$ rpki-client -vvf rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft File: fDPCHh829n5MagTrI5AZrXcryyo.mft (raw, json) Hash identifier: 0FmYggN8/9TdDkhHT6nfrrwj31p1s7GLVQNyH/dh0nU= Subject key identifier: F5:1D:E6:9F:A9:27:92:59:B1:06:2E:8A:60:28:5A:A4:E4:39:96:81 Authority key identifier: 7C:33:C2:1E:1F:36:F6:7E:4C:6A:04:EB:23:90:19:AD:77:2B:CB:2A Certificate issuer: /CN=A91836C4/serialNumber=7C33C21E1F36F67E4C6A04EB239019AD772BCB2A Certificate serial: 01F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft Manifest number: 01F6 Signing time: Fri 19 Sep 2025 02:53:12 +0000 Manifest this update: Fri 19 Sep 2025 02:53:12 +0000 Manifest next update: Fri 26 Sep 2025 02:53:12 +0000 Files and hashes: 1: fDPCHh829n5MagTrI5AZrXcryyo.crl (hash: QEmLJDZjAJXAswbv8K3pZ/VmdyFspPbLbnymtDgqaxQ=) 2: 37A0ACFC8FCD11EDB4772D55C4F9AE02.roa (hash: OVe6KSw+7kYYiHPF4YI7Y6sSZ8QGj8mE1P0YOqWt/tI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.crl rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 02:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 505 (0x1f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836C4, serialNumber=7C33C21E1F36F67E4C6A04EB239019AD772BCB2A Validity Not Before: Sep 19 02:53:12 2025 GMT Not After : Sep 26 02:53:12 2025 GMT Subject: CN=68ccc598-2785 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ab:0f:dd:0e:7c:ba:4f:9d:a7:19:f1:7c:fa: 1b:1c:f5:8b:3f:0c:70:a3:6f:f4:a1:e8:f0:91:66: 60:6e:74:53:df:a9:bc:5b:71:d4:9d:ed:05:31:f3: f0:39:58:82:19:c1:fe:df:96:86:b1:bb:d2:62:a9: e4:0d:95:ff:0e:e8:84:74:18:ad:de:32:44:09:ef: 7c:a8:20:b3:05:43:f7:45:2e:e6:88:ef:a4:ba:28: a4:98:a5:2f:01:fb:51:f6:5d:91:e4:07:61:bb:78: 1d:9d:22:20:a2:9f:f3:89:cf:77:93:c7:8a:48:ce: ff:c6:30:f8:fa:ef:e2:62:54:c3:f5:21:f8:d0:7c: 1e:55:92:4d:f8:13:4f:87:a2:f3:ad:66:05:f1:64: 8e:54:31:6a:eb:67:0b:ec:78:e2:ed:cc:9a:31:60: bb:87:3d:45:5f:19:7b:6d:79:c9:b5:c4:d7:60:9c: 8b:4b:30:fe:bc:d0:47:42:bd:ea:49:b6:e1:32:5d: 48:ea:6b:d6:95:31:77:7a:b5:36:99:a9:23:ed:be: 60:0c:98:83:18:ee:9c:1b:84:87:34:73:2e:a4:99: 84:54:20:00:0f:97:2b:04:0a:2d:d0:ee:30:f4:df: 22:95:87:c3:1f:a1:ff:e9:9d:61:6c:28:b3:37:62: 93:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:1D:E6:9F:A9:27:92:59:B1:06:2E:8A:60:28:5A:A4:E4:39:96:81 X509v3 Authority Key Identifier: keyid:7C:33:C2:1E:1F:36:F6:7E:4C:6A:04:EB:23:90:19:AD:77:2B:CB:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:cc:29:0b:32:09:2d:14:d4:24:03:bc:fb:d5:a8:10:a4:56: