$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.mft File: jgK1xN61PytxL_B33gSQg3XoE9s.mft (raw, json) Hash identifier: rNL0sfQlOKPf2G1APWX+cT+wvcn0CAjLmxVZI/jc1Ck= Subject key identifier: C2:63:84:EF:C3:C9:12:BB:96:7C:2F:AA:BD:13:82:D0:89:CE:E6:B2 Authority key identifier: 8E:02:B5:C4:DE:B5:3F:2B:71:2F:F0:77:DE:04:90:83:75:E8:13:DB Certificate issuer: /CN=A9185B6D/serialNumber=8E02B5C4DEB53F2B712FF077DE04908375E813DB Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jgK1xN61PytxL_B33gSQg3XoE9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.mft Manifest number: 0116 Signing time: Tue 09 Sep 2025 04:59:01 +0000 Manifest this update: Tue 09 Sep 2025 04:59:01 +0000 Manifest next update: Tue 16 Sep 2025 04:59:01 +0000 Files and hashes: 1: jgK1xN61PytxL_B33gSQg3XoE9s.crl (hash: Tn34HcTgTW31AHBdV97r6mpndykSBR+r0bk3a8H+vOg=) 2: 6F09FF784B3111F0AED6945EC4F9AE02.roa (hash: I1sNkwrJ9A9oI4DVJU2qBgFfehpgUx5dO53gjYthp7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.crl rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jgK1xN61PytxL_B33gSQg3XoE9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 04:59:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D, serialNumber=8E02B5C4DEB53F2B712FF077DE04908375E813DB Validity Not Before: Sep 9 04:59:01 2025 GMT Not After : Sep 16 04:59:01 2025 GMT Subject: CN=68bfb415-64ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:af:ed:70:08:a2:d9:ee:80:b7:5d:22:e1:fa: b4:50:a8:59:ae:f6:72:a8:90:f3:23:32:0d:a7:af: 61:58:ab:9f:75:b6:7d:43:68:22:db:e8:de:2e:59: 44:95:3c:b0:07:86:17:ef:e1:f4:d2:2d:fb:37:16: 3c:68:9d:06:e1:96:17:43:8d:92:20:5b:0d:0f:9d: 1d:4b:9b:8a:0e:4e:2a:8d:32:ce:62:e9:ab:dc:39: 3b:6e:12:7d:2d:d2:fb:5c:47:68:9b:9c:e2:b8:94: b3:a1:24:1b:f4:06:c2:df:d3:86:03:9b:e5:ba:c7: 92:de:9c:62:6b:2c:6a:d1:33:32:7d:8f:7e:f7:4b: 74:8f:5b:c8:13:f5:60:18:2c:51:28:92:b2:fb:90: 98:7c:3d:75:4c:12:c8:9c:69:8b:03:98:f4:5a:27: be:33:d6:13:40:99:82:d6:d3:29:44:cd:4f:ff:61: f5:4b:2d:c8:75:bf:d2:41:49:2d:39:8c:4f:a0:46: ff:f6:10:a9:f8:94:ee:92:d7:b8:9a:b1:f1:1a:2c: ae:9e:e6:10:6e:35:08:f4:20:e3:cf:42:c0:e3:db: 31:01:23:db:20:9f:72:85:ac:ce:f8:58:10:53:96: 58:2f:5e:a3:b0:67:ca:22:6e:17:2e:37:a3:7b:d0: 10:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:63:84:EF:C3:C9:12:BB:96:7C:2F:AA:BD:13:82:D0:89:CE:E6:B2 X509v3 Authority Key Identifier: keyid:8E:02:B5:C4:DE:B5:3F:2B:71:2F:F0:77:DE:04:90:83:75:E8:13:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jgK1xN61PytxL_B33gSQg3XoE9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/21522182E78E11EE9831EB7EC4F9AE02/jgK1xN61PytxL_B33gSQg3XoE9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:8e:e8:45:57:1c:74:cb:72:cb:df:12:16:71:00:e1:88:e4: 