$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft File: 2DPFFS4_LSebiQT4PQDdkKymK9U.mft (raw, json) Hash identifier: A7SUCD9OVdNEiK7o8/50FXcjjKXkqghkRgkTp4Blrco= Subject key identifier: C7:5F:54:7B:A2:59:44:1F:00:EB:36:0C:F3:01:B0:0B:5E:49:6E:40 Authority key identifier: D8:33:C5:15:2E:3F:2D:27:9B:89:04:F8:3D:00:DD:90:AC:A6:2B:D5 Certificate issuer: /CN=A9186D9F/serialNumber=D833C5152E3F2D279B8904F83D00DD90ACA62BD5 Certificate serial: F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft Manifest number: F9 Signing time: Sun 19 Oct 2025 08:04:18 +0000 Manifest this update: Sun 19 Oct 2025 08:04:17 +0000 Manifest next update: Sun 26 Oct 2025 08:04:17 +0000 Files and hashes: 1: 2DPFFS4_LSebiQT4PQDdkKymK9U.crl (hash: AlqvE+ftzXcBWI/+jbclkBURCFw7+eUZfaI33oI/wsU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.crl rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:04:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D9F, serialNumber=D833C5152E3F2D279B8904F83D00DD90ACA62BD5 Validity Not Before: Oct 19 08:04:17 2025 GMT Not After : Oct 26 08:04:17 2025 GMT Subject: CN=68f49b82-52ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:22:0d:96:a7:60:17:ab:6d:c4:4d:5e:da:82: 21:e9:70:28:e1:8f:0c:67:a2:5a:86:d7:9f:29:6b: 4e:93:6f:b5:ac:f7:28:26:7b:57:1c:82:bb:f0:5e: 9c:7e:1d:e0:22:ab:1c:a4:02:89:90:64:4a:9d:a6: cd:49:89:f0:d3:13:44:1e:a5:0f:28:89:9f:25:3f: 37:50:7e:cf:5c:41:6b:dc:03:76:a1:bf:32:1d:24: 68:0a:5b:32:37:2c:6d:fe:5f:0f:06:d4:0e:c7:d6: 9c:59:22:37:43:df:41:bf:c6:5d:9d:71:6f:ec:3f: 4a:46:57:be:02:24:08:cb:f4:25:8b:6f:52:88:1c: 03:1a:20:75:3d:16:e0:b5:5a:44:37:79:2f:b6:15: 48:92:c1:0e:09:0d:af:96:f7:cd:40:a5:ae:14:04: cb:99:68:92:e1:e8:eb:47:48:6b:11:98:1b:5a:fe: b9:b1:27:9c:84:d1:98:5c:6e:0c:2c:a5:25:27:b8: 2d:8c:10:a4:85:44:95:35:c7:66:d5:27:8e:f5:c9: db:10:15:ff:c5:1a:21:4c:c3:2d:08:96:94:b8:4c: cf:db:76:b7:6f:93:8b:ce:da:53:57:5f:c1:cb:7a: f2:f7:6c:b7:80:90:2e:a7:ae:cc:d0:1f:94:f6:3a: 85:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:5F:54:7B:A2:59:44:1F:00:EB:36:0C:F3:01:B0:0B:5E:49:6E:40 X509v3 Authority Key Identifier: keyid:D8:33:C5:15:2E:3F:2D:27:9B:89:04:F8:3D:00:DD:90:AC:A6:2B:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DPFFS4_LSebiQT4PQDdkKymK9U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D9F/B290A3462E0411EF86F29D79C4F9AE02/2DPFFS4_LSebiQT4PQDdkKymK9U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:2a:30:5b:5f:67:4b:26:17:f7:37:2c:70:4c:f3:f3:4c:fe: b6:e8:d6:3b:80:8d:aa:8d:a0:84:ec:36:c0:33:9b:4f:af:82: 3b:94:2e:eb:79:cf:23:52:34:74:89:cd:e0:08:5d:fa:e1:9c: 4f:09:80:35:3c:da:fc:cf:86:3c:bc:5e:51:2e:20:b1:24:43: b1:46:4a:6a:be:b8:7d:49:9e:90:56:d6:69:d4:40:5c:1c:f4: 74:37:3a:3e:a3:8c:83:32:be:4e:3b:16:7c:46:8d:a8:e5:36: c2:4a:06:dc:d5:66:82:c7:cd:02:66:2d:f5:78:02:82:95:da: a5:1d:43:04:74:1c:ec:9f:86:7c:0b:d0:7c:b0:f2:87:05:37: ef:b0:b8:ef:03:44:3c:af:2f:c8:ab:35:4e:08:e8:32:f6:db: 06:30:2c:45:44:3c:3b:3e:7e:16:21:32:0b:1e:83:bd:9c:d7: ea:fb:ba:38:53:85:44:84:fe:4d:74:60:3c:c1:91:9e:34:79: 86:52:52:b4:d9:0c:84:fc:b6:91:3c:f6:4f:57:a7:af:d7:2a: 29:1e:d1:3e:90:4b:31:a8:7b:4f:c7:fa:62:7d:b4:08:55:d6: 6b:67:93:48:8c:21:7d:f8:cd:d1:a1:b9:8b:ca:7a:32:0c:04: fb:b2:91:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEOUYxMTAvBgNVBAUTKEQ4MzNDNTE1MkUzRjJEMjc5Qjg5MDRGODNEMDBERDkw QUNBNjJCRDUwHhcNMjUxMDE5MDgwNDE3WhcNMjUxMDI2MDgwNDE3WjAYMRYwFAYD VQQDEw02OGY0OWI4Mi01MmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviINlqdgF6ttxE1e2oIh6XAo4Y8MZ6JahtefKWtOk2+1rPcoJntXHIK78F6c fh3gIqscpAKJkGRKnabNSYnw0xNEHqUPKImfJT83UH7PXEFr3AN2ob8yHSRoClsy Nyxt/l8PBtQOx9acWSI3Q99Bv8ZdnXFv7D9KRle+AiQIy/Qli29SiBwDGiB1PRbg tVpEN3kvthVIksEOCQ2vlvfNQKWuFATLmWiS4ejrR0hrEZgbWv65sSechNGYXG4M LKUlJ7gtjBCkhUSVNcdm1SeO9cnbEBX/xRohTMMtCJaUuEzP23a3b5OLztpTV1/B y3ry92y3gJAup67M0B+U9jqFhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMdfVHui WUQfAOs2DPMBsAteSW5AMB8GA1UdIwQYMBaAFNgzxRUuPy0nm4kE+D0A3ZCspivV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ5Ri9CMjkwQTM0NjJF MDQxMUVGODZGMjlENzlDNEY5QUUwMi8yRFBGRlM0X0xTZWJpUVQ0UFFEZGtLeW1L OVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEUEZGUzRfTFNlYmlRVDRQUURka0t5bUs5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkQ5Ri9CMjkwQTM0NjJFMDQxMUVGODZGMjlENzlDNEY5QUUwMi8yRFBGRlM0X0xT ZWJpUVQ0UFFEZGtLeW1LOVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0KjBbX2dLJhf3NyxwTPPzTP626NY7gI2qjaCE7DbAM5tPr4I7lC7r ec8jUjR0ic3gCF364ZxPCYA1PNr8z4Y8vF5RLiCxJEOxRkpqvrh9SZ6QVtZp1EBc HPR0Nzo+o4yDMr5OOxZ8Ro2o5TbCSgbc1WaCx80CZi31eAKCldqlHUMEdBzsn4Z8 C9B8sPKHBTfvsLjvA0Q8ry/IqzVOCOgy9tsGMCxFRDw7Pn4WITILHoO9nNfq+7o4 U4VEhP5NdGA8wZGeNHmGUlK02QyE/LaRPPZPV6ev1yopHtE+kEsxqHtPx/pifbQI VdZrZ5NIjCF9+M3RobmLynoyDAT7spEV -----END CERTIFICATE-----Generated at Mon Oct 20 10:43:06 2025 by rpki-client