$ rpki-client -vvf rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft File: 32d9hpNHe5Kh6f58IEImls6oYJ0.mft (raw, json) Hash identifier: zHHrEFgjcfx06d8EW8he86YaNYAogrp0VjeVlOJRibU= Subject key identifier: 0D:58:78:0E:84:03:80:93:49:42:64:9F:5C:07:CE:8C:9A:6C:2E:AC Authority key identifier: DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D Certificate issuer: /CN=A918BDA2/serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Certificate serial: 0350 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft Manifest number: 034B Signing time: Fri 19 Sep 2025 01:26:21 +0000 Manifest this update: Fri 19 Sep 2025 01:26:19 +0000 Manifest next update: Fri 26 Sep 2025 01:26:19 +0000 Files and hashes: 1: 32d9hpNHe5Kh6f58IEImls6oYJ0.crl (hash: aD4IrqcHsQ7bUNqc87TT04NFnpi4mGy0TqgcOQzM0tY=) 2: 756558C6D19611ECB75A996BC4F9AE02.roa (hash: jBN+GZ5K5hQcx74ci+Zj74gtJO93V93U4mPbsdd8SsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 01:26:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 848 (0x350) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BDA2, serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Validity Not Before: Sep 19 01:26:19 2025 GMT Not After : Sep 26 01:26:19 2025 GMT Subject: CN=68ccb13c-cdd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:bc:fd:66:bb:a1:4c:16:4b:ba:1d:df:d6:6f: 3b:53:67:1b:7b:dd:a1:99:dc:b8:00:7d:32:da:2f: 0e:2c:a1:61:62:f6:7b:02:2c:00:8e:4e:f4:30:b2: 3b:9e:95:19:fa:8e:36:92:3a:77:0b:da:87:25:9f: 80:dd:49:83:81:b2:61:91:e4:3f:ea:8a:19:ca:02: 44:04:c3:42:e3:7b:02:f9:00:16:91:5c:61:1b:a1: 73:c0:ca:5d:ec:4e:97:64:5a:29:dd:30:34:34:d0: 38:bc:75:23:de:11:b8:01:93:91:83:b9:94:d1:1e: 1a:fc:71:f9:d2:44:bc:2e:f1:bf:46:85:9b:45:66: 8c:84:2d:96:77:94:19:0d:f8:0f:dd:f0:98:49:bc: c4:80:7f:d7:c8:f6:06:4f:f8:79:6a:9a:84:99:b7: 2f:4b:7a:f5:9c:98:2b:65:c4:eb:9f:28:f4:2f:3e: ad:ad:1f:5e:a2:c9:10:03:97:a7:7e:1c:6c:bf:78: 5e:fd:2e:97:26:3d:f7:32:3d:de:13:9d:db:64:cb: 07:26:76:6c:db:57:8f:de:1c:38:9c:b3:08:e3:35: 32:44:ce:82:a4:92:92:68:e2:af:a9:ea:ef:18:54: 5c:b4:32:4b:1a:6a:29:4f:05:d6:09:7b:25:8c:22: 62:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:58:78:0E:84:03:80:93:49:42:64:9F:5C:07:CE:8C:9A:6C:2E:AC X509v3 Authority Key Identifier: keyid:DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:23:e9:c3:fa:6c:e7:67:ae:66:24:bb:91:e1:aa:0f:df:78: e7:fb:6a:01:9d:01:76:42:fa:18:69:95:ee:3b:aa:17:8f:ad: 2d:87:41:fc:a8:33:ad:a6:bd:2d:8d:7e:d5:11:00:06:7c:76: 15:37:11:6a:b6:6f:f8:dc:06:91:c1:c8:9e:38:4c:4d:4d:ed: 83:54:d9:3a:27:7c:8a:49:ce:35:59:1b:3b:ae:cb:3b:bd:f2: 6c:25:74:db:f2:16:98:a2:d6:cc:d9:e0:f0:79:26:c8:50:80: 32:f1:1a:6c:89:a7:1f:f2:28:85:c1:fd:b7:1e:53:87:8d:05: 72:26:a3:ce:fc:ea:d5:0b:c8:3f:05:bf:07:c3:a7:0f:b9:2e: 3a:90:2f:1b:c5:c4:5c:40:5f:75:10:25:4a:95:ca:93:13:c2: 07:4d:ba:0b:e9:9c:35:68:96:bd:c8:27:42:50:af:b8:c5:ef: f8:eb:67:1f:bc:73:6e:e8:32:71:42:12:bc:a7:25:54:4e:0e: 59:9a:d8:76:58:6a:df:dd:b6:f6:19:53:5d:17:ab:4b:90:03: 6a:82:05:98:ef:7f:ec:a3:ec:42:d1:3d:8e:1f:48:fe:eb:7e: b6:c4:ea:c0:3f:e4:b3:0b:af:38:15:a0:79:6b:ec:8b:c0:b7: 36:47:0c:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEQTIxMTAvBgNVBAUTKERGNjc3RDg2OTM0NzdCOTJBMUU5RkU3QzIwNDIyNjk2 Q0VBODYwOUQwHhcNMjUwOTE5MDEyNjE5WhcNMjUwOTI2MDEyNjE5WjAYMRYwFAYD VQQDEw02OGNjYjEzYy1jZGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8bz9ZruhTBZLuh3f1m87U2cbe92hmdy4AH0y2i8OLKFhYvZ7AiwAjk70MLI7 npUZ+o42kjp3C9qHJZ+A3UmDgbJhkeQ/6ooZygJEBMNC43sC+QAWkVxhG6FzwMpd 7E6XZFop3TA0NNA4vHUj3hG4AZORg7mU0R4a/HH50kS8LvG/RoWbRWaMhC2Wd5QZ DfgP3fCYSbzEgH/XyPYGT/h5apqEmbcvS3r1nJgrZcTrnyj0Lz6trR9eoskQA5en fhxsv3he/S6XJj33Mj3eE53bZMsHJnZs21eP3hw4nLMI4zUyRM6CpJKSaOKvqerv GFRctDJLGmopTwXWCXsljCJi0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA1YeA6E A4CTSUJkn1wHzoyabC6sMB8GA1UdIwQYMBaAFN9nfYaTR3uSoen+fCBCJpbOqGCd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkRBMi83MEU2OUMxOEQw RUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1S2g2ZjU4SUVJbWxzNm9Z SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyZDlocE5IZTVLaDZmNThJRUltbHM2b1lKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkRBMi83MEU2OUMxOEQwRUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1 S2g2ZjU4SUVJbWxzNm9ZSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpI+nD+mznZ65mJLuR4aoP33jn+2oBnQF2QvoYaZXuO6oXj60th0H8 qDOtpr0tjX7VEQAGfHYVNxFqtm/43AaRwcieOExNTe2DVNk6J3yKSc41WRs7rss7 vfJsJXTb8haYotbM2eDweSbIUIAy8Rpsiacf8iiFwf23HlOHjQVyJqPO/OrVC8g/ Bb8Hw6cPuS46kC8bxcRcQF91ECVKlcqTE8IHTboL6Zw1aJa9yCdCUK+4xe/462cf vHNu6DJxQhK8pyVUTg5Zmth2WGrf3bb2GVNdF6tLkANqggWY73/so+xC0T2OH0j+ 6362xOrAP+SzC684FaB5a+yLwLc2Rwwu -----END CERTIFICATE-----Generated at Fri Sep 19 13:36:58 2025 by rpki-client