$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft File: 2j9P_11GRonTiYj1-yL2VVCz7_g.mft (raw, json) Hash identifier: VaEdsuapU0IgtcGNRZhUor7gwUJsTahXBuTv+7V/rYg= Subject key identifier: E2:AA:95:D0:3B:1C:27:28:F3:8E:A9:AA:AC:30:66:B4:7F:32:38:47 Authority key identifier: DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 Certificate issuer: /CN=A91A3FFF/serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Certificate serial: 04A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft Manifest number: 0499 Signing time: Tue 09 Sep 2025 00:03:05 +0000 Manifest this update: Tue 09 Sep 2025 00:03:05 +0000 Manifest next update: Tue 16 Sep 2025 00:03:05 +0000 Files and hashes: 1: 2j9P_11GRonTiYj1-yL2VVCz7_g.crl (hash: DMc36OBToO8BcEe+ple+tbCDqMTBKXXJokhrWWf+iTs=) 2: 952AA4424DAF11EC86ED5273C4F9AE02.roa (hash: 70pXo7TPZehC7uJ0XdtVRKfDG1GkFpY/5x3mmDYZSxI=) 3: AC63C4A4A62E11ECBDD6843FC4F9AE02.roa (hash: w67HRNi/yFu6FrtkXk67zQVeYi9FWWK0Yn59oMaToP8=) 4: 75426BC6A8C511EC8F560C42C4F9AE02.roa (hash: c26DXYzcpQgya2lb6mPXdMatF2eIuHc37QpxkKWbfsc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:03:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1189 (0x4a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3FFF, serialNumber=DA3F4FFF5D464689D38988F5FB22F65550B3EFF8 Validity Not Before: Sep 9 00:03:05 2025 GMT Not After : Sep 16 00:03:05 2025 GMT Subject: CN=68bf6eb9-812c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:86:e6:55:a6:b7:16:c5:f3:1c:77:b9:b9:8f: e6:8b:f9:b7:92:fa:9a:7a:fd:75:ba:8e:ee:54:82: d8:9d:e8:81:8d:0d:8a:86:43:b7:f9:58:b7:a8:4b: 5f:05:a9:80:1d:1a:15:14:b8:7c:2a:71:2b:11:32: 45:cb:3f:53:4b:75:2f:ee:54:2f:e1:16:1e:c9:f1: c9:3d:45:5c:a5:10:c2:79:b4:7b:64:ec:b8:2d:6a: d3:97:69:bb:23:ae:e1:b8:53:92:a6:77:fd:e9:a3: f7:87:9c:96:01:63:a2:ad:57:c6:31:00:53:85:7e: a9:f3:72:55:3f:0a:da:56:7a:bc:f7:25:57:29:2e: 5b:c8:1f:83:b1:5a:c2:6d:a3:55:07:1f:86:f6:37: ad:46:49:e8:c7:08:53:e5:41:d3:bd:25:97:63:37: 82:ee:2d:56:b1:f6:24:25:28:c2:fe:57:6a:64:9a: 0f:34:c3:ad:23:64:f7:25:86:e1:63:0f:4a:18:e9: a1:04:57:d7:b9:09:e0:d4:a5:c8:63:cb:c5:b8:05: 0c:39:cc:69:48:cc:12:50:f2:f1:98:25:c3:3f:cf: 5b:82:7d:f1:ca:0c:e5:79:c3:c1:c2:e6:36:f9:9b: 56:cd:3e:19:5e:98:9b:b3:c7:86:4d:99:3e:5b:f4: 3a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:AA:95:D0:3B:1C:27:28:F3:8E:A9:AA:AC:30:66:B4:7F:32:38:47 X509v3 Authority Key Identifier: keyid:DA:3F:4F:FF:5D:46:46:89:D3:89:88:F5:FB:22:F6:55:50:B3:EF:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2j9P_11GRonTiYj1-yL2VVCz7_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3FFF/82AD377A4DAB11EC9214F521C4F9AE02/2j9P_11GRonTiYj1-yL2VVCz7_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:b8:dd:46:f1:93:44:04:ef:c0:4d:8d:25:23:50:5b:04:c5: 57:d1:46:ab:02:8c:26:9c:a8:d5:21:76:23:75:6e:7a:0d:42: e5:9d:3c:55:01:86:c4:9b:4a:dd:55:06:17:d2:d0:6f:7c:99: 65:cf:8d:ed:16:1f:e0:e5:6b:1f:83:ba:3f:e9:16:16:db:27: 4a:96:d2:c7:43:90:fe:08:81:98:43:7e:4b:53:5f:95:df:9b: 95:75:e4:b1:97:38:76:17:31:1f:3b:37:1f:aa:28:d1:fb:97: 03:91:c7:83:03:06:80:73:63:87:fd:c9:92:20:49:f6:bb:07: 8e:1c:1c:7f:f1:8b:b5:df:9f:59:c8:3f:4f:4d:0a:ce:16:74: 08:4e:97:cc:6f:c0:38:d6:5f:47:af:79:bf:c2:e3:33:08:e3: 1b:bb:82:f5:b8:d8:23:05:d5:82:1a:e3:f8:8d:d3:32:e2:0b: 5d:2d:62:b1:8a:fb:89:d2:c1:64:36:2d:1c:b6:25:8b:12:c3: 07:b5:a9:86:40:88:4c:05:86:22:2b:51:8f:5b:3a:85:fc:69: 13:c8:19:44:98:ce:2c:82:f8:27:03:c8:dd:d6:d4:d7:05:7e: 9f:cc:87:fa:2c:03:d4:86:9d:25:87:72:47:36:e2:b7:24:dd: fe:0a:37:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNGRkYxMTAvBgNVBAUTKERBM0Y0RkZGNUQ0NjQ2ODlEMzg5ODhGNUZCMjJGNjU1 NTBCM0VGRjgwHhcNMjUwOTA5MDAwMzA1WhcNMjUwOTE2MDAwMzA1WjAYMRYwFAYD VQQDEw02OGJmNmViOS04MTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3YbmVaa3FsXzHHe5uY/mi/m3kvqaev11uo7uVILYneiBjQ2KhkO3+Vi3qEtf BamAHRoVFLh8KnErETJFyz9TS3Uv7lQv4RYeyfHJPUVcpRDCebR7ZOy4LWrTl2m7 I67huFOSpnf96aP3h5yWAWOirVfGMQBThX6p83JVPwraVnq89yVXKS5byB+DsVrC baNVBx+G9jetRknoxwhT5UHTvSWXYzeC7i1WsfYkJSjC/ldqZJoPNMOtI2T3JYbh Yw9KGOmhBFfXuQng1KXIY8vFuAUMOcxpSMwSUPLxmCXDP89bgn3xygzlecPBwuY2 +ZtWzT4ZXpibs8eGTZk+W/Q6wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOKqldA7 HCco846pqqwwZrR/MjhHMB8GA1UdIwQYMBaAFNo/T/9dRkaJ04mI9fsi9lVQs+/4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0ZGRi84MkFEMzc3QTRE QUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1JvblRpWWoxLXlMMlZWQ3o3 X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqOVBfMTFHUm9uVGlZajEteUwyVlZDejdfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0ZGRi84MkFEMzc3QTREQUIxMUVDOTIxNEY1MjFDNEY5QUUwMi8yajlQXzExR1Jv blRpWWoxLXlMMlZWQ3o3X2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBouN1G8ZNEBO/ATY0lI1BbBMVX0UarAowmnKjVIXYjdW56DULlnTxV AYbEm0rdVQYX0tBvfJllz43tFh/g5Wsfg7o/6RYW2ydKltLHQ5D+CIGYQ35LU1+V 35uVdeSxlzh2FzEfOzcfqijR+5cDkceDAwaAc2OH/cmSIEn2uweOHBx/8Yu1359Z yD9PTQrOFnQITpfMb8A41l9Hr3m/wuMzCOMbu4L1uNgjBdWCGuP4jdMy4gtdLWKx ivuJ0sFkNi0ctiWLEsMHtamGQIhMBYYiK1GPWzqF/GkTyBlEmM4sgvgnA8jd1tTX BX6fzIf6LAPUhp0lh3JHNuK3JN3+Cjfv -----END CERTIFICATE-----Generated at Tue Sep 9 13:18:09 2025 by rpki-client