$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: 6m8nc7fCcYylZdiSQBez0MJUJFN08+FsvXoXLEmh8Rg= Subject key identifier: C5:64:8E:ED:60:3C:9B:21:A3:45:F5:5B:22:FD:5F:7F:FE:55:98:DA Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: EC Signing time: Tue 09 Sep 2025 05:26:36 +0000 Manifest this update: Tue 09 Sep 2025 05:26:36 +0000 Manifest next update: Tue 16 Sep 2025 05:26:36 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: NPXhiHURTrPkaMplKtnF+8ARTA8sb6LS9FlrCKyalDI=) 2: 879152E62E4811EF929FE162C4F9AE02.roa (hash: cr46hMBXMjVoUuUCIeS55LaT84JtFcqvVMAfnbq95f8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 05:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Sep 9 05:26:36 2025 GMT Not After : Sep 16 05:26:36 2025 GMT Subject: CN=68bfba8c-20b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c3:26:9c:94:9b:5e:7c:07:f5:c0:02:c7:ec: 26:9c:6b:71:e6:72:68:1f:f3:89:a1:88:05:9c:84: f0:88:b8:21:7e:82:65:eb:61:6e:fc:1e:86:0a:ac: 4a:37:9e:11:30:fe:b7:61:4e:32:ac:55:70:1d:42: 92:32:da:53:c7:da:cc:89:37:55:2b:15:b1:3c:23: 91:cb:71:a3:10:c2:d3:f8:4f:96:fe:ba:4c:83:9c: 0c:c2:e7:9d:ee:75:68:d9:4c:e4:6a:9b:52:fa:09: 7e:eb:e4:72:3a:8c:62:58:37:cd:2c:40:dc:ec:07: 18:39:b3:75:6d:8e:9e:ce:a2:85:80:2b:73:5f:0f: a6:7e:45:fa:b1:a5:40:d1:f0:2a:73:7b:d0:71:aa: 75:16:e9:49:e4:a2:28:07:57:1d:e5:b4:04:35:77: ea:ea:7c:d8:c7:78:cf:4e:74:ea:28:0f:00:aa:c7: 24:41:35:72:70:33:dd:2b:f1:f3:5b:98:66:46:19: 72:ad:e3:cb:a7:cc:8a:29:2e:d0:28:e1:bb:91:43: 01:09:45:82:eb:ea:97:91:00:d6:fb:b0:ff:46:f9: 77:f4:b8:28:b3:0b:d8:f7:05:ae:77:32:ad:f5:00: d6:75:36:9e:48:4f:36:40:1b:e8:aa:2a:c3:5e:a3: 8a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:64:8E:ED:60:3C:9B:21:A3:45:F5:5B:22:FD:5F:7F:FE:55:98:DA X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:88:09:1a:4d:c2:ca:85:1d:b2:f0:1f:93:66:63:f7:7f:76: ef:3e:2f:75:44:86:1e:26:90:23:a2:ee:ed:76:4c:7c:aa:d3: e1:d4:e8:b3:7e:3f:7b:10:8c:1a:d0:9e:8a:77:e9:87:89:7d: e2:54:73:bb:ce:19:db:e0:04:41:5c:91:43:d9:54:bc:a4:b2: a3:ca:21:c9:ed:b2:e0:d0:a6:8c:c1:6c:f7:f0:f3:9d:29:0b: 8e:3c:df:2f:f9:52:e4:bd:67:ed:91:18:28:6d:e2:09:89:cb: e8:6e:4c:f2:2a:52:f7:3d:03:89:48:96:14:7c:49:8d:3a:ef: 34:c1:ee:e8:21:b8:67:03:85:90:d5:59:bb:70:19:62:68:9a: 0d:e9:29:5b:5f:e9:ef:69:22:2e:0e:d1:8b:91:54:f4:d1:d5: 71:c1:40:59:1f:d0:de:93:b4:74:6b:f5:c9:50:e1:7c:96:cf: 03:fe:9a:fc:0e:78:4d:58:08:85:84:f5:7a:91:04:11:05:1b: cf:d4:74:a0:3b:17:47:e5:2f:a2:d3:db:a3:64:ce:d9:eb:c2: 90:f0:1a:f8:4e:2e:fa:6c:55:c2:b2:e5:aa:bd:36:8f:b2:ed: 9e:fb:6a:ea:6c:3d:cc:9c:6c:9a:f9:96:a3:c2:c2:44:ea:fc: 24:1a:42:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKDkwOERCM0Y5Qjc0NkY1MjBCQkI5QTg0Qzg1M0Y2OTI2 QzE1RUI5QkQwHhcNMjUwOTA5MDUyNjM2WhcNMjUwOTE2MDUyNjM2WjAYMRYwFAYD VQQDEw02OGJmYmE4Yy0yMGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMMmnJSbXnwH9cACx+wmnGtx5nJoH/OJoYgFnITwiLghfoJl62Fu/B6GCqxK N54RMP63YU4yrFVwHUKSMtpTx9rMiTdVKxWxPCORy3GjEMLT+E+W/rpMg5wMwued 7nVo2UzkaptS+gl+6+RyOoxiWDfNLEDc7AcYObN1bY6ezqKFgCtzXw+mfkX6saVA 0fAqc3vQcap1FulJ5KIoB1cd5bQENXfq6nzYx3jPTnTqKA8AqsckQTVycDPdK/Hz W5hmRhlyrePLp8yKKS7QKOG7kUMBCUWC6+qXkQDW+7D/Rvl39LgoswvY9wWudzKt 9QDWdTaeSE82QBvoqirDXqOKkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMVkju1g PJsho0X1WyL9X3/+VZjaMB8GA1UdIwQYMBaAFJCNs/m3RvUgu7moTIU/aSbBXrm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8yMDlFRERDRTJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlTQzd1YWhNaFQ5cEpzRmV1 YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXViMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTkwOS8yMDlFRERDRTJBMzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlT Qzd1YWhNaFQ5cEpzRmV1YjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCiAkaTcLKhR2y8B+TZmP3f3bvPi91RIYeJpAjou7tdkx8qtPh1Oiz fj97EIwa0J6Kd+mHiX3iVHO7zhnb4ARBXJFD2VS8pLKjyiHJ7bLg0KaMwWz38POd KQuOPN8v+VLkvWftkRgobeIJicvobkzyKlL3PQOJSJYUfEmNOu80we7oIbhnA4WQ 1Vm7cBliaJoN6SlbX+nvaSIuDtGLkVT00dVxwUBZH9Dek7R0a/XJUOF8ls8D/pr8 DnhNWAiFhPV6kQQRBRvP1HSgOxdH5S+i09ujZM7Z68KQ8Br4Ti76bFXCsuWqvTaP su2e+2rqbD3MnGya+ZajwsJE6vwkGkIC -----END CERTIFICATE-----Generated at Wed Sep 10 04:30:52 2025 by rpki-client