$ rpki-client -vvf rpki.apnic.net/member_repository/A919762A/4C8CE1C0944911F08B0DC109C4F9AE02/i0WgWBIZndhsv8hCI_2BqzMGJrk.mft File: i0WgWBIZndhsv8hCI_2BqzMGJrk.mft (raw, json) Hash identifier: HPNKzkRrP6L5jVFgevsI11PgNe/6leSDvxJV0Ur6RzU= Subject key identifier: 8B:12:80:41:85:92:88:50:9A:FB:75:DC:78:E1:9F:B8:97:A6:93:79 Authority key identifier: 8B:45:A0:58:12:19:9D:D8:6C:BF:C8:42:23:FD:81:AB:33:06:26:B9 Certificate issuer: /CN=A919762A/serialNumber=8B45A05812199DD86CBFC84223FD81AB330626B9 Certificate serial: 03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0WgWBIZndhsv8hCI_2BqzMGJrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919762A/4C8CE1C0944911F08B0DC109C4F9AE02/i0WgWBIZndhsv8hCI_2BqzMGJrk.mft Manifest number: 02 Signing time: Thu 18 Sep 2025 04:40:27 +0000 Manifest this update: Thu 18 Sep 2025 04:40:26 +0000 Manifest next update: Thu 25 Sep 2025 04:40:26 +0000 Files and hashes: 1: i0WgWBIZndhsv8hCI_2BqzMGJrk.crl (hash: j3yRbmU8m/UcYtH4mC+4dwGP9uW1VBLkzv4tAjeR7YA=) 2: 9724DB52944911F0BBB4490AC4F9AE02.roa (hash: 9oCqAJ652Nl2tm6Br+Ij/eUk8sQ6ntB5vth0nRYwt30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919762A/4C8CE1C0944911F08B0DC109C4F9AE02/i0WgWBIZndhsv8hCI_2BqzMGJrk.crl rsync://rpki.apnic.net/member_repository/A919762A/4C8CE1C0944911F08B0DC109C4F9AE02/i0WgWBIZndhsv8hCI_2BqzMGJrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0WgWBIZndhsv8hCI_2BqzMGJrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 04:40:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919762A, serialNumber=8B45A05812199DD86CBFC84223FD81AB330626B9 Validity Not Before: Sep 18 04:40:26 2025 GMT Not After : Sep 25 04:40:26 2025 GMT Subject: CN=68cb8d3b-2ac5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:33:1d:2a:45:5d:f1:ec:f5:72:31:cf:14:ba: b4:d2:10:80:20:a0:16:1e:5e:9a:f8:67:d2:d3:e6: 53:10:db:60:64:72:59:79:40:72:af:e0:f5:7b:38: da:d8:1c:d2:3a:9b:6d:01:b1:05:e7:9d:b4:f7:82: 82:85:cd:18:8a:f9:57:99:c1:1a:57:ef:d0:c4:49: 38:18:9d:c3:ae:c5:23:c1:e7:ed:96:0b:ec:6b:ed: 80:54:11:01:1e:98:a2:4e:54:cb:4c:12:79:22:ec: 5f:c2:85:33:9d:ca:73:be:56:1e:33:2b:c0:a7:02: 81:a0:e9:fa:56:55:8e:e9:43:19:07:88:9d:15:77: 8e:35:07:47:68:d4:35:95:f5:5b:c3:0a:70:7a:ec: 7a:24:be:9b:10:58:bc:f5:49:8c:f4:0d:d6:94:b6: c9:3d:f1:ca:8c:16:d6:31:84:b0:52:e6:d3:1a:44: 8a:e8:9f:d6:6d:f9:87:8b:92:67:e2:5a:15:45:a1: 50:e0:be:b2:61:d7:80:9c:b6:84:56:e4:7b:bb:c6: 1c:ef:cc:8a:80:34:b1:b6:ce:59:b5:ff:c4:b5:eb: 58:ac:94:8c:c0:82:44:75:5f:64:02:a5:b4:97:38: 45:72:d7:cf:5f:bc:c6:94:e7:88:ed:f6:37:08:d4: 23:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:12:80:41:85:92:88:50:9A:FB:75:DC:78:E1:9F:B8:97:A6:93:79 X509v3 Authority Key Identifier: keyid:8B:45:A0:58:12:19:9D:D8:6C:BF:C8:42:23:FD:81:AB:33:06:26:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919762A/4C8CE1C0944911F08B0DC109C4F9AE02/i0WgWBIZndhsv8hCI_2BqzMGJrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i0WgWBIZndhsv8hCI_2BqzMGJrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919762A/4C8CE1C0944911F08B0DC109C4F9AE02/i0WgWBIZndhsv8hCI_2BqzMGJrk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:5e:80:c0:b5:e9:7e:dd:50:e2:c8:cf:cb:fc:8b:6d:a6:f3: 42:97:b4:a9:c5:32:94:36:7e:31:07:d3:68:35:3f:5d:41:ba: c7:99:81:18:69:14:7b:c4:6b:54:5a:de:5f:f1:5d:0d:03:16: 57:b1:41:da:47:b7:75:68:fb:ac:8a:51:1e:d7:fc:70:50:09: 85:a3:87:6b:06:64:65:76:13:35:33:c1:55:58:9f:21:78:5e: 9d:27:da:28:af:33:e1:94:07:c5:c3:d2:86:f9:86:99:4b:3a: 0d:06:3e:d7:d8:bf:fc:94:d5:84:ce:69:b8:4b:95:7b:6d:c0: 00:c4:b6:ff:90:d9:4a:9a:57:9d:18:30:92:92:5c:f0:2c:a0: ff:cd:f4:e1:68:a3:02:6a:eb:f1:ca:30:3e:2d:49:9c:97:93: d8:a8:29:9b:97:a5:dc:fe:11:dc:8e:88:eb:f9:87:df:84:ab: 05:26:46:e7:99:82:92:cd:a8:60:a2:0c:fa:50:50:72:78:18: 4f:9b:7a:ce:22:6c:c1:79:e1:4d:b2:89:a3:af:94:70:2a:14: 31:e7:37:b1:7b:15:1b:5c:30:cd:a9:77:d4:95:03:57:72:34: de:8d:d6:95:b9:04:6c:93:bd:b3:03:01:e4:ef:4b:a7:c0:fe: 0e:31:b0:7c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NzYyQTExMC8GA1UEBRMoOEI0NUEwNTgxMjE5OUREODZDQkZDODQyMjNGRDgxQUIz MzA2MjZCOTAeFw0yNTA5MTgwNDQwMjZaFw0yNTA5MjUwNDQwMjZaMBgxFjAUBgNV BAMTDTY4Y2I4ZDNiLTJhYzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4Mx0qRV3x7PVyMc8UurTSEIAgoBYeXpr4Z9LT5lMQ22Bkcll5QHKv4PV7ONrY HNI6m20BsQXnnbT3goKFzRiK+VeZwRpX79DESTgYncOuxSPB5+2WC+xr7YBUEQEe mKJOVMtMEnki7F/ChTOdynO+Vh4zK8CnAoGg6fpWVY7pQxkHiJ0Vd441B0do1DWV 9VvDCnB67HokvpsQWLz1SYz0DdaUtsk98cqMFtYxhLBS5tMaRIron9Zt+YeLkmfi WhVFoVDgvrJh14CctoRW5Hu7xhzvzIqANLG2zlm1/8S161islIzAgkR1X2QCpbSX OEVy189fvMaU54jt9jcI1CPLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUixKAQYWS iFCa+3XceOGfuJemk3kwHwYDVR0jBBgwFoAUi0WgWBIZndhsv8hCI/2BqzMGJrkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3NjJBLzRDOENFMUMwOTQ0 OTExRjA4QjBEQzEwOUM0RjlBRTAyL2kwV2dXQklabmRoc3Y4aENJXzJCcXpNR0py ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaTBXZ1dCSVpuZGhzdjhoQ0lfMkJxek1HSnJrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3 NjJBLzRDOENFMUMwOTQ0OTExRjA4QjBEQzEwOUM0RjlBRTAyL2kwV2dXQklabmRo c3Y4aENJXzJCcXpNR0pyay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJRegMC16X7dUOLIz8v8i22m80KXtKnFMpQ2fjEH02g1P11BuseZgRhp FHvEa1Ra3l/xXQ0DFlexQdpHt3Vo+6yKUR7X/HBQCYWjh2sGZGV2EzUzwVVYnyF4 Xp0n2iivM+GUB8XD0ob5hplLOg0GPtfYv/yU1YTOabhLlXttwADEtv+Q2UqaV50Y MJKSXPAsoP/N9OFoowJq6/HKMD4tSZyXk9ioKZuXpdz+EdyOiOv5h9+EqwUmRueZ gpLNqGCiDPpQUHJ4GE+bes4ibMF54U2yiaOvlHAqFDHnN7F7FRtcMM2pd9SVA1dy NN6N1pW5BGyTvbMDAeTvS6fA/g4xsHw= -----END CERTIFICATE-----Generated at Fri Sep 19 02:24:49 2025 by rpki-client