$ rpki-client -vvf rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft File: B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft (raw, json) Hash identifier: q2LOLZwb3MrN6MxZz1sbpFxTPKRv7NifQcG0buE5ojQ= Subject key identifier: 0F:5F:74:40:D6:1B:CA:84:00:DC:F6:96:45:BD:67:0D:B1:68:9D:3A Authority key identifier: 07:E0:51:B4:1E:D8:2E:3F:53:BF:59:AA:84:DD:9A:CA:20:CF:B5:4C Certificate issuer: /CN=A9166C39/serialNumber=07E051B41ED82E3F53BF59AA84DD9ACA20CFB54C Certificate serial: 08FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft Manifest number: 08E3 Signing time: Mon 08 Sep 2025 20:26:15 +0000 Manifest this update: Mon 08 Sep 2025 20:26:15 +0000 Manifest next update: Mon 15 Sep 2025 20:26:15 +0000 Files and hashes: 1: B-BRtB7YLj9Tv1mqhN2ayiDPtUw.crl (hash: L9JRzMbUlMyjidVB74R6v9nzhbLPOkJ42UmpiET8Jac=) 2: E02718B0FB7E11EFA25DF775C4F9AE02.roa (hash: ENL4WA6KSbvc2YPMu+cWB67CxYVDtC/Jfo8vWdg+j8U=) 3: DF8D07E8FB7E11EFA25DF775C4F9AE02.roa (hash: n28bSlaWY/S2wfqAMTDZC/VvTdPcMvRogB10CM2udPE=) 4: 16079DB83C1D11EBA532C076C4F9AE02.roa (hash: ObZGpzBm2+oY2W/PPBPK8Z2V3R5veTHmfdiimytXZcI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.crl rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 20:26:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2302 (0x8fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166C39, serialNumber=07E051B41ED82E3F53BF59AA84DD9ACA20CFB54C Validity Not Before: Sep 8 20:26:15 2025 GMT Not After : Sep 15 20:26:15 2025 GMT Subject: CN=68bf3be7-f129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:81:26:ce:a8:46:dc:e8:61:6a:c1:78:95:38: f2:f8:81:dd:35:20:06:07:0a:44:59:4f:55:a1:a0: 99:d1:42:b5:59:b9:c9:e2:35:bd:d4:8c:70:17:5a: 78:68:03:ae:28:39:48:86:42:c6:24:22:95:d7:ad: 2c:c6:9e:ca:c5:2c:e8:7a:7f:25:46:c4:f3:a6:1e: 2b:0e:63:e9:27:9d:a8:d9:56:1b:ba:8a:76:42:74: 7a:66:2c:4f:32:cd:8b:76:0f:bb:7b:46:31:7d:30: c6:0f:23:53:dd:1d:e4:7a:fe:8d:ce:1c:ec:db:3c: 5a:65:94:6a:5d:71:f7:fd:39:c1:3b:f7:b6:f8:e2: a6:b9:40:91:5a:43:a5:00:3f:13:24:4e:2b:48:c7: eb:ed:80:58:eb:72:dd:4c:55:04:38:b5:ac:f7:15: 1d:c8:3a:82:cb:bc:ab:72:ec:74:6a:ba:b7:e5:0c: bb:1a:b3:8f:14:48:9f:57:78:67:37:ca:08:1b:1d: 2c:ed:3d:fc:e7:8f:63:0f:30:d9:49:84:4c:d7:b7: 3f:4b:fa:16:f3:52:21:cd:80:ae:c1:83:d7:78:3b: 3a:ee:bc:ea:9f:0a:9e:b0:4c:ba:7e:71:86:4a:cb: 85:76:d3:ad:b1:1c:af:3e:23:25:bd:93:b6:dd:6a: b8:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:5F:74:40:D6:1B:CA:84:00:DC:F6:96:45:BD:67:0D:B1:68:9D:3A X509v3 Authority Key Identifier: