$ rpki-client -vvf rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft File: n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft (raw, json) Hash identifier: 3bRCLfW5fWMgiDXqoIPLzQMM8Qj4rFGZ2S2UJUGkrU4= Subject key identifier: 1B:9B:D2:FD:A9:02:F5:D4:7D:BD:2C:23:EB:33:07:CD:F7:4B:3B:DE Authority key identifier: 9F:CE:28:91:4C:50:DC:99:75:5F:10:8A:B4:33:4F:77:2C:BE:A0:E2 Certificate issuer: /CN=A9136EC5/serialNumber=9FCE28914C50DC99755F108AB4334F772CBEA0E2 Certificate serial: 2B53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft Manifest number: 2B0E Signing time: Mon 08 Sep 2025 15:31:41 +0000 Manifest this update: Mon 08 Sep 2025 15:31:41 +0000 Manifest next update: Mon 15 Sep 2025 15:31:41 +0000 Files and hashes: 1: n84okUxQ3Jl1XxCKtDNPdyy-oOI.crl (hash: qUs9qcU1lFxEGv2Q3B1DRT5eQZe+xQF+HbggVtYQqyc=) 2: F1BA2EAC353311EBB895B082C4F9AE02.roa (hash: 8JXHn+tn0IVLCUvOUOerZKmcj6/h+ZMsxk2iLkFwjsA=) 3: BB799DA8844011F09054B049C4F9AE02.roa (hash: cFt8ol+rUcRVrdwEhcNK9trVsrCRwFUILKrI+CIAfKY=) 4: 08074A8A1EB711EF9C248E60C4F9AE02.roa (hash: bFIjQrk+SKu0XJffarEwWtaET/rTeUOfIWLHnin1FNE=) 5: 8B903A32353211EBB3D0487FC4F9AE02.roa (hash: ReV9a7hSveeezSpIAzgAbbvdpzxiWLw3q4n5gLELjhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.crl rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 15:31:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11091 (0x2b53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136EC5, serialNumber=9FCE28914C50DC99755F108AB4334F772CBEA0E2 Validity Not Before: Sep 8 15:31:41 2025 GMT Not After : Sep 15 15:31:41 2025 GMT Subject: CN=68bef6dd-b160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7c:7c:56:26:60:b2:c1:f1:b3:91:38:21:d1: f0:51:cf:78:e1:a9:fb:b4:03:e0:92:d2:2e:0b:6e: 23:5c:31:f5:55:05:dc:8d:38:0b:17:03:34:ac:6a: 3f:45:70:01:15:ac:8e:69:4b:22:73:f6:2b:7a:c4: d3:e1:62:ce:f0:1d:60:c7:c7:66:09:f2:3e:1d:85: 88:13:34:5b:de:0a:53:1d:23:eb:95:cd:4e:ab:c0: 11:33:88:ec:48:e9:5a:95:3e:62:e9:39:51:46:30: 5f:5d:32:59:ce:81:bd:22:47:47:c0:0e:f3:af:6b: 13:0c:b4:56:cd:f7:1f:7e:34:42:e6:69:6f:91:64: 2b:8d:87:e4:17:10:21:e1:32:bc:fd:05:e8:69:45: d7:97:99:31:2b:e6:4d:b8:78:ce:d9:cc:e8:20:d5: 4c:03:6e:22:b5:d5:a7:06:29:e8:a6:86:f4:14:66: 7a:4f:36:65:13:94:8f:1d:43:3b:6f:04:b9:f5:71: 70:3a:f5:11:b7:93:b0:80:45:3d:50:36:ce:7d:d4: 70:0e:96:e9:dd:2a:8e:0d:4c:bd:1a:91:ab:d8:6f: 6b:13:52:a9:0d:38:c8:45:ea:eb:f8:5d:6e:b4:d0: 6d:0b:6f:73:b3:e6:3e:e0:06:e9:03:33:07:92:fc: 45:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:9B:D2:FD:A9:02:F5:D4:7D:BD:2C:23:EB:33:07:CD:F7:4B:3B:DE