$ rpki-client -vvf rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft File: 2lA_lyy8k6jIHflfVKLLKjjxPHc.mft (raw, json) Hash identifier: 8ig5LU3eQTkDC+ocyuUKoxzNMRKJq7H57wJwUhZ6gI4= Subject key identifier: ED:BE:F1:9E:FB:E3:D1:FB:3E:17:7B:B8:30:F8:98:CD:45:94:54:09 Authority key identifier: DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 Certificate issuer: /CN=A9144717/serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Certificate serial: 09E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft Manifest number: 09DD Signing time: Sun 10 Aug 2025 19:56:49 +0000 Manifest this update: Sun 10 Aug 2025 19:56:49 +0000 Manifest next update: Sun 17 Aug 2025 19:56:49 +0000 Files and hashes: 1: 2lA_lyy8k6jIHflfVKLLKjjxPHc.crl (hash: JP+oU0NbcJKwvU7/qv6vqZI2/BEppAgTyQjmXlEwRiY=) 2: F38DEBFC83E911EA993D9515C4F9AE02.roa (hash: qAQSazWUf2FePmcHd1Qj+eRlLm7Ky5QuPvw10+7M0lo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2533 (0x9e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144717, serialNumber=DA503F972CBC93A8C81DF95F54A2CB2A38F13C77 Validity Not Before: Aug 10 19:56:49 2025 GMT Not After : Aug 17 19:56:49 2025 GMT Subject: CN=6898f981-d3d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f7:62:00:be:a0:f6:eb:98:4a:b5:5e:66:f4: 8f:fa:59:79:f8:7d:44:de:d5:75:e3:9a:44:31:12: 91:bd:98:99:a7:34:81:2a:ad:32:3f:be:2c:13:28: fb:a5:25:27:7d:3a:9e:fe:74:a8:92:35:8c:0d:fe: fe:09:42:fe:22:32:bc:35:a3:bb:69:22:78:a8:92: 4d:99:06:a3:44:f8:9c:40:47:2d:a7:85:0d:33:e8: a1:85:bf:2f:de:6c:bb:68:58:d8:4e:87:9f:cf:cc: c0:8e:35:92:10:25:3e:32:8a:a5:33:5f:01:50:a0: fa:58:7f:00:45:46:83:65:70:9f:3c:f7:ff:b1:e0: cf:67:59:2a:ac:9d:77:b0:04:ef:44:f5:66:57:71: 95:9f:21:f6:da:de:8c:e6:c7:74:4d:39:ab:87:e2: 34:0d:ac:3c:55:2d:e7:71:8a:cd:60:7c:73:ca:ba: 6e:67:c0:d9:cc:c4:3a:32:d2:c7:d9:47:fe:48:03: 21:eb:7b:69:3c:92:f3:33:b4:b9:64:63:07:6d:43: d5:d7:e5:7b:8b:6d:a5:db:af:39:e0:a2:4e:8a:10: ac:9c:30:12:fb:97:58:de:66:8f:2a:fa:9b:fa:4c: 84:de:fb:b2:90:f7:4e:11:6b:a9:06:15:42:70:db: 9a:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:BE:F1:9E:FB:E3:D1:FB:3E:17:7B:B8:30:F8:98:CD:45:94:54:09 X509v3 Authority Key Identifier: keyid:DA:50:3F:97:2C:BC:93:A8:C8:1D:F9:5F:54:A2:CB:2A:38:F1:3C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lA_lyy8k6jIHflfVKLLKjjxPHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144717/3988900083E811EAB7700513C4F9AE02/2lA_lyy8k6jIHflfVKLLKjjxPHc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:4e:9a:f4:48:99:24:4e:88:d8:94:2c:d6:8c:2a:20:7e:3b: 