$ rpki-client -vvf rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft File: 2z39hs6_6u06rxXeruaWUjR0aik.mft (raw, json) Hash identifier: v8WbpBKs4qAfkPVcCIGil6bK2uPhmzYOMmPWWGr3YNA= Subject key identifier: 84:9D:18:0B:C3:21:19:14:52:EB:6A:A4:D1:9A:4A:2A:F3:18:69:07 Authority key identifier: DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 Certificate issuer: /CN=A9171BF0/serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft Manifest number: 9D Signing time: Wed 17 Sep 2025 07:01:10 +0000 Manifest this update: Wed 17 Sep 2025 07:01:09 +0000 Manifest next update: Wed 24 Sep 2025 07:01:09 +0000 Files and hashes: 1: 2z39hs6_6u06rxXeruaWUjR0aik.crl (hash: 9DwzZVaYqLwSnVzQLKJZ7BFGa8NctOcl7faeCaswIlI=) 2: 12004368A41611EFA0D7CD42C4F9AE02.roa (hash: 9YzGJkxen0bF7ZOSO15+u2xKU2H/RKyzN947mBYbnYU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171BF0, serialNumber=DB3DFD86CEBFEAED3AAF15DEAEE6965234746A29 Validity Not Before: Sep 17 07:01:09 2025 GMT Not After : Sep 24 07:01:09 2025 GMT Subject: CN=68ca5cb5-a225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:43:e4:3f:eb:ce:2d:22:f2:10:9f:eb:3e:fc: a3:22:d6:9e:21:8f:fc:ba:27:20:a3:1c:f7:f1:7e: a1:75:1a:93:a1:86:55:4d:af:24:4b:95:89:19:bf: b3:60:1d:99:0a:03:3e:c6:68:3a:87:24:56:19:20: 6f:99:f7:9f:53:b3:74:ec:b0:14:e1:ac:ba:15:30: 42:e3:b4:0d:3c:c7:2d:bf:c9:93:e9:81:14:f1:54: 9e:7d:0d:e9:d8:4d:b4:f8:ae:de:07:28:73:fc:52: d2:2d:63:17:76:19:a1:13:af:6b:8a:ef:d9:89:24: e2:de:36:3b:fe:31:28:f3:fd:e7:99:74:5a:e2:68: 2d:07:30:1a:64:0d:70:cb:9b:00:4e:9d:6c:e8:31: 95:cd:11:54:8f:ac:04:56:ba:8c:89:3a:aa:dd:6a: 47:13:52:c9:45:f5:e4:6b:03:e2:c1:05:50:de:78: 35:8a:f9:4c:08:33:09:36:33:99:ab:0e:b6:76:2c: 1d:70:78:8f:18:9b:0a:a0:2a:c5:56:86:63:a6:5b: 07:e7:ea:69:5d:6b:80:df:a3:c2:10:bc:d0:81:75: 71:ad:81:cf:0f:7e:be:26:9a:79:d4:13:d6:83:69: b5:f7:f7:6a:4b:fe:91:3e:bf:93:7e:6b:d5:38:33: 65:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:9D:18:0B:C3:21:19:14:52:EB:6A:A4:D1:9A:4A:2A:F3:18:69:07 X509v3 Authority Key Identifier: keyid:DB:3D:FD:86:CE:BF:EA:ED:3A:AF:15:DE:AE:E6:96:52:34:74:6A:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2z39hs6_6u06rxXeruaWUjR0aik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171BF0/A78F1B12A41511EFA14FBD3FC4F9AE02/2z39hs6_6u06rxXeruaWUjR0aik.