a8:df:dd:ca:8f:de:f7:82:d6:c7:c8:a7:a7:26:4b:a1:ab:03: 82:23:5a:09:fb:fd:e7:02:76:77:3f:dc:15:77:6e:16:86:21: 1d:44:0e:3e:4d:a2:b0:60:d2:99:ba:22:1a:67:52:a0:e3:69: 2a:13:28:d6:86:82:7b:9f:82:c8:30:5b:bd:aa:40:ac:b6:33: 74:c4:9a:51:7a:b6:37:55:d9:c7:7e:ac:4c:56:79:c3:fc:20: 93:a1:a9:5b:83:4a:e5:d4:3a:94:8e:b5:e2:a8:cb:57:5d:8b: f1:8e:48:04:81:c4:a3:08:28:8a:e1:70:f7:6b:90:a3:ff:43: 40:3a:74:56:28:06:0b:2e:4a:fc:af:3f:ec:3f:b5:e4:cf:8e: e1:80:43:70:0a:96:d9:a3:0f:54:71:9a:1e:de:3f:0e:cb:1c: 0b:61:ac:84:0d:06:f6:1b:07:f5:25:8a:4f:3a:0f:ba:1d:41: 1d:47:77:0e:bd:09:2d:3d:fd:de:84:cf:7a:2f:f8:dc:15:24: 04:26:13:0d:61:19:15:33:82:6c:83:2d:e9:af:b9:ab:d1:a6: ed:c5:5a:ee:99:30:96:d6:29:36:66:84:8e:1b:b1:e1:d9:c9: 78:85:cc:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM2QzQxMTAvBgNVBAUTKDdDMzNDMjFFMUYzNkY2N0U0QzZBMDRFQjIzOTAxOUFE NzcyQkNCMkEwHhcNMjUwOTE5MDI1MzEyWhcNMjUwOTI2MDI1MzEyWjAYMRYwFAYD VQQDEw02OGNjYzU5OC0yNzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5KsP3Q58uk+dpxnxfPobHPWLPwxwo2/0oejwkWZgbnRT36m8W3HUne0FMfPw OViCGcH+35aGsbvSYqnkDZX/DuiEdBit3jJECe98qCCzBUP3RS7miO+kuiikmKUv AftR9l2R5Adhu3gdnSIgop/zic93k8eKSM7/xjD4+u/iYlTD9SH40HweVZJN+BNP h6LzrWYF8WSOVDFq62cL7Hji7cyaMWC7hz1FXxl7bXnJtcTXYJyLSzD+vNBHQr3q SbbhMl1I6mvWlTF3erU2makj7b5gDJiDGO6cG4SHNHMupJmEVCAAD5crBAot0O4w 9N8ilYfDH6H/6Z1hbCizN2KT2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPUd5p+p J5JZsQYuimAoWqTkOZaBMB8GA1UdIwQYMBaAFHwzwh4fNvZ+TGoE6yOQGa13K8sq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzZDNC85RDRCMTA2ODhG Q0ExMUVEQjc5MTEyNTRDNEY5QUUwMi9mRFBDSGg4MjluNU1hZ1RySTVBWnJYY3J5 eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZEUENIaDgyOW41TWFnVHJJNUFaclhjcnl5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzZDNC85RDRCMTA2ODhGQ0ExMUVEQjc5MTEyNTRDNEY5QUUwMi9mRFBDSGg4Mjlu NU1hZ1RySTVBWnJYY3J5eW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzzCkLMgktFNQkA7z71agQpFao393Kj973gtbHyKenJkuhqwOCI1oJ +/3nAnZ3P9wVd24WhiEdRA4+TaKwYNKZuiIaZ1Kg42kqEyjWhoJ7n4LIMFu9qkCs tjN0xJpRerY3VdnHfqxMVnnD/CCToalbg0rl1DqUjrXiqMtXXYvxjkgEgcSjCCiK 4XD3a5Cj/0NAOnRWKAYLLkr8rz/sP7Xkz47hgENwCpbZow9UcZoe3j8OyxwLYayE DQb2Gwf1JYpPOg+6HUEdR3cOvQktPf3ehM96L/jcFSQEJhMNYRkVM4Jsgy3pr7mr 0abtxVrumTCW1ik2ZoSOG7Hh2cl4hcwX -----END CERTIFICATE-----Generated at Fri Sep 19 06:56:06 2025 by rpki-client