$ rpki-client -vvf rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.mft File: mRs2LGa5oYApqN1CgVXZfHbgEgk.mft (raw, json) Hash identifier: dD5j1JCmu/zwUxpirFwZN6oHdAQLcTLpA6sLzx39kYk= Subject key identifier: 9B:8D:05:10:5B:68:F4:96:D8:62:3F:13:93:76:D1:AD:F2:E1:A2:83 Authority key identifier: 99:1B:36:2C:66:B9:A1:80:29:A8:DD:42:81:55:D9:7C:76:E0:12:09 Certificate issuer: /CN=A9178D2A/serialNumber=991B362C66B9A18029A8DD428155D97C76E01209 Certificate serial: 055C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs2LGa5oYApqN1CgVXZfHbgEgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.mft Manifest number: 0557 Signing time: Thu 18 Sep 2025 23:44:54 +0000 Manifest this update: Thu 18 Sep 2025 23:44:54 +0000 Manifest next update: Thu 25 Sep 2025 23:44:54 +0000 Files and hashes: 1: mRs2LGa5oYApqN1CgVXZfHbgEgk.crl (hash: YXViEU4DSzSt5naMnhwmx6yXATXMCjtjBI7h6tOj48M=) 2: DB9C041801B311ECBA0E715CC4F9AE02.roa (hash: POPDOMnD2vV8xWQMiufmv3X0702RYs86sixhHrnG1/8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.crl rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs2LGa5oYApqN1CgVXZfHbgEgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 23:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1372 (0x55c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178D2A, serialNumber=991B362C66B9A18029A8DD428155D97C76E01209 Validity Not Before: Sep 18 23:44:54 2025 GMT Not After : Sep 25 23:44:54 2025 GMT Subject: CN=68cc9976-17ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fe:2e:b7:8a:16:ef:88:56:ee:75:b4:a5:73: 79:02:7d:c4:b1:68:f9:84:4c:79:a8:83:f8:f6:42: 64:2f:0c:25:b2:1b:31:e6:67:c5:d2:bc:52:5a:14: 5a:99:c6:62:fb:88:d5:5e:86:5e:f2:6e:5a:06:14: 76:a2:10:7e:34:2d:e7:7e:8f:cb:28:ee:47:03:64: 39:1b:20:57:5a:8a:c3:db:39:90:50:82:b9:e6:4f: 2c:86:f6:42:2b:5c:69:c0:91:1f:53:26:35:4d:f4: fe:79:c2:f0:4c:d3:7b:d0:02:fa:c0:97:ce:2e:3b: 82:d6:52:51:07:2d:c3:b5:8e:d9:9e:45:f7:f4:87: 6c:ca:12:48:cc:4b:93:b1:fa:9c:53:9c:8c:20:3c: 7a:65:77:d2:72:7d:12:d5:62:0e:b3:a5:da:f1:d2: 90:6d:f2:8e:7f:6d:52:ac:81:80:08:22:12:32:da: a1:39:5d:e4:be:10:e6:9b:63:d6:86:05:2d:d4:9a: 95:38:07:bf:72:0c:7f:eb:e7:42:25:6d:23:2e:5e: 28:25:1c:f8:d7:86:c2:00:15:2e:ad:c5:28:1d:ef: 31:52:34:c6:ea:e6:e1:a2:17:5b:36:4d:6a:6e:eb: da:b8:8d:c6:bb:89:b4:9c:84:bd:6c:57:75:59:ad: 25:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:8D:05:10:5B:68:F4:96:D8:62:3F:13:93:76:D1:AD:F2:E1:A2:83 X509v3 Authority Key Identifier: