$ rpki-client -vvf rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft File: aMW6vfwSOWbQX4DD-kI3lELEIgw.mft (raw, json) Hash identifier: PKqdumXbYFS2TxOG8qDPXhjtHqNAqkxdfnQ3dZMNeGg= Subject key identifier: CF:3A:42:4A:85:4E:28:01:68:A5:FE:8C:77:20:11:43:7C:FD:2A:24 Authority key identifier: 68:C5:BA:BD:FC:12:39:66:D0:5F:80:C3:FA:42:37:94:42:C4:22:0C Certificate issuer: /CN=A917201D/serialNumber=68C5BABDFC123966D05F80C3FA42379442C4220C Certificate serial: 34EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft Manifest number: 34D0 Signing time: Thu 18 Sep 2025 14:47:25 +0000 Manifest this update: Thu 18 Sep 2025 14:47:24 +0000 Manifest next update: Thu 25 Sep 2025 14:47:24 +0000 Files and hashes: 1: aMW6vfwSOWbQX4DD-kI3lELEIgw.crl (hash: F+J2JB3upX/5pcIa8DBgzx3VGqxqTHh80jiJK6cBeuA=) 2: E05FE99AB0D511E5B4F68B09C4F9AE02.roa (hash: /edqiqL2miGSNr0uoaTjo4btCNWXItXesGyoq/gND/E=) 3: 73438FF06DED11E9A21D1341C4F9AE02.roa (hash: C4bWHi41cN0y8JVNPFitYHiPYUVvz8I3upa7uMSFTP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.crl rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13548 (0x34ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917201D, serialNumber=68C5BABDFC123966D05F80C3FA42379442C4220C Validity Not Before: Sep 18 14:47:24 2025 GMT Not After : Sep 25 14:47:24 2025 GMT Subject: CN=68cc1b7c-a057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:18:0e:46:b9:80:3b:89:de:4e:f9:be:c2:b6: 24:ba:a5:69:11:f1:41:cf:5e:5b:1d:11:72:e9:d4: 76:54:dc:c6:a9:62:7a:4c:7f:14:3b:4f:d3:c7:35: c8:3d:dd:3b:cc:a1:39:85:b8:ca:f7:34:3a:3e:0f: 0a:ee:af:f9:48:8e:4c:0d:19:a0:7d:5a:f9:aa:6a: 0c:37:d1:94:61:9d:96:0e:b3:7d:44:2e:7d:76:64: b9:3c:25:91:4c:d1:5c:78:71:c0:01:b5:4a:52:d1: 07:f6:ba:c0:3e:36:14:e6:12:9c:ea:68:f5:58:1a: ac:03:a6:9a:d9:fd:40:36:7e:67:a8:34:07:47:86: 61:ca:af:de:55:c8:fb:af:b1:c3:59:ec:1d:32:66: 02:bb:f7:34:fa:d5:70:3c:c2:4d:f5:a5:55:b9:51: 8f:fd:b6:b9:6d:e5:cd:b9:c7:ac:c2:a2:6c:91:46: 0b:01:4d:50:c7:d4:a6:0d:a9:41:cd:41:13:c4:83: 25:d9:29:bc:43:fc:13:4f:d9:d8:c7:bf:a0:0c:a1: ba:17:26:4d:44:59:85:9c:1a:2f:e0:c1:65:b7:c5: df:c1:61:5a:a6:b3:5d:3c:b7:1a:b1:b7:1d:ca:54: d9:95:27:50:d9:01:96:f5:2c:2a:f4:73:a6:13:48: 9c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:3A:42:4A:85:4E:28:01:68:A5:FE:8C:77:20:11:43:7C:FD:2A:24 X509v3 Authority Key Identifier: