$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft File: 0aHv0iQTWusJg56ovbjNxZnOZX8.mft (raw, json) Hash identifier: LxAzI1RGg2dQM5BHVS/Mns+7WzL8vNWhiFTq+7G7074= Subject key identifier: FB:2C:54:AF:A9:F6:CC:DB:4F:9D:83:35:0F:A3:39:C2:4E:AF:90:3C Authority key identifier: D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F Certificate issuer: /CN=A917D9FC/serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Certificate serial: 04C1 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft Manifest number: 04BC Signing time: Sat 06 Sep 2025 16:36:17 +0000 Manifest this update: Sat 06 Sep 2025 16:36:17 +0000 Manifest next update: Sat 13 Sep 2025 16:36:17 +0000 Files and hashes: 1: 0aHv0iQTWusJg56ovbjNxZnOZX8.crl (hash: MEjzF+aT22mqHrvbgXzgazSO6AHzGw4XmGKSuJkRq4M=) 2: AD94C92242BA11ECB1E8FF11C4F9AE02.roa (hash: v+UfHJBNUMJhgU+Hq/Ni7UlIWeTPSw4kY7gKtnOeoHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:36:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1217 (0x4c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9FC, serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Validity Not Before: Sep 6 16:36:17 2025 GMT Not After : Sep 13 16:36:17 2025 GMT Subject: CN=68bc6301-0311 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:32:ba:56:2a:47:5e:87:c5:8a:37:53:f2:21: 16:fb:7b:11:7b:37:28:07:8d:ec:0b:14:4a:32:42: 9b:c4:df:f7:f3:19:5e:61:3a:75:53:6b:30:36:24: ac:17:19:16:f4:79:cb:14:38:cd:19:df:5a:c8:4e: e7:91:9b:29:91:e1:6a:0a:ca:b6:63:db:80:fe:12: f1:bf:c0:d6:69:32:2e:59:f0:18:97:24:79:df:51: 06:f3:8c:b1:99:b1:2b:21:bc:eb:e7:73:68:72:3f: e8:ab:8c:a1:a8:e5:d9:e9:83:42:06:11:be:7d:6a: 00:12:15:62:91:0b:4d:3c:7a:77:38:a1:30:d2:15: e6:98:6f:dc:03:16:8e:25:a5:f9:8b:69:03:b4:9b: 10:b9:44:48:f6:77:27:91:be:b5:c9:8d:5e:88:d9: f7:80:d8:3f:1f:0c:df:99:3a:f1:d0:c9:4d:ee:e4: 5b:d7:d9:67:5a:08:73:19:f6:71:53:8c:f0:f8:25: 7d:24:da:a1:3f:e4:56:32:d7:cc:3a:0f:16:a8:f1: 07:e4:51:0a:00:1b:96:6f:16:57:2c:5d:29:a6:82: 73:05:2a:ed:6b:ac:ed:73:33:a7:39:f5:a1:da:8e: 3e:7a:5f:b9:cd:c0:e6:b9:6c:cb:17:b6:8b:69:d6: cd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:2C:54:AF:A9:F6:CC:DB:4F:9D:83:35:0F:A3:39:C2:4E:AF:90:3C X509v3 Authority Key Identifier: keyid:D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:92:75:6f:3f:6d:65:dc:6a:30:2d:9e:a9:c8:e0:85:c7:a8: d8:d2:60:5c:0a:45:eb:c1:a9:e2:40:67:e0:04:77:03:8f:61: 74:dc:a6:f0:b8:a0:3d:cd:36:65:bf:68:b1:bd:62:b4:6d:11: a7:8d:29:80:f7:65:a3:8d:8a:02:b2:50:5a:28:40:e6:05:c6: 34:31:62:0b:ad:6b:6d:08:6c:f4:30:88:9c:5b:da:84:6e:62: 80:4d:b2:9d:99:eb:c2:1c:9b:ba:57:cf:08:6a:81:60:69:b1: 31:31:0e:e5:ea:5e:94:c6:ee:83:31:0c:f7:9a:8c:88:be:be: 7d:f7:d4:32:af:60:42:28:8d:e0:24:8b:ad:cb:19:97:a0:11: 57:b4:24:52:d4:8c:b1:04:f8:ff:b8:cd:2e:00:26:2b:1b:d7: ad:44:9b:3e:07:ac:16:d9:ff:31:53:f7:11:d5:61:8d:17:e2: 91:cb:e3:c1:92:1c:f1:38:11:e0:8b:1b:d4:7e:1f:5e:45:42: 50:8f:64:6d:be:fd:93:1c:09:5e:a0:90:42:d6:80:40:38:ca: 8e:f6:be:99:34:38:a7:7f:89:d0:46:b5:71:7b:61:1b:dd:2a: d9:f7:a0:bd:2c:b6:85:44:d9:b2:15:35:7c:b8:57:48:a4:3b: 49:ce:33:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5RkMxMTAvBgNVBAUTKEQxQTFFRkQyMjQxMzVBRUIwOTgzOUVBOEJEQjhDREM1 OTlDRTY1N0YwHhcNMjUwOTA2MTYzNjE3WhcNMjUwOTEzMTYzNjE3WjAYMRYwFAYD VQQDEw02OGJjNjMwMS0wMzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDK6VipHXofFijdT8iEW+3sRezcoB43sCxRKMkKbxN/38xleYTp1U2swNiSs FxkW9HnLFDjNGd9ayE7nkZspkeFqCsq2Y9uA/hLxv8DWaTIuWfAYlyR531EG84yx mbErIbzr53Nocj/oq4yhqOXZ6YNCBhG+fWoAEhVikQtNPHp3OKEw0hXmmG/cAxaO JaX5i2kDtJsQuURI9ncnkb61yY1eiNn3gNg/HwzfmTrx0MlN7uRb19lnWghzGfZx U4zw+CV9JNqhP+RWMtfMOg8WqPEH5FEKABuWbxZXLF0ppoJzBSrta6ztczOnOfWh 2o4+el+5zcDmuWzLF7aLadbNEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPssVK+p 9szbT52DNQ+jOcJOr5A8MB8GA1UdIwQYMBaAFNGh79IkE1rrCYOeqL24zcWZzmV/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlGQy83QTMwMkQwMDQy QjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1c0pnNTZvdmJqTnhabk9a WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBhSHYwaVFUV3VzSmc1Nm92YmpOeFpuT1pYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlGQy83QTMwMkQwMDQyQjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1 c0pnNTZvdmJqTnhabk9aWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhknVvP21l3GowLZ6pyOCFx6jY0mBcCkXrwaniQGfgBHcDj2F03Kbw uKA9zTZlv2ixvWK0bRGnjSmA92WjjYoCslBaKEDmBcY0MWILrWttCGz0MIicW9qE bmKATbKdmevCHJu6V88IaoFgabExMQ7l6l6Uxu6DMQz3moyIvr5999Qyr2BCKI3g JIutyxmXoBFXtCRS1IyxBPj/uM0uACYrG9etRJs+B6wW2f8xU/cR1WGNF+KRy+PB khzxOBHgixvUfh9eRUJQj2Rtvv2THAleoJBC1oBAOMqO9r6ZNDinf4nQRrVxe2Eb 3SrZ96C9LLaFRNmyFTV8uFdIpDtJzjNU -----END CERTIFICATE-----Generated at Mon Sep 8 08:47:34 2025 by rpki-client