$ rpki-client -vvf rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft File: 9US5wrG96hw7N0NIuNFeNn5qD0I.mft (raw, json) Hash identifier: rsP6FaQODgVMIyJg8LcZWo+3QI2Rz+40pTtZHs9CpGE= Subject key identifier: 9E:38:38:77:1A:78:0A:5C:BE:D0:85:E0:E0:58:03:E7:14:E1:2B:05 Authority key identifier: F5:44:B9:C2:B1:BD:EA:1C:3B:37:43:48:B8:D1:5E:36:7E:6A:0F:42 Certificate issuer: /CN=A91139AB/serialNumber=F544B9C2B1BDEA1C3B374348B8D15E367E6A0F42 Certificate serial: 0789 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9US5wrG96hw7N0NIuNFeNn5qD0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft Manifest number: 08E8 Signing time: Tue 16 Sep 2025 21:45:45 +0000 Manifest this update: Tue 16 Sep 2025 21:45:45 +0000 Manifest next update: Tue 23 Sep 2025 21:45:45 +0000 Files and hashes: 1: 9US5wrG96hw7N0NIuNFeNn5qD0I.crl (hash: zhHvr3hcXcWcDioTivktlmRA+7Vid5bMsjWMR8VBf2w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.crl rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9US5wrG96hw7N0NIuNFeNn5qD0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 21:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1929 (0x789) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91139AB, serialNumber=F544B9C2B1BDEA1C3B374348B8D15E367E6A0F42 Validity Not Before: Sep 16 21:45:45 2025 GMT Not After : Sep 23 21:45:45 2025 GMT Subject: CN=68c9da89-be51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7a:e1:d5:6a:2d:36:6c:47:c4:54:f6:5b:b5: a8:9e:a1:aa:f3:0f:5f:73:63:81:9d:0e:15:9a:ea: c4:9f:a4:4f:ad:db:2b:61:27:9d:aa:da:87:be:bc: ac:b4:eb:01:05:6c:01:db:64:be:e8:cd:7c:d8:8e: 65:c0:26:cf:d1:74:9c:08:92:f0:85:19:19:7e:e0: 2a:f1:e9:82:e9:4f:a1:55:a3:d6:99:c8:34:8d:f1: b7:89:96:b7:6c:22:84:33:a5:c9:c3:f7:55:fb:9c: c4:31:4a:32:d2:16:94:ea:2c:2f:ce:6e:77:1b:e8: 61:6d:7f:47:55:1c:a3:43:28:1b:03:9e:68:86:17: ea:56:9b:d8:63:7e:6d:8f:2b:5f:98:8b:7c:19:42: d0:c5:ae:c8:ba:3e:1e:7c:c1:96:96:4e:21:cd:a3: 9f:a5:cd:68:19:27:93:b2:b6:8e:e4:26:b4:a8:7f: ac:fc:49:5f:1e:eb:b3:dd:54:d9:4b:5e:ca:d6:28: 2c:fa:cc:2b:5f:a7:a4:f3:ff:6e:5b:f3:7b:66:4c: f4:e5:19:f6:f8:1b:46:49:7c:6e:8b:fc:e5:79:4b: 6f:ec:0d:24:c3:56:d2:5a:58:d3:8a:6c:1b:90:26: fe:09:30:e3:df:da:f3:a8:9e:6e:9a:e6:be:8a:16: 62:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:38:38:77:1A:78:0A:5C:BE:D0:85:E0:E0:58:03:E7:14:E1:2B:05 X509v3 Authority Key Identifier: keyid:F5:44:B9:C2:B1:BD:EA:1C:3B:37:43:48:B8:D1:5E:36:7E:6A:0F:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9US5wrG96hw7N0NIuNFeNn5qD0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91139AB/158D4906255B11EBA9F5601AC4F9AE02/9US5wrG96hw7N0NIuNFeNn5qD0I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:ad:85:05:57:b0:55:28:90:a7:56:da:db:32:73:35:ee:e5: fc:71:17:4a:5e:cf:9f:b4:5a:e5:76:61:9f:0b:e7:7f:86:ec: e5:3d:8f:34:7c:ee:a7:05:b8:ec:c0:f3:bf:7e:43:ef:42:4b: a3:d8:c6:2d:fa:29:5c:61:f6:71:6f:56:b4:60:ef:01:d6:a9: 3a:ec:7f:91:07:c6:9f:89:1a:b7:a1:cc:57:4e:ec:1c:ba:0e: 86:c2:92:8e:ab:41:b9:5f:d5:b6:2b:16:0e:93:7e:ed:ae:8f: 48:ad:72:e9:5e:b4:ee:fd:e3:e7:59:28:41:1d:1f:df:80:35: 82:0e:81:7b:35:17:77:45:7f:7e:15:78:3f:ba:9e:8f:fe:fa: 8b:dd:03:59:c5:da:3d:21:1c:0a:d6:2d:cd:39:59:c7:80:83: 26:90:6d:6c:75:0f:92:ac:69:5c:c5:d8:66:7f:eb:5c:3b:05: fe:7d:c9:2d:cd:0f:5b:b1:96:82:84:d1:34:11:48:61:74:35: 11:81:ab:24:70:5c:bb:ab:04:96:f0:0d:ac:07:07:d6:91:1f: 98:4b:65:ab:a2:2e:d3:28:fe:98:df:63:97:21:64:b4:dd:2b: bd:ee:26:5f:30:b0:97:d3:9d:5a:1b:81:60:e6:cb:61:34:54: 1a:c4:fd:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5QUIxMTAvBgNVBAUTKEY1NDRCOUMyQjFCREVBMUMzQjM3NDM0OEI4RDE1RTM2 N0U2QTBGNDIwHhcNMjUwOTE2MjE0NTQ1WhcNMjUwOTIzMjE0NTQ1WjAYMRYwFAYD VQQDEw02OGM5ZGE4OS1iZTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnrh1WotNmxHxFT2W7WonqGq8w9fc2OBnQ4VmurEn6RPrdsrYSedqtqHvrys tOsBBWwB22S+6M182I5lwCbP0XScCJLwhRkZfuAq8emC6U+hVaPWmcg0jfG3iZa3 bCKEM6XJw/dV+5zEMUoy0haU6iwvzm53G+hhbX9HVRyjQygbA55ohhfqVpvYY35t jytfmIt8GULQxa7Iuj4efMGWlk4hzaOfpc1oGSeTsraO5Ca0qH+s/ElfHuuz3VTZ S17K1igs+swrX6ek8/9uW/N7Zkz05Rn2+BtGSXxui/zleUtv7A0kw1bSWljTimwb kCb+CTDj39rzqJ5umua+ihZiyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ44OHca eApcvtCF4OBYA+cU4SsFMB8GA1UdIwQYMBaAFPVEucKxveocOzdDSLjRXjZ+ag9C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzlBQi8xNThENDkwNjI1 NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi85VVM1d3JHOTZodzdOME5JdU5GZU5uNXFE MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlVUzV3ckc5Nmh3N04wTkl1TkZlTm41cUQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzlBQi8xNThENDkwNjI1NUIxMUVCQTlGNTYwMUFDNEY5QUUwMi85VVM1d3JHOTZo dzdOME5JdU5GZU5uNXFEMEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTrYUFV7BVKJCnVtrbMnM17uX8cRdKXs+ftFrldmGfC+d/huzlPY80 fO6nBbjswPO/fkPvQkuj2MYt+ilcYfZxb1a0YO8B1qk67H+RB8afiRq3ocxXTuwc ug6GwpKOq0G5X9W2KxYOk37tro9IrXLpXrTu/ePnWShBHR/fgDWCDoF7NRd3RX9+ FXg/up6P/vqL3QNZxdo9IRwK1i3NOVnHgIMmkG1sdQ+SrGlcxdhmf+tcOwX+fckt zQ9bsZaChNE0EUhhdDURgaskcFy7qwSW8A2sBwfWkR+YS2Wroi7TKP6Y32OXIWS0 3Su97iZfMLCX051aG4Fg5sthNFQaxP2L -----END CERTIFICATE-----Generated at Thu Sep 18 20:34:38 2025 by rpki-client