$ rpki-client -vvf rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft File: l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft (raw, json) Hash identifier: 5PB2pI6M4zJspZEcExOf8/H8lbjvEI8YgzVEUHhjUMU= Subject key identifier: 2E:63:48:86:C7:08:9A:0F:B8:31:31:A1:BD:5D:A4:83:75:FD:FF:DB Authority key identifier: 97:D0:41:59:FB:B3:7E:A6:74:62:B8:96:97:6C:11:40:C9:59:E6:91 Certificate issuer: /CN=A913F2BD/serialNumber=97D04159FBB37EA67462B896976C1140C959E691 Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft Manifest number: E3 Signing time: Wed 17 Sep 2025 06:02:33 +0000 Manifest this update: Wed 17 Sep 2025 06:02:32 +0000 Manifest next update: Wed 24 Sep 2025 06:02:32 +0000 Files and hashes: 1: l9BBWfuzfqZ0YriWl2wRQMlZ5pE.crl (hash: 3HLzrFFIvu0CBWJWzHQltmjf6AMNXXXaKz1PkG8ItHA=) 2: 470E849A389E11EF83D66176C4F9AE02.roa (hash: N6wnq+SiTT7KZAm9ihuMhFBquoYx3YiKfww2FuMhesA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.crl rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F2BD, serialNumber=97D04159FBB37EA67462B896976C1140C959E691 Validity Not Before: Sep 17 06:02:32 2025 GMT Not After : Sep 24 06:02:32 2025 GMT Subject: CN=68ca4ef9-6367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:59:e3:ee:74:7e:85:fe:44:27:93:30:b9:11: 4e:9f:07:d3:cf:2e:ee:a9:82:5b:43:f4:5c:28:b1: 29:99:23:65:18:84:de:b5:51:1e:ca:f7:cb:84:f0: 2d:31:e6:3e:23:53:3c:8f:1f:a1:e8:f8:09:7c:44: ca:3d:60:50:a4:6b:f4:9c:97:c0:7a:0c:14:54:8a: d3:c0:25:c8:87:eb:4e:e7:3d:f3:61:ff:4e:ca:fb: c6:1e:53:17:6c:d5:e1:7f:a7:49:3d:c3:68:a5:80: 31:8e:b6:2a:42:17:bd:86:1f:49:fb:de:23:2b:53: f9:e9:19:81:e7:32:3e:2f:b7:56:9f:90:83:81:de: 83:af:88:80:29:79:c3:62:6d:15:a2:09:47:da:dd: e9:74:ab:78:45:bd:ba:9e:25:2b:10:a7:2e:2e:26: bf:8e:01:74:9c:30:34:7f:2e:52:ca:c7:6d:0f:9c: 3a:0c:c1:81:01:53:7a:9a:e8:23:72:94:06:14:bc: 58:fe:66:13:a1:80:c2:cd:81:2f:0b:6b:d5:12:26: ed:8d:2d:b4:d8:2c:d9:8a:86:b0:7d:78:ab:86:f2: 4b:e0:fc:87:02:3d:24:d0:65:30:b8:6c:be:7c:6c: 4a:0a:1c:08:2d:18:ef:8d:23:05:22:d0:0c:e2:80: f5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:63:48:86:C7:08:9A:0F:B8:31:31:A1:BD:5D:A4:83:75:FD:FF:DB X509v3 Authority Key Identifier: keyid:97:D0:41:59:FB:B3:7E:A6:74:62:B8:96:97:6C:11:40:C9:59:E6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F2BD/47844200389611EF9EDE8136C4F9AE02/l9BBWfuzfqZ0YriWl2wRQMlZ5pE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:0b:40:13:18:c0:aa:e6:da:22:08:a4:09:a1:68:87:a2:8a: 