$ rpki-client -vvf rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft File: Di3qFP18_9DQqeo-N0N7keRUsjY.mft (raw, json) Hash identifier: 6DWNOU2NlqY9F6392mvibeWOPhgfohVxXpUuM/tqHUA= Subject key identifier: 9B:A5:53:7B:4C:7C:BC:50:5A:47:8B:56:0F:91:A0:4A:CE:55:48:94 Authority key identifier: 0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36 Certificate issuer: /CN=A91560A3/serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236 Certificate serial: 11B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft Manifest number: 11B2 Signing time: Thu 18 Sep 2025 17:21:13 +0000 Manifest this update: Thu 18 Sep 2025 17:21:12 +0000 Manifest next update: Thu 25 Sep 2025 17:21:12 +0000 Files and hashes: 1: Di3qFP18_9DQqeo-N0N7keRUsjY.crl (hash: HrfR9Yja307lmG478XAVNFXBwjdVw0nKFXhsrKOBpu0=) 2: 2245CE0A606811EB80E3D531C4F9AE02.roa (hash: PSSQDCbjfGOv5hsREHHq3AE69qVBQBbQjxmYclshFuc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:21:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4536 (0x11b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91560A3, serialNumber=0E2DEA14FD7CFFD0D0A9EA3E37437B91E454B236 Validity Not Before: Sep 18 17:21:12 2025 GMT Not After : Sep 25 17:21:12 2025 GMT Subject: CN=68cc3f89-5720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:3b:cb:92:b2:64:c8:2a:7a:b4:cb:25:3d:4d: 51:11:29:f1:e2:c4:24:b2:6b:da:b2:67:ae:02:aa: e4:17:e7:ad:8a:e5:eb:0e:76:25:7b:0e:c3:e4:3d: 9a:b6:de:c2:b4:cb:e6:2a:7d:23:99:0e:76:3b:00: de:bc:68:96:ee:bf:1c:9d:50:d2:16:e2:ee:4b:07: 91:ee:b0:88:7c:1c:68:fc:d4:e9:a5:76:e1:92:ee: 2b:49:b2:5c:81:a9:af:60:20:fc:a5:18:48:16:96: c5:c1:77:da:a6:a3:24:8f:04:5c:71:b8:01:cd:a2: 41:c1:3e:17:54:67:9f:23:fb:0a:80:c8:bb:19:dd: 0e:e9:e2:75:f3:58:eb:87:03:e6:dc:49:37:b5:6f: 5a:37:60:62:81:5d:a2:11:67:2d:4b:1f:cf:9f:72: c6:d8:4f:b4:41:43:b9:39:60:a5:59:3a:93:a9:c2: ac:f0:50:8b:da:7a:04:e6:3a:7b:49:17:b0:89:9f: 27:96:da:2c:5b:14:ee:26:1e:85:bb:d6:8e:2b:b2: 9a:7d:be:1d:95:cc:eb:88:75:a7:d2:61:65:3f:a2: 72:e8:41:18:be:02:00:22:1a:c9:39:47:2f:be:8d: 99:2b:b3:64:4d:fe:f4:e7:b3:fc:ac:5c:18:cc:c1: 80:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:A5:53:7B:4C:7C:BC:50:5A:47:8B:56:0F:91:A0:4A:CE:55:48:94 X509v3 Authority Key Identifier: keyid:0E:2D:EA:14:FD:7C:FF:D0:D0:A9:EA:3E:37:43:7B:91:E4:54:B2:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Di3qFP18_9DQqeo-N0N7keRUsjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91560A3/E4DF96AAFDF811E8AD2C1262C4F9AE02/Di3qFP18_9DQqeo-N0N7keRUsjY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:94:2b:8b:b1:cb:81:2c:1f:f5:6d:51:ab:d4:1a:29:0c:63: 