keyid:99:1B:36:2C:66:B9:A1:80:29:A8:DD:42:81:55:D9:7C:76:E0:12:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs2LGa5oYApqN1CgVXZfHbgEgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178D2A/2D2F826601B211ECA57EF55BC4F9AE02/mRs2LGa5oYApqN1CgVXZfHbgEgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:f1:12:b6:e7:bb:b8:ef:a3:a4:f6:97:f4:c6:1c:56:5b:41: 31:82:49:dc:9e:55:33:13:f8:cc:c8:48:70:63:58:c3:95:95: fb:34:18:a6:cc:9e:05:bd:af:d7:07:d9:2a:18:b9:74:7e:3e: 0e:d4:19:29:2e:79:f5:17:aa:a5:b0:c5:b0:cf:ba:ae:ba:5e: 40:37:de:30:50:25:28:97:53:db:0e:a4:be:59:4c:95:2d:d8: 2d:57:e2:76:71:7e:ca:77:fd:b5:1f:00:37:07:59:8a:4c:c9: 0d:bd:dd:98:6f:2f:48:60:ec:3b:fb:bb:32:cb:13:da:fa:70: 71:2a:39:45:8c:4a:20:06:2f:59:34:a4:ff:be:ec:8e:66:fd: 07:7d:1c:4e:7b:35:08:aa:89:af:89:6d:ca:52:21:5d:8b:ca: 40:1a:25:a6:8e:e3:52:48:a4:71:8a:d2:1b:a1:3b:e0:9f:a9: 97:63:ae:1a:da:31:2b:1b:f2:2b:14:85:fc:5b:9b:cf:a9:5f: 21:4a:73:c8:95:0e:7e:61:a3:dd:8b:bc:a9:dc:9b:77:dd:bb: bf:1e:0f:f3:93:38:38:b7:f0:c1:73:f3:ba:74:d1:b5:e0:2d: 83:73:d6:da:04:19:c7:6b:9d:36:69:da:06:75:bd:5c:ab:22: ce:6a:77:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhEMkExMTAvBgNVBAUTKDk5MUIzNjJDNjZCOUExODAyOUE4REQ0MjgxNTVEOTdD NzZFMDEyMDkwHhcNMjUwOTE4MjM0NDU0WhcNMjUwOTI1MjM0NDU0WjAYMRYwFAYD VQQDEw02OGNjOTk3Ni0xN2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtP4ut4oW74hW7nW0pXN5An3EsWj5hEx5qIP49kJkLwwlshsx5mfF0rxSWhRa mcZi+4jVXoZe8m5aBhR2ohB+NC3nfo/LKO5HA2Q5GyBXWorD2zmQUIK55k8shvZC K1xpwJEfUyY1TfT+ecLwTNN70AL6wJfOLjuC1lJRBy3DtY7ZnkX39IdsyhJIzEuT sfqcU5yMIDx6ZXfScn0S1WIOs6Xa8dKQbfKOf21SrIGACCISMtqhOV3kvhDmm2PW hgUt1JqVOAe/cgx/6+dCJW0jLl4oJRz414bCABUurcUoHe8xUjTG6ubhohdbNk1q buvauI3Gu4m0nIS9bFd1Wa0lowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJuNBRBb aPSW2GI/E5N20a3y4aKDMB8GA1UdIwQYMBaAFJkbNixmuaGAKajdQoFV2Xx24BIJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEQyQS8yRDJGODI2NjAx QjIxMUVDQTU3RUY1NUJDNEY5QUUwMi9tUnMyTEdhNW9ZQXBxTjFDZ1ZYWmZIYmdF Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21SczJMR2E1b1lBcHFOMUNnVlhaZkhiZ0Vnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEQyQS8yRDJGODI2NjAxQjIxMUVDQTU3RUY1NUJDNEY5QUUwMi9tUnMyTEdhNW9Z QXBxTjFDZ1ZYWmZIYmdFZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG8RK257u476Ok9pf0xhxWW0ExgkncnlUzE/jMyEhwY1jDlZX7NBim zJ4Fva/XB9kqGLl0fj4O1BkpLnn1F6qlsMWwz7quul5AN94wUCUol1PbDqS+WUyV LdgtV+J2cX7Kd/21HwA3B1mKTMkNvd2Yby9IYOw7+7syyxPa+nBxKjlFjEogBi9Z NKT/vuyOZv0HfRxOezUIqomviW3KUiFdi8pAGiWmjuNSSKRxitIboTvgn6mXY64a 2jErG/IrFIX8W5vPqV8hSnPIlQ5+YaPdi7yp3Jt33bu/Hg/zkzg4t/DBc/O6dNG1 4C2Dc9baBBnHa502adoGdb1cqyLOanf0 -----END CERTIFICATE-----Generated at Sat Sep 20 05:52:30 2025 by rpki-client