$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft File: I9szI90s15w3OFgdQvSrD0mINMI.mft (raw, json) Hash identifier: 2rGVsShABeAWUCF/hloiTjR/bMTOUs1MbInWNEFy3qk= Subject key identifier: 74:79:0B:1E:2D:86:D2:39:B8:A6:34:3C:91:E8:C4:F4:E5:F9:C2:17 Authority key identifier: 23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 Certificate issuer: /CN=A911C28A/serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Certificate serial: 0602 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft Manifest number: 05FC Signing time: Thu 18 Sep 2025 23:13:54 +0000 Manifest this update: Thu 18 Sep 2025 23:13:54 +0000 Manifest next update: Thu 25 Sep 2025 23:13:54 +0000 Files and hashes: 1: I9szI90s15w3OFgdQvSrD0mINMI.crl (hash: 2X/JxjF1rzxP0cKBwxIxYZgAGQDsKV9PTjGHbmAovV4=) 2: 2D5E84AAC2A911EBB2025B36C4F9AE02.roa (hash: dCkT6bEicYFMQep7850krPGfdcTTuO3WSPylF2CQFFU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 23:13:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1538 (0x602) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28A, serialNumber=23DB3323DD2CD79C3738581D42F4AB0F498834C2 Validity Not Before: Sep 18 23:13:54 2025 GMT Not After : Sep 25 23:13:54 2025 GMT Subject: CN=68cc9232-3a8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:8e:38:8b:8c:8a:be:dd:12:45:1b:c6:9e:04: c3:07:d4:fe:99:b1:81:2b:d3:b2:11:b9:f0:a8:e6: 09:1f:ce:01:e7:94:1e:f1:96:a0:e2:3e:2b:c9:96: be:54:80:de:d3:d4:8b:cb:dd:49:71:89:01:80:01: 56:c2:53:62:70:ba:29:2d:44:53:39:9e:9b:b4:67: 56:70:10:d9:e5:1f:bb:6b:c6:6e:70:c5:15:b8:2d: e4:e1:c1:47:20:10:1d:a2:3b:2e:3b:5b:b8:20:df: 2f:b3:bb:ce:7e:44:53:7b:31:be:b6:06:83:fe:d8: 6c:e2:b2:67:63:f8:83:37:d3:18:57:42:5f:50:0c: fe:8b:91:11:41:37:ff:16:b4:62:aa:19:da:07:50: d2:37:32:b2:de:65:a3:4f:1b:d5:52:de:ce:25:2a: b3:1e:4d:f8:d8:d2:01:96:2d:e5:85:7f:e3:a2:e6: 1f:16:a9:89:65:dd:cb:ad:9a:25:be:bb:a7:99:13: b8:94:78:07:49:6e:ee:dc:bc:dd:93:e5:a6:31:4e: 84:9e:73:12:dc:72:68:ba:92:92:32:93:92:9e:c6: 04:6f:28:68:e9:e2:bd:47:5d:a4:4b:76:bb:31:14: aa:99:5b:31:c7:92:56:6a:63:18:25:ce:b6:ff:e3: 1d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:79:0B:1E:2D:86:D2:39:B8:A6:34:3C:91:E8:C4:F4:E5:F9:C2:17 X509v3 Authority Key Identifier: keyid:23:DB:33:23:DD:2C:D7:9C:37:38:58:1D:42:F4:AB:0F:49:88:34:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I9szI90s15w3OFgdQvSrD0mINMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28A/2A3566A8C2A511EBB4D34E35C4F9AE02/I9szI90s15w3OFgdQvSrD0mINMI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption df:d5:2a:32:8f:ea:cb:54:41:11:fe:32:3b:23:08:21:d8:4d: 27:f1:43:7c:18:a1:0d:6a:28:85:e9:2e:ed:2d:79:7e:e5:d3: 1c:4b:b1:d4:61:97:8a:46:71:b3:5c:fa:59:47:a2:45:7c:cc: 6f:61:8d:ac:1b:cf:98:48:6a:8a:d6:4f:c1:3f:c7:71:01:28: a1:c8:65:aa:b5:09:91:ac:af:2c:1a:7e:f1:48:a7:23:6d:15: 2b:00:56:55:26:37:df:b1:65:bc:61:30:f6:32:5b:49:e3:99: 60:4b:93:23:b9:2e:e3:ca:6e:9a:a1:b1:a9:33:58:0a:3e:b6: f6:c4:a6:82:67:5c:20:2e:2e:eb:08:18:71:bf:91:33:27:09: 47:2d:32:c7:75:95:ef:8b:7e:3c:ee:ef:21:44:bd:24:dc:0b: 7c:b9:0b:c4:46:c7:63:6b:cb:05:8c:a7:97:6e:91:c7:e0:20: f2:bb:f9:9c:62:b5:1d:26:a8:5b:1e:87:bd:d7:91:06:0c:79: a8:d8:81:e2:71:58:2f:d0:8b:51:7e:41:8d:59:31:45:16:d3: de:ac:47:2f:3c:bf:51:4f:34:cd:9e:91:68:d9:6d:51:9a:9f: 93:10:18:ef:b4:cd:a2:ca:66:9f:2d:89:71:e8:90:bc:d7:e2: 18:40:e7:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEExMTAvBgNVBAUTKDIzREIzMzIzREQyQ0Q3OUMzNzM4NTgxRDQyRjRBQjBG NDk4ODM0QzIwHhcNMjUwOTE4MjMxMzU0WhcNMjUwOTI1MjMxMzU0WjAYMRYwFAYD VQQDEw02OGNjOTIzMi0zYThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApI44i4yKvt0SRRvGngTDB9T+mbGBK9OyEbnwqOYJH84B55Qe8Zag4j4ryZa+ VIDe09SLy91JcYkBgAFWwlNicLopLURTOZ6btGdWcBDZ5R+7a8ZucMUVuC3k4cFH IBAdojsuO1u4IN8vs7vOfkRTezG+tgaD/ths4rJnY/iDN9MYV0JfUAz+i5ERQTf/ FrRiqhnaB1DSNzKy3mWjTxvVUt7OJSqzHk342NIBli3lhX/jouYfFqmJZd3LrZol vrunmRO4lHgHSW7u3Lzdk+WmMU6EnnMS3HJoupKSMpOSnsYEbyho6eK9R12kS3a7 MRSqmVsxx5JWamMYJc62/+MdqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHR5Cx4t htI5uKY0PJHoxPTl+cIXMB8GA1UdIwQYMBaAFCPbMyPdLNecNzhYHUL0qw9JiDTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4QS8yQTM1NjZBOEMy QTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1dzNPRmdkUXZTckQwbUlO TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k5c3pJOTBzMTV3M09GZ2RRdlNyRDBtSU5NSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzI4QS8yQTM1NjZBOEMyQTUxMUVCQjREMzRFMzVDNEY5QUUwMi9JOXN6STkwczE1 dzNPRmdkUXZTckQwbUlOTUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDf1Soyj+rLVEER/jI7Iwgh2E0n8UN8GKENaiiF6S7tLXl+5dMcS7HU YZeKRnGzXPpZR6JFfMxvYY2sG8+YSGqK1k/BP8dxASihyGWqtQmRrK8sGn7xSKcj bRUrAFZVJjffsWW8YTD2MltJ45lgS5MjuS7jym6aobGpM1gKPrb2xKaCZ1wgLi7r CBhxv5EzJwlHLTLHdZXvi3487u8hRL0k3At8uQvERsdja8sFjKeXbpHH4CDyu/mc YrUdJqhbHoe915EGDHmo2IHicVgv0ItRfkGNWTFFFtPerEcvPL9RTzTNnpFo2W1R mp+TEBjvtM2iymafLYlx6JC81+IYQOcw -----END CERTIFICATE-----Generated at Fri Sep 19 04:00:18 2025 by rpki-client