$ rpki-client -vvf rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft File: lUpwG6oMkx0BduSFt6KHwTFlJg4.mft (raw, json) Hash identifier: +Fcq2789QDvUSVASWQM0sjJ0jcKpUUoMk30Lx1cRRpQ= Subject key identifier: 0B:CB:B4:50:4E:18:8A:D8:3B:98:3E:7C:C4:48:BE:B7:E5:31:34:6E Authority key identifier: 95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E Certificate issuer: /CN=A9185CED/serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Certificate serial: 066F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft Manifest number: 066C Signing time: Mon 08 Sep 2025 22:33:57 +0000 Manifest this update: Mon 08 Sep 2025 22:33:56 +0000 Manifest next update: Mon 15 Sep 2025 22:33:56 +0000 Files and hashes: 1: lUpwG6oMkx0BduSFt6KHwTFlJg4.crl (hash: ZFHkurQJ3Uak5jtbsjn0LhzPiT/N2iE6w0WY2YhKMl0=) 2: 3A84DC2C44E411EFB0C1A135C4F9AE02.roa (hash: hzbXrtnctw9RaO4u4LO+M5su44TkMPAo6wV59Ue+QJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 22:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1647 (0x66f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185CED, serialNumber=954A701BAA0C931D0176E485B7A287C13165260E Validity Not Before: Sep 8 22:33:56 2025 GMT Not After : Sep 15 22:33:56 2025 GMT Subject: CN=68bf59d4-4fd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e3:db:36:5a:64:0d:f3:68:c0:8b:44:9d:e8: 6f:80:c9:c8:a5:be:e6:7d:7d:79:8c:c7:6f:7a:28: d3:2f:1b:73:46:a0:5a:1d:98:3c:59:ab:f9:87:29: f5:4b:74:4b:f4:5b:84:42:ff:d1:88:64:f7:60:7f: 6b:5a:9c:5f:86:a4:1d:72:e3:5e:65:d0:6e:5a:17: b3:d3:fa:c5:a4:4c:16:17:67:d6:e8:47:00:6f:1d: a7:56:19:55:66:d0:4b:b9:42:2b:44:2b:43:f4:94: d4:ca:0c:de:6c:f8:d4:58:2d:04:38:6b:42:bd:b9: 4b:e0:ad:91:f5:c0:69:f6:e0:b9:c3:48:8f:ff:e3: 3d:e5:47:ad:75:23:52:90:37:b2:59:e9:25:b3:4b: 0f:c7:12:00:2e:06:b5:ee:42:33:c3:b0:12:bc:c9: 67:74:ee:0a:79:8b:71:a6:69:0f:5a:0d:3b:ba:fe: 21:8e:c9:56:2d:55:ac:79:94:ff:30:45:db:1d:09: 09:86:9d:14:cf:46:76:a8:ed:61:c2:e7:26:85:0b: c7:57:78:cf:a9:f4:e2:6b:9c:30:be:64:1e:73:6d: 0b:79:cb:e8:bf:0c:60:2c:34:29:f9:de:c1:56:13: 9a:6a:08:1e:2a:6e:e5:ae:97:0a:91:74:30:ad:12: 00:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:CB:B4:50:4E:18:8A:D8:3B:98:3E:7C:C4:48:BE:B7:E5:31:34:6E X509v3 Authority Key Identifier: keyid:95:4A:70:1B:AA:0C:93:1D:01:76:E4:85:B7:A2:87:C1:31:65:26:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lUpwG6oMkx0BduSFt6KHwTFlJg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185CED/1AAF7D94922711EBBE734F40C4F9AE02/lUpwG6oMkx0BduSFt6KHwTFlJg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:e9:01:b7:3d:1c:ff:b7:ea:3c:d2:90:4f:9a:3a:f9:41:73: 