$ rpki-client -vvf rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft File: 9y59Xhu0VCq3_3dzZYg8FgEDTek.mft (raw, json) Hash identifier: uQHrm35fsz/SC5KMdV16IpjQ20YXQtOpZSmrVOxE7B0= Subject key identifier: E7:7C:0C:56:F0:40:63:31:C2:93:68:98:EB:17:F9:9A:B9:04:BB:5D Authority key identifier: F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 Certificate issuer: /CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Certificate serial: 0EEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft Manifest number: 0EDF Signing time: Mon 08 Sep 2025 17:40:18 +0000 Manifest this update: Mon 08 Sep 2025 17:40:18 +0000 Manifest next update: Mon 15 Sep 2025 17:40:18 +0000 Files and hashes: 1: 9y59Xhu0VCq3_3dzZYg8FgEDTek.crl (hash: A2NWv3VXWz0ytnV8381avdAHwoNGGMaA3or5YuDJcFg=) 2: DCB2531AC75911EF979D593BC4F9AE02.roa (hash: az5u8maauMT/Sx2+Phgo1Z/ovh8gwvsYIRukSLKNLEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 17:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3820 (0xeec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919631C, serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Validity Not Before: Sep 8 17:40:18 2025 GMT Not After : Sep 15 17:40:18 2025 GMT Subject: CN=68bf1502-0cea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:79:36:b3:95:5d:97:36:2b:e5:88:b2:61:e8: 53:bf:f9:73:9e:4b:d9:61:a5:35:10:f6:8f:02:1f: bb:9c:5e:05:92:df:a8:46:65:87:2e:9f:5e:cc:13: e7:29:54:49:3c:0d:1b:11:b7:4c:2b:64:a2:1f:13: 1f:b3:88:61:fb:ef:db:32:aa:ac:e5:70:e9:4e:d6: 30:17:ee:01:44:ae:c9:d3:db:fe:4f:8d:a4:80:73: 40:10:40:af:98:93:04:d9:97:4b:ca:cb:ef:a8:58: dd:24:57:51:89:fd:5c:cf:1b:c8:b4:a9:6d:6a:7f: bf:54:e0:81:25:94:7b:60:52:6c:75:54:5e:23:d4: be:2d:99:79:50:ec:b8:6e:08:43:4c:4e:bf:ae:62: 8c:a2:56:56:a1:58:7f:0e:0c:12:58:30:2f:e3:44: 59:90:c3:cf:31:e6:85:bf:56:38:db:91:5c:a7:15: 43:c2:23:d6:f7:7d:52:a7:1a:03:82:a3:4e:0c:f5: 01:65:a2:98:fc:de:ae:e9:64:e1:7c:e7:08:3f:6e: d6:4e:7b:11:fc:30:1e:96:63:30:40:31:05:d4:5e: 24:4a:c1:df:2b:a0:cf:4b:21:82:63:6f:ea:89:9e: 34:7e:59:98:da:a5:02:df:02:27:67:5b:89:e6:d3: 32:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:7C:0C:56:F0:40:63:31:C2:93:68:98:EB:17:F9:9A:B9:04:BB:5D X509v3 Authority Key Identifier: keyid:F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:22:5e:22:cc:c9:05:2e:56:d0:66:dd:74:e2:e5:0f:92:91: 22:a2:25:5a:fd:d8:c4:b7:55:ea:4b:95:f5:55:de:e4:b8:a1: 1d:d0:7f:14:e3:83:30:de:27:97:ac:fa:4a:29:27:17:d5:ee: c8:92:3b:33:56:a5:0f:9f:75:0d:6a:6d:7d:47:8b:ac:ea:72: b5:c8:5d:b9:07:1d:9a:b8:45:47:eb:fe:c1:31:72:e4:9b:be: 6b:6c:82:58:49:1d:51:6e:f3:ba:75:b1:c9:b8:46:dd:b7:2b: 4e:75:7e:3d:fa:2a:c5:86:6e:cd:e4:a8:d0:26:80:26:41:fd: 4e:2b:9e:2b:a3:ab:33:84:8d:39:68:0e:04:d7:0f:65:c0:09: a8:f0:ba:d5:78:0a:f0:62:0f:49:dc:22:08:11:03:54:65:01: 3b:8d:0d:cd:12:10:bf:e7:94:d5:21:00:29:d0:e0:88:c7:70: 39:ae:d2:0d:64:08:4f:2f:41:d0:02:a6:cf:22:d9:99:81:05: 77:24:51:58:35:cd:e1:2a:69:b1:46:8b:10:3e:41:ff:88:6a: 0a:5e:a3:9f:32:94:63:0e:c5:0d:6c:07:d5:4d:23:b5:a0:0e: 43:cc:8e:be:c8:da:fe:3d:c1:9b:ee:40:93:6a:a4:3d:f2:a9: 76:e1:f7:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYzMUMxMTAvBgNVBAUTKEY3MkU3RDVFMUJCNDU0MkFCN0ZGNzc3MzY1ODgzQzE2 MDEwMzRERTkwHhcNMjUwOTA4MTc0MDE4WhcNMjUwOTE1MTc0MDE4WjAYMRYwFAYD VQQDEw02OGJmMTUwMi0wY2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3k2s5VdlzYr5YiyYehTv/lznkvZYaU1EPaPAh+7nF4Fkt+oRmWHLp9ezBPn KVRJPA0bEbdMK2SiHxMfs4hh++/bMqqs5XDpTtYwF+4BRK7J09v+T42kgHNAEECv mJME2ZdLysvvqFjdJFdRif1czxvItKltan+/VOCBJZR7YFJsdVReI9S+LZl5UOy4 bghDTE6/rmKMolZWoVh/DgwSWDAv40RZkMPPMeaFv1Y425FcpxVDwiPW931SpxoD gqNODPUBZaKY/N6u6WThfOcIP27WTnsR/DAelmMwQDEF1F4kSsHfK6DPSyGCY2/q iZ40flmY2qUC3wInZ1uJ5tMySQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOd8DFbw QGMxwpNomOsX+Zq5BLtdMB8GA1UdIwQYMBaAFPcufV4btFQqt/93c2WIPBYBA03p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjMxQy9BOUMzMTcwNDhD MjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZDcTNfM2R6WllnOEZnRURU ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5NTlYaHUwVkNxM18zZHpaWWc4RmdFRFRlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjMxQy9BOUMzMTcwNDhDMjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZD cTNfM2R6WllnOEZnRURUZWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/Il4izMkFLlbQZt104uUPkpEioiVa/djEt1XqS5X1Vd7kuKEd0H8U 44Mw3ieXrPpKKScX1e7IkjszVqUPn3UNam19R4us6nK1yF25Bx2auEVH6/7BMXLk m75rbIJYSR1RbvO6dbHJuEbdtytOdX49+irFhm7N5KjQJoAmQf1OK54ro6szhI05 aA4E1w9lwAmo8LrVeArwYg9J3CIIEQNUZQE7jQ3NEhC/55TVIQAp0OCIx3A5rtIN ZAhPL0HQAqbPItmZgQV3JFFYNc3hKmmxRosQPkH/iGoKXqOfMpRjDsUNbAfVTSO1 oA5DzI6+yNr+PcGb7kCTaqQ98ql24feL -----END CERTIFICATE-----Generated at Tue Sep 9 13:24:30 2025 by rpki-client