$ rpki-client -vvf rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft File: jNZeQOKuy7xVttozRr8czjg1wnc.mft (raw, json) Hash identifier: XHiJZLAOTRDg9/vKUZ/J5/4TA6HWijeBjloklvG8Vr0= Subject key identifier: 42:79:1D:61:51:92:38:DB:E3:EA:A8:9C:1E:1D:B1:CE:12:43:FE:D9 Authority key identifier: 8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77 Certificate issuer: /CN=A919A6EB/serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277 Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft Manifest number: 01A8 Signing time: Fri 19 Sep 2025 03:41:33 +0000 Manifest this update: Fri 19 Sep 2025 03:41:33 +0000 Manifest next update: Fri 26 Sep 2025 03:41:33 +0000 Files and hashes: 1: jNZeQOKuy7xVttozRr8czjg1wnc.crl (hash: eCSScLusPs7OcGdSt5HbmL4x8y5+kFRenMk788aJ0rQ=) 2: 4CEE00EC0A8811EEA788A750C4F9AE02.roa (hash: TJboroWTjSH5MHMWjJ273LEWmOXtmootlWn74QKDiMU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.crl rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 03:41:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A6EB, serialNumber=8CD65E40E2AECBBC55B6DA3346BF1CCE3835C277 Validity Not Before: Sep 19 03:41:33 2025 GMT Not After : Sep 26 03:41:33 2025 GMT Subject: CN=68ccd0ed-2ccb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b5:db:bf:ec:dd:66:47:5c:7e:eb:bc:00:f7: 31:59:91:88:65:0b:08:c2:7f:91:c2:0d:59:fa:06: 9b:d3:aa:a1:ec:4b:8d:26:ae:a7:2c:79:c8:b5:29: e8:69:0c:39:88:f8:f8:a7:ef:be:9f:8f:a9:04:0f: 6f:84:b6:19:63:13:14:d0:85:34:89:2f:8a:77:82: bf:80:8a:cd:86:48:65:26:32:59:1b:0a:71:9b:a2: d7:3e:3b:55:55:6a:5a:ce:5b:bb:3c:d7:4c:09:94: 31:9e:a3:ed:25:ef:c0:79:85:50:9e:7a:82:59:ba: b4:d6:f5:60:ff:35:a5:d9:d5:b7:c9:5d:48:9c:3c: a1:c7:54:35:f8:a2:d4:1d:2f:0b:7a:5a:18:05:99: c8:c2:cd:ab:63:f3:04:69:d6:be:53:fd:10:1d:c0: ce:21:23:35:d3:c6:c3:dc:80:c9:bb:be:ad:50:c2: 5c:28:44:af:92:63:cd:82:3d:50:a4:7f:15:a5:18: 01:dd:f5:ab:5f:32:2c:47:74:1e:18:68:0f:35:44: 5d:4d:e8:1c:fc:7e:46:e2:9a:d1:a7:e0:73:b4:88: 9d:42:d6:d8:4f:12:47:23:45:83:2c:07:41:a5:af: 2d:b5:d1:47:3c:d6:75:d4:6d:c8:ab:fe:f2:e4:4b: 9d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:79:1D:61:51:92:38:DB:E3:EA:A8:9C:1E:1D:B1:CE:12:43:FE:D9 X509v3 Authority Key Identifier: keyid:8C:D6:5E:40:E2:AE:CB:BC:55:B6:DA:33:46:BF:1C:CE:38:35:C2:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNZeQOKuy7xVttozRr8czjg1wnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A6EB/DD4C1B2A0A5A11EEBE824344C4F9AE02/jNZeQOKuy7xVttozRr8czjg1wnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:b6:43:6a:af:da:1a:55:01:02:83:04:3a:69:64:67:bf:65: 