$ rpki-client -vvf rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft File: 9bzqkIXorbqorCGgTlPb_sMgvOI.mft (raw, json) Hash identifier: OGqpl9Gng93ZQV5m7bJSZx0m7gxQ3msYTs6ysnR9uJo= Subject key identifier: 39:EB:E8:E2:6E:BB:2E:31:55:C5:39:B0:90:C1:4E:04:E6:29:F5:65 Authority key identifier: F5:BC:EA:90:85:E8:AD:BA:A8:AC:21:A0:4E:53:DB:FE:C3:20:BC:E2 Certificate issuer: /CN=A916B6AA/serialNumber=F5BCEA9085E8ADBAA8AC21A04E53DBFEC320BCE2 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft Manifest number: 0185 Signing time: Sat 06 Sep 2025 15:49:32 +0000 Manifest this update: Sat 06 Sep 2025 15:49:32 +0000 Manifest next update: Sat 13 Sep 2025 15:49:31 +0000 Files and hashes: 1: 9bzqkIXorbqorCGgTlPb_sMgvOI.crl (hash: tI+1LCM8v5pELaqERg1yCL94XtKIXth8zaW0BkCljNw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.crl rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 15:49:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B6AA, serialNumber=F5BCEA9085E8ADBAA8AC21A04E53DBFEC320BCE2 Validity Not Before: Sep 6 15:49:32 2025 GMT Not After : Sep 13 15:49:31 2025 GMT Subject: CN=68bc580c-2397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:5e:b3:e5:32:2f:55:c1:1b:c6:68:65:2d:0a: 51:bd:a2:79:d1:f6:ae:94:f2:e2:07:cf:e0:a5:66: c4:f7:e6:dd:4c:86:ea:e2:cf:e6:d3:f0:1a:0a:3a: ad:52:b6:b3:8b:d4:bf:08:90:b0:22:ab:5e:76:f2: 3c:e1:79:7f:66:4d:a3:d4:bf:33:7f:7c:d4:09:42: 00:bf:7b:3a:1b:02:85:eb:c6:12:26:6a:21:cd:f2: 07:d4:35:06:37:a8:f7:05:28:6c:aa:5d:bc:49:11: 1d:6a:7c:5f:6d:4b:6f:95:02:dc:4f:d3:c5:c9:b0: 09:73:a6:d2:90:58:16:0c:3f:fc:6f:c9:de:79:1e: 5a:ff:5a:b0:f8:23:a2:c1:56:52:3d:b6:0f:39:b7: 12:fa:dc:d9:58:8d:12:84:c8:3c:41:f7:dc:f5:7d: a7:c7:77:ea:e6:8e:65:b8:ca:e9:bc:fb:9f:ee:05: 75:3b:a3:77:7f:4b:d8:6b:63:8d:0c:c4:ce:43:be: 19:4a:16:da:04:4f:01:5c:72:ee:98:78:9d:c0:3f: 4c:5e:e2:7d:36:3c:56:3a:d4:c2:fd:86:0f:e8:eb: 88:b6:08:cf:6c:4d:c8:6f:a2:20:4a:e1:c8:c9:59: d0:26:08:ac:cd:ba:fa:d3:88:9d:59:f4:23:60:b2: 2d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:EB:E8:E2:6E:BB:2E:31:55:C5:39:B0:90:C1:4E:04:E6:29:F5:65 X509v3 Authority Key Identifier: keyid:F5:BC:EA:90:85:E8:AD:BA:A8:AC:21:A0:4E:53:DB:FE:C3:20:BC:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9bzqkIXorbqorCGgTlPb_sMgvOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B6AA/A2988F3840AE11EE9850A263C4F9AE02/9bzqkIXorbqorCGgTlPb_sMgvOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:2f:e4:11:8d:1b:3a:98:64:15:c8:90:93:80:ba:28:40:51: