$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft File: SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft (raw, json) Hash identifier: cqIY1GcJUn3QEcanMvU69EHBCJh8hb2JfSzY7Dtqy1o= Subject key identifier: AF:B9:A9:1E:71:5F:1F:A2:35:21:75:C0:B6:CF:CF:D6:E5:FD:46:95 Authority key identifier: 4B:31:08:BC:57:58:84:3D:63:DF:F6:FC:64:09:7F:2B:16:44:CB:8A Certificate issuer: /CN=A9144F34/serialNumber=4B3108BC5758843D63DFF6FC64097F2B1644CB8A Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft Manifest number: 87 Signing time: Fri 05 Sep 2025 07:05:42 +0000 Manifest this update: Fri 05 Sep 2025 07:05:41 +0000 Manifest next update: Fri 12 Sep 2025 07:05:41 +0000 Files and hashes: 1: SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl (hash: 0YjR+h9O8nTCtAqiY9nkUUSj0oCuNYEgle0vDMm+p/Y=) 2: 4965C7C02E4411F0B187B122C4F9AE02.roa (hash: vT0qzVdoUmxJ/TJ/AidkSPg3ugEyyFgQIDSZRoXd/0g=) 3: AA14EED2BDE911EFB07EE682C4F9AE02.roa (hash: 8Lz3SihiRlFf9NOxeybLJutdQF61khJ8l8jmKMF421Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:05:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F34, serialNumber=4B3108BC5758843D63DFF6FC64097F2B1644CB8A Validity Not Before: Sep 5 07:05:41 2025 GMT Not After : Sep 12 07:05:41 2025 GMT Subject: CN=68ba8bc6-9f39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ad:11:0b:6c:2b:28:9b:b7:1c:23:9e:b9:1d: 2d:bd:f5:79:aa:e3:37:8c:39:35:95:37:07:d8:96: 60:29:b3:13:52:ff:8e:a0:39:df:bf:2f:7a:cf:9a: 63:7c:83:d3:98:70:40:c3:59:64:e4:48:a9:9a:85: bb:0d:ed:c0:84:c4:5a:cd:93:54:ea:24:e8:d5:f0: ef:c8:17:e5:27:fe:0e:1d:33:6c:fa:fc:b8:8b:27: 0d:8c:de:f3:68:31:c5:7c:e6:ed:b7:f5:49:2e:da: 94:5b:df:f0:4e:28:3b:23:ba:99:89:29:fc:69:0d: ef:8e:33:60:59:23:e3:0a:0c:a4:1a:d8:3d:dd:88: 25:5f:36:56:02:42:c3:82:eb:6c:01:8f:2a:fa:a0: a8:92:38:76:39:79:92:65:41:cc:33:59:3c:b7:94: a3:c5:03:22:73:16:25:4a:ec:58:b8:d4:c3:f5:f2: 69:eb:b5:b5:03:ec:51:c5:aa:73:09:55:0a:7c:05: b5:3e:88:81:44:30:8b:b5:86:2b:a3:1a:ce:df:11: a3:83:c7:c2:b4:f1:b3:06:73:87:91:b7:55:79:17: 77:53:c8:04:5e:b7:fb:be:a6:e0:05:3a:d2:c8:8b: 00:d3:11:fb:fe:0c:3e:22:ca:59:53:f9:15:7d:be: 94:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:B9:A9:1E:71:5F:1F:A2:35:21:75:C0:B6:CF:CF:D6:E5:FD:46:95 X509v3 Authority Key Identifier: keyid:4B:31:08:BC:57:58:84:3D:63:DF:F6:FC:64:09:7F:2B:16:44:CB:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F34/4D22EEE0BDE911EFBFD53882C4F9AE02/SzEIvFdYhD1j3_b8ZAl_KxZEy4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:19:8c:84:3a:51:96:d9:7c:dd:a8:9a:11:f9:24:a1:2e:d7: 