86:d6:e2:76:7b:a2:f0:59:cb:78:05:2d:7a:41:09:dd:06:cb: df:6d:18:6a:32:1b:a2:2b:a2:7d:97:a4:4d:e8:40:53:a1:4b: aa:91:b6:df:dc:c9:e0:39:4b:1c:39:47:7a:f9:8d:ef:7c:fb: b5:73:49:05:31:4e:f1:42:d4:83:7e:bf:b1:42:b2:1e:c2:6e: cc:24:2a:82:65:fe:d7:22:40:9b:86:0e:a3:96:36:b0:26:be: b0:fb:d3:aa:c2:01:55:7f:e0:f2:fa:98:90:6f:1e:46:55:c6: da:4d:95:fa:17:bb:53:b8:bc:34:d4:e4:68:d9:2a:47:d4:ec: a6:40:61:4b:01:65:6d:2e:76:11:9d:29:b4:5f:7a:d2:00:c4: 45:ad:2b:19:90:e2:da:3c:11:ed:49:4c:55:2e:fb:74:aa:39: d8:f1:1c:b2:7c:ea:5c:4d:9f:a7:4d:ac:44:e9:0a:0e:9c:0c: cb:01:6a:e1:ec:fc:e1:58:fe:0c:8a:ea:12:74:cb:57:6d:cf: 57:b4:d2:c2:6f:66:53:5c:39:af:62:b4:f8:55:c0:c2:95:82: 56:62:fc:3b:c2:e7:34:3c:e9:2c:89:64:b2:92:ee:6d:07:61: fe:98:e1:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVDRUQxMTAvBgNVBAUTKDk1NEE3MDFCQUEwQzkzMUQwMTc2RTQ4NUI3QTI4N0Mx MzE2NTI2MEUwHhcNMjUwOTA4MjIzMzU2WhcNMjUwOTE1MjIzMzU2WjAYMRYwFAYD VQQDEw02OGJmNTlkNC00ZmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+PbNlpkDfNowItEnehvgMnIpb7mfX15jMdveijTLxtzRqBaHZg8Wav5hyn1 S3RL9FuEQv/RiGT3YH9rWpxfhqQdcuNeZdBuWhez0/rFpEwWF2fW6EcAbx2nVhlV ZtBLuUIrRCtD9JTUygzebPjUWC0EOGtCvblL4K2R9cBp9uC5w0iP/+M95UetdSNS kDeyWekls0sPxxIALga17kIzw7ASvMlndO4KeYtxpmkPWg07uv4hjslWLVWseZT/ MEXbHQkJhp0Uz0Z2qO1hwucmhQvHV3jPqfTia5wwvmQec20LecvovwxgLDQp+d7B VhOaaggeKm7lrpcKkXQwrRIAhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAvLtFBO GIrYO5g+fMRIvrflMTRuMB8GA1UdIwQYMBaAFJVKcBuqDJMdAXbkhbeih8ExZSYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUNFRC8xQUFGN0Q5NDky MjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4MEJkdVNGdDZLSHdURmxK ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xVcHdHNm9Na3gwQmR1U0Z0NktId1RGbEpnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUNFRC8xQUFGN0Q5NDkyMjcxMUVCQkU3MzRGNDBDNEY5QUUwMi9sVXB3RzZvTWt4 MEJkdVNGdDZLSHdURmxKZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY6QG3PRz/t+o80pBPmjr5QXOG1uJ2e6LwWct4BS16QQndBsvfbRhq MhuiK6J9l6RN6EBToUuqkbbf3MngOUscOUd6+Y3vfPu1c0kFMU7xQtSDfr+xQrIe wm7MJCqCZf7XIkCbhg6jljawJr6w+9OqwgFVf+Dy+piQbx5GVcbaTZX6F7tTuLw0 1ORo2SpH1OymQGFLAWVtLnYRnSm0X3rSAMRFrSsZkOLaPBHtSUxVLvt0qjnY8Ryy fOpcTZ+nTaxE6QoOnAzLAWrh7PzhWP4MiuoSdMtXbc9XtNLCb2ZTXDmvYrT4VcDC lYJWYvw7wuc0POksiWSyku5tB2H+mOHS -----END CERTIFICATE-----Generated at Tue Sep 9 09:51:19 2025 by rpki-client