$ rpki-client -vvf rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft File: JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft (raw, json) Hash identifier: nz/7B5qbzNevdMQtjL2XbKkTw6NlxY/OU0zQ5KrHJoE= Subject key identifier: EB:52:BE:D1:4E:37:0F:59:9F:F6:4B:A3:D0:9D:CB:C4:B1:72:A2:D8 Authority key identifier: 24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4 Certificate issuer: /CN=A911E008/serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4 Certificate serial: 171E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft Manifest number: 1714 Signing time: Thu 18 Sep 2025 16:45:52 +0000 Manifest this update: Thu 18 Sep 2025 16:45:52 +0000 Manifest next update: Thu 25 Sep 2025 16:45:52 +0000 Files and hashes: 1: JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl (hash: B01eSpQ3L1h3b9NP35x84pR+whefShyueRZC4Qqwpi8=) 2: 04A96D3ADB0511EBB30F6E2EC4F9AE02.roa (hash: 995PegsL3ZUwg9uvRMBU899Zay98EopTGO6qSEJefks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:45:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5918 (0x171e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E008, serialNumber=248F5588EA8FC7DD0A3B4DA1E1558031C0D927E4 Validity Not Before: Sep 18 16:45:52 2025 GMT Not After : Sep 25 16:45:52 2025 GMT Subject: CN=68cc3740-69b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6e:26:3b:96:66:48:1b:8f:3c:7a:b2:ed:a0: bf:bf:13:d1:96:5e:de:da:79:3f:2a:37:97:96:48: d6:f5:3e:37:65:21:58:3f:53:db:21:ec:8e:fc:e1: 5b:62:de:3f:b3:5e:17:e4:cc:66:25:40:78:50:f9: ed:89:37:d1:71:66:a7:cb:ed:85:4b:37:91:34:2f: bc:9b:0a:29:f3:86:e0:43:24:33:a1:4f:cb:c9:91: a0:6c:25:77:1f:1e:63:f9:e4:df:2e:f9:c7:3a:91: c0:b2:4c:36:8f:98:8e:e9:10:65:90:40:38:d2:31: ce:05:00:bc:da:2d:37:22:64:62:4c:6a:e4:75:e8: 34:70:29:9f:8b:dc:83:8e:22:38:05:30:28:76:1f: 72:bc:fa:9a:a8:b6:da:1c:3e:33:54:c3:b8:8f:99: da:62:0c:f7:8a:f1:2a:5e:e6:d9:12:09:50:cf:c4: e8:a8:ae:06:2f:d3:0c:3b:cf:23:d5:e4:72:29:b1: b6:0f:ef:77:cf:f0:e6:7d:0f:61:39:a0:91:d9:6d: 6c:6f:be:d6:54:ad:bc:83:a4:6b:27:df:e8:97:78: cc:7a:40:44:ad:08:04:8b:3f:84:16:7b:fa:a6:15: a7:e2:9f:f2:25:e2:00:6e:56:70:06:dc:16:d9:b0: fb:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:52:BE:D1:4E:37:0F:59:9F:F6:4B:A3:D0:9D:CB:C4:B1:72:A2:D8 X509v3 Authority Key Identifier: keyid:24:8F:55:88:EA:8F:C7:DD:0A:3B:4D:A1:E1:55:80:31:C0:D9:27:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JI9ViOqPx90KO02h4VWAMcDZJ-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E008/DD88C3AEF1D311E797ED4240C4F9AE02/JI9ViOqPx90KO02h4VWAMcDZJ-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:00:6b:56:03:92:11:bc:68:aa:7a:11:cd:5d:b9:f3:23:a3: 