$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft File: D9Qkj9SLoa4LYNjPakPbM7b09ro.mft (raw, json) Hash identifier: nLVJhTE+SnV+pBsdHAUVMbBdj8juMXw2YhNGDxZOcbk= Subject key identifier: A2:25:C1:D3:8D:20:3C:0C:76:30:7A:57:89:31:4D:FE:32:F5:2B:1A Authority key identifier: 0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA Certificate issuer: /CN=A911B5AC/serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Certificate serial: 0208 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft Manifest number: 0205 Signing time: Wed 17 Sep 2025 02:47:22 +0000 Manifest this update: Wed 17 Sep 2025 02:47:21 +0000 Manifest next update: Wed 24 Sep 2025 02:47:21 +0000 Files and hashes: 1: D9Qkj9SLoa4LYNjPakPbM7b09ro.crl (hash: mCvEqjhfnw0Q/v22k8Jrm6sKGnPlU8r1P/B3BnYjPdw=) 2: CA181F42791211ED9D926781C4F9AE02.roa (hash: zvSljqq8u0aCswP8WadYkts+Ql8DETe3wBjOyVuGUoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 02:47:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5AC, serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Validity Not Before: Sep 17 02:47:21 2025 GMT Not After : Sep 24 02:47:21 2025 GMT Subject: CN=68ca2139-ae7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:96:ff:25:1e:b7:47:b5:83:3f:0f:5d:f8:fa: e8:40:f0:4b:6d:86:30:e4:3d:ce:72:6c:7c:5f:d1: 20:06:dd:2f:a6:cc:44:15:07:ae:75:b7:ec:6d:8f: da:49:5b:7e:a9:67:ac:a2:cd:92:b3:55:62:3e:31: 68:4d:3c:ef:5b:81:27:01:11:a1:e4:89:f0:a9:78: 2d:69:74:39:d7:06:f7:6c:97:15:da:c4:e5:dc:18: ca:a1:a8:7a:d1:14:91:60:3a:d4:10:20:8c:45:e0: b5:1a:94:65:f2:c7:ad:ac:af:4e:5a:a4:69:ca:e3: 3b:0d:57:37:49:12:35:4e:e5:0e:a9:bc:6b:5a:5f: b0:00:8e:2e:ee:8e:68:5a:ac:a2:21:1a:fe:ca:95: de:21:86:96:2a:1d:3e:63:41:10:2a:94:2f:b0:71: 58:f7:cf:1b:05:ad:da:9c:f3:c8:13:5d:9c:2b:3e: ef:5b:fd:ae:bd:a0:35:42:c3:b6:f9:1d:b3:08:bd: b1:f8:f9:92:a2:fc:39:d5:32:f0:a1:81:11:74:4a: 3c:56:d2:80:32:90:d9:6d:d3:af:8e:10:29:4e:1c: 3b:5a:b8:1e:33:6c:0b:fa:9d:0e:62:43:e1:97:7a: 1b:ba:54:34:a2:2a:09:67:94:88:0d:d7:5c:08:e3: 5c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:25:C1:D3:8D:20:3C:0C:76:30:7A:57:89:31:4D:FE:32:F5:2B:1A X509v3 Authority Key Identifier: keyid:0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:cd:7d:ee:e7:72:48:8e:59:c1:a9:af:ad:e1:c3:ae:b4:17: 55:d9:3d:c9:c0:55:a5:61:16:d2:54:9a:e5:06:8f:48:5c:56: bf:57:bf:bb:d7:98:01:22:71:f0:81:ff:a1:67:19:47:51:60: cb:44:8c:09:62:27:8a:df:3d:96:8d:2b:1b:13:15:32:d7:bd: 27:f2:84:76:7c:22:9a:ce:1d:8f:44:a2:69:8d:3e:be:f2:b1: ad:17:9c:16:f2:d2:8c:ab:64:50:22:24:5c:ff:bf:38:2a:60: 41:df:04:99:29:8b:6f:b2:08:69:e7:48:a2:1e:7c:01:65:8c: d4:04:b2:cb:6c:8f:5b:0a:b8:37:95:69:dc:66:b0:94:bf:2d: ea:43:d6:4d:a9:01:2c:c0:83:d0:a2:fb:86:7a:47:b1:ad:d7: 83:79:ba:9c:05:41:bd:29:70:72:3e:3c:14:e8:64:25:82:35: 41:d1:db:6a:9b:e7:46:0b:af:d9:32:7d:db:fe:52:b4:a2:63: 57:95:95:39:91:d0:03:09:31:c8:4a:0d:94:14:ca:88:10:e1: 5d:0c:72:ac:1b:e0:66:c9:28:a0:ed:bf:d1:9c:4f:82:ca:71: 94:6e:7e:eb:a6:73:cf:03:10:1c:ed:1b:88:6d:9d:17:3d:67: eb:07:b9:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QUMxMTAvBgNVBAUTKDBGRDQyNDhGRDQ4QkExQUUwQjYwRDhDRjZBNDNEQjMz QjZGNEY2QkEwHhcNMjUwOTE3MDI0NzIxWhcNMjUwOTI0MDI0NzIxWjAYMRYwFAYD VQQDEw02OGNhMjEzOS1hZTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5b/JR63R7WDPw9d+ProQPBLbYYw5D3Ocmx8X9EgBt0vpsxEFQeudbfsbY/a SVt+qWesos2Ss1ViPjFoTTzvW4EnARGh5InwqXgtaXQ51wb3bJcV2sTl3BjKoah6 0RSRYDrUECCMReC1GpRl8setrK9OWqRpyuM7DVc3SRI1TuUOqbxrWl+wAI4u7o5o WqyiIRr+ypXeIYaWKh0+Y0EQKpQvsHFY988bBa3anPPIE12cKz7vW/2uvaA1QsO2 +R2zCL2x+PmSovw51TLwoYERdEo8VtKAMpDZbdOvjhApThw7WrgeM2wL+p0OYkPh l3obulQ0oioJZ5SIDddcCONcowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKIlwdON IDwMdjB6V4kxTf4y9SsaMB8GA1UdIwQYMBaAFA/UJI/Ui6GuC2DYz2pD2zO29Pa6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVBQy81RkFGNTY0Mjc5 MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9hNExZTmpQYWtQYk03YjA5 cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5UWtqOVNMb2E0TFlOalBha1BiTTdiMDlyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVBQy81RkFGNTY0Mjc5MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9h NExZTmpQYWtQYk03YjA5cm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFzX3u53JIjlnBqa+t4cOutBdV2T3JwFWlYRbSVJrlBo9IXFa/V7+7 15gBInHwgf+hZxlHUWDLRIwJYieK3z2WjSsbExUy170n8oR2fCKazh2PRKJpjT6+ 8rGtF5wW8tKMq2RQIiRc/784KmBB3wSZKYtvsghp50iiHnwBZYzUBLLLbI9bCrg3 lWncZrCUvy3qQ9ZNqQEswIPQovuGekexrdeDebqcBUG9KXByPjwU6GQlgjVB0dtq m+dGC6/ZMn3b/lK0omNXlZU5kdADCTHISg2UFMqIEOFdDHKsG+BmySig7b/RnE+C ynGUbn7rpnPPAxAc7RuIbZ0XPWfrB7kR -----END CERTIFICATE-----Generated at Fri Sep 19 00:59:32 2025 by rpki-client