$ rpki-client -vvf rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft File: iaMdROlPHMJ4ULusFsAsIKqznOU.mft (raw, json) Hash identifier: OBZS7LAhuSCnPrvm3ZfJNK0D2jgjuVAl0kWOxkaz/Q0= Subject key identifier: 69:5C:54:15:AE:43:E9:7C:09:E1:D8:B3:8C:1D:AF:EA:18:E5:55:31 Authority key identifier: 89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5 Certificate issuer: /CN=A9196F73/serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5 Certificate serial: 0AFB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft Manifest number: 0AEB Signing time: Thu 18 Sep 2025 19:37:31 +0000 Manifest this update: Thu 18 Sep 2025 19:37:30 +0000 Manifest next update: Thu 25 Sep 2025 19:37:30 +0000 Files and hashes: 1: iaMdROlPHMJ4ULusFsAsIKqznOU.crl (hash: T53jlSaQclRJc9TJTGsZs5oag8+AtrCikJtuYvDEIEw=) 2: 9AE4F7EC53A211EA8D26BD0CC4F9AE02.roa (hash: jqqBqCZOKu2qIALXNmkWZIy2E6GEnPXSik4fgBrMrDA=) 3: F392CF9E53A311EAB1641213C4F9AE02.roa (hash: lxeOojn+XYimi3V1BZ9O9tBljDRntCvGVjoxX3VG+x8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 19:37:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2811 (0xafb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196F73, serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5 Validity Not Before: Sep 18 19:37:30 2025 GMT Not After : Sep 25 19:37:30 2025 GMT Subject: CN=68cc5f7b-911d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:af:c5:c6:45:52:1b:b1:8c:8b:ff:53:44:f4: 12:f9:9c:f5:19:f4:62:0e:35:43:ed:8d:ad:93:60: d2:ff:fc:5d:d4:31:9c:1c:c9:7d:44:81:83:71:17: 02:05:38:66:e9:ee:3b:a9:71:43:77:ca:2d:f6:c2: 81:c2:ec:ce:eb:9b:73:b7:68:d6:97:e7:23:27:98: 3f:ef:92:c6:39:31:b9:af:89:97:7b:7f:11:1c:f9: 66:80:cb:28:a1:fe:fd:08:22:04:b6:96:87:26:4b: 0d:8f:78:a8:46:a9:5b:26:0d:b9:41:34:00:67:bd: 2d:38:08:0d:cd:2c:16:72:af:c8:a7:94:a0:d7:fd: 82:48:53:7c:78:1e:ef:b9:9b:49:eb:c4:e0:cc:3a: ee:f2:d8:b1:6d:1a:40:42:87:4b:b7:49:60:0b:48: c8:8e:7a:3c:38:a1:b7:62:fd:35:df:24:5c:1b:2a: d3:47:52:58:4e:3c:13:ed:e6:e1:96:82:65:58:5d: 46:fa:40:c8:c7:08:54:8a:1d:d8:db:63:19:9c:98: b7:7a:ca:14:0a:02:8d:6d:ba:a9:a0:1a:ba:03:51: 00:41:71:89:3b:87:75:8f:3a:e5:7a:a8:1f:4c:64: 02:38:88:2d:aa:39:d8:e6:3a:b0:86:d8:46:8f:07: a4:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:5C:54:15:AE:43:E9:7C:09:E1:D8:B3:8C:1D:AF:EA:18:E5:55:31 X509v3 Authority Key Identifier: