$ rpki-client -vvf rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.mft File: 9MBkE3SXWli1TsAsEElzLsinCss.mft (raw, json) Hash identifier: i3bMPE//P8Td7FkVPAU1st95+Dz+pR1OnNZFaSUbFhQ= Subject key identifier: F4:75:E6:75:0D:6A:E6:33:DB:96:2B:05:54:A0:0D:D1:85:88:B0:60 Authority key identifier: F4:C0:64:13:74:97:5A:58:B5:4E:C0:2C:10:49:73:2E:C8:A7:0A:CB Certificate issuer: /CN=A914EF21/serialNumber=F4C0641374975A58B54EC02C1049732EC8A70ACB Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MBkE3SXWli1TsAsEElzLsinCss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.mft Manifest number: 069C Signing time: Fri 22 Aug 2025 23:38:42 +0000 Manifest this update: Fri 22 Aug 2025 23:38:41 +0000 Manifest next update: Fri 29 Aug 2025 23:38:41 +0000 Files and hashes: 1: 9MBkE3SXWli1TsAsEElzLsinCss.crl (hash: SkwUY8+dNUaO+AYzv6i6AmcJkNsP0+0qRMTo2vocmtA=) 2: 7740AE687F8A11EE89807F7CC4F9AE02.roa (hash: ioHyUTgCHnCGMUHWoGRwcexhSo8qMCJK1mxXffaCMDM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.crl rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MBkE3SXWli1TsAsEElzLsinCss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:38:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EF21, serialNumber=F4C0641374975A58B54EC02C1049732EC8A70ACB Validity Not Before: Aug 22 23:38:41 2025 GMT Not After : Aug 29 23:38:41 2025 GMT Subject: CN=68a8ff82-cfcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:21:d9:5a:7f:f2:73:e0:18:c7:73:3c:8c:10: 86:f8:2d:16:9e:3e:67:95:7c:f0:f8:3f:07:b0:8f: ac:8e:b9:af:79:95:e9:29:a2:83:17:9a:28:37:90: c3:68:ae:78:2d:b4:b7:26:41:24:3b:13:dc:1f:43: 32:44:3f:64:73:77:52:56:b8:d1:64:91:50:53:a7: 72:fe:ab:9e:f4:d7:e0:fc:c2:a0:8d:31:1f:76:7d: b7:cb:0a:22:65:a2:9f:b7:59:b8:a6:9a:e5:99:32: 09:1c:89:5c:68:a0:09:61:13:89:89:cb:90:f9:bb: 0a:ea:e6:11:82:b4:9c:05:65:e6:83:99:8f:58:a1: 01:18:0a:80:29:2d:51:13:ae:e6:1d:a7:58:48:b5: fc:36:b2:20:da:53:d5:9b:35:5d:06:b4:de:ec:c8: 40:26:84:2e:a2:1d:c4:6a:68:49:b5:89:23:22:89: 68:d4:b0:b5:7e:15:cd:b5:e7:56:6d:bf:6d:03:3e: 8e:c4:34:80:2e:c3:a3:2e:17:ca:d6:2d:fc:4f:a2: 33:a9:42:64:d3:c5:cc:68:ad:1d:de:66:38:0d:8f: 0a:38:c0:e7:60:2c:f4:14:72:34:0b:2f:ea:81:31: 9f:8e:fc:9e:e6:28:e2:7b:a4:f9:ab:5a:69:d6:cd: 98:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:75:E6:75:0D:6A:E6:33:DB:96:2B:05:54:A0:0D:D1:85:88:B0:60 X509v3 Authority Key Identifier: keyid:F4:C0:64:13:74:97:5A:58:B5:4E:C0:2C:10:49:73:2E:C8:A7:0A:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MBkE3SXWli1TsAsEElzLsinCss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EF21/EADBB412018311ECB5641629C4F9AE02/9MBkE3SXWli1TsAsEElzLsinCss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:1e:eb:6a:30:25:16:48:e2:95:c4:c0:15:4d:b7:bf:6a:a5: 90:57:ee:63:4e:ed:2f:54:26:d7:91:f3:b3:4d:b2:06:d6:30: c2:cd:5a:8d:4d:c2:a4:66:ac:8c:4d:f1:3d:fb:ac:1c:dd:3e: b6:4f:3d:62:7c:f3:5e:76:93:1c:42:78:03:32:1d:0b:9e:88: 9e:7f:23:03:f9:a2:8b:5f:f2:fc:05:7f:14:17:28:06:4e:f6: df:36:7c:ba:b0:50:90:94:4b:f8:34:54:82:11:5a:02:02:41: 1a:03:15:c5:74:a3:2f:b8:01:f9:b9:63:98:16:e5:f9:ea:c0: 1f:8e:cf:c9:0e:c6:10:76:13:a4:cb:6e:2b:b2:12:a2:bc:9c: 80:4c:a5:eb:8a:03:60:e8:c9:da:12:09:40:fb:5a:34:7f:ed: 98:79:85:7e:ef:4d:25:64:c9:0b:53:82:bf:9f:b2:f9:bd:a3: d6:dd:93:c4:08:32:4d:7a:d3:5a:8f:13:7a:f1:61:51:03:3f: 62:62:fa:13:2e:70:31:e5:30:47:5e:0a:f3:84:62:1d:d2:4a: cc:0d:57:72:aa:b9:6c:a6:2c:9c:ba:a0:2d:d8:84:3f:93:5a: 9d:e3:24:8b:21:2d:07:01:d0:16:eb:ff:2e:bd:98:68:5f:76: e0:1d:1c:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVGMjExMTAvBgNVBAUTKEY0QzA2NDEzNzQ5NzVBNThCNTRFQzAyQzEwNDk3MzJF QzhBNzBBQ0IwHhcNMjUwODIyMjMzODQxWhcNMjUwODI5MjMzODQxWjAYMRYwFAYD VQQDEw02OGE4ZmY4Mi1jZmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCHZWn/yc+AYx3M8jBCG+C0Wnj5nlXzw+D8HsI+sjrmveZXpKaKDF5ooN5DD aK54LbS3JkEkOxPcH0MyRD9kc3dSVrjRZJFQU6dy/que9Nfg/MKgjTEfdn23ywoi ZaKft1m4pprlmTIJHIlcaKAJYROJicuQ+bsK6uYRgrScBWXmg5mPWKEBGAqAKS1R E67mHadYSLX8NrIg2lPVmzVdBrTe7MhAJoQuoh3EamhJtYkjIolo1LC1fhXNtedW bb9tAz6OxDSALsOjLhfK1i38T6IzqUJk08XMaK0d3mY4DY8KOMDnYCz0FHI0Cy/q gTGfjvye5ijie6T5q1pp1s2YJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPR15nUN auYz25YrBVSgDdGFiLBgMB8GA1UdIwQYMBaAFPTAZBN0l1pYtU7ALBBJcy7IpwrL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUYyMS9FQURCQjQxMjAx ODMxMUVDQjU2NDE2MjlDNEY5QUUwMi85TUJrRTNTWFdsaTFUc0FzRUVsekxzaW5D c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlNQmtFM1NYV2xpMVRzQXNFRWx6THNpbkNzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUYyMS9FQURCQjQxMjAxODMxMUVDQjU2NDE2MjlDNEY5QUUwMi85TUJrRTNTWFds aTFUc0FzRUVsekxzaW5Dc3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaHutqMCUWSOKVxMAVTbe/aqWQV+5jTu0vVCbXkfOzTbIG1jDCzVqN TcKkZqyMTfE9+6wc3T62Tz1ifPNedpMcQngDMh0LnoiefyMD+aKLX/L8BX8UFygG TvbfNny6sFCQlEv4NFSCEVoCAkEaAxXFdKMvuAH5uWOYFuX56sAfjs/JDsYQdhOk y24rshKivJyATKXrigNg6MnaEglA+1o0f+2YeYV+700lZMkLU4K/n7L5vaPW3ZPE CDJNetNajxN68WFRAz9iYvoTLnAx5TBHXgrzhGId0krMDVdyqrlspiycuqAt2IQ/ k1qd4ySLIS0HAdAW6/8uvZhoX3bgHRy+ -----END CERTIFICATE-----Generated at Sat Aug 23 18:57:44 2025 by rpki-client