$ rpki-client -vvf rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft File: l9pBnzurP2V6paXATgV8StlhvFs.mft (raw, json) Hash identifier: LW/xhsTHFH52lnI1oLpo+r1EjjZ60p1rCuVuvWDzCKA= Subject key identifier: 2C:FA:86:A9:75:B0:F3:9C:63:AD:FA:DB:BB:2C:59:60:AE:1E:16:E3 Authority key identifier: 97:DA:41:9F:3B:AB:3F:65:7A:A5:A5:C0:4E:05:7C:4A:D9:61:BC:5B Certificate issuer: /CN=A911251C/serialNumber=97DA419F3BAB3F657AA5A5C04E057C4AD961BC5B Certificate serial: 0215 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft Manifest number: 0211 Signing time: Fri 19 Sep 2025 02:36:39 +0000 Manifest this update: Fri 19 Sep 2025 02:36:39 +0000 Manifest next update: Fri 26 Sep 2025 02:36:39 +0000 Files and hashes: 1: l9pBnzurP2V6paXATgV8StlhvFs.crl (hash: k8gibxHp0YgMQynLw1z/HJ5z7YpcmsG5VQ9WcCBgk3s=) 2: B2F017A26BE311ED8B83B484C4F9AE02.roa (hash: 6uCw/qXIdZiC4cEobpHAa9i3YEi9P+DFX8n151x7wcY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.crl rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 02:36:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 533 (0x215) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911251C, serialNumber=97DA419F3BAB3F657AA5A5C04E057C4AD961BC5B Validity Not Before: Sep 19 02:36:39 2025 GMT Not After : Sep 26 02:36:39 2025 GMT Subject: CN=68ccc1b7-c52f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a7:04:b6:02:09:53:63:52:34:9e:47:a4:72: 13:06:20:78:79:04:dd:ff:f9:81:56:c3:78:6e:dc: fe:74:a7:05:42:7f:89:e8:5c:f5:dd:7a:4e:ba:65: 30:cd:37:b8:fd:b4:af:52:e1:f8:89:f5:a4:d5:ba: 1d:90:f4:57:01:d8:6e:04:46:a8:16:cd:eb:1c:79: ae:e9:2a:48:0e:43:aa:fd:7a:3b:88:21:5b:61:55: 74:0a:5b:b1:96:47:bf:f5:81:db:16:1b:b8:ce:97: f9:99:2c:71:ff:2c:a7:00:c4:a2:25:49:bf:45:8f: 9d:40:0a:3a:f8:ac:12:93:00:12:a4:f4:f5:87:37: bf:51:31:b7:f7:13:c8:ae:a4:4d:1e:c5:8a:ed:b2: f0:46:bc:ff:fb:28:78:08:20:e5:20:95:9b:67:a7: ca:2f:dc:1b:b0:7a:62:28:1d:80:c6:04:2f:7b:6d: 31:0a:fc:6b:3c:e2:7f:77:7d:c0:78:fb:c1:0a:66: 7d:4e:bf:21:d2:24:39:8d:5b:17:3e:18:a8:4e:a7: 0c:9e:c5:ee:57:2f:e8:2e:45:a9:5d:5e:9d:6f:7d: 91:1a:ef:2e:6a:12:ce:70:14:73:14:a9:d9:cb:b9: 35:c1:96:bd:14:ba:1e:df:60:d9:8d:2a:e8:d6:b5: 60:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:FA:86:A9:75:B0:F3:9C:63:AD:FA:DB:BB:2C:59:60:AE:1E:16:E3 X509v3 Authority Key Identifier: keyid:97:DA:41:9F:3B:AB:3F:65:7A:A5:A5:C0:4E:05:7C:4A:D9:61:BC:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9pBnzurP2V6paXATgV8StlhvFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911251C/F8F7E2506BE011ED99196F62C4F9AE02/l9pBnzurP2V6paXATgV8StlhvFs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:18:35:a5:8a:c4:1f:1f:d2:29:b1:bb:0b:5e:ac:54:aa:fc: 