$ rpki-client -vvf rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft File: cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft (raw, json) Hash identifier: dss8wKaNZRNWhQN3izSuCZxKpJxHPIap9kI5YHuoazE= Subject key identifier: CE:0D:32:33:8F:CB:A2:B1:F3:E7:A3:83:7E:46:ED:46:F2:9A:81:E0 Authority key identifier: 70:7D:48:60:5A:0D:85:77:2F:90:DC:4B:11:72:BE:F3:02:94:A0:87 Certificate issuer: /CN=A919D49F/serialNumber=707D48605A0D85772F90DC4B1172BEF30294A087 Certificate serial: 109F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft Manifest number: 1098 Signing time: Thu 18 Sep 2025 17:29:56 +0000 Manifest this update: Thu 18 Sep 2025 17:29:55 +0000 Manifest next update: Thu 25 Sep 2025 17:29:55 +0000 Files and hashes: 1: cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl (hash: pCaSM7Xd0kWFDo6g4pjqG33t0xLbbvlPEMc0KxMLNn0=) 2: 74087358355111E99EC82E0AC4F9AE02.roa (hash: tyb0mMEVFvr0b00WBN86r+sNpOhKC86WXh33owud0/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:29:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4255 (0x109f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D49F, serialNumber=707D48605A0D85772F90DC4B1172BEF30294A087 Validity Not Before: Sep 18 17:29:55 2025 GMT Not After : Sep 25 17:29:55 2025 GMT Subject: CN=68cc4193-5823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:93:6c:ee:77:c4:d7:25:f6:ec:a4:0b:29:d8: 87:07:d4:9f:a6:77:a8:d1:b0:ac:48:11:5d:85:a9: d4:0c:d4:e4:71:fc:81:fa:e5:fa:ff:b8:1a:35:c2: cd:81:08:74:4a:95:fa:fa:49:5f:76:d8:90:2c:f3: 86:36:15:93:1b:40:fa:65:8c:88:d2:dd:5d:5c:6f: a4:d9:7c:6e:3d:84:ae:a9:fa:4b:ee:6a:d7:d7:0e: 28:48:61:40:e0:04:6b:0e:bd:24:2c:9a:30:72:ef: da:d7:c2:5d:5a:dd:3e:88:54:c7:52:87:dc:b0:e3: c6:aa:71:8b:c5:15:62:9a:e7:a4:97:b7:56:8a:54: e3:0e:59:44:7e:ce:33:80:06:2c:8a:d2:98:2d:7b: 0c:30:95:27:be:8e:30:e6:f3:cd:ed:a0:b9:1d:d6: 97:0f:c1:2b:09:49:c0:de:6b:63:4f:7b:2c:26:fa: c9:d3:8d:d9:c7:d6:7c:30:55:ad:d2:c3:d1:53:f5: 96:1a:85:e7:3d:1d:46:70:ed:76:f5:13:bd:aa:5b: 10:f2:8f:63:2f:7f:54:6c:d1:da:be:ef:e3:71:6d: 3e:4c:40:86:bc:fb:58:ef:20:b1:45:a2:ba:c6:b0: 6d:97:8b:4a:02:d7:b6:c2:5f:1c:0e:a1:3c:45:d7: a3:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:0D:32:33:8F:CB:A2:B1:F3:E7:A3:83:7E:46:ED:46:F2:9A:81:E0 X509v3 Authority Key Identifier: keyid:70:7D:48:60:5A:0D:85:77:2F:90:DC:4B:11:72:BE:F3:02:94:A0:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cH1IYFoNhXcvkNxLEXK-8wKUoIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D49F/0BAC8556355111E998A50A0AC4F9AE02/cH1IYFoNhXcvkNxLEXK-8wKUoIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:5d:e4:a1:5a:6d:03:97:9d:e7:33:be:91:38:34:d0:42:a1: 