keyid:68:C5:BA:BD:FC:12:39:66:D0:5F:80:C3:FA:42:37:94:42:C4:22:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMW6vfwSOWbQX4DD-kI3lELEIgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917201D/CD1E29481D9211E2A3B1F4F508B02CD2/aMW6vfwSOWbQX4DD-kI3lELEIgw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:e0:65:18:8b:8a:c2:0a:92:b0:51:4b:8b:60:a8:46:7b:76: e9:d1:32:0c:d4:a2:b6:bc:e9:47:67:7c:95:c2:5a:d7:d3:4f: a3:19:8f:18:4d:ea:3c:0e:0c:46:bd:73:34:4c:45:6a:ea:49: 14:28:41:71:28:5f:54:ed:46:ae:74:0d:f8:fc:ad:d0:68:12: 2f:6b:b6:a1:45:88:e6:4e:55:6a:6d:24:8b:38:99:8e:5a:a5: 62:ab:e7:5f:7f:6d:10:0c:21:eb:28:21:6c:2b:ad:50:fb:33: b1:18:83:3d:2c:83:5d:d4:46:13:04:6c:56:56:ef:a2:db:9c: 44:d3:5c:43:1f:19:81:46:0e:72:ce:63:b2:49:5e:7e:22:5b: ed:06:df:e1:ef:9e:b9:66:ee:2c:2f:b2:63:4b:1c:f8:ce:cf: 89:6a:b6:0b:13:03:a1:52:ea:ea:fb:93:08:d8:08:e7:35:a5: 1a:fc:46:d7:c6:b6:d1:ea:6b:ca:f2:13:43:7e:a2:60:02:c8: 6f:2b:cf:02:c7:a9:e1:c0:12:d4:de:e6:80:7e:00:2f:68:2c: f7:dd:6e:f3:4d:44:19:63:40:c2:25:fc:b8:b5:38:bb:76:39: fa:7b:a9:a6:4a:e5:e4:ad:f0:cb:09:44:10:a2:c5:85:5d:18: a5:6d:12:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIwMUQxMTAvBgNVBAUTKDY4QzVCQUJERkMxMjM5NjZEMDVGODBDM0ZBNDIzNzk0 NDJDNDIyMEMwHhcNMjUwOTE4MTQ0NzI0WhcNMjUwOTI1MTQ0NzI0WjAYMRYwFAYD VQQDEw02OGNjMWI3Yy1hMDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBgORrmAO4neTvm+wrYkuqVpEfFBz15bHRFy6dR2VNzGqWJ6TH8UO0/TxzXI Pd07zKE5hbjK9zQ6Pg8K7q/5SI5MDRmgfVr5qmoMN9GUYZ2WDrN9RC59dmS5PCWR TNFceHHAAbVKUtEH9rrAPjYU5hKc6mj1WBqsA6aa2f1ANn5nqDQHR4Zhyq/eVcj7 r7HDWewdMmYCu/c0+tVwPMJN9aVVuVGP/ba5beXNuceswqJskUYLAU1Qx9SmDalB zUETxIMl2Sm8Q/wTT9nYx7+gDKG6FyZNRFmFnBov4MFlt8XfwWFaprNdPLcasbcd ylTZlSdQ2QGW9Swq9HOmE0icLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM86QkqF TigBaKX+jHcgEUN8/SokMB8GA1UdIwQYMBaAFGjFur38Ejlm0F+Aw/pCN5RCxCIM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjAxRC9DRDFFMjk0ODFE OTIxMUUyQTNCMUY0RjUwOEIwMkNEMi9hTVc2dmZ3U09XYlFYNERELWtJM2xFTEVJ Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNVzZ2ZndTT1diUVg0REQta0kzbEVMRUlndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjAxRC9DRDFFMjk0ODFEOTIxMUUyQTNCMUY0RjUwOEIwMkNEMi9hTVc2dmZ3U09X YlFYNERELWtJM2xFTEVJZ3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDB4GUYi4rCCpKwUUuLYKhGe3bp0TIM1KK2vOlHZ3yVwlrX00+jGY8Y Teo8DgxGvXM0TEVq6kkUKEFxKF9U7UaudA34/K3QaBIva7ahRYjmTlVqbSSLOJmO WqViq+dff20QDCHrKCFsK61Q+zOxGIM9LINd1EYTBGxWVu+i25xE01xDHxmBRg5y zmOySV5+IlvtBt/h7565Zu4sL7JjSxz4zs+JarYLEwOhUurq+5MI2AjnNaUa/EbX xrbR6mvK8hNDfqJgAshvK88Cx6nhwBLU3uaAfgAvaCz33W7zTUQZY0DCJfy4tTi7 djn6e6mmSuXkrfDLCUQQosWFXRilbRJS -----END CERTIFICATE-----Generated at Thu Sep 18 23:27:48 2025 by rpki-client