZOWlRU aGtuTXpfVXZXTHRKdEhYd2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDD3FJLJXjYxi+F3K+mxkH7K2a7IO7LvAoQZqj/wpIanb8BLHZ0JwPP v431PFpn4pTJv/kIpczKNRJ88aqj4g2O5eS2r1fr79/rvHKO3J0PE0nxRpkeZsY+ r0HbFDsXqT4W2SCyQKoFHpjri+z22WlzXxHYvS7HLNYQs+XafcRXHaNq9pp6UBQ2 jU4eQU3xys14ZYPrKt8Dn4zIKnKKldb6TiCFPCdYv00Fq8sOC0c5oy8C/OsbCE3y cAzdfPqu8mO7wffGr+hld9WkNcFTbJzF1V34oRGDdclt+9HaB4Cura0nKKW2OUjy Kcey7c2ZMTr5OUofUt+okr933n+P/BF2 -----END CERTIFICATE-----Generated at Fri Sep 19 13:58:55 2025 by rpki-client