32:af:44:41:82:ef:07:be:54:5d:fb:93:98:01:87:2f:5c:05: ce:1c:af:28:c8:d1:1e:ff:09:22:34:69:ac:2e:18:e4:1c:b0: 71:a5:4f:65:2b:4d:7b:fc:61:9a:c5:c2:8c:cc:19:30:45:4e: 21:b2:38:f0:fe:ed:77:3e:81:31:06:1e:76:c4:a8:23:c4:6f: 34:35:8c:43:99:28:69:bb:e5:c6:9a:ed:5d:16:96:95:d9:b1: 1b:bb:0c:ed:02:68:6a:57:f2:79:6b:13:84:6f:15:b8:4e:ec: d4:4c:8e:07:c8:45:4e:9f:79:e1:a4:b4:1f:00:e1:a9:fb:7e: b1:a9:dd:42:e0:11:b1:2e:98:9e:23:eb:fe:29:ef:b7:89:41: 14:b1:7f:86:d5:3a:e6:6c:77:89:55:db:a1:9e:5b:fc:3f:7a: f6:0c:4d:79:ab:f6:ce:e1:19:86:c2:d5:cc:bc:e9:cf:1e:f8: a7:fa:68:3e:b5:3a:ed:ef:bf:b3:8f:d9:ef:38:f1:64:b7:38: 5b:a1:c1:95:1e:ec:18:15:78:bf:7c:1d:7e:74:69:53:37:c7: 48:6a:1e:fe:42:7d:35:d3:fd:96:d1:8d:61:39:8b:4a:fc:99: d1:4e:3c:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ3MTcxMTAvBgNVBAUTKERBNTAzRjk3MkNCQzkzQThDODFERjk1RjU0QTJDQjJB MzhGMTNDNzcwHhcNMjUwODEwMTk1NjQ5WhcNMjUwODE3MTk1NjQ5WjAYMRYwFAYD VQQDEw02ODk4Zjk4MS1kM2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/diAL6g9uuYSrVeZvSP+ll5+H1E3tV145pEMRKRvZiZpzSBKq0yP74sEyj7 pSUnfTqe/nSokjWMDf7+CUL+IjK8NaO7aSJ4qJJNmQajRPicQEctp4UNM+ihhb8v 3my7aFjYToefz8zAjjWSECU+MoqlM18BUKD6WH8ARUaDZXCfPPf/seDPZ1kqrJ13 sATvRPVmV3GVnyH22t6M5sd0TTmrh+I0Daw8VS3ncYrNYHxzyrpuZ8DZzMQ6MtLH 2Uf+SAMh63tpPJLzM7S5ZGMHbUPV1+V7i22l26854KJOihCsnDAS+5dY3maPKvqb +kyE3vuykPdOEWupBhVCcNuajQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2+8Z77 49H7Phd7uDD4mM1FlFQJMB8GA1UdIwQYMBaAFNpQP5csvJOoyB35X1Siyyo48Tx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDcxNy8zOTg4OTAwMDgz RTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2aklIZmxmVktMTEtqanhQ SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJsQV9seXk4azZqSUhmbGZWS0xMS2pqeFBIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDcxNy8zOTg4OTAwMDgzRTgxMUVBQjc3MDA1MTNDNEY5QUUwMi8ybEFfbHl5OGs2 aklIZmxmVktMTEtqanhQSGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNTpr0SJkkTojYlCzWjCogfjsyr0RBgu8HvlRd+5OYAYcvXAXOHK8o yNEe/wkiNGmsLhjkHLBxpU9lK017/GGaxcKMzBkwRU4hsjjw/u13PoExBh52xKgj xG80NYxDmShpu+XGmu1dFpaV2bEbuwztAmhqV/J5axOEbxW4TuzUTI4HyEVOn3nh pLQfAOGp+36xqd1C4BGxLpieI+v+Ke+3iUEUsX+G1TrmbHeJVduhnlv8P3r2DE15 q/bO4RmGwtXMvOnPHvin+mg+tTrt77+zj9nvOPFktzhbocGVHuwYFXi/fB1+dGlT N8dIah7+Qn010/2W0Y1hOYtK/JnRTjxC -----END CERTIFICATE-----Generated at Mon Aug 11 07:34:14 2025 by rpki-client