$ rpki-client -vvf rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft File: 4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft (raw, json) Hash identifier: olcY2J4jqbQsaycmYNsKm/QNuuCjdyE3bia7PNv87bA= Subject key identifier: BC:24:AA:83:43:EC:A3:56:13:3E:B5:66:8E:2E:33:21:98:91:6B:7D Authority key identifier: E0:8D:6C:7F:E3:5F:E3:66:42:FE:6F:66:CC:DA:28:66:A6:62:42:F1 Certificate issuer: /CN=A918D96C/serialNumber=E08D6C7FE35FE36642FE6F66CCDA2866A66242F1 Certificate serial: 34BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft Manifest number: 34BE Signing time: Thu 18 Sep 2025 14:53:19 +0000 Manifest this update: Thu 18 Sep 2025 14:53:18 +0000 Manifest next update: Thu 25 Sep 2025 14:53:18 +0000 Files and hashes: 1: 4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl (hash: BUnh5+bpPAvAhXloY4hqTIuRA9ad6+vfsd4gdhbk5c8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:53:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13502 (0x34be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D96C, serialNumber=E08D6C7FE35FE36642FE6F66CCDA2866A66242F1 Validity Not Before: Sep 18 14:53:18 2025 GMT Not After : Sep 25 14:53:18 2025 GMT Subject: CN=68cc1cde-2885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:8d:27:7e:e7:97:91:97:b1:29:df:60:55:13: 7d:e4:41:60:0f:c6:bf:a4:e0:4f:71:df:85:ab:c3: d9:cb:32:03:51:96:72:ef:86:54:f5:f9:44:df:b8: 48:34:f6:cb:4d:7f:67:70:4c:af:4d:c9:da:4d:22: 6f:14:c3:17:44:cd:a9:72:97:d4:0c:07:86:16:65: 88:73:2f:34:c0:d1:b4:30:06:bd:dc:7f:8c:6c:99: ef:87:fb:f6:a7:64:93:ee:51:81:ff:ab:a1:5e:01: 91:2c:e8:47:59:77:c6:59:9a:7d:0b:40:e9:da:d7: eb:ad:59:06:d7:17:9b:19:89:f3:39:2d:aa:c6:c4: e1:66:94:4a:ac:fa:6b:5d:5c:48:b5:e8:bf:e3:75: ae:41:d4:5e:40:9d:0d:30:7e:2b:ac:06:e6:a2:d0: 68:4d:65:87:fa:96:35:f7:84:20:08:3f:86:db:07: e4:f8:65:ec:80:8c:82:02:f5:49:85:0d:cd:9b:6a: 50:ec:74:4b:05:41:43:1a:fd:3e:96:e9:bf:84:e7: 08:e6:5e:c7:16:dc:b1:79:ab:44:e7:d7:5e:0d:53: b8:d4:ae:e2:06:73:cb:15:95:18:4d:b2:d2:74:06: 82:ff:76:fd:ca:82:41:7c:84:7b:74:c7:66:7e:20: a7:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:24:AA:83:43:EC:A3:56:13:3E:B5:66:8E:2E:33:21:98:91:6B:7D X509v3 Authority Key Identifier: keyid:E0:8D:6C:7F:E3:5F:E3:66:42:FE:6F:66:CC:DA:28:66:A6:62:42:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D96C/A42E37FE1D9611E29C5F4A7F08B02CD2/4I1sf-Nf42ZC_m9mzNooZqZiQvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:aa:f7:da:fd:86:29:3c:38:2c:ea:e1:86:d3:a2:89:c3:0b: ec:45:23:5f:6a:35:86:d9:e3:e3:7b:db:ef:18:fd:96:78:cb: e2:a2:d9:fb:56:d1:c7:1e:ac:1f:2d:42:18:77:62:49:a8:c6: f5:38:06:3a:89:4e:23:5c:2b:31:b8:8f:f8:5b:1a:b9:4a:95: 6f:f0:00:b7:eb:10:30:c9:7d:67:43:01:81:49:95:76:a7:56: 71:79:c0:a3:7e:1d:a6:ab:eb:ad:23:d9:72:d1:66:67:6c:cf: af:cc:f0:ba:15:59:e9:b1:59:30:7b:2e:b0:9e:e1:62:75:ff: f1:07:e9:6d:b7:5f:4d:90:9b:b5:ab:6b:1b:44:42:0e:1a:b1: d2:da:db:a5:6c:55:f6:8f:23:38:ca:4a:05:96:fd:d8:52:e5: 25:83:46:5f:e6:5e:12:64:fd:b3:79:9f:bc:6e:4c:47:31:1c: 84:79:0c:40:cc:4e:1d:ec:d0:b0:56:8e:41:c9:09:4a:2e:ba: dc:34:03:27:ea:92:f3:c1:15:f4:cb:26:b0:08:6a:01:bb:6b: 5d:e0:ef:30:c6:77:4d:e4:11:1d:df:43:2f:b3:03:d9:43:e5: c7:fc:92:7e:f6:ff:86:bc:a1:d5:8b:15:39:22:30:80:ff:64: c4:8c:e7:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ5NkMxMTAvBgNVBAUTKEUwOEQ2QzdGRTM1RkUzNjY0MkZFNkY2NkNDREEyODY2 QTY2MjQyRjEwHhcNMjUwOTE4MTQ1MzE4WhcNMjUwOTI1MTQ1MzE4WjAYMRYwFAYD VQQDEw02OGNjMWNkZS0yODg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqY0nfueXkZexKd9gVRN95EFgD8a/pOBPcd+Fq8PZyzIDUZZy74ZU9flE37hI NPbLTX9ncEyvTcnaTSJvFMMXRM2pcpfUDAeGFmWIcy80wNG0MAa93H+MbJnvh/v2 p2ST7lGB/6uhXgGRLOhHWXfGWZp9C0Dp2tfrrVkG1xebGYnzOS2qxsThZpRKrPpr XVxItei/43WuQdReQJ0NMH4rrAbmotBoTWWH+pY194QgCD+G2wfk+GXsgIyCAvVJ hQ3Nm2pQ7HRLBUFDGv0+lum/hOcI5l7HFtyxeatE59deDVO41K7iBnPLFZUYTbLS dAaC/3b9yoJBfIR7dMdmfiCntQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwkqoND 7KNWEz61Zo4uMyGYkWt9MB8GA1UdIwQYMBaAFOCNbH/jX+NmQv5vZszaKGamYkLx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDk2Qy9BNDJFMzdGRTFE OTYxMUUyOUM1RjRBN0YwOEIwMkNEMi80STFzZi1OZjQyWkNfbTltek5vb1pxWmlR dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRJMXNmLU5mNDJaQ19tOW16Tm9vWnFaaVF2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDk2Qy9BNDJFMzdGRTFEOTYxMUUyOUM1RjRBN0YwOEIwMkNEMi80STFzZi1OZjQy WkNfbTltek5vb1pxWmlRdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoqvfa/YYpPDgs6uGG06KJwwvsRSNfajWG2ePje9vvGP2WeMviotn7 VtHHHqwfLUIYd2JJqMb1OAY6iU4jXCsxuI/4Wxq5SpVv8AC36xAwyX1nQwGBSZV2 p1ZxecCjfh2mq+utI9ly0WZnbM+vzPC6FVnpsVkwey6wnuFidf/xB+ltt19NkJu1 q2sbREIOGrHS2tulbFX2jyM4ykoFlv3YUuUlg0Zf5l4SZP2zeZ+8bkxHMRyEeQxA zE4d7NCwVo5ByQlKLrrcNAMn6pLzwRX0yyawCGoBu2td4O8wxndN5BEd30MvswPZ Q+XH/JJ+9v+GvKHVixU5IjCA/2TEjOeg -----END CERTIFICATE-----Generated at Thu Sep 18 20:32:30 2025 by rpki-client