$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: e5etnmFDVLIVabAWz7t/VggsbD1Cfeqn7LZD9pbEQX8= Subject key identifier: 7C:9B:A1:11:F6:36:1A:DD:E7:71:44:90:45:83:88:50:A3:BF:38:BB Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: 016C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: 0166 Signing time: Sat 06 Sep 2025 16:37:18 +0000 Manifest this update: Sat 06 Sep 2025 16:37:18 +0000 Manifest next update: Sat 13 Sep 2025 16:37:18 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: 7+Rm79dthGsTRrNH4qd6+jdfTRrDMw1mL5AJOMD6ShE=) 2: 1E4ABC8C50C111EFA64C2437C4F9AE02.roa (hash: DiLiUTq4svYLUGh7Zlk/IkFGkuorqIquvoUuPTfglVo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:37:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: Sep 6 16:37:18 2025 GMT Not After : Sep 13 16:37:18 2025 GMT Subject: CN=68bc633e-c3fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:33:cd:69:db:b9:4c:1a:31:3a:3c:ea:c2:7d: 68:2f:41:88:3b:ef:95:f7:4b:18:ac:dd:91:de:6e: 60:c7:3b:e0:1d:f8:ed:8d:b1:07:d6:eb:31:59:0c: 4e:c1:dc:f1:5e:a5:df:84:be:c9:37:30:09:4a:b4: d3:06:32:d4:8b:d7:be:36:c9:d9:2d:0e:e8:3d:e8: d5:85:00:dd:23:68:b4:ad:e0:90:02:58:66:cc:99: 65:8e:8a:84:23:1b:ed:2f:c4:dd:84:c1:8d:63:15: 99:e3:5f:d0:0a:1b:74:94:d2:c2:29:a8:2a:b9:9d: ae:5e:84:04:9d:06:0a:3a:35:03:ce:52:b7:23:9a: 48:41:54:8d:e0:b3:21:3d:0f:fd:c7:66:4e:85:12: 7e:65:76:8d:46:97:22:f0:17:57:44:5c:b7:75:db: 38:65:f7:ee:f2:e3:d4:0c:cd:37:52:22:77:2d:0e: e8:a5:fe:b9:8b:e4:59:55:d0:71:b0:88:ea:cc:ce: 10:0e:e7:fb:a3:61:52:8f:fd:f8:4e:62:4e:ad:ad: 85:93:8c:9e:e1:86:c7:b0:ee:15:36:1e:81:73:93: f1:d9:7e:4d:a6:13:b2:c3:67:b5:c7:9f:1d:5c:91: e3:e0:52:58:13:ba:71:59:2c:d6:2b:fa:e7:d2:e9: 1b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:9B:A1:11:F6:36:1A:DD:E7:71:44:90:45:83:88:50:A3:BF:38:BB X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:9f:d3:62:4a:84:8c:e9:8e:ce:47:dc:87:3d:60:75:5d:19: cf:f7:72:9e:df:39:95:91:5b:25:4a:0a:08:46:da:50:92:c6: 06:f0:de:bb:f4:3b:a2:1a:4f:13:a8:83:aa:f9:52:f2:c0:93: 63:9a:c7:26:dc:ae:a3:d4:7a:c4:02:f7:1b:fe:4e:69:42:f2: 43:9b:08:8a:80:4d:a1:ea:70:ed:bb:45:fc:29:29:19:39:7c: cc:72:2f:00:67:07:cd:6b:25:f2:05:9b:b3:af:76:92:95:24: d9:d7:1d:62:dd:df:24:a4:a8:93:ed:45:9b:93:12:d6:95:7d: 0d:ea:d2:25:2b:dd:92:cb:a0:06:eb:0f:4c:62:31:99:9d:e2: 91:d3:c0:95:cc:46:15:d5:38:af:97:f2:27:4d:50:2f:04:d9: 0b:f7:d1:5a:19:cb:aa:e1:35:0b:5e:45:0b:28:e6:95:c9:1b: f3:0a:f9:b3:b3:99:9f:e4:dc:03:58:27:3e:fb:47:46:d3:17: 88:89:6b:17:60:99:9f:f4:75:8d:27:b7:bb:e8:0a:57:3e:18: fc:51:87:99:14:43:f1:01:6f:e7:1e:25:d5:88:b7:6d:9c:46: 94:27:c0:da:41:00:19:9d:a3:18:29:70:1a:7f:43:59:af:7d: 74:e7:08:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKEUzNEI0RjgwRDlFM0Y3MDBCQ0FDNEM1MkM1QUIyM0VC NUI3RURGQkIwHhcNMjUwOTA2MTYzNzE4WhcNMjUwOTEzMTYzNzE4WjAYMRYwFAYD VQQDEw02OGJjNjMzZS1jM2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDPNadu5TBoxOjzqwn1oL0GIO++V90sYrN2R3m5gxzvgHfjtjbEH1usxWQxO wdzxXqXfhL7JNzAJSrTTBjLUi9e+NsnZLQ7oPejVhQDdI2i0reCQAlhmzJlljoqE IxvtL8TdhMGNYxWZ41/QCht0lNLCKagquZ2uXoQEnQYKOjUDzlK3I5pIQVSN4LMh PQ/9x2ZOhRJ+ZXaNRpci8BdXRFy3dds4Zffu8uPUDM03UiJ3LQ7opf65i+RZVdBx sIjqzM4QDuf7o2FSj/34TmJOra2Fk4ye4YbHsO4VNh6Bc5Px2X5NphOyw2e1x58d XJHj4FJYE7pxWSzWK/rn0ukb5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHyboRH2 Nhrd53FEkEWDiFCjvzi7MB8GA1UdIwQYMBaAFONLT4DZ4/cAvKxMUsWrI+tbft+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy85NkU2Njc1QTc4 NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3QzhyRXhTeGFzajYxdC0z N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy85NkU2Njc1QTc4NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3 QzhyRXhTeGFzajYxdC0zN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzn9NiSoSM6Y7OR9yHPWB1XRnP93Ke3zmVkVslSgoIRtpQksYG8N67 9DuiGk8TqIOq+VLywJNjmscm3K6j1HrEAvcb/k5pQvJDmwiKgE2h6nDtu0X8KSkZ OXzMci8AZwfNayXyBZuzr3aSlSTZ1x1i3d8kpKiT7UWbkxLWlX0N6tIlK92Sy6AG 6w9MYjGZneKR08CVzEYV1Tivl/InTVAvBNkL99FaGcuq4TULXkULKOaVyRvzCvmz s5mf5NwDWCc++0dG0xeIiWsXYJmf9HWNJ7e76ApXPhj8UYeZFEPxAW/nHiXViLdt nEaUJ8DaQQAZnaMYKXAaf0NZr3105wgV -----END CERTIFICATE-----Generated at Sat Sep 6 21:10:13 2025 by rpki-client