9f:80:19:fc:f4:05:e2:06:97:e3:ef:3d:c5:90:a9:77:45:b4: e3:ad:a7:cc:39:f2:a2:fb:f9:a1:d2:37:11:02:a4:03:ec:01: 68:e8:26:0f:ce:fe:d9:ae:06:59:0d:1b:da:d8:d1:cc:8b:71: df:cf:c6:d4:31:12:e1:46:f1:39:40:1b:6b:f5:51:a2:ad:3b: b0:fc:ff:e6:fb:5d:46:48:f5:6b:c7:70:6e:ec:31:8d:d7:46: 10:c4:be:c9:0a:5a:b6:2e:b2:01:b0:57:c5:26:e3:e3:0e:45: aa:a7:1e:f0:38:72:a1:3c:61:59:43:64:34:8d:d8:3c:77:0d: ae:51:11:aa:80:85:7d:39:f9:f2:94:5e:ca:54:b0:2e:1f:f7: c8:27:5b:c4:98:dc:0b:22:69:c2:a6:4c:d4:83:16:db:f3:48: 06:3c:4d:42:05:95:ca:74:85:70:13:5a:82:99:a5:8c:57:df: ac:e5:5f:bc:cb:f9:ce:f8:48:b1:f4:3c:28:6d:0e:11:8b:c9: 03:53:8d:c6:78:fc:10:57:fd:d9:c9:74:65:46:14:8b:51:d6: 03:5e:ea:62:b3:db:10:0f:e9:d2:3c:b2:39:75:81:a9:10:6d: b9:8c:cc:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ0OUYxMTAvBgNVBAUTKDcwN0Q0ODYwNUEwRDg1NzcyRjkwREM0QjExNzJCRUYz MDI5NEEwODcwHhcNMjUwOTE4MTcyOTU1WhcNMjUwOTI1MTcyOTU1WjAYMRYwFAYD VQQDEw02OGNjNDE5My01ODIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzZNs7nfE1yX27KQLKdiHB9Sfpneo0bCsSBFdhanUDNTkcfyB+uX6/7gaNcLN gQh0SpX6+klfdtiQLPOGNhWTG0D6ZYyI0t1dXG+k2XxuPYSuqfpL7mrX1w4oSGFA 4ARrDr0kLJowcu/a18JdWt0+iFTHUofcsOPGqnGLxRVimuekl7dWilTjDllEfs4z gAYsitKYLXsMMJUnvo4w5vPN7aC5HdaXD8ErCUnA3mtjT3ssJvrJ043Zx9Z8MFWt 0sPRU/WWGoXnPR1GcO129RO9qlsQ8o9jL39UbNHavu/jcW0+TECGvPtY7yCxRaK6 xrBtl4tKAte2wl8cDqE8RdejCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4NMjOP y6Kx8+ejg35G7UbymoHgMB8GA1UdIwQYMBaAFHB9SGBaDYV3L5DcSxFyvvMClKCH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDQ5Ri8wQkFDODU1NjM1 NTExMUU5OThBNTBBMEFDNEY5QUUwMi9jSDFJWUZvTmhYY3ZrTnhMRVhLLTh3S1Vv SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NIMUlZRm9OaFhjdmtOeExFWEstOHdLVW9JYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDQ5Ri8wQkFDODU1NjM1NTExMUU5OThBNTBBMEFDNEY5QUUwMi9jSDFJWUZvTmhY Y3ZrTnhMRVhLLTh3S1VvSWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjXeShWm0Dl53nM76RODTQQqGfgBn89AXiBpfj7z3FkKl3RbTjrafM OfKi+/mh0jcRAqQD7AFo6CYPzv7ZrgZZDRva2NHMi3Hfz8bUMRLhRvE5QBtr9VGi rTuw/P/m+11GSPVrx3Bu7DGN10YQxL7JClq2LrIBsFfFJuPjDkWqpx7wOHKhPGFZ Q2Q0jdg8dw2uURGqgIV9OfnylF7KVLAuH/fIJ1vEmNwLImnCpkzUgxbb80gGPE1C BZXKdIVwE1qCmaWMV9+s5V+8y/nO+Eix9DwobQ4Ri8kDU43GePwQV/3ZyXRlRhSL UdYDXupis9sQD+nSPLI5dYGpEG25jMyH -----END CERTIFICATE-----Generated at Fri Sep 19 16:47:11 2025 by rpki-client