23:44:a2:a3:ce:5c:9f:87:e4:25:7b:c8:b7:6b:01:84:24:ac: 4a:c4:a4:28:2e:b8:7a:be:62:e9:2c:83:94:58:8b:1a:42:9c: 46:de:f8:ad:9a:b6:f0:9e:62:94:2c:7e:2b:71:b4:12:36:0f: a2:40:66:40:24:7f:0c:59:fc:c8:1f:da:fe:06:85:bb:01:57: 8b:7b:c7:6d:aa:66:7e:1f:12:ab:54:cf:ac:4f:20:82:45:77: 93:9e:5d:bd:2c:91:62:af:04:77:94:1a:70:b3:3b:9d:a3:cd: 25:c7:89:3f:5d:3e:3f:51:59:7c:d6:fd:79:56:7c:02:72:50: 0e:fb:92:fc:d4:8c:5b:e0:e5:da:c8:0b:8c:9f:c2:89:de:64: f4:a2:08:ce:3d:5f:49:63:f8:1e:5f:2d:30:68:1f:cf:8f:6d: 66:e7:41:e4:1d:a1:3c:db:38:13:64:db:63:c8:c5:71:ad:4d: 23:ef:8d:53:01:59:dc:e3:2a:8b:4c:f5:92:91:ab:a8:aa:d8: ce:99:63:e2:0d:ba:46:d8:3a:2f:99:de:0c:1a:9b:ff:c7:ff: 6d:a3:65:de:a5:5d:92:2f:af:45:46:cb:9c:f2:5a:be:29:5f: 4a:7e:20:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YyQkQxMTAvBgNVBAUTKDk3RDA0MTU5RkJCMzdFQTY3NDYyQjg5Njk3NkMxMTQw Qzk1OUU2OTEwHhcNMjUwOTE3MDYwMjMyWhcNMjUwOTI0MDYwMjMyWjAYMRYwFAYD VQQDEw02OGNhNGVmOS02MzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyVnj7nR+hf5EJ5MwuRFOnwfTzy7uqYJbQ/RcKLEpmSNlGITetVEeyvfLhPAt MeY+I1M8jx+h6PgJfETKPWBQpGv0nJfAegwUVIrTwCXIh+tO5z3zYf9OyvvGHlMX bNXhf6dJPcNopYAxjrYqQhe9hh9J+94jK1P56RmB5zI+L7dWn5CDgd6Dr4iAKXnD Ym0VoglH2t3pdKt4Rb26niUrEKcuLia/jgF0nDA0fy5SysdtD5w6DMGBAVN6mugj cpQGFLxY/mYToYDCzYEvC2vVEibtjS202CzZioawfXirhvJL4PyHAj0k0GUwuGy+ fGxKChwILRjvjSMFItAM4oD1RQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5jSIbH CJoPuDExob1dpIN1/f/bMB8GA1UdIwQYMBaAFJfQQVn7s36mdGK4lpdsEUDJWeaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjJCRC80Nzg0NDIwMDM4 OTYxMUVGOUVERTgxMzZDNEY5QUUwMi9sOUJCV2Z1emZxWjBZcmlXbDJ3UlFNbFo1 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w5QkJXZnV6ZnFaMFlyaVdsMndSUU1sWjVwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RjJCRC80Nzg0NDIwMDM4OTYxMUVGOUVERTgxMzZDNEY5QUUwMi9sOUJCV2Z1emZx WjBZcmlXbDJ3UlFNbFo1cEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVC0ATGMCq5toiCKQJoWiHooojRKKjzlyfh+Qle8i3awGEJKxKxKQo Lrh6vmLpLIOUWIsaQpxG3vitmrbwnmKULH4rcbQSNg+iQGZAJH8MWfzIH9r+BoW7 AVeLe8dtqmZ+HxKrVM+sTyCCRXeTnl29LJFirwR3lBpwszudo80lx4k/XT4/UVl8 1v15VnwCclAO+5L81Ixb4OXayAuMn8KJ3mT0ogjOPV9JY/geXy0waB/Pj21m50Hk HaE82zgTZNtjyMVxrU0j741TAVnc4yqLTPWSkauoqtjOmWPiDbpG2Dovmd4MGpv/ x/9to2XepV2SL69FRsuc8lq+KV9KfiAS -----END CERTIFICATE-----Generated at Thu Sep 18 22:16:49 2025 by rpki-client