$ rpki-client -vvf rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft File: lI_4don6lJEW9ffIAOsdcB5l43s.mft (raw, json) Hash identifier: 6W2Kifas/s7dNZtd7zZCDljsy2Th/cA4A6HAL9NauHQ= Subject key identifier: 01:65:4F:DE:D8:4B:9F:E5:DB:3B:71:3D:A4:BD:F5:FE:4F:FA:3E:7E Authority key identifier: 94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B Certificate issuer: /CN=A9148EFA/serialNumber=948FF87689FA949116F5F7C800EB1D701E65E37B Certificate serial: 0BA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft Manifest number: 0B9D Signing time: Mon 08 Sep 2025 19:00:20 +0000 Manifest this update: Mon 08 Sep 2025 19:00:20 +0000 Manifest next update: Mon 15 Sep 2025 19:00:20 +0000 Files and hashes: 1: lI_4don6lJEW9ffIAOsdcB5l43s.crl (hash: FDGdV/9ZIBE8hXuGRsMTrfF/QtceGn66p405U3pc+6E=) 2: 160F265C827311EDA56A8F30C4F9AE02.roa (hash: DFFj/9slvAH+PEbWNXT9e7xoWXrU79TcIDoX6Iil9eI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 19:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2981 (0xba5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148EFA, serialNumber=948FF87689FA949116F5F7C800EB1D701E65E37B Validity Not Before: Sep 8 19:00:20 2025 GMT Not After : Sep 15 19:00:20 2025 GMT Subject: CN=68bf27c4-eeb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:47:48:cf:c0:b3:4f:ad:11:f7:37:ca:bc:6d: 82:9e:5d:63:fc:8a:8e:6d:60:61:28:5a:08:97:10: 4b:25:05:5e:65:5d:70:ca:44:11:ff:98:74:00:b9: 46:07:46:4e:8f:5c:60:1f:9a:d7:19:ed:99:8f:ed: 46:07:ac:f9:b1:1c:e1:74:15:2e:71:23:11:68:ad: 3a:53:5e:9c:17:09:26:15:ba:8e:3e:fe:8f:5d:4d: c6:e4:22:16:c6:a5:4e:dd:d6:83:c7:cc:4f:51:84: b8:b3:50:c4:e4:58:57:ed:d9:59:27:e0:94:2f:c3: 30:05:6e:7e:cd:1e:fd:25:db:99:c5:f3:20:1a:29: 1f:f3:2f:45:e3:a3:f9:57:b6:b7:bc:e8:1a:48:01: 26:09:27:06:e0:35:50:ab:10:e2:59:27:ab:40:b9: 3a:82:2d:ea:5a:a6:61:de:cf:26:5b:b4:8e:33:5d: b8:26:cd:e1:d0:ff:a7:fb:ba:c3:35:5f:76:b4:01: e5:78:1b:93:77:e8:33:ef:42:d8:d7:71:39:fc:2e: a8:d2:dc:51:66:93:84:6c:81:5f:cf:94:00:60:de: b1:f8:5e:1e:03:d1:eb:b1:3f:8f:5a:a6:0f:c3:ea: ed:c2:44:d8:a1:6b:9d:a6:16:5a:0e:1d:2f:09:73: 3e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:65:4F:DE:D8:4B:9F:E5:DB:3B:71:3D:A4:BD:F5:FE:4F:FA:3E:7E X509v3 Authority Key Identifier: keyid:94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:e8:91:9e:9a:b3:22:86:95:6e:39:df:d4:fa:b4:b9:8d:e4: 