04:78:26:e0:bd:0a:36:02:68:0f:07:0c:58:fd:23:15:2e:42: ba:1c:23:08:31:59:12:91:f0:d9:df:bf:f5:e6:ea:95:9a:2c: 4e:73:56:94:90:5e:f3:30:26:8a:65:d7:5d:28:ef:56:3d:36: 3b:4d:ad:8e:7f:cd:84:27:3c:76:bd:e2:0e:a2:51:c1:df:80: 0d:a1:a4:7c:e1:fb:c9:df:06:30:29:17:d7:48:ac:1d:95:f5: 6a:9e:89:c4:51:4e:cf:62:06:dc:5e:3a:5e:c2:71:31:83:58: 0c:86:2e:26:48:e0:df:46:cc:56:25:96:84:d2:8a:b5:12:30: 08:e6:8e:7b:7c:64:d9:b7:bf:c1:3a:d4:b8:de:4e:5b:8f:d1: ff:42:2e:08:c1:1e:39:0f:57:13:48:b8:07:c2:5a:51:c5:7e: 0f:3c:43:34:50:2b:54:64:aa:50:84:ad:1e:72:eb:a4:13:b6: fa:af:1d:fc:85:b7:ba:b3:77:c2:a2:4c:2d:e1:a4:77:58:5b: 2e:dd:48:8c:b2:0f:97:c4:b6:94:fb:b9:a9:d6:cb:40:bb:1d: 78:a4:1d:cc:d4:d5:58:ca:06:a1:45:81:d9:45:e3:3c:a9:ae: 1e:22:bd:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGMzQxMTAvBgNVBAUTKDRCMzEwOEJDNTc1ODg0M0Q2M0RGRjZGQzY0MDk3RjJC MTY0NENCOEEwHhcNMjUwOTA1MDcwNTQxWhcNMjUwOTEyMDcwNTQxWjAYMRYwFAYD VQQDEw02OGJhOGJjNi05ZjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyq0RC2wrKJu3HCOeuR0tvfV5quM3jDk1lTcH2JZgKbMTUv+OoDnfvy96z5pj fIPTmHBAw1lk5EipmoW7De3AhMRazZNU6iTo1fDvyBflJ/4OHTNs+vy4iycNjN7z aDHFfObtt/VJLtqUW9/wTig7I7qZiSn8aQ3vjjNgWSPjCgykGtg93YglXzZWAkLD gutsAY8q+qCokjh2OXmSZUHMM1k8t5SjxQMicxYlSuxYuNTD9fJp67W1A+xRxapz CVUKfAW1PoiBRDCLtYYroxrO3xGjg8fCtPGzBnOHkbdVeRd3U8gEXrf7vqbgBTrS yIsA0xH7/gw+IspZU/kVfb6UhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK+5qR5x Xx+iNSF1wLbPz9bl/UaVMB8GA1UdIwQYMBaAFEsxCLxXWIQ9Y9/2/GQJfysWRMuK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEYzNC80RDIyRUVFMEJE RTkxMUVGQkZENTM4ODJDNEY5QUUwMi9TekVJdkZkWWhEMWozX2I4WkFsX0t4WkV5 NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N6RUl2RmRZaEQxajNfYjhaQWxfS3haRXk0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEYzNC80RDIyRUVFMEJERTkxMUVGQkZENTM4ODJDNEY5QUUwMi9TekVJdkZkWWhE MWozX2I4WkFsX0t4WkV5NG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXGYyEOlGW2XzdqJoR+SShLtcEeCbgvQo2AmgPBwxY/SMVLkK6HCMI MVkSkfDZ37/15uqVmixOc1aUkF7zMCaKZdddKO9WPTY7Ta2Of82EJzx2veIOolHB 34ANoaR84fvJ3wYwKRfXSKwdlfVqnonEUU7PYgbcXjpewnExg1gMhi4mSODfRsxW JZaE0oq1EjAI5o57fGTZt7/BOtS43k5bj9H/Qi4IwR45D1cTSLgHwlpRxX4PPEM0 UCtUZKpQhK0ecuukE7b6rx38hbe6s3fCokwt4aR3WFsu3UiMsg+XxLaU+7mp1stA ux14pB3M1NVYygahRYHZReM8qa4eIr3A -----END CERTIFICATE-----Generated at Sat Sep 6 21:09:04 2025 by rpki-client