$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft File: 2DkrDZFbmsH00jv5hBlxQG-2GsY.mft (raw, json) Hash identifier: sNPmO3c8sHI1/FSac1Y7ZVfHLuCMV4Xtr9Z/Bhm7y3A= Subject key identifier: F6:5D:DC:F0:BC:B1:FC:82:18:93:68:5E:38:DB:C0:1C:5D:54:8E:DD Authority key identifier: D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 Certificate issuer: /CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Certificate serial: 09BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft Manifest number: 09AD Signing time: Thu 18 Sep 2025 20:17:43 +0000 Manifest this update: Thu 18 Sep 2025 20:17:42 +0000 Manifest next update: Thu 25 Sep 2025 20:17:42 +0000 Files and hashes: 1: 2DkrDZFbmsH00jv5hBlxQG-2GsY.crl (hash: zJBr29TZIK8HpdHwD9l4gDw5cECwg74ApDSXq9ueuoQ=) 2: 08DD8180943211F09FC84074C4F9AE02.roa (hash: qHvLm0n42BGXW7Pj7QT2UK9pAQu/flDqoqXC8R6AawI=) 3: F03B784A8FEE11F0806DDB0BC4F9AE02.roa (hash: U5/YWhrZAQQvMZ+hJN+D2aT4VObUU5nu5mfisqOgOq0=) 4: 92B2469A90D411F09BC0A564C4F9AE02.roa (hash: 5DHKLtz4DxrcYRKUG0usf/l5ZtKYRV79y/moe4cxyVs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:17:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2494 (0x9be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DE5, serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Validity Not Before: Sep 18 20:17:42 2025 GMT Not After : Sep 25 20:17:42 2025 GMT Subject: CN=68cc68e7-7897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:02:94:96:9a:22:41:5d:8f:86:f8:7d:3d:86: 20:d7:a5:67:46:97:2c:98:cd:66:f6:9f:4b:11:e3: 5a:ce:55:d2:cc:0b:60:38:69:ae:39:1d:5a:78:28: 9e:82:22:a0:06:75:55:bc:45:b7:08:b6:b8:87:16: f7:2b:93:dc:74:d0:7b:d0:4e:f2:49:61:01:a1:ef: cc:15:e7:4b:9c:1a:eb:6f:39:e0:b8:c3:9a:2e:b7: 99:f2:5b:5a:8e:28:39:12:c6:7c:73:c2:30:c2:4b: 1a:39:b9:ba:4e:21:b7:34:c5:ce:6e:18:09:de:b4: 13:9d:31:c2:d6:ec:47:cf:ac:3d:9c:36:f0:1e:40: 12:77:65:3a:af:5e:65:64:67:b6:39:bc:e7:9e:af: bb:38:dc:81:a5:7a:50:2f:f8:8d:04:fb:1e:4c:b3: 0a:db:3d:06:61:49:39:37:4e:4d:2d:cd:cb:6f:84: ab:97:56:9b:85:6b:fb:91:11:cb:0b:fd:09:31:0d: 48:35:11:54:a8:90:b3:8f:07:86:a0:f8:ee:0f:6f: 14:23:b0:0c:be:04:98:f6:60:ca:0f:50:cc:d1:e6: e7:ca:20:0e:87:36:f4:0e:59:2f:45:79:8b:c8:c5: f2:f8:b0:db:89:87:27:7b:49:f7:70:bf:a1:fd:76: 7e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:5D:DC:F0:BC:B1:FC:82:18:93:68:5E:38:DB:C0:1C:5D:54:8E:DD X509v3 Authority Key Identifier: keyid:D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:53:93:bf:08:55:df:04:b2:c6:f5:35:db:e3:47:06:69:e9: c7:c6:23:4c:03:29:df:72:da:4d:63:95:bc:9b:9c:e9:42:3e: d6:41:ae:63:57:95:2f:1f:1b:5c:ce:74:04:21:91:b9:32:6d: 86:d4:79:fc:ea:7e:9f:cc:d9:5f:e7:f3:93:7f:79:39:07:14: 58:54:9c:75:08:99:a5:fb:7a:95:b6:7d:09:d5:ff:d4:f6:c1: 13:c4:a2:4f:6c:08:e6:8c:3e:2b:92:c4:d2:17:a6:59:58:84: 57:12:70:1c:1c:a4:9f:6b:5a:21:0f:e5:95:ef:b9:c3:39:0d: ce:07:24:88:6c:1d:2b:14:6e:79:a2:c3:33:53:3d:47:89:aa: 44:bc:a8:f1:4e:03:97:a3:c4:b1:3e:3d:a9:ff:17:7d:28:41: 9d:3a:a8:9e:15:ba:0d:80:be:02:3b:45:31:5e:f1:4c:f8:93: 56:92:85:df:44:e1:a0:a0:8f:33:98:23:84:94:8b:5e:7c:11: 88:cb:0e:0a:60:77:b0:46:44:83:e2:51:ee:91:66:74:fb:e3: 66:fd:e6:14:81:d4:93:74:d8:4c:7d:a6:5a:82:ed:40:55:04: ab:9a:48:62:57:0a:ae:4a:e8:20:54:7a:df:61:0f:2b:8a:8b: 4b:67:e1:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZERTUxMTAvBgNVBAUTKEQ4MzkyQjBEOTE1QjlBQzFGNEQyM0JGOTg0MTk3MTQw NkZCNjFBQzYwHhcNMjUwOTE4MjAxNzQyWhcNMjUwOTI1MjAxNzQyWjAYMRYwFAYD VQQDEw02OGNjNjhlNy03ODk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAKUlpoiQV2Phvh9PYYg16VnRpcsmM1m9p9LEeNazlXSzAtgOGmuOR1aeCie giKgBnVVvEW3CLa4hxb3K5PcdNB70E7ySWEBoe/MFedLnBrrbznguMOaLreZ8lta jig5EsZ8c8IwwksaObm6TiG3NMXObhgJ3rQTnTHC1uxHz6w9nDbwHkASd2U6r15l ZGe2Obznnq+7ONyBpXpQL/iNBPseTLMK2z0GYUk5N05NLc3Lb4Srl1abhWv7kRHL C/0JMQ1INRFUqJCzjweGoPjuD28UI7AMvgSY9mDKD1DM0ebnyiAOhzb0DlkvRXmL yMXy+LDbiYcne0n3cL+h/XZ+PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPZd3PC8 sfyCGJNoXjjbwBxdVI7dMB8GA1UdIwQYMBaAFNg5Kw2RW5rB9NI7+YQZcUBvthrG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkRFNS83MkM1QTlDQzk0 MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1zSDAwanY1aEJseFFHLTJH c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEa3JEWkZibXNIMDBqdjVoQmx4UUctMkdzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkRFNS83MkM1QTlDQzk0MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1z SDAwanY1aEJseFFHLTJHc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUU5O/CFXfBLLG9TXb40cGaenHxiNMAynfctpNY5W8m5zpQj7WQa5j V5UvHxtcznQEIZG5Mm2G1Hn86n6fzNlf5/OTf3k5BxRYVJx1CJml+3qVtn0J1f/U 9sETxKJPbAjmjD4rksTSF6ZZWIRXEnAcHKSfa1ohD+WV77nDOQ3OBySIbB0rFG55 osMzUz1HiapEvKjxTgOXo8SxPj2p/xd9KEGdOqieFboNgL4CO0UxXvFM+JNWkoXf ROGgoI8zmCOElItefBGIyw4KYHewRkSD4lHukWZ0++Nm/eYUgdSTdNhMfaZagu1A VQSrmkhiVwquSuggVHrfYQ8riotLZ+FB -----END CERTIFICATE-----Generated at Fri Sep 19 00:39:56 2025 by rpki-client