$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft File: I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft (raw, json) Hash identifier: qdH1xCGZcqe5t8g26OlT8CHnQ/9YXOTrIrGz1iN0xYo= Subject key identifier: F5:B3:0C:B7:CA:36:88:A5:BC:F8:3D:C9:18:83:6C:3E:C8:63:F3:35 Authority key identifier: 23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 Certificate issuer: /CN=A9146A72/serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Certificate serial: 2DB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft Manifest number: 2D98 Signing time: Mon 08 Sep 2025 15:28:33 +0000 Manifest this update: Mon 08 Sep 2025 15:28:32 +0000 Manifest next update: Mon 15 Sep 2025 15:28:32 +0000 Files and hashes: 1: I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl (hash: iy0DYk0lMIAa7yyAANyMe3SAExO5jbPjbYk8+J8dWVQ=) 2: 3635C928CE3811EF878F6569C4F9AE02.roa (hash: YEykTWEyF8uWmDfMqfcTRJ6JVKpkGjYj5MpoKQgBTng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 15:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11700 (0x2db4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72, serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Validity Not Before: Sep 8 15:28:32 2025 GMT Not After : Sep 15 15:28:32 2025 GMT Subject: CN=68bef620-c564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8d:c6:99:2e:c4:18:c5:be:be:56:63:29:8d: 08:e7:c6:d3:55:69:79:54:4b:63:cf:f7:e9:63:92: 5c:51:2e:48:43:d1:cc:6e:48:96:3a:b8:29:a2:50: e0:7e:79:fb:7a:68:07:cd:a9:09:a2:ff:7f:c5:06: 3f:c7:83:f8:fa:0d:ba:c8:19:1a:7c:6e:dd:8e:f6: 23:d3:6c:e8:22:a7:f2:4b:d0:42:72:35:74:74:56: 2e:22:46:fb:40:3e:d8:00:f4:9e:bf:64:31:13:ab: fb:e5:7f:7e:c2:a9:04:1a:df:52:7f:6c:d0:8f:5c: f1:05:86:a7:e2:67:3f:93:88:33:e5:54:34:99:55: 77:50:23:63:c5:81:ca:83:c4:e7:ed:dc:e5:cf:7c: 16:8d:38:d7:65:54:85:02:d5:8f:9f:a7:2e:6c:bb: 2b:ad:8b:60:ff:2f:9d:de:c0:00:e5:0f:16:68:36: 47:8c:03:18:17:6b:75:de:80:ef:ac:e5:dc:d2:62: d0:66:54:38:71:24:2d:78:a3:24:d1:90:17:1b:b5: 37:79:90:46:d5:bd:dd:66:0b:4d:b6:7f:f7:e0:d1: 8b:07:0e:15:41:b6:ff:05:e5:ae:fb:da:2c:51:d1: 2a:c6:97:8c:a1:57:1c:5d:a5:8d:3b:74:91:00:c7: 66:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:B3:0C:B7:CA:36:88:A5:BC:F8:3D:C9:18:83:6C:3E:C8:63:F3:35 X509v3 Authority Key Identifier: keyid:23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:e1:e2:eb:77:11:1f:f8:f5:27:87:3b:e7:5d:3c:9a:a6:aa: 43:08:b6:31:fc:bf:b4:f8:3f:d3:b8:bd:00:3e:13:09:5c:64: a4:07:1b:06:2a:d8:9f:76:6c:40:c3:c4:7e:32:1d:f0:be:73: 9f:f4:84:ee:8b:19:8d:55:92:cc:53:66:be:f1:24:e9:c2:3d: 47:d2:6f:5b:98:7a:48:60:d7:35:7b:cd:6b:66:26:2f:7b:27: 63:eb:20:06:43:f1:43:a5:ff:08:75:6a:4e:fa:10:98:ae:92: 04:45:59:c6:6c:80:8f:5f:0a:1c:73:ce:ce:da:b8:ba:5c:e1: d6:56:5b:bf:45:70:f6:10:e3:b7:d1:4a:81:7f:16:e8:c8:19: 84:61:df:00:3d:dd:b2:4a:ed:f2:f2:5f:64:ab:50:6a:32:31: 89:54:05:39:33:39:ff:69:4a:a7:6c:2c:84:d4:6e:a1:57:e4: 8f:de:2a:37:13:cf:ce:97:62:37:b6:d5:19:b4:c1:e6:6c:61: 9d:c3:b0:89:c8:6e:c8:50:73:20:14:96:a4:49:53:ad:27:2e: da:34:7d:8e:5e:27:ff:d4:56:91:1c:20:6a:60:3a:ae:21:13: 0c:5f:74:e5:85:50:f8:74:1b:3a:e7:8e:6a:71:b9:55:6b:c3: 26:8f:9a:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKDIzNzA0RDU5MkY1NzUwOUVEQ0U1QTRBRDdCREVFRENG N0JEQkFDRTQwHhcNMjUwOTA4MTUyODMyWhcNMjUwOTE1MTUyODMyWjAYMRYwFAYD VQQDEw02OGJlZjYyMC1jNTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0I3GmS7EGMW+vlZjKY0I58bTVWl5VEtjz/fpY5JcUS5IQ9HMbkiWOrgpolDg fnn7emgHzakJov9/xQY/x4P4+g26yBkafG7djvYj02zoIqfyS9BCcjV0dFYuIkb7 QD7YAPSev2QxE6v75X9+wqkEGt9Sf2zQj1zxBYan4mc/k4gz5VQ0mVV3UCNjxYHK g8Tn7dzlz3wWjTjXZVSFAtWPn6cubLsrrYtg/y+d3sAA5Q8WaDZHjAMYF2t13oDv rOXc0mLQZlQ4cSQteKMk0ZAXG7U3eZBG1b3dZgtNtn/34NGLBw4VQbb/BeWu+9os UdEqxpeMoVccXaWNO3SRAMdm3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPWzDLfK NoilvPg9yRiDbD7IY/M1MB8GA1UdIwQYMBaAFCNwTVkvV1Ce3OWkrXve7c9726zk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi8wNUM4OTFEQTg5 RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVKN2M1YVN0ZTk3dHozdmJy T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kzQk5XUzlYVUo3YzVhU3RlOTd0ejN2YnJPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi8wNUM4OTFEQTg5RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVK N2M1YVN0ZTk3dHozdmJyT1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAB4eLrdxEf+PUnhzvnXTyapqpDCLYx/L+0+D/TuL0APhMJXGSkBxsG KtifdmxAw8R+Mh3wvnOf9ITuixmNVZLMU2a+8STpwj1H0m9bmHpIYNc1e81rZiYv eydj6yAGQ/FDpf8IdWpO+hCYrpIERVnGbICPXwocc87O2ri6XOHWVlu/RXD2EOO3 0UqBfxboyBmEYd8APd2ySu3y8l9kq1BqMjGJVAU5Mzn/aUqnbCyE1G6hV+SP3io3 E8/Ol2I3ttUZtMHmbGGdw7CJyG7IUHMgFJakSVOtJy7aNH2OXif/1FaRHCBqYDqu IRMMX3TlhVD4dBs6545qcblVa8Mmj5pa -----END CERTIFICATE-----Generated at Tue Sep 9 13:21:27 2025 by rpki-client