$ rpki-client -vvf rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft File: tJhXdJtDHfMjL417C4OVpy_9GEk.mft (raw, json) Hash identifier: ppwMqiJWBP76cQ29MnPfB0jReEqFaBEZIfG/jA3GsM0= Subject key identifier: 24:7E:8D:56:4B:F9:19:CD:53:54:86:C5:0A:E6:B3:CF:41:E4:AC:4B Authority key identifier: B4:98:57:74:9B:43:1D:F3:23:2F:8D:7B:0B:83:95:A7:2F:FD:18:49 Certificate issuer: /CN=A918E293/serialNumber=B49857749B431DF3232F8D7B0B8395A72FFD1849 Certificate serial: 01A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJhXdJtDHfMjL417C4OVpy_9GEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft Manifest number: 01A0 Signing time: Wed 17 Sep 2025 03:49:41 +0000 Manifest this update: Wed 17 Sep 2025 03:49:41 +0000 Manifest next update: Wed 24 Sep 2025 03:49:40 +0000 Files and hashes: 1: tJhXdJtDHfMjL417C4OVpy_9GEk.crl (hash: F0X0blEUxYyIMOcqzHxau0gmkOFxXKGGGNpYyoIHWfg=) 2: D865F69A233111EE813C5D26C4F9AE02.roa (hash: Lb0hJu9MZe6wLWtHrKtqcwpP08rypBWIlAZybLR4Lp0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.crl rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJhXdJtDHfMjL417C4OVpy_9GEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 03:49:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 419 (0x1a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E293, serialNumber=B49857749B431DF3232F8D7B0B8395A72FFD1849 Validity Not Before: Sep 17 03:49:41 2025 GMT Not After : Sep 24 03:49:40 2025 GMT Subject: CN=68ca2fd5-083b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ae:b8:5c:a6:c3:29:4a:92:28:ee:a8:1a:01: 5a:01:b8:5b:58:1f:44:d6:e8:8b:9b:9a:9e:3c:5c: 6c:7c:2c:f3:71:1f:7e:a8:97:c9:9f:3a:97:42:b7: 5d:de:99:26:4d:50:b0:0e:4b:b6:16:26:0a:18:6f: ad:a7:8d:7d:65:e1:11:7c:a1:ad:97:3d:8a:8c:9c: 4f:01:3a:a8:16:35:45:58:41:5b:a2:f4:47:d6:6a: 85:f8:e1:48:34:2b:a6:d7:4b:9c:1f:17:e4:19:20: e0:58:c5:07:69:dc:0c:ca:e9:84:b8:1a:74:11:ab: 3c:7b:d9:35:e2:98:d4:ac:da:60:23:d8:ba:95:c8: 68:1a:4c:3b:b8:78:3a:2a:75:1c:a6:6b:17:df:19: 05:0f:07:7a:5f:19:83:e4:a9:a6:ae:a8:93:2d:99: 29:e1:27:be:8f:90:2b:e0:f7:54:2c:cd:bf:af:d8: 2b:82:10:04:9b:c3:bb:71:6d:6f:5b:37:8c:72:37: 7e:26:d7:ad:70:a1:e3:44:90:90:4e:c3:c4:55:59: a7:d3:33:af:1b:55:eb:91:14:56:ab:d3:17:9e:55: d6:b5:ac:11:f8:04:5a:f0:06:a0:08:e1:d2:ba:28: 8d:54:b1:4d:91:c3:a5:08:5e:dc:7e:a7:e5:a3:c3: 60:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:7E:8D:56:4B:F9:19:CD:53:54:86:C5:0A:E6:B3:CF:41:E4:AC:4B X509v3 Authority Key Identifier: keyid:B4:98:57:74:9B:43:1D:F3:23:2F:8D:7B:0B:83:95:A7:2F:FD:18:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tJhXdJtDHfMjL417C4OVpy_9GEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E293/2841D92E17DC11EE88804A71C4F9AE02/tJhXdJtDHfMjL417C4OVpy_9GEk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:f7:31:13:77:56:e9:b8:6d:0f:57:a6:a6:9b:25:36:68:da: 5d:ce:70:09:3b:9d:15:cc:68:2e:90:dc:bc:6a:5f:ee:39:e8: 07:db:c0:ff:93:98:64:2e:01:7e:a2:f8:96:10:05:90:36:b3: 7a:3d:fa:36:af:05:f6:ec:b3:be:ac:c1:89:e8:52:b6:c1:ee: 72:57:41:81:e9:86:f5:4e:fe:e9:9c:dc:64:ba:88:c8:cb:2b: 8c:6f:87:73:5f:f5:04:b4:ea:20:5c:d0:7a:f3:34:00:75:7f: ac:d0:98:f3:d8:9e:55:da:48:18:1c:7c:e3:b1:19:ee:89:fd: 83:9a:0d:1d:19:1c:f2:59:e0:f5:85:44:6d:8d:fc:7a:eb:8e: e0:d1:f0:2d:b0:8d:c1:79:79:18:5d:4c:c3:de:a2:a1:89:3d: ff:09:1e:a6:0c:82:c9:62:2e:10:f0:dc:cd:a0:08:de:c2:41: 4b:85:25:be:af:0c:d0:f1:1c:39:ad:73:6b:79:24:14:29:09: 97:b1:ae:d5:db:40:a0:e6:79:e1:18:7f:53:47:c6:29:49:0b: cb:23:6b:19:92:ed:b9:39:50:81:69:d7:d6:45:7f:9d:11:43: 0b:0d:69:86:e6:45:89:0e:be:25:b2:e4:79:8b:f7:98:b2:35: 89:78:67:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyOTMxMTAvBgNVBAUTKEI0OTg1Nzc0OUI0MzFERjMyMzJGOEQ3QjBCODM5NUE3 MkZGRDE4NDkwHhcNMjUwOTE3MDM0OTQxWhcNMjUwOTI0MDM0OTQwWjAYMRYwFAYD VQQDEw02OGNhMmZkNS0wODNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAta64XKbDKUqSKO6oGgFaAbhbWB9E1uiLm5qePFxsfCzzcR9+qJfJnzqXQrdd 3pkmTVCwDku2FiYKGG+tp419ZeERfKGtlz2KjJxPATqoFjVFWEFbovRH1mqF+OFI NCum10ucHxfkGSDgWMUHadwMyumEuBp0Eas8e9k14pjUrNpgI9i6lchoGkw7uHg6 KnUcpmsX3xkFDwd6XxmD5KmmrqiTLZkp4Se+j5Ar4PdULM2/r9grghAEm8O7cW1v WzeMcjd+JtetcKHjRJCQTsPEVVmn0zOvG1XrkRRWq9MXnlXWtawR+ARa8AagCOHS uiiNVLFNkcOlCF7cfqflo8NgzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCR+jVZL +RnNU1SGxQrms89B5KxLMB8GA1UdIwQYMBaAFLSYV3SbQx3zIy+NewuDlacv/RhJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTI5My8yODQxRDkyRTE3 REMxMUVFODg4MDRBNzFDNEY5QUUwMi90SmhYZEp0REhmTWpMNDE3QzRPVnB5XzlH RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RKaFhkSnRESGZNakw0MTdDNE9WcHlfOUdFay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTI5My8yODQxRDkyRTE3REMxMUVFODg4MDRBNzFDNEY5QUUwMi90SmhYZEp0REhm TWpMNDE3QzRPVnB5XzlHRWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH9zETd1bpuG0PV6ammyU2aNpdznAJO50VzGgukNy8al/uOegH28D/ k5hkLgF+oviWEAWQNrN6Pfo2rwX27LO+rMGJ6FK2we5yV0GB6Yb1Tv7pnNxkuojI yyuMb4dzX/UEtOogXNB68zQAdX+s0Jjz2J5V2kgYHHzjsRnuif2Dmg0dGRzyWeD1 hURtjfx6647g0fAtsI3BeXkYXUzD3qKhiT3/CR6mDILJYi4Q8NzNoAjewkFLhSW+ rwzQ8Rw5rXNreSQUKQmXsa7V20Cg5nnhGH9TR8YpSQvLI2sZku25OVCBadfWRX+d EUMLDWmG5kWJDr4lsuR5i/eYsjWJeGek -----END CERTIFICATE-----Generated at Fri Sep 19 01:01:33 2025 by rpki-client