$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft File: 1jZSRQ6nVZE88xr8-popIaSK4aQ.mft (raw, json) Hash identifier: TaXHf0AAj95+lf2uQFJZFvpuhonVtWxcROZdzroTFBM= Subject key identifier: D9:68:02:B1:EC:E6:2F:F3:A9:6A:EB:D2:50:F6:4A:5B:26:F9:2D:CA Authority key identifier: D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 Certificate issuer: /CN=A917BB1B/serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Certificate serial: 0426 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft Manifest number: 041F Signing time: Wed 17 Sep 2025 00:47:37 +0000 Manifest this update: Wed 17 Sep 2025 00:47:36 +0000 Manifest next update: Wed 24 Sep 2025 00:47:36 +0000 Files and hashes: 1: 1jZSRQ6nVZE88xr8-popIaSK4aQ.crl (hash: DU3bQSElPucOYpTPhDMLQvPpi4ihWar/pAnlU2tWra0=) 2: E69DB7E67F7911EC86DE4B56C4F9AE02.roa (hash: SCsr6a/OxC+h0TbqqqQWA1WP6sx9Kte4TE8O/kgTqE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 00:47:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1062 (0x426) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB1B, serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Validity Not Before: Sep 17 00:47:36 2025 GMT Not After : Sep 24 00:47:36 2025 GMT Subject: CN=68ca0529-835a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:aa:33:43:da:35:a5:27:fc:8c:ae:cf:33:7e: 3f:25:3d:4a:25:4a:3b:75:59:e7:b2:3c:68:30:9c: 3c:b2:2f:09:f8:62:d6:5c:e4:40:2d:e1:8b:bc:eb: c4:c8:ba:60:03:1b:6b:4d:ee:e8:18:62:98:0d:ba: 5e:0f:46:fd:07:aa:c2:85:3b:90:ad:d7:5e:b2:3a: d4:89:8d:dc:74:02:19:d7:d2:95:c2:4e:06:c8:55: c0:70:f8:4f:d5:0e:e0:3f:1a:92:e7:99:34:17:a6: fc:7a:15:e5:38:b4:e0:a1:b7:25:2a:a8:25:e4:1b: f5:e4:7a:d9:5f:ae:bb:86:a2:08:2b:77:9c:29:43: e7:cd:ea:2f:31:3d:4c:ce:90:b5:26:df:7b:dd:55: bc:d1:5c:85:0a:ad:62:8f:76:8f:dc:a5:de:58:1c: 9c:38:8e:02:7e:40:ad:7f:e9:6c:6e:05:75:85:b1: a2:c8:b0:ca:56:4f:1d:8d:1a:8b:aa:e6:aa:e0:0c: e9:f5:bb:27:c6:e8:4e:c4:0a:0a:2b:42:bc:ee:27: 40:04:b2:b8:f6:c3:24:7a:b3:bf:73:51:cb:7f:97: 6b:63:01:58:52:23:69:c8:f0:ad:e5:91:82:2c:00: 0e:a0:48:28:62:f9:5a:14:7f:41:d0:8f:0b:4a:89: 3b:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:68:02:B1:EC:E6:2F:F3:A9:6A:EB:D2:50:F6:4A:5B:26:F9:2D:CA X509v3 Authority Key Identifier: keyid:D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:22:6a:66:b2:19:62:4d:9f:ff:02:46:32:0a:74:29:e9:45: aa:1a:33:13:85:f9:75:32:58:6d:e7:97:ea:34:eb:78:83:22: 72:fd:3e:5a:38:4c:70:ef:93:19:39:d7:76:01:31:0c:4a:4e: b3:48:8a:69:69:da:87:55:ae:a3:f1:8b:7e:37:ba:f9:9f:34: 40:da:c7:54:89:be:cf:8e:60:f9:3d:55:dc:43:5d:50:ae:79: d8:26:96:7a:58:18:b6:c2:6f:2e:73:a1:cc:12:74:bd:3e:46: 88:a6:a7:cf:84:ed:50:f2:ef:08:b3:c7:40:60:3a:75:a0:a7: 0e:07:ea:3b:84:ed:1f:6e:40:b3:1d:7c:ec:7e:fd:8b:24:2e: 60:e9:43:40:54:ca:04:76:f9:4c:59:49:60:50:cb:17:97:62: 90:2c:1a:fc:07:fc:95:61:54:dc:66:02:84:a6:d6:f8:d6:28: 34:d4:d9:f0:c9:a1:36:f4:62:8a:be:b5:33:08:ad:14:d1:d6: c8:f1:08:2d:3e:8b:e6:4d:27:d2:20:ae:51:5a:82:a9:f8:65: 8f:d4:51:d8:50:33:71:88:13:3a:54:0b:32:9d:d0:3f:76:f2: c5:63:68:3d:d7:68:16:2d:ca:c9:9d:9d:97:88:d7:43:71:39: fb:5c:f6:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCMUIxMTAvBgNVBAUTKEQ2MzY1MjQ1MEVBNzU1OTEzQ0YzMUFGQ0ZBOUEyOTIx QTQ4QUUxQTQwHhcNMjUwOTE3MDA0NzM2WhcNMjUwOTI0MDA0NzM2WjAYMRYwFAYD VQQDEw02OGNhMDUyOS04MzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6ozQ9o1pSf8jK7PM34/JT1KJUo7dVnnsjxoMJw8si8J+GLWXORALeGLvOvE yLpgAxtrTe7oGGKYDbpeD0b9B6rChTuQrddesjrUiY3cdAIZ19KVwk4GyFXAcPhP 1Q7gPxqS55k0F6b8ehXlOLTgobclKqgl5Bv15HrZX667hqIIK3ecKUPnzeovMT1M zpC1Jt973VW80VyFCq1ij3aP3KXeWBycOI4CfkCtf+lsbgV1hbGiyLDKVk8djRqL quaq4Azp9bsnxuhOxAoKK0K87idABLK49sMkerO/c1HLf5drYwFYUiNpyPCt5ZGC LAAOoEgoYvlaFH9B0I8LSok7NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNloArHs 5i/zqWrr0lD2Slsm+S3KMB8GA1UdIwQYMBaAFNY2UkUOp1WRPPMa/PqaKSGkiuGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkIxQi9EOUI5Qzg4QzdG MzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZaRTg4eHI4LXBvcElhU0s0 YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFqWlNSUTZuVlpFODh4cjgtcG9wSWFTSzRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkIxQi9EOUI5Qzg4QzdGMzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZa RTg4eHI4LXBvcElhU0s0YVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcImpmshliTZ//AkYyCnQp6UWqGjMThfl1Mlht55fqNOt4gyJy/T5a OExw75MZOdd2ATEMSk6zSIppadqHVa6j8Yt+N7r5nzRA2sdUib7PjmD5PVXcQ11Q rnnYJpZ6WBi2wm8uc6HMEnS9PkaIpqfPhO1Q8u8Is8dAYDp1oKcOB+o7hO0fbkCz HXzsfv2LJC5g6UNAVMoEdvlMWUlgUMsXl2KQLBr8B/yVYVTcZgKEptb41ig01Nnw yaE29GKKvrUzCK0U0dbI8QgtPovmTSfSIK5RWoKp+GWP1FHYUDNxiBM6VAsyndA/ dvLFY2g912gWLcrJnZ2XiNdDcTn7XPaQ -----END CERTIFICATE-----Generated at Fri Sep 19 00:39:04 2025 by rpki-client