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:23:32:49:6e:e6:0b:5a:11:e2:0a:d7:1d:ca:03:78:0e:68: 2e:b9:c7:af:b6:d1:12:15:d2:41:e0:78:4b:56:7f:37:07:fa: d6:ec:a0:f0:c4:54:a4:c0:f6:85:85:0c:35:20:b9:c1:50:7a: 1d:a4:b2:9b:a0:3f:15:fe:11:4d:01:fd:b3:88:36:b7:10:96: 81:aa:d4:a0:9f:d6:f4:d8:91:40:a0:38:7e:42:88:07:41:13: d6:33:9b:ca:3f:38:0a:3a:83:06:5c:81:3b:60:73:c7:f0:b5: 27:62:7d:d8:ed:4b:bc:9d:d0:3a:a8:95:59:c2:f4:c7:a3:0c: 31:4e:b5:e6:1f:f3:8e:4a:af:3e:3d:95:54:d8:bd:48:9e:d3: 28:d9:6f:09:a2:84:f0:42:4e:e6:ec:46:49:9f:b9:02:e1:b1: df:8c:82:24:66:df:de:50:c9:b8:54:8a:8f:9a:59:fc:54:ec: 04:25:1d:a2:fb:45:6c:eb:45:17:3c:60:53:5a:89:f4:82:0b: 44:9c:20:e6:81:e8:0e:9d:38:c0:e7:c4:4a:6f:8f:cc:76:75: 79:cc:26:e2:bc:4f:21:50:f5:1b:32:2d:95:0b:63:13:29:53: 98:e5:52:1a:4b:18:06:ca:fa:28:f5:ba:fe:35:e6:7b:9d:59: 56:af:f0:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFCRjAxMTAvBgNVBAUTKERCM0RGRDg2Q0VCRkVBRUQzQUFGMTVERUFFRTY5NjUy MzQ3NDZBMjkwHhcNMjUwOTE3MDcwMTA5WhcNMjUwOTI0MDcwMTA5WjAYMRYwFAYD VQQDEw02OGNhNWNiNS1hMjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEPkP+vOLSLyEJ/rPvyjItaeIY/8uicgoxz38X6hdRqToYZVTa8kS5WJGb+z YB2ZCgM+xmg6hyRWGSBvmfefU7N07LAU4ay6FTBC47QNPMctv8mT6YEU8VSefQ3p 2E20+K7eByhz/FLSLWMXdhmhE69riu/ZiSTi3jY7/jEo8/3nmXRa4mgtBzAaZA1w y5sATp1s6DGVzRFUj6wEVrqMiTqq3WpHE1LJRfXkawPiwQVQ3ng1ivlMCDMJNjOZ qw62diwdcHiPGJsKoCrFVoZjplsH5+ppXWuA36PCELzQgXVxrYHPD36+Jpp51BPW g2m19/dqS/6RPr+TfmvVODNlQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFISdGAvD IRkUUutqpNGaSirzGGkHMB8GA1UdIwQYMBaAFNs9/YbOv+rtOq8V3q7mllI0dGop MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUJGMC9BNzhGMUIxMkE0 MTUxMUVGQTE0RkJEM0ZDNEY5QUUwMi8yejM5aHM2XzZ1MDZyeFhlcnVhV1VqUjBh aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6MzloczZfNnUwNnJ4WGVydWFXVWpSMGFpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUJGMC9BNzhGMUIxMkE0MTUxMUVGQTE0RkJEM0ZDNEY5QUUwMi8yejM5aHM2XzZ1 MDZyeFhlcnVhV1VqUjBhaWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVIzJJbuYLWhHiCtcdygN4DmguucevttESFdJB4HhLVn83B/rW7KDw xFSkwPaFhQw1ILnBUHodpLKboD8V/hFNAf2ziDa3EJaBqtSgn9b02JFAoDh+QogH QRPWM5vKPzgKOoMGXIE7YHPH8LUnYn3Y7Uu8ndA6qJVZwvTHowwxTrXmH/OOSq8+ PZVU2L1IntMo2W8JooTwQk7m7EZJn7kC4bHfjIIkZt/eUMm4VIqPmln8VOwEJR2i +0Vs60UXPGBTWon0ggtEnCDmgegOnTjA58RKb4/MdnV5zCbivE8hUPUbMi2VC2MT KVOY5VIaSxgGyvoo9br+NeZ7nVlWr/BU -----END CERTIFICATE-----Generated at Thu Sep 18 20:53:08 2025 by rpki-client