b3:94:9b:2b:e3:13:d6:27:46:64:7a:1b:3b:6c:af:38:6c:ae: 71:bc:71:a3:5d:8c:05:15:6d:c0:63:4e:62:f8:0a:0c:1c:59: 91:1b:94:40:50:2a:6f:40:44:87:57:66:45:df:94:89:f8:98: cd:d8:7d:f9:ed:8d:9a:ae:02:71:e2:98:17:29:bf:ad:dd:e0: 4b:91:b0:f0:02:3a:c2:27:33:e2:c5:ff:75:78:bf:c9:65:da: 68:ea:6b:e0:67:16:be:9b:44:24:6b:4d:50:f5:5a:fc:29:93: 78:97:e7:52:44:f3:fb:fa:64:95:bb:ae:db:24:1c:24:09:18: 1a:7f:43:5c:02:85:90:13:ba:c6:2b:ec:ca:ab:cb:a3:c4:c5: c7:bd:09:d3:fc:48:c2:39:59:15:45:a6:df:65:b1:27:4c:42: 36:9c:f6:6b:22:27:1e:22:38:35:57:ef:ff:a8:7e:7e:db:5a: b0:7f:fe:dc:7d:b8:99:02:25:78:2f:ef:d2:79:4c:57:fa:0a: b4:8b:ce:be:ab:92:c0:3c:4e:b5:53:93:9a:ad:68:fa:5c:4b: 45:d2:bc:73:74:bc:8d:54:9e:d0:f3:69:9c:61:9d:d3:01:d0: fe:36:22:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI2QUExMTAvBgNVBAUTKEY1QkNFQTkwODVFOEFEQkFBOEFDMjFBMDRFNTNEQkZF QzMyMEJDRTIwHhcNMjUwOTA2MTU0OTMyWhcNMjUwOTEzMTU0OTMxWjAYMRYwFAYD VQQDEw02OGJjNTgwYy0yMzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnl6z5TIvVcEbxmhlLQpRvaJ50faulPLiB8/gpWbE9+bdTIbq4s/m0/AaCjqt Urazi9S/CJCwIqtedvI84Xl/Zk2j1L8zf3zUCUIAv3s6GwKF68YSJmohzfIH1DUG N6j3BShsql28SREdanxfbUtvlQLcT9PFybAJc6bSkFgWDD/8b8neeR5a/1qw+COi wVZSPbYPObcS+tzZWI0ShMg8Qffc9X2nx3fq5o5luMrpvPuf7gV1O6N3f0vYa2ON DMTOQ74ZShbaBE8BXHLumHidwD9MXuJ9NjxWOtTC/YYP6OuItgjPbE3Ib6IgSuHI yVnQJgiszbr604idWfQjYLItDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDnr6OJu uy4xVcU5sJDBTgTmKfVlMB8GA1UdIwQYMBaAFPW86pCF6K26qKwhoE5T2/7DILzi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjZBQS9BMjk4OEYzODQw QUUxMUVFOTg1MEEyNjNDNEY5QUUwMi85Ynpxa0lYb3JicW9yQ0dnVGxQYl9zTWd2 T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzlienFrSVhvcmJxb3JDR2dUbFBiX3NNZ3ZPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjZBQS9BMjk4OEYzODQwQUUxMUVFOTg1MEEyNjNDNEY5QUUwMi85Ynpxa0lYb3Ji cW9yQ0dnVGxQYl9zTWd2T0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9L+QRjRs6mGQVyJCTgLooQFGzlJsr4xPWJ0Zkehs7bK84bK5xvHGj XYwFFW3AY05i+AoMHFmRG5RAUCpvQESHV2ZF35SJ+JjN2H357Y2argJx4pgXKb+t 3eBLkbDwAjrCJzPixf91eL/JZdpo6mvgZxa+m0Qka01Q9Vr8KZN4l+dSRPP7+mSV u67bJBwkCRgaf0NcAoWQE7rGK+zKq8ujxMXHvQnT/EjCOVkVRabfZbEnTEI2nPZr IiceIjg1V+//qH5+21qwf/7cfbiZAiV4L+/SeUxX+gq0i86+q5LAPE61U5OarWj6 XEtF0rxzdLyNVJ7Q82mcYZ3TAdD+NiLW -----END CERTIFICATE-----Generated at Sat Sep 6 21:09:05 2025 by rpki-client