$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft File: L9JLb9eYBEVzVDhmYs4w3aOyALU.mft (raw, json) Hash identifier: 8mPrVWs/LyR247WV15i0Y+jTyEsD548fL6EwJW7xH6U= Subject key identifier: FA:AC:F5:E8:3D:93:9B:9B:F9:70:EF:83:9A:31:C6:36:0E:5E:7F:70 Authority key identifier: 2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 Certificate issuer: /CN=A91A29DA/serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft Manifest number: 0119 Signing time: Fri 05 Sep 2025 05:11:27 +0000 Manifest this update: Fri 05 Sep 2025 05:11:26 +0000 Manifest next update: Fri 12 Sep 2025 05:11:26 +0000 Files and hashes: 1: L9JLb9eYBEVzVDhmYs4w3aOyALU.crl (hash: zwQmpKg5Ma3bj4y7NB4jUJhwNDYOXmQbwLjwxMfmdaU=) 2: AE2FD9C4DA5411EE83E9E67EC4F9AE02.roa (hash: tK5HTPbAj/ZNMX+j7tcaCGQxo/xqwq0UKtlHWscWUVg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29DA, serialNumber=2FD24B6FD79804457354386662CE30DDA3B200B5 Validity Not Before: Sep 5 05:11:26 2025 GMT Not After : Sep 12 05:11:26 2025 GMT Subject: CN=68ba70ff-f420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e2:82:d5:45:7e:3e:86:ac:28:8d:2b:54:69: ac:28:1b:84:b4:f5:ce:03:3b:b7:40:ea:29:02:7a: 58:60:9a:a2:fc:0c:b4:0b:8c:b8:04:9a:48:63:36: 68:59:e4:11:26:36:c1:00:36:e8:d6:10:03:a3:3a: 33:cc:d3:ab:ea:09:8a:57:79:19:c0:84:5e:df:d3: 6b:95:3b:ca:1a:61:38:76:ae:91:27:6b:2c:b4:54: 5f:a3:e2:09:02:b4:62:47:e6:a6:ff:5c:bf:cb:5e: 37:f7:fa:9e:c8:b3:83:48:e0:51:76:37:3c:46:1b: aa:e0:53:c5:fe:b2:15:7a:71:1a:b3:43:c0:9d:e3: 89:a9:d9:2c:78:f7:f4:b2:8a:21:eb:2b:8c:b3:a4: 86:b0:6a:07:a2:16:06:bd:ef:d0:d8:96:fb:5e:69: e0:88:1b:ca:ca:c1:43:0e:ba:71:82:75:de:41:fd: 16:bb:da:3d:c5:0a:3d:fb:10:5d:b4:a0:fd:9d:0f: f1:6d:20:7f:63:65:29:9e:ca:db:40:05:02:77:ac: cb:4b:ad:24:d1:90:16:0c:ad:e1:de:9b:e2:d1:3d: 70:a2:27:dd:92:1e:06:fa:91:58:29:76:e7:14:61: b5:6f:99:54:e0:81:02:9a:be:3b:cc:33:c8:e0:8e: 89:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:AC:F5:E8:3D:93:9B:9B:F9:70:EF:83:9A:31:C6:36:0E:5E:7F:70 X509v3 Authority Key Identifier: keyid:2F:D2:4B:6F:D7:98:04:45:73:54:38:66:62:CE:30:DD:A3:B2:00:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L9JLb9eYBEVzVDhmYs4w3aOyALU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29DA/34B5B514DA5411EE827CA57DC4F9AE02/L9JLb9eYBEVzVDhmYs4w3aOyALU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:6a:4d:12:ab:cb:43:91:ef:64:b6:b0:5d:1a:52:b9:c2:4a: 