3d:43:68:fb:13:85:e5:88:af:7e:3f:46:01:01:2c:41:13:b2: 1d:e8:eb:ac:42:62:a0:18:82:61:2f:08:7e:2d:e9:16:d3:c1: 5a:8e:2b:54:3e:e6:c9:45:99:82:1e:e7:53:eb:c6:5b:02:6c: 68:cc:33:3d:2b:9f:da:0c:3a:9c:1d:73:8d:4e:b4:fc:d5:24: 84:7b:42:81:51:8a:ae:3c:97:d3:21:a3:cb:4d:63:ce:21:96: d3:63:17:27:22:f9:d8:22:f3:af:bc:f0:73:17:e3:78:86:6a: a4:b3:2a:a3:e0:98:68:69:52:f0:a1:2f:e2:0d:a9:b1:1f:7e: b1:f0:bf:a4:23:cc:33:57:f4:f8:79:73:68:5a:60:a6:85:0a: e3:dd:04:45:e4:c8:7e:a2:58:ad:76:fb:5e:e6:8a:ee:df:81: 47:b3:47:21:b4:d8:8d:30:aa:02:e1:e0:12:75:21:ef:67:6d: 15:30:34:10:a0:e7:ed:ad:5a:5b:4d:93:05:9f:df:9c:04:fe: 34:81:91:c5:fd:7a:85:af:41:14:b0:40:73:55:0d:1c:cd:e8: 26:af:dc:c2:c1:ec:bc:f6:57:2b:37:7c:6b:e8:79:dc:d4:f0: 1f:f5:a9:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYwQTMxMTAvBgNVBAUTKDBFMkRFQTE0RkQ3Q0ZGRDBEMEE5RUEzRTM3NDM3Qjkx RTQ1NEIyMzYwHhcNMjUwOTE4MTcyMTEyWhcNMjUwOTI1MTcyMTEyWjAYMRYwFAYD VQQDEw02OGNjM2Y4OS01NzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8zvLkrJkyCp6tMslPU1RESnx4sQksmvasmeuAqrkF+etiuXrDnYlew7D5D2a tt7CtMvmKn0jmQ52OwDevGiW7r8cnVDSFuLuSweR7rCIfBxo/NTppXbhku4rSbJc gamvYCD8pRhIFpbFwXfapqMkjwRccbgBzaJBwT4XVGefI/sKgMi7Gd0O6eJ181jr hwPm3Ek3tW9aN2BigV2iEWctSx/Pn3LG2E+0QUO5OWClWTqTqcKs8FCL2noE5jp7 SRewiZ8nltosWxTuJh6Fu9aOK7Kafb4dlczriHWn0mFlP6Jy6EEYvgIAIhrJOUcv vo2ZK7NkTf7057P8rFwYzMGAgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJulU3tM fLxQWkeLVg+RoErOVUiUMB8GA1UdIwQYMBaAFA4t6hT9fP/Q0KnqPjdDe5HkVLI2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjBBMy9FNERGOTZBQUZE RjgxMUU4QUQyQzEyNjJDNEY5QUUwMi9EaTNxRlAxOF85RFFxZW8tTjBON2tlUlVz alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RpM3FGUDE4XzlEUXFlby1OME43a2VSVXNqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjBBMy9FNERGOTZBQUZERjgxMUU4QUQyQzEyNjJDNEY5QUUwMi9EaTNxRlAxOF85 RFFxZW8tTjBON2tlUlVzalkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnlCuLscuBLB/1bVGr1BopDGM9Q2j7E4XliK9+P0YBASxBE7Id6Ous QmKgGIJhLwh+LekW08FajitUPubJRZmCHudT68ZbAmxozDM9K5/aDDqcHXONTrT8 1SSEe0KBUYquPJfTIaPLTWPOIZbTYxcnIvnYIvOvvPBzF+N4hmqksyqj4JhoaVLw oS/iDamxH36x8L+kI8wzV/T4eXNoWmCmhQrj3QRF5Mh+olitdvte5oru34FHs0ch tNiNMKoC4eASdSHvZ20VMDQQoOftrVpbTZMFn9+cBP40gZHF/XqFr0EUsEBzVQ0c zegmr9zCwey89lcrN3xr6Hnc1PAf9ans -----END CERTIFICATE-----Generated at Fri Sep 19 04:23:41 2025 by rpki-client