20:09:ce:d6:02:c5:b8:b9:1e:c7:d1:82:33:56:d3:94:1f:b2: 86:e7:e1:41:d6:bb:b8:19:f6:02:7e:51:ac:26:8a:0a:e9:a9: 6e:86:9b:a8:1b:5e:4f:74:cf:88:29:c2:d2:c7:50:48:9d:c2: c2:fa:df:f5:ce:9d:6c:1f:58:5d:8f:ce:61:1d:69:7f:e4:55: 9f:ce:b8:13:ae:8b:99:ea:ce:b9:50:40:af:a8:51:7c:a8:23: c9:e8:85:2f:95:d8:da:f9:4e:eb:67:b1:3d:aa:0c:48:bf:09: db:77:62:64:e9:5a:4a:90:39:b8:dd:9a:4c:f2:34:ce:a7:51: 8b:c9:3b:2c:16:ed:9c:10:4a:4a:78:cf:ef:21:bc:3a:d5:1e: f8:4c:9f:11:83:23:85:d5:fa:40:bd:bd:ac:64:67:15:34:7f: 0b:52:5d:0e:e7:e5:54:2f:47:70:14:77:89:80:8e:56:bf:4f: 7b:5b:8b:27:77:e1:9b:30:5e:ad:ff:e3:42:9f:8c:3a:be:60: 25:fd:f1:08:47:6a:ff:32:f1:f4:93:28:f6:27:4f:9a:d7:b2: 72:85:a0:bf:11:f9:66:a2:52:65:b3:d9:2a:2d:1f:36:05:e3: 70:f8:a0:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUwMDgxMTAvBgNVBAUTKDI0OEY1NTg4RUE4RkM3REQwQTNCNERBMUUxNTU4MDMx QzBEOTI3RTQwHhcNMjUwOTE4MTY0NTUyWhcNMjUwOTI1MTY0NTUyWjAYMRYwFAYD VQQDEw02OGNjMzc0MC02OWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAym4mO5ZmSBuPPHqy7aC/vxPRll7e2nk/KjeXlkjW9T43ZSFYP1PbIeyO/OFb Yt4/s14X5MxmJUB4UPntiTfRcWany+2FSzeRNC+8mwop84bgQyQzoU/LyZGgbCV3 Hx5j+eTfLvnHOpHAskw2j5iO6RBlkEA40jHOBQC82i03ImRiTGrkdeg0cCmfi9yD jiI4BTAodh9yvPqaqLbaHD4zVMO4j5naYgz3ivEqXubZEglQz8ToqK4GL9MMO88j 1eRyKbG2D+93z/DmfQ9hOaCR2W1sb77WVK28g6RrJ9/ol3jMekBErQgEiz+EFnv6 phWn4p/yJeIAblZwBtwW2bD7eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtSvtFO Nw9Zn/ZLo9Cdy8SxcqLYMB8GA1UdIwQYMBaAFCSPVYjqj8fdCjtNoeFVgDHA2Sfk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTAwOC9ERDg4QzNBRUYx RDMxMUU3OTdFRDQyNDBDNEY5QUUwMi9KSTlWaU9xUHg5MEtPMDJoNFZXQU1jRFpK LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pJOVZpT3FQeDkwS08wMmg0VldBTWNEWkotUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTAwOC9ERDg4QzNBRUYxRDMxMUU3OTdFRDQyNDBDNEY5QUUwMi9KSTlWaU9xUHg5 MEtPMDJoNFZXQU1jRFpKLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZAGtWA5IRvGiqehHNXbnzI6MgCc7WAsW4uR7H0YIzVtOUH7KG5+FB 1ru4GfYCflGsJooK6aluhpuoG15PdM+IKcLSx1BIncLC+t/1zp1sH1hdj85hHWl/ 5FWfzrgTrouZ6s65UECvqFF8qCPJ6IUvldja+U7rZ7E9qgxIvwnbd2Jk6VpKkDm4 3ZpM8jTOp1GLyTssFu2cEEpKeM/vIbw61R74TJ8RgyOF1fpAvb2sZGcVNH8LUl0O 5+VUL0dwFHeJgI5Wv097W4snd+GbMF6t/+NCn4w6vmAl/fEIR2r/MvH0kyj2J0+a 17JyhaC/EflmolJls9kqLR82BeNw+KDb -----END CERTIFICATE-----Generated at Fri Sep 19 00:39:35 2025 by rpki-client