80:c1:c6:99:40:87:49:18:63:bf:2e:19:cd:27:79:16:03:26: 57:35:2b:c7:64:7d:2b:30:d2:cf:e7:76:e9:15:ac:f2:61:10: ac:72:06:50:fc:c0:95:92:49:2d:e2:ca:5f:ca:01:41:00:32: d0:d9:19:81:e4:73:39:a5:c2:86:40:1f:a8:60:fa:af:70:a5: 73:5e:0b:38:10:9f:41:a3:b7:21:70:48:4c:6b:16:fc:0d:9c: 1b:58:c9:1f:b0:f1:ac:ee:e8:a3:e5:65:fb:de:a2:9b:a9:88: 20:f3:5d:a9:54:bc:18:b9:16:1d:e9:2f:00:25:2e:72:42:46: 9e:f0:04:4c:49:65:a4:63:6f:f8:cc:d8:e8:36:53:a8:de:36: ec:73:82:5f:33:cd:80:f3:cc:af:5c:e0:6b:68:f9:1a:d5:43: 94:c5:e2:03:67:1d:87:74:11:d4:49:22:ac:58:15:32:82:29: 4f:eb:90:5a:0e:9f:cb:b2:75:99:0d:b2:43:e1:59:1d:9c:4e: c2:2a:23:4b:10:30:2c:52:e1:97:1b:3f:e1:ff:49:42:1a:61: ef:62:d3:2f:a4:02:b9:8a:27:56:95:50:e7:a1:25:c0:02:4a: 6a:5a:b9:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5REExMTAvBgNVBAUTKDJGRDI0QjZGRDc5ODA0NDU3MzU0Mzg2NjYyQ0UzMERE QTNCMjAwQjUwHhcNMjUwOTA1MDUxMTI2WhcNMjUwOTEyMDUxMTI2WjAYMRYwFAYD VQQDEw02OGJhNzBmZi1mNDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOKC1UV+PoasKI0rVGmsKBuEtPXOAzu3QOopAnpYYJqi/Ay0C4y4BJpIYzZo WeQRJjbBADbo1hADozozzNOr6gmKV3kZwIRe39NrlTvKGmE4dq6RJ2sstFRfo+IJ ArRiR+am/1y/y1439/qeyLODSOBRdjc8Rhuq4FPF/rIVenEas0PAneOJqdksePf0 sooh6yuMs6SGsGoHohYGve/Q2Jb7XmngiBvKysFDDrpxgnXeQf0Wu9o9xQo9+xBd tKD9nQ/xbSB/Y2UpnsrbQAUCd6zLS60k0ZAWDK3h3pvi0T1woifdkh4G+pFYKXbn FGG1b5lU4IECmr47zDPI4I6JZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPqs9eg9 k5ub+XDvg5oxxjYOXn9wMB8GA1UdIwQYMBaAFC/SS2/XmARFc1Q4ZmLOMN2jsgC1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlEQS8zNEI1QjUxNERB NTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJFVnpWRGhtWXM0dzNhT3lB TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0w5SkxiOWVZQkVWelZEaG1ZczR3M2FPeUFMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MjlEQS8zNEI1QjUxNERBNTQxMUVFODI3Q0E1N0RDNEY5QUUwMi9MOUpMYjllWUJF VnpWRGhtWXM0dzNhT3lBTFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdak0Sq8tDke9ktrBdGlK5wkqAwcaZQIdJGGO/LhnNJ3kWAyZXNSvH ZH0rMNLP53bpFazyYRCscgZQ/MCVkkkt4spfygFBADLQ2RmB5HM5pcKGQB+oYPqv cKVzXgs4EJ9Bo7chcEhMaxb8DZwbWMkfsPGs7uij5WX73qKbqYgg812pVLwYuRYd 6S8AJS5yQkae8ARMSWWkY2/4zNjoNlOo3jbsc4JfM82A88yvXOBraPka1UOUxeID Zx2HdBHUSSKsWBUygilP65BaDp/LsnWZDbJD4VkdnE7CKiNLEDAsUuGXGz/h/0lC GmHvYtMvpAK5iidWlVDnoSXAAkpqWrmp -----END CERTIFICATE-----Generated at Sat Sep 6 21:01:54 2025 by rpki-client