6f:73:45:10:78:6c:34:b6:dd:ec:4e:d1:9b:f5:bb:80:2d:1c: b8:a2:a5:71:8c:dc:b7:eb:a9:1f:22:f4:26:be:0f:f1:ff:57: 7e:8d:71:65:53:e9:d9:24:62:4a:ad:c6:21:64:f1:17:3d:11: b7:78:72:1b:d1:e0:2c:31:27:6b:54:7c:ca:cf:53:b8:ee:e7: a7:2b:ac:ca:03:4d:8e:dc:ca:19:9a:9d:ee:b2:c7:c0:36:ac: 3b:7d:70:82:3f:51:28:26:a4:fb:df:33:b9:bc:7b:10:11:3e: 25:49:d3:5f:08:fe:9b:23:08:02:eb:98:1b:86:45:40:8f:0f: 21:53:11:53:62:0f:6e:5f:dc:31:28:de:c6:88:01:9f:c6:cb: 46:77:ea:d1:46:ea:9c:9d:ab:8e:db:5f:bc:0a:c3:d3:e6:16: fa:bc:e6:10:2e:0a:30:11:19:48:b5:83:e9:b1:85:30:f7:8a: e4:f2:b5:ca:7f:8d:2d:35:ef:cd:88:b4:07:1d:e9:60:f3:ac: 22:d5:b5:5f:20:f9:9c:9e:6e:1b:56:ab:2f:26:e0:ba:dd:4f: 71:8d:25:99:d4:0c:b3:8f:0f:b9:a3:d7:02:a0:47:2a:a4:52: a2:6e:de:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNkQxMTAvBgNVBAUTKDhFMDJCNUM0REVCNTNGMkI3MTJGRjA3N0RFMDQ5MDgz NzVFODEzREIwHhcNMjUwOTA5MDQ1OTAxWhcNMjUwOTE2MDQ1OTAxWjAYMRYwFAYD VQQDEw02OGJmYjQxNS02NGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6/tcAii2e6At10i4fq0UKhZrvZyqJDzIzINp69hWKufdbZ9Q2gi2+jeLllE lTywB4YX7+H00i37NxY8aJ0G4ZYXQ42SIFsND50dS5uKDk4qjTLOYumr3Dk7bhJ9 LdL7XEdom5ziuJSzoSQb9AbC39OGA5vluseS3pxiayxq0TMyfY9+90t0j1vIE/Vg GCxRKJKy+5CYfD11TBLInGmLA5j0Wie+M9YTQJmC1tMpRM1P/2H1Sy3Idb/SQUkt OYxPoEb/9hCp+JTukte4mrHxGiyunuYQbjUI9CDjz0LA49sxASPbIJ9yhazO+FgQ U5ZYL16jsGfKIm4XLjeje9AQewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMJjhO/D yRK7lnwvqr0TgtCJzuayMB8GA1UdIwQYMBaAFI4CtcTetT8rcS/wd94EkIN16BPb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI2RC8yMTUyMjE4MkU3 OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9qZ0sxeE42MVB5dHhMX0IzM2dTUWczWG9F OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pnSzF4TjYxUHl0eExfQjMzZ1NRZzNYb0U5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUI2RC8yMTUyMjE4MkU3OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9qZ0sxeE42MVB5 dHhMX0IzM2dTUWczWG9FOXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASjuhFVxx0y3LL3xIWcQDhiORvc0UQeGw0tt3sTtGb9buALRy4oqVx jNy366kfIvQmvg/x/1d+jXFlU+nZJGJKrcYhZPEXPRG3eHIb0eAsMSdrVHzKz1O4 7uenK6zKA02O3MoZmp3ussfANqw7fXCCP1EoJqT73zO5vHsQET4lSdNfCP6bIwgC 65gbhkVAjw8hUxFTYg9uX9wxKN7GiAGfxstGd+rRRuqcnauO21+8CsPT5hb6vOYQ LgowERlItYPpsYUw94rk8rXKf40tNe/NiLQHHelg86wi1bVfIPmcnm4bVqsvJuC6 3U9xjSWZ1Ayzjw+5o9cCoEcqpFKibt5u -----END CERTIFICATE-----Generated at Tue Sep 9 13:28:09 2025 by rpki-client