78:4f:c9:c2:68:af:7c:52:4c:d0:22:41:e5:8d:7e:ff:b4:ae: 80:4d:a6:c9:5c:a8:82:61:9c:28:b3:0b:6f:50:6c:a3:8b:1d: 70:1f:f7:1b:b0:36:7e:01:54:15:c0:62:7a:f1:90:36:78:28: 52:14:26:b9:cf:3c:2f:0f:85:43:27:8b:98:d0:bf:04:28:f6: b8:44:ab:0f:ac:58:f8:a3:19:90:88:8a:d0:b3:08:5f:78:ac: 05:3c:95:60:9f:67:71:c8:a1:91:75:bf:fe:57:c3:51:25:65: d4:e3:5e:c5:69:c0:48:91:5b:27:37:5e:1f:00:d4:10:7d:e5: da:4b:ba:93:89:a6:4e:5e:35:f2:0d:6b:e7:3a:da:83:1f:67: c2:5d:f0:d4:51:9b:6f:31:1c:c9:17:ce:84:49:ff:3e:d3:ee: 44:c7:55:de:b2:95:2b:e8:22:36:fd:3f:97:1b:f1:e1:92:e4: 32:b7:5a:8a:16:ee:9d:79:da:e8:aa:ac:20:fa:25:4e:f0:16: ef:4d:ae:c5:98:ef:4b:a4:42:49:ed:a3:45:9a:b9:35:f1:ae: ef:8d:56:34:e5:19:3b:fe:cf:49:be:31:25:a9:f5:84:c1:12: 15:b1:45:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhFRkExMTAvBgNVBAUTKDk0OEZGODc2ODlGQTk0OTExNkY1RjdDODAwRUIxRDcw MUU2NUUzN0IwHhcNMjUwOTA4MTkwMDIwWhcNMjUwOTE1MTkwMDIwWjAYMRYwFAYD VQQDEw02OGJmMjdjNC1lZWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1EdIz8CzT60R9zfKvG2Cnl1j/IqObWBhKFoIlxBLJQVeZV1wykQR/5h0ALlG B0ZOj1xgH5rXGe2Zj+1GB6z5sRzhdBUucSMRaK06U16cFwkmFbqOPv6PXU3G5CIW xqVO3daDx8xPUYS4s1DE5FhX7dlZJ+CUL8MwBW5+zR79JduZxfMgGikf8y9F46P5 V7a3vOgaSAEmCScG4DVQqxDiWSerQLk6gi3qWqZh3s8mW7SOM124Js3h0P+n+7rD NV92tAHleBuTd+gz70LY13E5/C6o0txRZpOEbIFfz5QAYN6x+F4eA9HrsT+PWqYP w+rtwkTYoWudphZaDh0vCXM+GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAFlT97Y S5/l2ztxPaS99f5P+j5+MB8GA1UdIwQYMBaAFJSP+HaJ+pSRFvX3yADrHXAeZeN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEVGQS9FMEM5NTFDRTMw NjkxMUVBQkYwRDk0MkVDNEY5QUUwMi9sSV80ZG9uNmxKRVc5ZmZJQU9zZGNCNWw0 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xJXzRkb242bEpFVzlmZklBT3NkY0I1bDQzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEVGQS9FMEM5NTFDRTMwNjkxMUVBQkYwRDk0MkVDNEY5QUUwMi9sSV80ZG9uNmxK RVc5ZmZJQU9zZGNCNWw0M3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAx6JGemrMihpVuOd/U+rS5jeR4T8nCaK98UkzQIkHljX7/tK6ATabJ XKiCYZwoswtvUGyjix1wH/cbsDZ+AVQVwGJ68ZA2eChSFCa5zzwvD4VDJ4uY0L8E KPa4RKsPrFj4oxmQiIrQswhfeKwFPJVgn2dxyKGRdb/+V8NRJWXU417FacBIkVsn N14fANQQfeXaS7qTiaZOXjXyDWvnOtqDH2fCXfDUUZtvMRzJF86ESf8+0+5Ex1Xe spUr6CI2/T+XG/HhkuQyt1qKFu6dedroqqwg+iVO8BbvTa7FmO9LpEJJ7aNFmrk1 8a7vjVY05Rk7/s9JvjElqfWEwRIVsUVw -----END CERTIFICATE-----Generated at Tue Sep 9 01:16:36 2025 by rpki-client