keyid:89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:60:22:80:f6:47:c0:ee:97:60:4f:d7:8f:09:dd:11:88:49: cc:d5:bc:76:cc:fa:ef:e1:42:0e:13:80:8d:38:60:aa:8a:fa: 24:68:8e:b2:12:1d:1e:7c:21:55:65:1e:eb:49:ac:bd:d4:69: 23:77:20:8d:7b:32:d0:55:34:1a:c7:fb:ad:29:3e:f4:63:1b: c4:84:4d:68:43:0b:35:62:6e:ae:c2:d6:4d:fe:af:79:77:01: d8:4b:cd:33:52:f3:7d:c8:74:6e:83:64:31:fa:c0:c7:cb:8b: f7:41:ca:ee:a6:a7:55:a1:1d:fa:a7:14:85:aa:c0:59:90:6a: 08:b2:3c:ec:86:69:d5:3d:88:5d:70:46:86:fe:19:ef:a6:9b: 62:89:9c:6e:ab:6f:99:76:2d:bc:24:c9:fe:ce:56:03:89:17: 7e:61:fb:bf:93:5f:8a:77:84:61:a1:2c:32:53:d4:11:ca:77: f6:22:76:08:3f:1f:e2:1d:95:be:22:9c:38:d6:2c:d7:1e:a2: 19:b4:2f:7f:c9:bc:ff:ec:cd:ce:35:83:54:37:84:3d:b8:cb: 28:e4:a8:17:d9:10:ab:74:36:4d:53:69:f2:8d:42:ac:e0:19: ee:73:dd:bd:5c:df:79:4e:97:28:b9:07:4d:db:73:79:e8:67: 12:55:bc:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZGNzMxMTAvBgNVBAUTKDg5QTMxRDQ0RTk0RjFDQzI3ODUwQkJBQzE2QzAyQzIw QUFCMzlDRTUwHhcNMjUwOTE4MTkzNzMwWhcNMjUwOTI1MTkzNzMwWjAYMRYwFAYD VQQDEw02OGNjNWY3Yi05MTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6/FxkVSG7GMi/9TRPQS+Zz1GfRiDjVD7Y2tk2DS//xd1DGcHMl9RIGDcRcC BThm6e47qXFDd8ot9sKBwuzO65tzt2jWl+cjJ5g/75LGOTG5r4mXe38RHPlmgMso of79CCIEtpaHJksNj3ioRqlbJg25QTQAZ70tOAgNzSwWcq/Ip5Sg1/2CSFN8eB7v uZtJ68TgzDru8tixbRpAQodLt0lgC0jIjno8OKG3Yv013yRcGyrTR1JYTjwT7ebh loJlWF1G+kDIxwhUih3Y22MZnJi3esoUCgKNbbqpoBq6A1EAQXGJO4d1jzrleqgf TGQCOIgtqjnY5jqwhthGjwekvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGlcVBWu Q+l8CeHYs4wdr+oY5VUxMB8GA1UdIwQYMBaAFImjHUTpTxzCeFC7rBbALCCqs5zl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkY3My9BMjk3MDdGNjUz QTExMUVBQUVFRUJFMEJDNEY5QUUwMi9pYU1kUk9sUEhNSjRVTHVzRnNBc0lLcXpu T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhTWRST2xQSE1KNFVMdXNGc0FzSUtxem5PVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkY3My9BMjk3MDdGNjUzQTExMUVBQUVFRUJFMEJDNEY5QUUwMi9pYU1kUk9sUEhN SjRVTHVzRnNBc0lLcXpuT1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfYCKA9kfA7pdgT9ePCd0RiEnM1bx2zPrv4UIOE4CNOGCqivokaI6y Eh0efCFVZR7rSay91GkjdyCNezLQVTQax/utKT70YxvEhE1oQws1Ym6uwtZN/q95 dwHYS80zUvN9yHRug2Qx+sDHy4v3QcrupqdVoR36pxSFqsBZkGoIsjzshmnVPYhd cEaG/hnvpptiiZxuq2+Zdi28JMn+zlYDiRd+Yfu/k1+Kd4RhoSwyU9QRynf2InYI Px/iHZW+Ipw41izXHqIZtC9/ybz/7M3ONYNUN4Q9uMso5KgX2RCrdDZNU2nyjUKs 4Bnuc929XN95TpcouQdN23N56GcSVbzZ -----END CERTIFICATE-----Generated at Fri Sep 19 02:32:24 2025 by rpki-client