$ rpki-client -vvf rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft File: 9TkpGRnN4USwNO8oiwpjR4PoLH8.mft (raw, json) Hash identifier: aSY5O54W423r8imFPjyDBUa/q0PX6hhSRg39AMZIJWc= Subject key identifier: 9C:E8:D3:BB:07:8A:BE:7A:C1:19:7B:E5:2A:60:A0:6C:B2:B8:E8:05 Authority key identifier: F5:39:29:19:19:CD:E1:44:B0:34:EF:28:8B:0A:63:47:83:E8:2C:7F Certificate issuer: /CN=A916C61B/serialNumber=F539291919CDE144B034EF288B0A634783E82C7F Certificate serial: 049F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft Manifest number: 0461 Signing time: Sun 07 Sep 2025 00:47:30 +0000 Manifest this update: Sun 07 Sep 2025 00:47:30 +0000 Manifest next update: Sun 14 Sep 2025 00:47:30 +0000 Files and hashes: 1: 9TkpGRnN4USwNO8oiwpjR4PoLH8.crl (hash: icpkYUw+CJIkG/HP1twQ3f+ckrtJHeYaHkKr9nxLdGc=) 2: 06B47656E38A11EFA4DDBC1EC4F9AE02.roa (hash: jw0OS28NBUixcPBkwOHR1vk2bGtDUl1DjQdu4UsyyXU=) 3: 976C4E84F72711EFB800B84BC4F9AE02.roa (hash: yyqYiyN6Yt2drA5esyg23pSPV3UCCGrSIBo6P8TjMZ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.crl rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1183 (0x49f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C61B, serialNumber=F539291919CDE144B034EF288B0A634783E82C7F Validity Not Before: Sep 7 00:47:30 2025 GMT Not After : Sep 14 00:47:30 2025 GMT Subject: CN=68bcd622-0b69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:10:49:68:97:f5:f6:25:1a:86:1d:36:97:bf: 8d:5e:ec:97:bf:1b:bf:c2:72:b2:fc:3d:3c:9f:d3: 3a:0d:47:7a:6e:84:5c:b9:04:81:68:df:a8:5f:15: 52:06:87:51:fb:26:af:9a:ec:89:23:1f:0e:9c:3a: 06:d3:35:2d:f4:29:02:93:46:3f:dd:e0:a1:16:9b: 3e:df:19:67:dc:61:2a:a3:51:04:ed:37:50:24:ce: d8:06:85:1b:2c:ff:f2:c7:0c:a6:56:28:25:07:be: 42:c3:95:ad:38:c9:02:1c:44:67:29:82:df:86:76: c8:a0:5e:41:df:69:51:fa:b6:90:20:82:7b:a9:18: f8:c7:dd:9f:3b:87:89:f1:4f:cf:b8:90:b7:90:cb: a6:ff:3c:9f:af:f9:8a:1c:0a:0b:89:ff:e7:90:dd: 28:ef:b7:b9:63:ac:39:43:64:10:44:9e:de:8b:8b: de:aa:3b:e9:7b:3d:5c:20:51:7b:95:20:00:55:a0: a5:e6:1c:5d:c1:49:48:c0:82:93:db:f6:c5:5f:f2: c7:57:8c:e0:01:66:b8:0f:0a:03:f7:36:12:0f:5b: fe:8e:30:bc:27:c8:42:82:b0:d4:2b:a5:12:ae:aa: 7a:23:37:cb:2a:b6:3e:e8:f1:88:b1:6a:23:d1:66: c2:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:E8:D3:BB:07:8A:BE:7A:C1:19:7B:E5:2A:60:A0:6C:B2:B8:E8:05 X509v3 Authority Key Identifier: keyid:F5:39:29:19:19:CD:E1:44:B0:34:EF:28:8B:0A:63:47:83:E8:2C:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9TkpGRnN4USwNO8oiwpjR4PoLH8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C61B/51EFFA30826911ECAD2E9524C4F9AE02/9TkpGRnN4USwNO8oiwpjR4PoLH8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:28:b0:22:17:d6:e6:04:97:ed:e9:28:8d:fe:5a:16:23:28: 91:1d:00:3f:a9:c3:e0:3e:06:ba:c1:c4:44:c5:4d:93:ba:43: 39:82:7a:96:4f:b8:e8:ad:92:93:f8:a7:d6:c2:97:89:01:69: c0:1f:49:8f:d4:40:44:b4:a8:26:a5:b4:3e:79:0e:df:72:20: e5:ef:84:b3:44:de:56:f3:af:1b:22:a3:f2:0b:4d:38:eb:61: 9d:67:93:0d:a9:a1:66:84:ac:98:6a:aa:65:af:38:f1:d9:f1: ed:7a:51:8f:94:ed:5d:05:e6:6a:49:ef:7e:8a:ec:c4:78:f8: 8e:04:f1:d2:cb:d2:3c:35:29:87:51:d8:eb:34:14:db:d4:a9: cf:3d:21:e4:aa:08:a3:43:26:86:26:d6:50:0a:34:99:b9:78: a1:45:df:09:87:65:25:aa:97:34:6d:cf:4a:f6:89:46:aa:3a: b9:4c:34:cc:3b:e6:aa:b6:a1:64:16:38:18:2f:c9:84:1f:d7: e3:9f:70:93:bc:42:5a:90:ae:e6:e9:fe:b1:c0:86:03:86:2c: 7c:e6:bf:c5:8e:b9:a0:f0:19:ba:8e:a0:e0:b5:5c:68:56:10: 54:ac:60:34:04:f1:20:7f:a2:66:c9:50:19:61:fd:82:1d:07: 49:9c:a4:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM2MUIxMTAvBgNVBAUTKEY1MzkyOTE5MTlDREUxNDRCMDM0RUYyODhCMEE2MzQ3 ODNFODJDN0YwHhcNMjUwOTA3MDA0NzMwWhcNMjUwOTE0MDA0NzMwWjAYMRYwFAYD VQQDEw02OGJjZDYyMi0wYjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRBJaJf19iUahh02l7+NXuyXvxu/wnKy/D08n9M6DUd6boRcuQSBaN+oXxVS BodR+yavmuyJIx8OnDoG0zUt9CkCk0Y/3eChFps+3xln3GEqo1EE7TdQJM7YBoUb LP/yxwymViglB75Cw5WtOMkCHERnKYLfhnbIoF5B32lR+raQIIJ7qRj4x92fO4eJ 8U/PuJC3kMum/zyfr/mKHAoLif/nkN0o77e5Y6w5Q2QQRJ7ei4veqjvpez1cIFF7 lSAAVaCl5hxdwUlIwIKT2/bFX/LHV4zgAWa4DwoD9zYSD1v+jjC8J8hCgrDUK6US rqp6IzfLKrY+6PGIsWoj0WbCYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJzo07sH ir56wRl75SpgoGyyuOgFMB8GA1UdIwQYMBaAFPU5KRkZzeFEsDTvKIsKY0eD6Cx/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzYxQi81MUVGRkEzMDgy NjkxMUVDQUQyRTk1MjRDNEY5QUUwMi85VGtwR1JuTjRVU3dOTzhvaXdwalI0UG9M SDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlUa3BHUm5ONFVTd05POG9pd3BqUjRQb0xIOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzYxQi81MUVGRkEzMDgyNjkxMUVDQUQyRTk1MjRDNEY5QUUwMi85VGtwR1JuTjRV U3dOTzhvaXdwalI0UG9MSDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9KLAiF9bmBJft6SiN/loWIyiRHQA/qcPgPga6wcRExU2TukM5gnqW T7jorZKT+KfWwpeJAWnAH0mP1EBEtKgmpbQ+eQ7fciDl74SzRN5W868bIqPyC004 62GdZ5MNqaFmhKyYaqplrzjx2fHtelGPlO1dBeZqSe9+iuzEePiOBPHSy9I8NSmH UdjrNBTb1KnPPSHkqgijQyaGJtZQCjSZuXihRd8Jh2Ulqpc0bc9K9olGqjq5TDTM O+aqtqFkFjgYL8mEH9fjn3CTvEJakK7m6f6xwIYDhix85r/Fjrmg8Bm6jqDgtVxo VhBUrGA0BPEgf6JmyVAZYf2CHQdJnKR0 -----END CERTIFICATE-----Generated at Mon Sep 8 17:36:39 2025 by rpki-client