keyid:07:E0:51:B4:1E:D8:2E:3F:53:BF:59:AA:84:DD:9A:CA:20:CF:B5:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166C39/27EECFD0BB9711EAA1A66C53C4F9AE02/B-BRtB7YLj9Tv1mqhN2ayiDPtUw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:51:e6:f5:a7:56:20:63:02:28:8a:71:3e:68:0d:5b:f8:c6: d0:cd:16:24:69:7c:31:ba:28:c3:34:5c:fb:b2:3a:8d:67:cc: 04:cb:35:2e:5d:ad:95:41:1b:d3:29:42:8f:4f:45:a0:be:70: 9d:a5:dc:bb:6d:31:bb:e9:46:f6:5f:ce:6e:52:39:74:a3:22: 25:27:93:30:04:43:92:88:da:45:5b:d7:54:33:a7:9e:9f:5a: de:27:15:d1:7f:2e:67:a6:22:74:6b:4a:bb:21:4b:f1:7a:01: a5:e7:6b:0a:be:0b:36:2a:28:ee:10:28:b3:ae:9e:dd:f9:65: 9a:c9:bf:96:92:56:19:10:92:48:a4:ec:80:3b:01:8c:96:2e: 9b:37:da:95:78:b0:62:3a:24:0b:6b:75:a8:4e:4a:cc:7b:42: 61:b7:28:f0:18:1f:88:39:d2:c5:16:96:4b:0c:60:d6:85:11: ac:a6:76:08:47:26:06:8c:1c:0a:12:a9:bb:2d:4c:92:34:3b: 1d:67:ec:e2:b5:1f:84:fa:a0:97:d2:f2:73:f5:24:e5:d0:b0: 16:2c:14:7b:56:8c:ab:8f:20:fc:ec:9f:b5:1a:6b:16:5d:22: c4:17:99:6d:5a:83:f3:36:ff:a2:37:8c:41:e3:2c:ca:f6:4c: a1:79:00:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZDMzkxMTAvBgNVBAUTKDA3RTA1MUI0MUVEODJFM0Y1M0JGNTlBQTg0REQ5QUNB MjBDRkI1NEMwHhcNMjUwOTA4MjAyNjE1WhcNMjUwOTE1MjAyNjE1WjAYMRYwFAYD VQQDEw02OGJmM2JlNy1mMTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1IEmzqhG3OhhasF4lTjy+IHdNSAGBwpEWU9VoaCZ0UK1WbnJ4jW91IxwF1p4 aAOuKDlIhkLGJCKV160sxp7KxSzoen8lRsTzph4rDmPpJ52o2VYbuop2QnR6ZixP Ms2Ldg+7e0YxfTDGDyNT3R3kev6Nzhzs2zxaZZRqXXH3/TnBO/e2+OKmuUCRWkOl AD8TJE4rSMfr7YBY63LdTFUEOLWs9xUdyDqCy7yrcux0arq35Qy7GrOPFEifV3hn N8oIGx0s7T38549jDzDZSYRM17c/S/oW81IhzYCuwYPXeDs67rzqnwqesEy6fnGG SsuFdtOtsRyvPiMlvZO23Wq4qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9fdEDW G8qEANz2lkW9Zw2xaJ06MB8GA1UdIwQYMBaAFAfgUbQe2C4/U79ZqoTdmsogz7VM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkMzOS8yN0VFQ0ZEMEJC OTcxMUVBQTFBNjZDNTNDNEY5QUUwMi9CLUJSdEI3WUxqOVR2MW1xaE4yYXlpRFB0 VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ItQlJ0QjdZTGo5VHYxbXFoTjJheWlEUHRVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NkMzOS8yN0VFQ0ZEMEJCOTcxMUVBQTFBNjZDNTNDNEY5QUUwMi9CLUJSdEI3WUxq OVR2MW1xaE4yYXlpRFB0VXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQUeb1p1YgYwIoinE+aA1b+MbQzRYkaXwxuijDNFz7sjqNZ8wEyzUu Xa2VQRvTKUKPT0WgvnCdpdy7bTG76Ub2X85uUjl0oyIlJ5MwBEOSiNpFW9dUM6ee n1reJxXRfy5npiJ0a0q7IUvxegGl52sKvgs2KijuECizrp7d+WWayb+WklYZEJJI pOyAOwGMli6bN9qVeLBiOiQLa3WoTkrMe0JhtyjwGB+IOdLFFpZLDGDWhRGspnYI RyYGjBwKEqm7LUySNDsdZ+zitR+E+qCX0vJz9STl0LAWLBR7VoyrjyD87J+1GmsW XSLEF5ltWoPzNv+iN4xB4yzK9kyheQCC -----END CERTIFICATE-----Generated at Tue Sep 9 07:51:31 2025 by rpki-client