$ rpki-client -vvf rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft File: ctH2ecltIFwtRxyUqA3vYNkRJhw.mft (raw, json) Hash identifier: poKpMjJZa37oboOganbQzikRdTSurCR8Nzxz9CCw1QM= Subject key identifier: 2C:7A:5C:A0:19:01:44:D7:3D:ED:B9:6F:27:84:25:B1:89:8F:54:58 Authority key identifier: 72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C Certificate issuer: /CN=A918E85E/serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Certificate serial: 0112 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft Manifest number: 0110 Signing time: Wed 17 Sep 2025 05:30:25 +0000 Manifest this update: Wed 17 Sep 2025 05:30:24 +0000 Manifest next update: Wed 24 Sep 2025 05:30:24 +0000 Files and hashes: 1: ctH2ecltIFwtRxyUqA3vYNkRJhw.crl (hash: l6zrGi+q3ccGGrnSl22a5bD0vYXt4ICKOT22ERqFsfA=) 2: 255842A2EFF411EE853CC833C4F9AE02.roa (hash: 0a/19rU1zoR8HPG3b9KrbOC4Srzy59tAkTtlFRC+aqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 05:30:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 274 (0x112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E85E, serialNumber=72D1F679C96D205C2D471C94A80DEF60D911261C Validity Not Before: Sep 17 05:30:24 2025 GMT Not After : Sep 24 05:30:24 2025 GMT Subject: CN=68ca4770-3d51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:74:3e:3c:32:dc:c6:70:6b:f0:5e:69:c3:77: 47:67:10:2b:4b:93:30:1b:18:85:f5:5f:e5:3d:fd: 3d:0e:c3:1e:da:06:dd:b4:66:60:d1:6a:fc:c7:6e: 37:ff:f1:8f:7f:79:03:73:ff:f7:fb:8e:67:da:d0: 5d:a1:d6:53:cf:1c:4b:5d:13:33:32:bc:fb:91:5f: c3:04:fd:76:33:f0:fc:ec:a8:bb:9b:34:08:ef:7e: 62:05:dd:46:2d:54:9c:5e:13:6b:73:15:35:f3:ee: a6:28:9a:51:a8:34:15:13:48:66:ed:f1:eb:f4:f3: 73:ce:30:9a:b0:6f:d0:70:d1:fb:14:c7:59:0a:6b: 34:58:3a:27:4f:d3:c2:c2:d7:18:e6:c8:e9:2e:03: b1:7c:99:0f:f1:bb:ca:1c:7b:0b:5c:80:6e:1f:a8: 0b:2b:9e:05:78:15:14:d2:39:cb:13:20:ab:4b:00: c7:9c:19:09:a6:3f:f4:c9:25:69:0f:53:3c:79:b5: 38:89:f0:90:60:64:61:7e:2d:fa:a2:ce:91:7e:dc: a8:89:51:a5:fa:99:45:75:ec:08:ab:95:69:e5:56: 6c:85:86:e9:a5:6b:ed:ea:27:4a:f3:0f:fb:eb:5c: f2:3f:cc:24:76:b9:34:91:ba:c9:50:59:17:14:71: 85:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:7A:5C:A0:19:01:44:D7:3D:ED:B9:6F:27:84:25:B1:89:8F:54:58 X509v3 Authority Key Identifier: keyid:72:D1:F6:79:C9:6D:20:5C:2D:47:1C:94:A8:0D:EF:60:D9:11:26:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ctH2ecltIFwtRxyUqA3vYNkRJhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E85E/5BC1267AEFF311EE977CAC31C4F9AE02/ctH2ecltIFwtRxyUqA3vYNkRJhw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:b9:65:b9:04:3d:66:ff:dd:44:87:00:79:18:d7:70:bb:74: d5:08:c2:a1:54:a8:73:75:8b:bd:88:3c:e9:2e:43:d7:d5:4f: cf:f5:b8:21:4f:7d:66:31:a2:85:27:e7:cf:25:2c:f6:08:9d: 1b:72:82:9d:bf:f7:59:56:a4:d7:68:3a:23:52:d1:0d:be:b9: 18:f8:1e:69:26:4f:c4:2d:fb:69:28:ff:1e:d3:86:72:38:92: 00:94:b9:a7:1e:43:77:78:21:a8:39:c7:cb:e6:58:e4:9a:d4: 15:ac:51:b6:1c:8b:24:a0:ed:25:5b:bf:98:61:33:5a:66:66: 1b:31:07:86:b6:31:e3:9c:52:ac:5d:95:1b:63:b1:c8:d4:b5: db:af:cd:90:a7:1d:69:94:fb:8b:15:76:ce:db:91:b2:92:20: ac:17:ef:fd:58:64:66:55:1e:fd:dd:ac:14:fa:af:cb:cd:60: 7f:4a:9d:9f:ba:88:d2:1e:13:28:1d:be:14:e5:e5:51:9a:b2: 66:84:a5:96:ae:77:85:2d:bc:bc:b5:97:76:5f:63:48:51:02: 89:8a:b5:d3:b4:30:87:f5:7c:e5:9f:fc:e0:c5:99:df:a5:6d: d6:1d:f3:50:5e:e4:9b:2d:35:4c:14:8e:da:99:f0:56:8d:c4: 7d:14:b7:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4NUUxMTAvBgNVBAUTKDcyRDFGNjc5Qzk2RDIwNUMyRDQ3MUM5NEE4MERFRjYw RDkxMTI2MUMwHhcNMjUwOTE3MDUzMDI0WhcNMjUwOTI0MDUzMDI0WjAYMRYwFAYD VQQDEw02OGNhNDc3MC0zZDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznQ+PDLcxnBr8F5pw3dHZxArS5MwGxiF9V/lPf09DsMe2gbdtGZg0Wr8x243 //GPf3kDc//3+45n2tBdodZTzxxLXRMzMrz7kV/DBP12M/D87Ki7mzQI735iBd1G LVScXhNrcxU18+6mKJpRqDQVE0hm7fHr9PNzzjCasG/QcNH7FMdZCms0WDonT9PC wtcY5sjpLgOxfJkP8bvKHHsLXIBuH6gLK54FeBUU0jnLEyCrSwDHnBkJpj/0ySVp D1M8ebU4ifCQYGRhfi36os6RftyoiVGl+plFdewIq5Vp5VZshYbppWvt6idK8w/7 61zyP8wkdrk0kbrJUFkXFHGFtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCx6XKAZ AUTXPe25byeEJbGJj1RYMB8GA1UdIwQYMBaAFHLR9nnJbSBcLUcclKgN72DZESYc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg1RS81QkMxMjY3QUVG RjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElGd3RSeHlVcUEzdllOa1JK aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2N0SDJlY2x0SUZ3dFJ4eVVxQTN2WU5rUkpody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTg1RS81QkMxMjY3QUVGRjMxMUVFOTc3Q0FDMzFDNEY5QUUwMi9jdEgyZWNsdElG d3RSeHlVcUEzdllOa1JKaHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcuWW5BD1m/91EhwB5GNdwu3TVCMKhVKhzdYu9iDzpLkPX1U/P9bgh T31mMaKFJ+fPJSz2CJ0bcoKdv/dZVqTXaDojUtENvrkY+B5pJk/ELftpKP8e04Zy OJIAlLmnHkN3eCGoOcfL5ljkmtQVrFG2HIskoO0lW7+YYTNaZmYbMQeGtjHjnFKs XZUbY7HI1LXbr82Qpx1plPuLFXbO25GykiCsF+/9WGRmVR793awU+q/LzWB/Sp2f uojSHhMoHb4U5eVRmrJmhKWWrneFLby8tZd2X2NIUQKJirXTtDCH9Xzln/zgxZnf pW3WHfNQXuSbLTVMFI7amfBWjcR9FLcU -----END CERTIFICATE-----Generated at Thu Sep 18 03:14:40 2025 by rpki-client