$ rpki-client -vvf rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft File: 0fxphnCiQetFTVXFZ6paY1rwoGM.mft (raw, json) Hash identifier: 08yFQirBKlmwqiMNFtpRxd6r6rhGgUyTFMEXPyRSxPk= Subject key identifier: 99:23:A1:34:AB:FF:D4:A7:4A:31:00:93:73:44:C7:DF:33:F9:36:AF Authority key identifier: D1:FC:69:86:70:A2:41:EB:45:4D:55:C5:67:AA:5A:63:5A:F0:A0:63 Certificate issuer: /CN=A918681B/serialNumber=D1FC698670A241EB454D55C567AA5A635AF0A063 Certificate serial: 0533 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fxphnCiQetFTVXFZ6paY1rwoGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft Manifest number: 0527 Signing time: Mon 08 Sep 2025 23:38:58 +0000 Manifest this update: Mon 08 Sep 2025 23:38:57 +0000 Manifest next update: Mon 15 Sep 2025 23:38:57 +0000 Files and hashes: 1: 0fxphnCiQetFTVXFZ6paY1rwoGM.crl (hash: EgvGUTT8Dn6WgYiJmaHDxpEPKcwlr6q+l//yA18QVEQ=) 2: 5D4D3E261A3E11ECB42D0B80C4F9AE02.roa (hash: Am0tyv0SW/vQBy5lGTGy4TYfxwQ9Lc6UrqhzC51ywy4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.crl rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fxphnCiQetFTVXFZ6paY1rwoGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 23:38:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1331 (0x533) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918681B, serialNumber=D1FC698670A241EB454D55C567AA5A635AF0A063 Validity Not Before: Sep 8 23:38:57 2025 GMT Not After : Sep 15 23:38:57 2025 GMT Subject: CN=68bf6912-c40d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:41:10:64:b8:ca:13:92:58:27:8e:94:5b:2c: 33:34:64:15:1c:e4:d3:23:24:9a:62:8e:22:d5:eb: 8d:5e:47:5e:71:d7:cc:36:5b:5a:ce:32:cd:2b:17: 5d:d7:20:47:a2:3d:a4:67:ce:33:9e:ae:a5:3d:8c: 46:d5:c6:05:80:83:9d:01:ab:f3:25:b6:60:a7:2d: 01:7e:96:7e:85:5c:52:54:47:d3:24:28:57:db:05: 42:c9:28:7b:fe:92:a2:a3:d5:87:b8:a1:3e:b0:eb: 04:e7:98:dd:36:ef:3b:be:02:42:a8:61:ba:2a:12: 96:05:45:10:f6:f5:fd:1a:e6:75:d9:63:cb:e1:2e: 95:9d:2e:a1:77:d9:7a:53:c7:80:81:a0:4a:52:ee: e2:49:b9:35:42:e9:0f:2d:77:05:44:95:95:a3:8f: 3a:d2:06:ae:c6:9c:ed:59:2e:09:b6:55:2b:36:52: 51:0f:b3:4b:11:8b:ca:6c:cd:24:79:16:8f:b0:4a: f6:17:94:ea:a9:e3:3d:a1:63:be:39:79:0a:d1:fd: 7c:6a:91:24:43:77:72:6a:55:3b:68:67:b3:7e:ba: e9:cd:03:62:30:be:3b:66:92:2e:48:38:a6:d6:e6: a1:c9:3a:08:3a:b2:f3:ba:98:4f:50:ae:4b:86:e6: 70:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:23:A1:34:AB:FF:D4:A7:4A:31:00:93:73:44:C7:DF:33:F9:36:AF X509v3 Authority Key Identifier: keyid:D1:FC:69:86:70:A2:41:EB:45:4D:55:C5:67:AA:5A:63:5A:F0:A0:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fxphnCiQetFTVXFZ6paY1rwoGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918681B/C43FBD061A3A11EC8FBF417BC4F9AE02/0fxphnCiQetFTVXFZ6paY1rwoGM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:fa:19:4e:4e:a1:97:4b:04:c5:8c:83:c0:e4:f4:87:ae:7b: 91:88:3b:7e:46:a9:a8:88:7f:56:5b:94:d5:3b:ce:dd:9e:35: 4f:0c:d0:59:e3:67:d7:1e:16:6a:ec:e2:c7:2a:28:a8:84:45: a8:6c:1e:3b:d7:71:a3:db:2b:62:6b:d7:2d:6a:86:0b:70:6d: 12:d3:82:86:b4:6a:59:34:32:43:55:f2:fd:6a:1a:cf:37:83: 4f:16:db:5d:07:18:9e:ae:dd:f1:f4:31:95:61:cd:d5:a3:22: 46:13:3a:66:74:a1:97:83:92:0f:ac:3d:65:8d:9a:82:c6:ee: 88:7a:9d:74:3b:ca:37:ee:4c:70:ef:a4:40:e4:84:75:70:36: 3a:46:71:2e:8d:ab:ce:76:d8:ab:59:8c:0f:07:72:1a:31:05: 1d:dc:66:bc:c4:26:91:ad:bf:d9:2b:57:e1:f4:51:ac:0e:33: 23:76:18:c4:c9:9c:f8:9a:f1:de:82:fd:f8:bd:75:c2:fd:b3: 3e:16:bc:e2:c4:b2:a3:a5:4b:24:e1:9a:75:7d:0a:53:00:c2: 0b:d3:76:63:93:11:0a:5f:99:d0:af:1d:19:50:98:f4:87:9f: 48:b4:f3:85:0b:41:97:e2:9c:d8:6b:ea:79:ce:68:6f:af:64: e7:fa:63:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY4MUIxMTAvBgNVBAUTKEQxRkM2OTg2NzBBMjQxRUI0NTRENTVDNTY3QUE1QTYz NUFGMEEwNjMwHhcNMjUwOTA4MjMzODU3WhcNMjUwOTE1MjMzODU3WjAYMRYwFAYD VQQDEw02OGJmNjkxMi1jNDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEEQZLjKE5JYJ46UWywzNGQVHOTTIySaYo4i1euNXkdecdfMNltazjLNKxdd 1yBHoj2kZ84znq6lPYxG1cYFgIOdAavzJbZgpy0BfpZ+hVxSVEfTJChX2wVCySh7 /pKio9WHuKE+sOsE55jdNu87vgJCqGG6KhKWBUUQ9vX9GuZ12WPL4S6VnS6hd9l6 U8eAgaBKUu7iSbk1QukPLXcFRJWVo4860gauxpztWS4JtlUrNlJRD7NLEYvKbM0k eRaPsEr2F5TqqeM9oWO+OXkK0f18apEkQ3dyalU7aGezfrrpzQNiML47ZpIuSDim 1uahyToIOrLzuphPUK5LhuZwdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkjoTSr /9SnSjEAk3NEx98z+TavMB8GA1UdIwQYMBaAFNH8aYZwokHrRU1VxWeqWmNa8KBj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjgxQi9DNDNGQkQwNjFB M0ExMUVDOEZCRjQxN0JDNEY5QUUwMi8wZnhwaG5DaVFldEZUVlhGWjZwYVkxcndv R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmeHBobkNpUWV0RlRWWEZaNnBhWTFyd29HTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NjgxQi9DNDNGQkQwNjFBM0ExMUVDOEZCRjQxN0JDNEY5QUUwMi8wZnhwaG5DaVFl dEZUVlhGWjZwYVkxcndvR00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs+hlOTqGXSwTFjIPA5PSHrnuRiDt+RqmoiH9WW5TVO87dnjVPDNBZ 42fXHhZq7OLHKiiohEWobB4713Gj2ytia9ctaoYLcG0S04KGtGpZNDJDVfL9ahrP N4NPFttdBxiert3x9DGVYc3VoyJGEzpmdKGXg5IPrD1ljZqCxu6Iep10O8o37kxw 76RA5IR1cDY6RnEujavOdtirWYwPB3IaMQUd3Ga8xCaRrb/ZK1fh9FGsDjMjdhjE yZz4mvHegv34vXXC/bM+FrzixLKjpUsk4Zp1fQpTAMIL03ZjkxEKX5nQrx0ZUJj0 h59ItPOFC0GX4pzYa+p5zmhvr2Tn+mPd -----END CERTIFICATE-----Generated at Wed Sep 10 14:04:30 2025 by rpki-client