$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft File: g1KnNOghRPMixQtyik92WjPXIlY.mft (raw, json) Hash identifier: Xo4+xcqMHQLsRNXJ/FvqaaLf6mk9cIXRx11liszgZjc= Subject key identifier: 9F:9E:4B:98:92:EF:4F:6C:8D:A0:23:16:BE:43:C0:31:6B:40:C2:3F Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: 0260 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft Manifest number: 06AF Signing time: Tue 09 Sep 2025 00:13:03 +0000 Manifest this update: Tue 09 Sep 2025 00:13:02 +0000 Manifest next update: Tue 16 Sep 2025 00:13:02 +0000 Files and hashes: 1: g1KnNOghRPMixQtyik92WjPXIlY.crl (hash: 3DP1Y0uamOzIZsHuQ8EPulwEu0M4YUC1jtmkNhpPr0g=) 2: 21E1440A1E7711EFB69BE070C4F9AE02.roa (hash: g9az2eJZ2fUas4ad3d/QH9wXCAIefnJD9ePsqv2jusw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:13:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 608 (0x260) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E, serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Validity Not Before: Sep 9 00:13:02 2025 GMT Not After : Sep 16 00:13:02 2025 GMT Subject: CN=68bf710e-511a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a5:e7:ba:b6:aa:36:ef:87:59:aa:17:9f:65: 83:c6:a1:ff:84:9a:c6:f2:d8:46:cc:d9:8c:08:28: 70:35:93:c4:34:6a:16:4d:66:47:a3:0f:64:8c:08: 99:81:62:5e:bd:97:2f:ca:44:75:8b:07:49:19:88: 3f:c8:4a:82:54:ef:cd:a1:fc:39:ac:1b:a4:6f:12: bd:36:91:ec:79:42:c4:97:c3:51:d6:fb:2f:ef:4d: 78:b8:e0:bb:67:97:51:25:9f:3a:30:57:87:76:a5: ae:b3:d3:5e:25:fc:db:b9:74:10:86:c9:cd:d5:3b: af:f4:56:97:2c:fe:e0:b4:39:be:7b:57:d5:60:d5: 5d:7e:e0:d6:6c:b9:95:d9:dc:2a:c1:3c:8e:41:85: 7c:b5:92:18:3a:09:a3:28:86:9e:71:c3:e6:91:b1: 72:6e:43:52:db:f7:85:2b:59:55:05:90:ce:52:3f: 87:9a:f0:ce:8b:fd:0e:a0:f3:27:99:a0:b8:c0:c5: b7:e3:d2:87:b9:3b:c9:62:f6:c7:3e:ef:45:82:c3: 5d:e1:14:e5:b0:ef:57:d3:ac:ab:3a:09:9b:49:22: 44:66:9e:dc:7d:86:44:cd:3b:ec:a5:a7:be:33:52: 04:f6:2f:39:6b:81:92:90:ce:c3:f6:96:93:82:36: d5:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:9E:4B:98:92:EF:4F:6C:8D:A0:23:16:BE:43:C0:31:6B:40:C2:3F X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:fb:6e:27:30:76:e8:60:57:c3:38:7b:25:33:a2:7f:07:12: 21:93:6b:2d:f4:ae:1a:c0:59:ab:14:b1:13:0c:9e:00:12:3e: ff:5f:07:58:ac:78:4a:ce:a9:00:98:a6:4a:c6:24:d9:c0:12: a5:27:2a:d4:b0:b2:15:49:cd:1b:ed:e3:03:bc:b7:eb:d3:d1: f0:ad:00:b2:c2:a9:71:1d:b9:b8:23:44:75:2a:67:af:b3:50: 6e:fa:58:10:b2:13:7e:1b:78:7e:95:65:3a:2c:60:4d:ac:00: b9:94:2b:19:ed:58:59:31:e3:9d:2d:00:9c:fc:21:4a:2e:01: b5:76:2e:56:63:b6:09:d3:10:81:fe:ff:45:7e:da:16:d7:a8: 61:72:d7:01:a6:6f:35:0f:6b:c9:20:a4:18:90:7c:53:20:9b: 8a:89:20:6d:25:c9:03:e2:6d:60:e3:ff:09:26:cb:f8:29:fb: d0:e2:b9:4e:bc:c9:c1:56:ff:86:b0:2f:a8:63:81:18:31:84: ae:69:92:84:76:20:bb:18:62:62:67:7a:f4:ef:aa:a5:69:2d: 66:25:d2:3b:0a:44:4e:16:4c:1e:97:c4:2a:39:63:60:99:f6: 06:0b:8e:ee:63:46:23:e0:d2:b7:39:34:34:f5:55:aa:37:e2: 76:90:a2:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjUwOTA5MDAxMzAyWhcNMjUwOTE2MDAxMzAyWjAYMRYwFAYD VQQDEw02OGJmNzEwZS01MTFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKXnuraqNu+HWaoXn2WDxqH/hJrG8thGzNmMCChwNZPENGoWTWZHow9kjAiZ gWJevZcvykR1iwdJGYg/yEqCVO/Nofw5rBukbxK9NpHseULEl8NR1vsv7014uOC7 Z5dRJZ86MFeHdqWus9NeJfzbuXQQhsnN1Tuv9FaXLP7gtDm+e1fVYNVdfuDWbLmV 2dwqwTyOQYV8tZIYOgmjKIaeccPmkbFybkNS2/eFK1lVBZDOUj+HmvDOi/0OoPMn maC4wMW349KHuTvJYvbHPu9FgsNd4RTlsO9X06yrOgmbSSJEZp7cfYZEzTvspae+ M1IE9i85a4GSkM7D9paTgjbVMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+eS5iS 709sjaAjFr5DwDFrQMI/MB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzU3RS82MDJENzZEODVENzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQ TWl4UXR5aWs5MldqUFhJbFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAS+24nMHboYFfDOHslM6J/BxIhk2st9K4awFmrFLETDJ4AEj7/XwdY rHhKzqkAmKZKxiTZwBKlJyrUsLIVSc0b7eMDvLfr09HwrQCywqlxHbm4I0R1Kmev s1Bu+lgQshN+G3h+lWU6LGBNrAC5lCsZ7VhZMeOdLQCc/CFKLgG1di5WY7YJ0xCB /v9FftoW16hhctcBpm81D2vJIKQYkHxTIJuKiSBtJckD4m1g4/8JJsv4KfvQ4rlO vMnBVv+GsC+oY4EYMYSuaZKEdiC7GGJiZ3r076qlaS1mJdI7CkROFkwel8QqOWNg mfYGC47uY0Yj4NK3OTQ09VWqN+J2kKJI -----END CERTIFICATE-----Generated at Tue Sep 9 07:52:18 2025 by rpki-client