$ rpki-client -vvf rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft File: i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft (raw, json) Hash identifier: XjmQENoYmJGeS6neTevN6479WV5/HdOW2jTUwMpZoAg= Subject key identifier: E5:BE:76:3A:EC:A1:9D:73:4C:A1:10:4B:D8:35:F2:00:F5:A7:82:D3 Authority key identifier: 8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C Certificate issuer: /CN=A9116E68/serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft Manifest number: 013F Signing time: Wed 17 Sep 2025 04:57:48 +0000 Manifest this update: Wed 17 Sep 2025 04:57:47 +0000 Manifest next update: Wed 24 Sep 2025 04:57:47 +0000 Files and hashes: 1: i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl (hash: YwUBsoS9mP/APu0EFSrt8jRsKxSS+XQievVk19+EMJc=) 2: 2601A296AE1011EE92B7161BC4F9AE02.roa (hash: ruTuAI8tCOCbFuPP+2u83Ib06u3MS/nsClPmyXw7xNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116E68, serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Validity Not Before: Sep 17 04:57:47 2025 GMT Not After : Sep 24 04:57:47 2025 GMT Subject: CN=68ca3fcc-93e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7f:70:4b:83:d9:9b:c6:1f:32:b1:f9:24:ca: 6e:10:fd:66:20:7f:97:7c:4b:28:82:9d:73:b7:e3: 99:a0:a1:1c:0a:cb:25:f8:4e:06:b9:df:81:4c:78: cd:80:67:7e:86:d4:2f:43:d9:a9:19:a0:cd:a7:d3: 3f:32:33:5c:9b:87:c6:52:c2:4a:90:a5:c2:44:d6: f1:27:f8:c4:36:22:ff:d8:59:3e:92:9b:7e:6d:82: 97:a2:94:47:8d:82:5e:7b:13:17:7a:5e:06:43:83: 19:d7:0c:bb:65:c8:98:06:2c:9e:e5:36:49:d7:21: 8f:d7:12:6b:e6:02:ca:fa:79:15:64:61:57:f7:27: 12:b2:76:b7:69:41:78:19:0a:c3:26:81:6d:f3:86: 02:83:68:01:dc:e6:27:a0:3a:93:e6:d9:48:92:14: 10:19:bb:3a:36:fb:6a:4b:92:40:8e:ad:48:a9:c7: c5:a1:ab:ce:f5:bf:49:92:9a:44:dd:49:05:fc:e6: 38:29:2b:b2:3c:15:12:3e:af:f2:03:d0:43:f1:f8: 28:6f:38:c5:45:f0:da:6f:51:68:ab:cb:6f:7d:9b: 14:40:d5:6f:c9:3a:da:7a:99:43:57:0a:0a:79:ae: c6:54:14:c6:05:8c:94:82:8a:6f:cd:93:5e:6f:ab: 28:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:BE:76:3A:EC:A1:9D:73:4C:A1:10:4B:D8:35:F2:00:F5:A7:82:D3 X509v3 Authority Key Identifier: keyid:8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:5a:3b:91:e1:cb:d3:93:1c:2d:00:d5:bf:40:12:3e:42:4a: 57:28:bc:21:69:6a:f5:3b:13:df:0e:55:07:ca:f4:a2:04:99: 4d:c1:a5:51:7b:29:44:8d:b5:c9:f7:35:49:ce:0c:9f:ce:03: 14:1d:51:a3:82:e4:8e:7c:9f:7a:9c:ee:e0:19:8e:17:22:ea: 59:61:1d:2d:f5:dc:4c:52:c2:e4:7c:f5:4b:cd:2c:e1:4c:9a: a3:8d:a4:17:f3:37:ce:b0:b1:e1:61:8b:6d:4e:94:b0:36:2e: a1:14:fd:cb:a6:87:fa:25:3e:b4:4f:d6:7e:b9:66:37:8c:58: d7:06:fa:97:57:c3:fc:06:7d:81:4e:85:b2:39:ad:36:d3:e4: de:a3:cf:2f:1b:96:92:63:f2:08:1c:27:4d:fa:b7:b6:21:df: 81:19:5c:d0:63:60:c5:79:f6:57:db:0a:cf:0b:df:f9:c3:1e: bb:5f:a4:b1:2e:90:9d:88:44:0b:38:d6:b0:6e:70:7d:be:a7: 93:32:fb:a7:4f:41:15:49:9b:cd:e4:20:74:e9:f8:2d:3d:31: 07:99:2a:40:92:f8:a6:af:28:9c:c7:03:85:16:1a:2f:91:9e: 4f:ae:e1:f9:eb:d1:6b:a8:d9:7f:fa:46:46:f1:aa:05:53:88: 76:3b:0a:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZFNjgxMTAvBgNVBAUTKDhCQTk0RTI0NEM4NzAzRTJFMjEyNDU2Qjk4NzFCM0M4 MkQ1MDcwOUMwHhcNMjUwOTE3MDQ1NzQ3WhcNMjUwOTI0MDQ1NzQ3WjAYMRYwFAYD VQQDEw02OGNhM2ZjYy05M2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAun9wS4PZm8YfMrH5JMpuEP1mIH+XfEsogp1zt+OZoKEcCssl+E4Gud+BTHjN gGd+htQvQ9mpGaDNp9M/MjNcm4fGUsJKkKXCRNbxJ/jENiL/2Fk+kpt+bYKXopRH jYJeexMXel4GQ4MZ1wy7ZciYBiye5TZJ1yGP1xJr5gLK+nkVZGFX9ycSsna3aUF4 GQrDJoFt84YCg2gB3OYnoDqT5tlIkhQQGbs6NvtqS5JAjq1IqcfFoavO9b9JkppE 3UkF/OY4KSuyPBUSPq/yA9BD8fgobzjFRfDab1Foq8tvfZsUQNVvyTraeplDVwoK ea7GVBTGBYyUgopvzZNeb6so6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOW+djrs oZ1zTKEQS9g18gD1p4LTMB8GA1UdIwQYMBaAFIupTiRMhwPi4hJFa5hxs8gtUHCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkU2OC9EMkJBQUM0QUFF MEYxMUVFQTdBQzk0MUFDNEY5QUUwMi9pNmxPSkV5SEEtTGlFa1ZybUhHenlDMVFj SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k2bE9KRXlIQS1MaUVrVnJtSEd6eUMxUWNKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkU2OC9EMkJBQUM0QUFFMEYxMUVFQTdBQzk0MUFDNEY5QUUwMi9pNmxPSkV5SEEt TGlFa1ZybUhHenlDMVFjSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjWjuR4cvTkxwtANW/QBI+QkpXKLwhaWr1OxPfDlUHyvSiBJlNwaVR eylEjbXJ9zVJzgyfzgMUHVGjguSOfJ96nO7gGY4XIupZYR0t9dxMUsLkfPVLzSzh TJqjjaQX8zfOsLHhYYttTpSwNi6hFP3Lpof6JT60T9Z+uWY3jFjXBvqXV8P8Bn2B ToWyOa020+Teo88vG5aSY/IIHCdN+re2Id+BGVzQY2DFefZX2wrPC9/5wx67X6Sx LpCdiEQLONawbnB9vqeTMvunT0EVSZvN5CB06fgtPTEHmSpAkvimryicxwOFFhov kZ5PruH569FrqNl/+kZG8aoFU4h2Owon -----END CERTIFICATE-----Generated at Thu Sep 18 20:53:22 2025 by rpki-client