$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft File: _-KgNynzLTIiepnJJRWMgspUuVc.mft (raw, json) Hash identifier: Lr3el6DtPk9PX0sIo2+gTdynbb6j3JLI8LPEVhenKXQ= Subject key identifier: B8:70:F5:08:A4:C1:43:F9:25:59:06:1A:A8:35:EC:E7:FC:F3:45:A7 Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Certificate serial: 34EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft Manifest number: 34D9 Signing time: Thu 18 Sep 2025 14:23:48 +0000 Manifest this update: Thu 18 Sep 2025 14:23:47 +0000 Manifest next update: Thu 25 Sep 2025 14:23:47 +0000 Files and hashes: 1: _-KgNynzLTIiepnJJRWMgspUuVc.crl (hash: YiVvEax3sKSqz0JZQoWT8KkExkej+l7u+klvpzRO+Ic=) 2: A0121BD4871711EA924C6626C4F9AE02.roa (hash: TsmW3wUGCspNY1UcKJcNnUuuDH7qDphY3UYVmmAdbDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:23:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13547 (0x34eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917225D, serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Validity Not Before: Sep 18 14:23:47 2025 GMT Not After : Sep 25 14:23:47 2025 GMT Subject: CN=68cc15f4-d911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7a:f0:34:1d:27:35:cb:0f:4e:80:7b:22:30: f3:60:fc:a3:c4:ce:ba:02:c1:7e:a4:64:8b:4d:de: 9c:ee:b6:24:1d:48:9d:9f:84:a1:76:00:65:04:4e: d1:f5:bc:11:93:73:94:e9:ea:ea:8f:23:5b:a6:de: 61:c1:47:39:cf:ab:97:09:b4:27:7d:7e:50:54:8d: ad:c1:04:0f:52:fd:f7:fa:d4:9f:41:73:37:ab:1b: b5:84:7e:dc:e5:ce:4a:41:1b:99:b1:9f:a9:15:a0: 18:24:d4:7c:ce:e3:8e:4d:3c:f0:17:31:89:0d:f2: ce:6d:d5:91:81:48:dc:16:c9:32:eb:eb:ce:bd:e2: 2d:42:cc:4b:60:ec:bd:a1:c0:62:16:aa:7f:2f:0f: 13:ee:12:ce:cb:c7:86:1d:67:9b:fc:ad:3d:2e:93: 6f:de:0f:11:13:a0:b9:c1:96:0d:5a:75:04:0f:6f: 3e:13:49:e4:45:52:e9:6c:8f:94:ca:af:15:b6:4f: 86:40:1d:57:27:7b:80:4d:94:e6:14:fd:02:41:a9: 4c:20:22:30:87:41:d3:cb:e1:d9:b7:ae:90:12:1b: 80:ea:83:56:b8:e6:3e:ba:e9:d0:1f:6f:76:16:e2: 50:eb:05:04:4f:6e:7c:aa:81:fa:44:53:ae:cb:d5: 67:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:70:F5:08:A4:C1:43:F9:25:59:06:1A:A8:35:EC:E7:FC:F3:45:A7 X509v3 Authority Key Identifier: keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:d0:db:81:75:4d:36:42:96:f6:4d:06:91:fe:16:72:8d:df: cf:98:1a:d3:d2:b6:92:c0:b9:b7:cc:76:50:0d:b0:ef:bc:26: 5a:1b:90:f6:e2:60:14:db:86:0a:7e:75:58:a9:07:77:5c:51: be:5f:ca:18:61:95:54:94:cd:2e:61:a6:9c:54:f7:02:9d:91: a9:a4:01:2b:4c:95:32:fb:d7:bb:77:ad:23:28:93:6b:be:e3: 1b:a0:0c:18:ae:00:c0:3f:7e:dd:3e:11:af:dd:d3:a0:a7:45: 4e:ce:3e:c3:65:0a:71:7d:a2:da:c9:bf:1c:c2:d3:fa:25:c8: cf:b4:a9:aa:18:d0:06:6f:34:fc:3d:a8:a7:b4:7e:21:79:cb: 3b:e0:e0:c9:b1:b0:9c:ab:db:c4:94:8c:63:7a:9e:f9:96:b3: 45:71:2d:d6:2e:74:4c:d0:47:7e:ae:84:c2:99:e8:65:83:2d: 33:59:19:48:c5:7a:49:47:a2:c9:4a:58:91:f3:b6:b9:b0:f2: 0a:e7:e1:76:fc:d9:47:c3:d8:df:46:c2:36:9d:51:df:a6:d8: 0a:19:8a:b0:1f:b9:4a:85:6d:22:6e:9e:69:09:29:f7:50:76: 78:07:0f:9d:2e:fd:21:6a:30:c4:f8:8f:06:63:10:ab:71:37: 39:d1:63:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyNUQxMTAvBgNVBAUTKEZGRTJBMDM3MjlGMzJEMzIyMjdBOTlDOTI1MTU4Qzgy Q0E1NEI5NTcwHhcNMjUwOTE4MTQyMzQ3WhcNMjUwOTI1MTQyMzQ3WjAYMRYwFAYD VQQDEw02OGNjMTVmNC1kOTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHrwNB0nNcsPToB7IjDzYPyjxM66AsF+pGSLTd6c7rYkHUidn4ShdgBlBE7R 9bwRk3OU6erqjyNbpt5hwUc5z6uXCbQnfX5QVI2twQQPUv33+tSfQXM3qxu1hH7c 5c5KQRuZsZ+pFaAYJNR8zuOOTTzwFzGJDfLObdWRgUjcFsky6+vOveItQsxLYOy9 ocBiFqp/Lw8T7hLOy8eGHWeb/K09LpNv3g8RE6C5wZYNWnUED28+E0nkRVLpbI+U yq8Vtk+GQB1XJ3uATZTmFP0CQalMICIwh0HTy+HZt66QEhuA6oNWuOY+uunQH292 FuJQ6wUET258qoH6RFOuy9VnWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLhw9Qik wUP5JVkGGqg17Of880WnMB8GA1UdIwQYMBaAFP/ioDcp8y0yInqZySUVjILKVLlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjI1RC8xRjU1MDgzMDFE ODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxUSWllcG5KSlJXTWdzcFV1 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tS2dOeW56TFRJaWVwbkpKUldNZ3NwVXVWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjI1RC8xRjU1MDgzMDFEODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxU SWllcG5KSlJXTWdzcFV1VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBq0NuBdU02Qpb2TQaR/hZyjd/PmBrT0raSwLm3zHZQDbDvvCZaG5D2 4mAU24YKfnVYqQd3XFG+X8oYYZVUlM0uYaacVPcCnZGppAErTJUy+9e7d60jKJNr vuMboAwYrgDAP37dPhGv3dOgp0VOzj7DZQpxfaLayb8cwtP6JcjPtKmqGNAGbzT8 PaintH4hecs74ODJsbCcq9vElIxjep75lrNFcS3WLnRM0Ed+roTCmehlgy0zWRlI xXpJR6LJSliR87a5sPIK5+F2/NlHw9jfRsI2nVHfptgKGYqwH7lKhW0ibp5pCSn3 UHZ4Bw+dLv0hajDE+I8GYxCrcTc50WOP -----END CERTIFICATE-----Generated at Fri Sep 19 02:28:52 2025 by rpki-client