$ rpki-client -vvf rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft File: lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft (raw, json) Hash identifier: MOzDGqtapslKJnkMIVp8mRrRMoCt70DO4mNyGElDdrI= Subject key identifier: 17:B2:38:80:F8:44:B1:01:F6:D0:2E:84:2C:A8:72:15:BE:04:97:6B Authority key identifier: 94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 Certificate issuer: /CN=A917DD85/serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Certificate serial: 018A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft Manifest number: 0183 Signing time: Fri 19 Sep 2025 04:08:57 +0000 Manifest this update: Fri 19 Sep 2025 04:08:57 +0000 Manifest next update: Fri 26 Sep 2025 04:08:57 +0000 Files and hashes: 1: lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl (hash: FTf/D6VGDrmc2lx68VGfeDCi0MT6bPr3SgX/kK4q1zE=) 2: A155911C4BCA11EEBC8C8B82C4F9AE02.roa (hash: LiaqpSK92cBpFsHl2uGwMK05eZl8TgnXPG5GLO/r81A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 04:08:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DD85, serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Validity Not Before: Sep 19 04:08:57 2025 GMT Not After : Sep 26 04:08:57 2025 GMT Subject: CN=68ccd759-1144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:2d:e2:5a:e1:3b:47:24:74:21:5f:27:e9:da: 27:ff:3f:83:4b:f0:6c:cf:5a:b7:5e:6d:ac:7c:66: ce:b0:7b:db:d3:06:f8:1c:fd:a8:8c:fd:35:6e:ff: 2f:89:90:e7:ba:ef:d6:d7:3e:21:f1:4c:32:c7:ac: 85:4c:fe:08:c6:da:e6:5e:52:cd:b8:32:3e:39:ef: 0c:a6:a4:16:f0:9b:87:7e:ba:5a:41:e3:6b:42:ec: 94:e5:10:1d:f5:d5:fa:36:4d:8b:85:66:f2:c8:30: 81:6a:4f:ef:65:dd:6f:02:53:26:24:5e:a3:92:0d: f2:22:66:3c:94:c7:ea:8b:bb:f9:a4:a1:3d:36:1d: 39:ba:10:70:4e:d4:4a:5d:fa:87:8b:bc:f7:ef:bd: 91:5e:84:36:f0:3b:9d:85:3c:37:6b:3a:98:f5:2e: 1c:bd:4f:ee:e2:0d:e7:1f:18:23:ba:cd:5b:36:50: 1b:e6:8f:0b:ad:9e:10:aa:5a:c8:28:20:cc:13:35: 7d:09:d6:00:fa:fc:cb:5e:0e:23:5e:e7:89:fc:f9: bd:45:d0:d1:96:c4:ad:7e:7e:06:4a:05:32:93:f8: aa:b3:02:76:03:98:37:29:d2:71:46:e5:d0:a3:97: 54:8a:94:a0:4b:3a:97:20:a8:a5:a0:ec:9f:5e:c1: bf:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:B2:38:80:F8:44:B1:01:F6:D0:2E:84:2C:A8:72:15:BE:04:97:6B X509v3 Authority Key Identifier: keyid:94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:ef:c3:33:d6:a5:a3:ba:eb:7c:ba:46:86:69:11:f7:87:44: e6:65:16:3a:4c:ac:0d:d3:49:06:43:a0:60:72:e9:10:05:c1: 8c:d2:bb:0f:42:58:dd:66:62:68:ba:10:63:c4:4e:2d:90:68: 71:73:3f:69:3b:92:72:5f:25:db:d3:1a:a6:65:1b:58:e5:ae: f1:f5:e2:fe:b1:ab:1a:56:98:62:00:38:0f:8d:d2:fa:08:88: cc:a9:cb:ca:53:f8:2c:22:8f:f3:04:4b:05:5e:b0:f7:e5:2c: b3:2c:c8:bb:af:55:8b:d2:63:de:5d:d1:df:5d:d1:a1:47:8d: b8:c2:7e:c3:ce:66:ee:1b:c7:82:9f:0e:e5:52:4a:56:77:2e: 86:d8:d6:cb:17:48:e4:b8:c3:8b:50:db:2c:d1:7e:f5:ea:a8: 06:0d:71:4e:48:f6:eb:19:06:d9:10:15:38:48:20:62:96:d2: 34:b0:b1:f8:ab:e5:da:9d:b3:32:fb:2a:70:c5:1b:fd:d6:1c: 68:60:75:80:e5:c0:fd:1c:3b:6b:0d:59:07:5f:21:cb:a9:5d: 73:69:bb:aa:25:da:a3:37:09:8b:f0:40:20:15:55:a2:5b:cf: 36:ed:f5:3b:71:f1:03:e1:e3:d1:d5:e9:1d:bd:7d:1d:38:61: d8:55:56:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0REODUxMTAvBgNVBAUTKDk0NDM3RUREQ0M4RDA2OTg5RTA5NTAwNTQzQzkxQkRG MEQzRjQ4RTUwHhcNMjUwOTE5MDQwODU3WhcNMjUwOTI2MDQwODU3WjAYMRYwFAYD VQQDEw02OGNjZDc1OS0xMTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzC3iWuE7RyR0IV8n6don/z+DS/Bsz1q3Xm2sfGbOsHvb0wb4HP2ojP01bv8v iZDnuu/W1z4h8Uwyx6yFTP4IxtrmXlLNuDI+Oe8MpqQW8JuHfrpaQeNrQuyU5RAd 9dX6Nk2LhWbyyDCBak/vZd1vAlMmJF6jkg3yImY8lMfqi7v5pKE9Nh05uhBwTtRK XfqHi7z3772RXoQ28DudhTw3azqY9S4cvU/u4g3nHxgjus1bNlAb5o8LrZ4QqlrI KCDMEzV9CdYA+vzLXg4jXueJ/Pm9RdDRlsStfn4GSgUyk/iqswJ2A5g3KdJxRuXQ o5dUipSgSzqXIKiloOyfXsG/gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBeyOID4 RLEB9tAuhCyochW+BJdrMB8GA1UdIwQYMBaAFJRDft3MjQaYnglQBUPJG98NP0jl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REQ4NS84NDZGNEE2ODRC QzMxMUVFOEM2NTczMTlDNEY5QUUwMi9sRU4tM2N5TkJwaWVDVkFGUThrYjN3MF9T T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xFTi0zY3lOQnBpZUNWQUZROGtiM3cwX1NPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REQ4NS84NDZGNEE2ODRCQzMxMUVFOEM2NTczMTlDNEY5QUUwMi9sRU4tM2N5TkJw aWVDVkFGUThrYjN3MF9TT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH78Mz1qWjuut8ukaGaRH3h0TmZRY6TKwN00kGQ6BgcukQBcGM0rsP QljdZmJouhBjxE4tkGhxcz9pO5JyXyXb0xqmZRtY5a7x9eL+sasaVphiADgPjdL6 CIjMqcvKU/gsIo/zBEsFXrD35SyzLMi7r1WL0mPeXdHfXdGhR424wn7DzmbuG8eC nw7lUkpWdy6G2NbLF0jkuMOLUNss0X716qgGDXFOSPbrGQbZEBU4SCBiltI0sLH4 q+XanbMy+ypwxRv91hxoYHWA5cD9HDtrDVkHXyHLqV1zabuqJdqjNwmL8EAgFVWi W8827fU7cfED4ePR1ekdvX0dOGHYVVZT -----END CERTIFICATE-----Generated at Fri Sep 19 07:09:51 2025 by rpki-client