18:d3:00:e6:8d:7a:13:a5:1e:9d:a1:a3:c9:49:a1:c0:72:e7: d6:38:ad:39:c2:a2:cb:64:85:f3:24:94:57:bb:5a:98:10:1d: 44:4e:2d:95:a0:1a:eb:4f:41:cb:22:91:ce:a1:21:0f:d2:45: 7a:9a:dd:95:82:19:b3:78:96:e2:c3:67:7d:ab:fe:59:de:c8: 79:ad:3a:01:4e:e8:34:00:0a:41:53:eb:69:0c:af:3c:17:31: 69:67:af:3c:f8:ff:56:bf:46:68:77:09:0b:a6:ce:28:83:d6: 89:8d:35:0b:00:26:73:a1:98:8e:c3:91:c7:91:9c:44:f2:82: e2:a3:6c:09:ca:44:82:a5:aa:f9:b0:5c:18:37:60:db:40:da: cd:09:56:59:17:06:9b:e5:79:ed:7b:65:b9:04:25:46:97:87: 00:3d:e6:2a:63:7f:98:53:d2:41:e4:82:6f:37:91:b4:4a:be: f0:cf:58:5f:d3:28:e6:ea:6b:2a:2f:eb:92:3f:e5:e5:0c:db: 17:f4:9d:de:48:5e:fb:45:00:82:22:4f:db:7d:48:6f:a7:49: ba:ee:73:60:69:06:91:2e:7b:db:50:26:c4:c7:e8:6d:2b:a8: 6c:0c:c1:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE2RUIxMTAvBgNVBAUTKDhDRDY1RTQwRTJBRUNCQkM1NUI2REEzMzQ2QkYxQ0NF MzgzNUMyNzcwHhcNMjUwOTE5MDM0MTMzWhcNMjUwOTI2MDM0MTMzWjAYMRYwFAYD VQQDEw02OGNjZDBlZC0yY2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzrXbv+zdZkdcfuu8APcxWZGIZQsIwn+Rwg1Z+gab06qh7EuNJq6nLHnItSno aQw5iPj4p+++n4+pBA9vhLYZYxMU0IU0iS+Kd4K/gIrNhkhlJjJZGwpxm6LXPjtV VWpazlu7PNdMCZQxnqPtJe/AeYVQnnqCWbq01vVg/zWl2dW3yV1InDyhx1Q1+KLU HS8LeloYBZnIws2rY/MEada+U/0QHcDOISM108bD3IDJu76tUMJcKESvkmPNgj1Q pH8VpRgB3fWrXzIsR3QeGGgPNURdTegc/H5G4prRp+BztIidQtbYTxJHI0WDLAdB pa8ttdFHPNZ11G3Iq/7y5EudQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEJ5HWFR kjjb4+qonB4dsc4SQ/7ZMB8GA1UdIwQYMBaAFIzWXkDirsu8VbbaM0a/HM44NcJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTZFQi9ERDRDMUIyQTBB NUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9LdXk3eFZ0dG96UnI4Y3pqZzF3 bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pOWmVRT0t1eTd4VnR0b3pScjhjempnMXduYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTZFQi9ERDRDMUIyQTBBNUExMUVFQkU4MjQzNDRDNEY5QUUwMi9qTlplUU9LdXk3 eFZ0dG96UnI4Y3pqZzF3bmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBltkNqr9oaVQECgwQ6aWRnv2UY0wDmjXoTpR6doaPJSaHAcufWOK05 wqLLZIXzJJRXu1qYEB1ETi2VoBrrT0HLIpHOoSEP0kV6mt2VghmzeJbiw2d9q/5Z 3sh5rToBTug0AApBU+tpDK88FzFpZ688+P9Wv0ZodwkLps4og9aJjTULACZzoZiO w5HHkZxE8oLio2wJykSCpar5sFwYN2DbQNrNCVZZFwab5Xnte2W5BCVGl4cAPeYq Y3+YU9JB5IJvN5G0Sr7wz1hf0yjm6msqL+uSP+XlDNsX9J3eSF77RQCCIk/bfUhv p0m67nNgaQaRLnvbUCbEx+htK6hsDMFY -----END CERTIFICATE-----Generated at Fri Sep 19 05:55:26 2025 by rpki-client