$ rpki-client -vvf rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft File: 7LIDs03q4KEdAVCjDvK0opkdepg.mft (raw, json) Hash identifier: XbGu/Xysu1maUiYChZhwlePdxKrl0C3tZly6JcojO9Q= Subject key identifier: D2:0A:1E:E4:DC:CC:77:E6:19:E7:0D:C2:9D:A2:AD:0A:A2:DB:78:2A Authority key identifier: EC:B2:03:B3:4D:EA:E0:A1:1D:01:50:A3:0E:F2:B4:A2:99:1D:7A:98 Certificate issuer: /CN=A9189529/serialNumber=ECB203B34DEAE0A11D0150A30EF2B4A2991D7A98 Certificate serial: 1A00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LIDs03q4KEdAVCjDvK0opkdepg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft Manifest number: 1A00 Signing time: Thu 18 Sep 2025 16:29:30 +0000 Manifest this update: Thu 18 Sep 2025 16:29:29 +0000 Manifest next update: Thu 25 Sep 2025 16:29:29 +0000 Files and hashes: 1: 7LIDs03q4KEdAVCjDvK0opkdepg.crl (hash: oKfHTzwoVB7zNuaoYiSMx3RMbJisM0Ag2qn7OuIB7Xs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.crl rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LIDs03q4KEdAVCjDvK0opkdepg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6656 (0x1a00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189529, serialNumber=ECB203B34DEAE0A11D0150A30EF2B4A2991D7A98 Validity Not Before: Sep 18 16:29:29 2025 GMT Not After : Sep 25 16:29:29 2025 GMT Subject: CN=68cc3369-7702 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d1:68:a3:91:f8:7c:91:02:84:38:e0:2d:bc: d6:b4:8f:9f:5e:09:ed:cd:35:ac:bf:c4:88:4e:60: 49:b0:8f:95:55:11:7c:ca:fa:88:6b:3d:cd:f3:bf: 03:51:0b:27:e9:c1:0a:27:17:fd:32:fd:51:79:b1: 5a:3f:19:0b:e5:48:06:79:03:d8:d4:6c:b5:2b:49: 7e:f4:b2:5c:b0:77:24:96:9a:44:bb:de:5d:eb:7c: 0c:49:1c:37:80:cc:a4:f2:34:4e:29:b3:0c:8a:8c: 9e:76:52:95:39:3c:5b:c8:4f:0f:7c:34:62:46:63: a5:a9:84:34:20:bf:d4:b4:0f:52:53:af:88:56:29: 40:ee:20:fd:91:8f:19:f1:b7:3c:bb:27:13:3d:b3: 0d:a1:51:18:08:ec:a9:09:3c:05:8c:99:66:00:97: bf:00:c4:a7:6b:2a:e2:9a:d4:f1:29:77:5b:dc:57: ca:53:a8:9e:b0:cb:f7:ab:a0:7f:8f:7b:d9:9b:47: 68:b8:35:e2:a3:ce:9c:b0:20:61:52:68:0a:68:96: ce:7a:cd:96:fd:52:97:2d:3c:42:89:f8:fd:d3:f9: 6f:2c:c7:a1:83:c8:93:b2:19:b4:87:08:ad:30:dc: b7:4e:1e:f4:5a:f7:c9:68:ac:18:d2:fb:b0:14:ee: 22:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:0A:1E:E4:DC:CC:77:E6:19:E7:0D:C2:9D:A2:AD:0A:A2:DB:78:2A X509v3 Authority Key Identifier: keyid:EC:B2:03:B3:4D:EA:E0:A1:1D:01:50:A3:0E:F2:B4:A2:99:1D:7A:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LIDs03q4KEdAVCjDvK0opkdepg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:c0:28:0c:1f:60:fb:0b:4f:8c:52:8e:63:42:0d:d2:93:dd: a8:10:73:a4:69:0f:de:1c:44:de:b6:09:9a:50:ac:f5:d8:4c: dd:b4:84:7b:37:df:2c:8c:12:c9:c9:8d:01:a2:f1:0e:8b:11: 36:81:9d:b0:3e:2d:24:f9:e6:83:e2:05:0b:85:17:b5:a0:93: ae:48:5e:ac:17:e4:0c:55:b1:9d:0a:48:2c:10:f7:06:91:fc: 26:d2:10:9f:3f:a9:40:d6:38:ec:ab:ca:49:38:90:2d:e1:6e: f6:7c:b7:cb:17:53:c8:25:a0:35:48:e9:7b:d4:df:40:47:d2: 73:93:52:84:16:f1:53:87:ce:7a:87:ca:a3:e9:2e:5d:d0:3b: 5b:84:fb:1f:d3:b4:9e:0d:a7:99:79:66:4d:eb:f3:16:36:53: 19:6e:81:a3:73:b9:9b:34:a6:c7:eb:d9:1e:22:86:2f:5e:34: f4:45:58:38:6b:61:46:f7:38:53:c6:87:c5:06:39:36:6b:2a: e9:c0:74:27:1e:e9:10:96:bf:df:83:25:da:be:ae:e7:76:2a: 14:a3:cd:52:23:bf:ee:91:e8:dc:d5:c6:23:ff:db:fd:19:91: 35:e9:b3:2f:46:bf:76:80:2c:b9:79:7c:79:e4:c5:4b:fa:e6: 87:58:fe:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk1MjkxMTAvBgNVBAUTKEVDQjIwM0IzNERFQUUwQTExRDAxNTBBMzBFRjJCNEEy OTkxRDdBOTgwHhcNMjUwOTE4MTYyOTI5WhcNMjUwOTI1MTYyOTI5WjAYMRYwFAYD VQQDEw02OGNjMzM2OS03NzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsNFoo5H4fJEChDjgLbzWtI+fXgntzTWsv8SITmBJsI+VVRF8yvqIaz3N878D UQsn6cEKJxf9Mv1RebFaPxkL5UgGeQPY1Gy1K0l+9LJcsHcklppEu95d63wMSRw3 gMyk8jROKbMMioyedlKVOTxbyE8PfDRiRmOlqYQ0IL/UtA9SU6+IVilA7iD9kY8Z 8bc8uycTPbMNoVEYCOypCTwFjJlmAJe/AMSnayrimtTxKXdb3FfKU6iesMv3q6B/ j3vZm0douDXio86csCBhUmgKaJbOes2W/VKXLTxCifj90/lvLMehg8iTshm0hwit MNy3Th70WvfJaKwY0vuwFO4iXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNIKHuTc zHfmGecNwp2irQqi23gqMB8GA1UdIwQYMBaAFOyyA7NN6uChHQFQow7ytKKZHXqY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTUyOS82OTI5RjJDMjVC QkUxMUU3ODk3N0UwMjNDNEY5QUUwMi83TElEczAzcTRLRWRBVkNqRHZLMG9wa2Rl cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdMSURzMDNxNEtFZEFWQ2pEdkswb3BrZGVwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTUyOS82OTI5RjJDMjVCQkUxMUU3ODk3N0UwMjNDNEY5QUUwMi83TElEczAzcTRL RWRBVkNqRHZLMG9wa2RlcGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOwCgMH2D7C0+MUo5jQg3Sk92oEHOkaQ/eHETetgmaUKz12EzdtIR7 N98sjBLJyY0BovEOixE2gZ2wPi0k+eaD4gULhRe1oJOuSF6sF+QMVbGdCkgsEPcG kfwm0hCfP6lA1jjsq8pJOJAt4W72fLfLF1PIJaA1SOl71N9AR9Jzk1KEFvFTh856 h8qj6S5d0DtbhPsf07SeDaeZeWZN6/MWNlMZboGjc7mbNKbH69keIoYvXjT0RVg4 a2FG9zhTxofFBjk2ayrpwHQnHukQlr/fgyXavq7ndioUo81SI7/ukejc1cYj/9v9 GZE16bMvRr92gCy5eXx55MVL+uaHWP7K -----END CERTIFICATE-----Generated at Fri Sep 19 07:14:04 2025 by rpki-client