$ rpki-client -vvf rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft File: llSi8IRZeiuRrAAqdgfhPBXQlJE.mft (raw, json) Hash identifier: bV1KSXE+CgUxpDH7dTnGnlLVaZz+9UHPAHNidABdjUk= Subject key identifier: 73:52:41:21:2A:A3:6F:B3:C7:90:70:3D:6A:9C:A7:3B:5E:48:B4:9A Authority key identifier: 96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 Certificate issuer: /CN=A9153303/serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft Manifest number: DF Signing time: Wed 17 Sep 2025 06:06:54 +0000 Manifest this update: Wed 17 Sep 2025 06:06:54 +0000 Manifest next update: Wed 24 Sep 2025 06:06:53 +0000 Files and hashes: 1: llSi8IRZeiuRrAAqdgfhPBXQlJE.crl (hash: 9WqAC3/yD7aOU/NVTceezoGn5/nL9VEPJq+JfmPMF60=) 2: 29A436623FE111EFB5A50814C4F9AE02.roa (hash: 6fHZUduLlppKNeQyv7MyGz7d2EPeIy77Os8/ALcrrKI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:06:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153303, serialNumber=9654A2F084597A2B91AC002A7607E13C15D09491 Validity Not Before: Sep 17 06:06:54 2025 GMT Not After : Sep 24 06:06:53 2025 GMT Subject: CN=68ca4ffe-7a4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:c1:9d:77:2d:c9:52:17:89:0e:4c:0c:df:56: 9e:0d:ad:85:2c:39:ce:60:ab:aa:8a:ff:30:e7:2b: 39:62:c4:87:fc:ae:1f:58:c0:d7:9f:cd:21:a5:6f: 95:74:35:ed:92:ee:43:7f:46:52:40:fd:e9:6c:7f: 1a:3f:7f:e2:f5:d5:6f:ee:da:8b:dd:6b:5e:c8:6b: e7:fc:28:e6:5a:f8:cd:e0:82:5b:cf:a5:c5:41:08: 70:c3:5d:df:c4:d0:1f:de:e8:a9:26:5c:47:14:3b: 2b:1b:9d:75:fe:bf:b4:ea:ee:db:32:2b:2a:67:b8: 74:e4:61:54:65:94:45:92:5a:c7:55:75:6e:f2:7e: 48:58:f7:47:7e:e9:1f:36:42:b8:c1:b7:30:ba:fd: 9d:23:ee:89:1b:71:22:71:00:0e:e5:66:8f:bd:3b: 9c:ed:3b:31:5e:f1:37:26:51:50:92:1a:04:89:c7: 24:4b:84:ef:a5:d8:69:97:c9:f0:59:23:1b:99:10: 5f:76:7a:78:eb:1a:1a:9b:47:e7:cf:ae:60:1f:da: b2:42:9a:68:2c:76:7e:77:8c:06:9e:fe:c6:5d:87: 58:85:5a:56:48:65:e9:a7:2d:1d:61:60:33:fb:d0: 9b:78:94:5c:40:db:6b:70:52:10:c4:90:2f:48:c4: b6:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:52:41:21:2A:A3:6F:B3:C7:90:70:3D:6A:9C:A7:3B:5E:48:B4:9A X509v3 Authority Key Identifier: keyid:96:54:A2:F0:84:59:7A:2B:91:AC:00:2A:76:07:E1:3C:15:D0:94:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/llSi8IRZeiuRrAAqdgfhPBXQlJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153303/80BF1A623FE011EF8635D712C4F9AE02/llSi8IRZeiuRrAAqdgfhPBXQlJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:7d:ee:09:88:34:5d:76:8c:a7:f1:37:7b:5c:0d:70:6a:76: ba:48:c7:20:6e:5e:fc:bc:d6:3f:10:1b:1c:29:2b:b8:3a:df: bc:70:01:25:e6:93:6c:04:0d:e9:9c:f5:50:e4:68:1c:0d:b1: b4:35:52:7e:3d:c1:46:8c:a3:4d:80:68:3c:76:f8:2e:e3:27: 4a:f2:85:38:cc:d9:67:91:90:02:23:c4:7a:c5:fc:b9:ed:ec: 65:bd:45:05:d4:12:ff:67:ae:f6:bb:9d:bc:18:50:93:db:fd: de:7e:b1:24:84:3c:e5:a6:1d:b8:a8:02:59:e9:34:47:83:66: 72:ae:43:41:f8:75:3f:d9:ec:f2:e9:1d:f1:c6:5c:cf:7d:9b: 36:5b:62:bd:e2:2e:d6:26:70:64:7e:eb:d2:38:f1:c8:af:2e: 18:5f:b9:90:69:c4:41:ea:9c:b6:42:dd:72:54:b4:2a:95:ae: b6:3d:c9:5c:f4:74:a8:e1:65:00:79:b4:d5:bb:37:b2:72:bf: 8b:a3:f8:55:1a:9b:4b:4a:cf:f6:45:98:a8:76:eb:f8:6a:d8: 28:a7:b3:d3:26:23:4a:6f:74:f7:3d:23:cc:b3:98:9a:15:a1: 19:5f:99:cf:8e:02:31:2c:d8:f8:91:b6:42:75:30:2f:14:c0: a3:bc:53:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTMzMDMxMTAvBgNVBAUTKDk2NTRBMkYwODQ1OTdBMkI5MUFDMDAyQTc2MDdFMTND MTVEMDk0OTEwHhcNMjUwOTE3MDYwNjU0WhcNMjUwOTI0MDYwNjUzWjAYMRYwFAYD VQQDEw02OGNhNGZmZS03YTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl8Gddy3JUheJDkwM31aeDa2FLDnOYKuqiv8w5ys5YsSH/K4fWMDXn80hpW+V dDXtku5Df0ZSQP3pbH8aP3/i9dVv7tqL3WteyGvn/CjmWvjN4IJbz6XFQQhww13f xNAf3uipJlxHFDsrG511/r+06u7bMisqZ7h05GFUZZRFklrHVXVu8n5IWPdHfukf NkK4wbcwuv2dI+6JG3EicQAO5WaPvTuc7TsxXvE3JlFQkhoEicckS4Tvpdhpl8nw WSMbmRBfdnp46xoam0fnz65gH9qyQppoLHZ+d4wGnv7GXYdYhVpWSGXppy0dYWAz +9CbeJRcQNtrcFIQxJAvSMS2fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNSQSEq o2+zx5BwPWqcpzteSLSaMB8GA1UdIwQYMBaAFJZUovCEWXorkawAKnYH4TwV0JSR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzMwMy84MEJGMUE2MjNG RTAxMUVGODYzNUQ3MTJDNEY5QUUwMi9sbFNpOElSWmVpdVJyQUFxZGdmaFBCWFFs SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xsU2k4SVJaZWl1UnJBQXFkZ2ZoUEJYUWxKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzMwMy84MEJGMUE2MjNGRTAxMUVGODYzNUQ3MTJDNEY5QUUwMi9sbFNpOElSWmVp dVJyQUFxZGdmaFBCWFFsSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRfe4JiDRddoyn8Td7XA1wana6SMcgbl78vNY/EBscKSu4Ot+8cAEl 5pNsBA3pnPVQ5GgcDbG0NVJ+PcFGjKNNgGg8dvgu4ydK8oU4zNlnkZACI8R6xfy5 7exlvUUF1BL/Z672u528GFCT2/3efrEkhDzlph24qAJZ6TRHg2ZyrkNB+HU/2ezy 6R3xxlzPfZs2W2K94i7WJnBkfuvSOPHIry4YX7mQacRB6py2Qt1yVLQqla62Pclc 9HSo4WUAebTVuzeycr+Lo/hVGptLSs/2RZioduv4atgop7PTJiNKb3T3PSPMs5ia FaEZX5nPjgIxLNj4kbZCdTAvFMCjvFMG -----END CERTIFICATE-----Generated at Fri Sep 19 05:58:45 2025 by rpki-client