35:89:b8:37:d4:43:40:f5:5b:ed:6d:f1:54:e2:89:2f:18:cc: f0:04:51:23:cb:dd:07:37:b4:07:4e:b4:7d:36:fa:68:03:d8: 53:89:70:7d:4a:a2:7d:e9:e6:8e:ca:fb:7c:7f:06:8a:bb:23: 3f:cb:46:3b:9e:e6:f4:f8:37:77:8c:b0:43:18:fd:e5:ab:21: 09:de:47:c0:61:16:b3:7f:62:46:42:2e:3d:6d:1b:76:24:a1: 51:5b:41:23:5d:ad:31:48:c9:89:9d:c0:9c:5e:b2:bb:05:1d: 6f:25:66:7e:e7:3a:c1:79:b7:98:17:38:98:8f:5a:12:b8:3f: 7c:23:f4:d4:6e:45:66:76:ca:4c:c4:19:59:05:56:ca:07:3f: d4:67:8b:c0:1f:71:e7:cb:b4:bf:fd:0c:0f:8f:07:4f:1b:57: 64:a8:9b:4a:91:b4:bd:bb:8c:1b:6d:20:fe:01:21:ac:5a:c5: fe:cb:c5:56:9f:64:9a:37:13:42:06:f6:02:cc:6e:f5:29:e6: e6:74:77:33:dc:a1:3e:5e:fe:24:c7:1e:c9:d2:1c:80:ac:8a: 85:d2:c9:4f:a9:6b:36:c5:02:75:f1:b7:bf:2b:73:db:24:a3: be:f8:0b:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI1MUMxMTAvBgNVBAUTKDk3REE0MTlGM0JBQjNGNjU3QUE1QTVDMDRFMDU3QzRB RDk2MUJDNUIwHhcNMjUwOTE5MDIzNjM5WhcNMjUwOTI2MDIzNjM5WjAYMRYwFAYD VQQDEw02OGNjYzFiNy1jNTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqcEtgIJU2NSNJ5HpHITBiB4eQTd//mBVsN4btz+dKcFQn+J6Fz13XpOumUw zTe4/bSvUuH4ifWk1bodkPRXAdhuBEaoFs3rHHmu6SpIDkOq/Xo7iCFbYVV0Clux lke/9YHbFhu4zpf5mSxx/yynAMSiJUm/RY+dQAo6+KwSkwASpPT1hze/UTG39xPI rqRNHsWK7bLwRrz/+yh4CCDlIJWbZ6fKL9wbsHpiKB2AxgQve20xCvxrPOJ/d33A ePvBCmZ9Tr8h0iQ5jVsXPhioTqcMnsXuVy/oLkWpXV6db32RGu8uahLOcBRzFKnZ y7k1wZa9FLoe32DZjSro1rVgyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCz6hql1 sPOcY63627ssWWCuHhbjMB8GA1UdIwQYMBaAFJfaQZ87qz9leqWlwE4FfErZYbxb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjUxQy9GOEY3RTI1MDZC RTAxMUVEOTkxOTZGNjJDNEY5QUUwMi9sOXBCbnp1clAyVjZwYVhBVGdWOFN0bGh2 RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w5cEJuenVyUDJWNnBhWEFUZ1Y4U3RsaHZGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjUxQy9GOEY3RTI1MDZCRTAxMUVEOTkxOTZGNjJDNEY5QUUwMi9sOXBCbnp1clAy VjZwYVhBVGdWOFN0bGh2RnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoGDWlisQfH9IpsbsLXqxUqvw1ibg31ENA9VvtbfFU4okvGMzwBFEj y90HN7QHTrR9NvpoA9hTiXB9SqJ96eaOyvt8fwaKuyM/y0Y7nub0+Dd3jLBDGP3l qyEJ3kfAYRazf2JGQi49bRt2JKFRW0EjXa0xSMmJncCcXrK7BR1vJWZ+5zrBebeY FziYj1oSuD98I/TUbkVmdspMxBlZBVbKBz/UZ4vAH3Hny7S//QwPjwdPG1dkqJtK kbS9u4wbbSD+ASGsWsX+y8VWn2SaNxNCBvYCzG71KebmdHcz3KE+Xv4kxx7J0hyA rIqF0slPqWs2xQJ18be/K3PbJKO++AvZ -----END CERTIFICATE-----Generated at Fri Sep 19 06:57:39 2025 by rpki-client