$ rpki-client -vvf rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft File: AIsjUb6f1m04sRBQZ5c09E-l2X0.mft (raw, json) Hash identifier: vkM8geZ/L2PabNlmhCBG+DC6PqfyAck6pk7W3GfMJH8= Subject key identifier: 9F:A4:2A:1C:25:4E:29:9C:77:3A:D8:23:85:14:62:EB:39:7A:03:A3 Authority key identifier: 00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D Certificate issuer: /CN=A914B0D8/serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Certificate serial: 010E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft Manifest number: 010B Signing time: Wed 17 Sep 2025 05:35:11 +0000 Manifest this update: Wed 17 Sep 2025 05:35:10 +0000 Manifest next update: Wed 24 Sep 2025 05:35:10 +0000 Files and hashes: 1: AIsjUb6f1m04sRBQZ5c09E-l2X0.crl (hash: WVS5KXqbhpZHBt1LqQxWBQz21nBCsGq/9055rAbX4ZI=) 2: 66E93DA2FB1111EE81D7643BC4F9AE02.roa (hash: 8wMwW5uNjWkG/EYhzvD28CGT7P5U8FJODoDJkkfTgvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 05:35:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B0D8, serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Validity Not Before: Sep 17 05:35:10 2025 GMT Not After : Sep 24 05:35:10 2025 GMT Subject: CN=68ca488f-31f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0f:c2:3f:c7:ae:a0:b0:08:ee:29:3e:da:5e: 70:ad:21:a5:87:67:f8:fa:de:7a:7e:2e:fc:59:33: 00:ed:8e:df:6e:b8:6a:ac:a7:47:1c:aa:73:47:95: 4f:4d:be:ee:4e:6f:d0:b6:f8:44:3b:3e:d0:32:24: 60:db:67:48:bf:ef:97:dd:5e:cd:7d:d4:ef:7e:21: 65:87:09:a6:bf:10:4d:91:0b:2a:b9:03:de:22:e4: 65:9a:0d:a7:34:2a:20:21:7d:0e:28:05:b4:b9:f9: f3:aa:bc:51:0a:e2:3a:01:e2:cb:4b:53:be:bb:c6: df:3e:4c:00:6f:82:37:40:68:74:71:01:6f:0a:69: 0f:93:4d:97:f0:67:b8:4c:77:65:93:9b:1c:d1:a2: 64:19:70:97:cb:d6:12:92:e6:a5:cd:1d:e2:7c:57: c0:91:73:98:c2:b9:54:58:bb:ac:a8:4b:75:d8:bb: 62:42:4a:46:c9:a2:b7:80:e2:b0:e6:f5:65:fb:eb: 10:c1:01:fa:3a:21:3f:b0:de:bf:3a:c4:85:15:33: 33:5a:78:48:af:28:63:65:dc:ec:7b:01:92:97:f5: e1:20:53:d8:94:8d:2d:1a:14:67:52:94:db:2c:62: 4e:01:3b:28:86:00:17:71:24:80:a7:3c:fc:a9:0c: 97:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A4:2A:1C:25:4E:29:9C:77:3A:D8:23:85:14:62:EB:39:7A:03:A3 X509v3 Authority Key Identifier: keyid:00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:cf:d3:b0:1c:08:3f:af:87:10:25:91:75:13:76:10:78:36: f4:51:3c:92:61:ac:66:21:d2:5c:57:15:75:0e:04:80:31:12: 8e:74:3c:4c:92:0f:0a:ed:c7:06:92:48:6f:3c:ab:55:74:3a: ae:5e:2d:96:01:fa:81:19:d4:33:b2:f7:81:64:5f:1e:5d:47: 99:53:a9:5a:50:9e:db:ac:00:0a:01:c7:75:a3:8a:a6:74:ee: a3:4c:8f:c0:72:e3:ab:0a:4c:85:72:3d:71:7a:b4:49:d3:1d: 31:b5:1a:32:b7:e0:4a:40:4d:85:e4:26:74:0c:d6:15:e8:2f: fc:c9:78:28:67:3b:2b:a4:d3:dc:dd:50:0e:2a:65:ef:04:12: f1:f7:77:fc:4d:ed:53:24:ab:64:b2:ea:81:e5:ab:30:54:e5: 23:ea:6c:05:c5:04:da:16:b5:fe:ba:2f:44:fe:89:63:ec:5a: ef:b1:92:62:e5:f9:54:a9:e9:a4:bb:fa:b0:5d:84:5f:e2:8b: 4a:30:b9:68:23:77:65:6c:f6:f5:4b:bd:7d:50:20:23:a6:26: 7f:a2:f0:04:01:d4:26:23:ff:62:65:70:0f:0b:f6:68:46:b4: 19:d5:58:e0:67:c9:79:e6:5b:2f:7d:71:8b:b5:8d:1c:b1:4e: a7:5d:aa:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIwRDgxMTAvBgNVBAUTKDAwOEIyMzUxQkU5RkQ2NkQzOEIxMTA1MDY3OTczNEY0 NEZBNUQ5N0QwHhcNMjUwOTE3MDUzNTEwWhcNMjUwOTI0MDUzNTEwWjAYMRYwFAYD VQQDEw02OGNhNDg4Zi0zMWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApw/CP8euoLAI7ik+2l5wrSGlh2f4+t56fi78WTMA7Y7fbrhqrKdHHKpzR5VP Tb7uTm/QtvhEOz7QMiRg22dIv++X3V7NfdTvfiFlhwmmvxBNkQsquQPeIuRlmg2n NCogIX0OKAW0ufnzqrxRCuI6AeLLS1O+u8bfPkwAb4I3QGh0cQFvCmkPk02X8Ge4 THdlk5sc0aJkGXCXy9YSkualzR3ifFfAkXOYwrlUWLusqEt12LtiQkpGyaK3gOKw 5vVl++sQwQH6OiE/sN6/OsSFFTMzWnhIryhjZdzsewGSl/XhIFPYlI0tGhRnUpTb LGJOATsohgAXcSSApzz8qQyXsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+kKhwl TimcdzrYI4UUYus5egOjMB8GA1UdIwQYMBaAFACLI1G+n9ZtOLEQUGeXNPRPpdl9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjBEOC8wN0FBQkNEQUZC MTExMUVFOTEyMzM5MUJDNEY5QUUwMi9BSXNqVWI2ZjFtMDRzUkJRWjVjMDlFLWwy WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FJc2pVYjZmMW0wNHNSQlFaNWMwOUUtbDJYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjBEOC8wN0FBQkNEQUZCMTExMUVFOTEyMzM5MUJDNEY5QUUwMi9BSXNqVWI2ZjFt MDRzUkJRWjVjMDlFLWwyWDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfz9OwHAg/r4cQJZF1E3YQeDb0UTySYaxmIdJcVxV1DgSAMRKOdDxM kg8K7ccGkkhvPKtVdDquXi2WAfqBGdQzsveBZF8eXUeZU6laUJ7brAAKAcd1o4qm dO6jTI/AcuOrCkyFcj1xerRJ0x0xtRoyt+BKQE2F5CZ0DNYV6C/8yXgoZzsrpNPc 3VAOKmXvBBLx93f8Te1TJKtksuqB5aswVOUj6mwFxQTaFrX+ui9E/olj7FrvsZJi 5flUqemku/qwXYRf4otKMLloI3dlbPb1S719UCAjpiZ/ovAEAdQmI/9iZXAPC/Zo RrQZ1VjgZ8l55lsvfXGLtY0csU6nXaq8 -----END CERTIFICATE-----Generated at Fri Sep 19 00:58:08 2025 by rpki-client