$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft File: I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft (raw, json) Hash identifier: uNTE2b9wD43zvcGJ2oWwhBtHJ/APODDqJqfj5rXuKtE= Subject key identifier: 0A:92:F1:49:DF:5A:0B:0E:BB:6E:B7:5C:CD:FD:14:11:DA:16:58:94 Authority key identifier: 23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 Certificate issuer: /CN=A9146A72/serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Certificate serial: 2DDD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft Manifest number: 2DBD Signing time: Sun 02 Nov 2025 15:29:54 +0000 Manifest this update: Sun 02 Nov 2025 15:29:54 +0000 Manifest next update: Sun 09 Nov 2025 15:29:54 +0000 Files and hashes: 1: I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl (hash: 2IX7CBAUJLDjnkm5QTg8juJi96Mp5RuFlldoI71qSJE=) 2: 3635C928CE3811EF878F6569C4F9AE02.roa (hash: hRzik5kXimOwUS6S1oWYsWN9k919CD3fLtMBHNWUanA=) 3: 0F6B8D969A6B11F08E49AE43C4F9AE02.roa (hash: Pdk6bT7HhSqGJ2GX150nm/IL+DXi5SGrlxiId38sTmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11741 (0x2ddd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72, serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Validity Not Before: Nov 2 15:29:54 2025 GMT Not After : Nov 9 15:29:54 2025 GMT Subject: CN=690778f2-7c25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cc:e2:9a:df:ae:84:97:b1:5d:67:62:32:f1: 4a:49:ae:87:54:8a:6c:18:8b:8b:e3:1d:88:42:32: a9:f4:f9:24:a7:4e:1e:fe:4f:11:d9:96:30:b4:31: 22:fc:0d:32:7b:a2:ed:cf:9a:8b:22:77:5a:c7:bb: 92:f2:d6:f0:df:25:8f:22:33:03:67:6c:43:00:8a: 61:57:c5:8b:84:63:3e:72:43:c0:12:98:70:bb:9b: 4d:bb:41:e2:a2:ad:03:3e:be:62:a9:a5:49:ea:4f: 28:25:c6:21:a5:08:a7:ec:27:66:c2:94:b0:ff:5f: 3d:bc:8c:39:e0:49:23:57:f6:19:72:ea:4a:5d:cb: 03:f2:86:de:88:17:8a:c0:c0:f2:d7:34:98:5d:6c: de:7d:d7:64:52:a4:75:74:f6:da:e8:9d:6a:bb:82: 57:84:ea:d9:c3:38:40:6e:05:5b:86:6c:01:fc:ad: 08:d6:a1:df:0f:61:ac:ef:7f:77:ec:2a:89:dc:6c: a6:93:45:ad:8e:14:8d:7e:cc:c6:18:26:3a:ea:6b: 99:76:f3:85:0e:92:9b:b2:84:52:8c:ee:57:dd:bb: ef:b8:36:90:73:57:59:06:43:f6:d7:d6:e1:a0:0e: 07:2f:d0:13:c0:ef:f8:a8:22:25:a2:c9:90:bc:da: 4a:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:92:F1:49:DF:5A:0B:0E:BB:6E:B7:5C:CD:FD:14:11:DA:16:58:94 X509v3 Authority Key Identifier: keyid:23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:9a:2d:15:da:b7:93:3b:ee:76:f4:28:82:b8:37:3a:9e:07: 11:51:1f:58:ff:67:e2:f6:e0:7b:26:9a:1c:ab:43:ed:72:2f: 1b:0b:c8:a3:24:44:a7:82:5c:e2:0e:a6:bc:a9:18:da:a2:1b: b7:d5:a8:46:dd:0e:96:27:6d:bd:5e:49:cb:bf:75:8b:aa:cb: 96:fb:f3:9c:4f:a3:b9:c9:73:a3:4e:dc:82:9d:a9:34:67:74: 27:82:75:28:f2:89:e2:88:55:ab:df:81:f0:0e:c0:b2:b1:19: f8:4c:b1:2d:c5:21:ed:14:53:40:b9:9e:19:cd:86:95:93:cf: 6b:9b:e2:2a:5f:aa:b9:a0:5b:3c:f0:b8:ba:ae:77:31:a5:70: 8c:99:05:48:31:59:90:71:e2:50:e3:12:ab:a6:9e:1e:00:4d: ed:b5:4c:d8:ec:6b:7a:69:f9:33:bb:8c:6f:04:b3:94:ea:eb: 67:88:bd:69:d6:ae:93:e1:e0:69:7e:cd:6c:85:5a:c7:2e:9b: f7:28:30:6e:6e:a1:e8:5a:1e:a7:3f:38:e4:48:e6:e0:2c:c8: 81:d3:fc:b2:61:5c:26:71:8c:64:ca:c3:80:7f:b9:f0:5f:55: 39:d4:6f:8c:91:b5:20:6f:d1:9f:21:77:1d:ad:e2:72:0c:c6: 55:ad:2a:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKDIzNzA0RDU5MkY1NzUwOUVEQ0U1QTRBRDdCREVFRENG N0JEQkFDRTQwHhcNMjUxMTAyMTUyOTU0WhcNMjUxMTA5MTUyOTU0WjAYMRYwFAYD VQQDEw02OTA3NzhmMi03YzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzszimt+uhJexXWdiMvFKSa6HVIpsGIuL4x2IQjKp9Pkkp04e/k8R2ZYwtDEi /A0ye6Ltz5qLIndax7uS8tbw3yWPIjMDZ2xDAIphV8WLhGM+ckPAEphwu5tNu0Hi oq0DPr5iqaVJ6k8oJcYhpQin7CdmwpSw/189vIw54EkjV/YZcupKXcsD8obeiBeK wMDy1zSYXWzefddkUqR1dPba6J1qu4JXhOrZwzhAbgVbhmwB/K0I1qHfD2Gs7393 7CqJ3Gymk0WtjhSNfszGGCY66muZdvOFDpKbsoRSjO5X3bvvuDaQc1dZBkP219bh oA4HL9ATwO/4qCIlosmQvNpKGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAqS8Unf WgsOu263XM39FBHaFliUMB8GA1UdIwQYMBaAFCNwTVkvV1Ce3OWkrXve7c9726zk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi8wNUM4OTFEQTg5 RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVKN2M1YVN0ZTk3dHozdmJy T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kzQk5XUzlYVUo3YzVhU3RlOTd0ejN2YnJPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi8wNUM4OTFEQTg5RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVK N2M1YVN0ZTk3dHozdmJyT1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHmi0V2reTO+529CiCuDc6ngcRUR9Y/2fi9uB7Jpocq0Ptci8bC8ij JESnglziDqa8qRjaohu31ahG3Q6WJ229XknLv3WLqsuW+/OcT6O5yXOjTtyCnak0 Z3QngnUo8oniiFWr34HwDsCysRn4TLEtxSHtFFNAuZ4ZzYaVk89rm+IqX6q5oFs8 8Li6rncxpXCMmQVIMVmQceJQ4xKrpp4eAE3ttUzY7Gt6afkzu4xvBLOU6utniL1p 1q6T4eBpfs1shVrHLpv3KDBubqHoWh6nPzjkSObgLMiB0/yyYVwmcYxkysOAf7nw X1U51G+MkbUgb9GfIXcdreJyDMZVrSp2 -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:01 2025 by rpki-client