X509v3 Authority Key Identifier: keyid:9F:CE:28:91:4C:50:DC:99:75:5F:10:8A:B4:33:4F:77:2C:BE:A0:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:f9:11:71:a4:13:29:f1:d2:a1:14:f9:ef:97:df:da:f1:6e: 9a:55:35:75:61:e7:cf:9c:97:da:5a:90:c8:0d:1d:c5:5d:54: f1:ad:3e:00:55:f1:f7:a6:31:3f:5d:d3:5d:59:62:2b:0a:cd: f9:6d:70:b6:cb:35:b5:96:b2:7e:ba:fa:a5:01:bb:26:2e:1b: ed:1d:45:c2:85:4f:af:37:04:6a:c3:2c:c4:6e:de:68:05:e7: 49:1d:5c:a7:b5:77:24:a4:cb:65:49:14:04:c8:36:e5:30:c7: 7c:bd:17:d7:8d:e4:ba:f9:10:29:05:29:9b:aa:c6:56:68:3c: 18:0e:09:68:10:48:de:05:fd:c2:db:8c:bb:eb:eb:2d:d9:26: 4c:6f:f7:5e:8b:86:84:e9:01:89:aa:5c:69:80:a2:57:94:39: 6d:6b:27:1b:ce:2c:be:cd:99:45:ae:4f:3c:01:c5:a0:2c:00: d8:4b:01:8c:20:bc:2f:ba:6b:35:43:fa:32:d8:6d:71:b5:ae: 11:9e:0b:ae:25:53:4d:d9:d6:8e:32:e3:3b:99:c2:44:22:6c: 1f:80:5e:2e:aa:8b:d8:10:71:65:d5:b5:9b:d7:11:4f:84:dc: 6e:e7:af:08:1f:0f:0c:15:b1:28:23:a5:b5:c2:45:b7:22:d1: 0b:7a:36:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZFQzUxMTAvBgNVBAUTKDlGQ0UyODkxNEM1MERDOTk3NTVGMTA4QUI0MzM0Rjc3 MkNCRUEwRTIwHhcNMjUwOTA4MTUzMTQxWhcNMjUwOTE1MTUzMTQxWjAYMRYwFAYD VQQDEw02OGJlZjZkZC1iMTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHx8ViZgssHxs5E4IdHwUc944an7tAPgktIuC24jXDH1VQXcjTgLFwM0rGo/ RXABFayOaUsic/YresTT4WLO8B1gx8dmCfI+HYWIEzRb3gpTHSPrlc1Oq8ARM4js SOlalT5i6TlRRjBfXTJZzoG9IkdHwA7zr2sTDLRWzfcffjRC5mlvkWQrjYfkFxAh 4TK8/QXoaUXXl5kxK+ZNuHjO2czoINVMA24itdWnBinopob0FGZ6TzZlE5SPHUM7 bwS59XFwOvURt5OwgEU9UDbOfdRwDpbp3SqODUy9GpGr2G9rE1KpDTjIRerr+F1u tNBtC29zs+Y+4AbpAzMHkvxFZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBub0v2p AvXUfb0sI+szB833SzveMB8GA1UdIwQYMBaAFJ/OKJFMUNyZdV8QirQzT3csvqDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkVDNS8yREVDQUU1NjBF NTYxMUU0QjZGMTk1M0FDNEY5QUUwMi9uODRva1V4UTNKbDFYeENLdEROUGR5eS1v T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL244NG9rVXhRM0psMVh4Q0t0RE5QZHl5LW9PSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkVDNS8yREVDQUU1NjBFNTYxMUU0QjZGMTk1M0FDNEY5QUUwMi9uODRva1V4UTNK bDFYeENLdEROUGR5eS1vT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG+RFxpBMp8dKhFPnvl9/a8W6aVTV1YefPnJfaWpDIDR3FXVTxrT4A VfH3pjE/XdNdWWIrCs35bXC2yzW1lrJ+uvqlAbsmLhvtHUXChU+vNwRqwyzEbt5o BedJHVyntXckpMtlSRQEyDblMMd8vRfXjeS6+RApBSmbqsZWaDwYDgloEEjeBf3C 24y76+st2SZMb/dei4aE6QGJqlxpgKJXlDltaycbziy+zZlFrk88AcWgLADYSwGM ILwvums1Q/oy2G1xta4RnguuJVNN2daOMuM7mcJEImwfgF4uqovYEHFl1bWb1xFP hNxu568IHw8MFbEoI6W1wkW3ItELejZE -----END CERTIFICATE-----Generated at Tue Sep 9 13:35:03 2025 by rpki-client