$ rpki-client -vvf rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft File: sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft (raw, json) Hash identifier: uxI7A1DL9Gxqehwkp7VCZcykwZHYpz5H4nCADbjeDXQ= Subject key identifier: 76:7D:18:54:2A:3E:B0:DC:61:58:97:5F:E1:6E:4C:67:AA:50:47:CF Authority key identifier: B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD Certificate issuer: /CN=A91144C9/serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Certificate serial: 58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft Manifest number: 55 Signing time: Fri 05 Sep 2025 07:46:21 +0000 Manifest this update: Fri 05 Sep 2025 07:46:21 +0000 Manifest next update: Fri 12 Sep 2025 07:46:21 +0000 Files and hashes: 1: sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl (hash: FXI2vjOnu39087y7mEV6aUrjiFusN/i0jKxldhWinRE=) 2: 9F25E6340ECA11F0BAAE344AC4F9AE02.roa (hash: S0xpbapYuUp7EVUcnIqHkGByKZFeAz8MROSbzxDfhw4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:46:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144C9, serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Validity Not Before: Sep 5 07:46:21 2025 GMT Not After : Sep 12 07:46:21 2025 GMT Subject: CN=68ba954d-386f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ee:ae:0b:9f:42:38:5c:fb:11:69:b3:37:f1: 80:2f:8d:f6:77:c3:1a:45:85:60:b7:67:e0:e1:a3: d2:1b:8f:08:08:0d:32:8e:21:1e:81:d9:d8:ff:6e: f6:02:93:5e:c7:66:cf:8e:f8:ea:1f:29:1c:0f:7a: ff:b3:5b:48:06:c0:a4:11:51:90:de:2f:63:e9:5f: 8c:2a:fa:f9:1f:ae:07:02:20:ca:ae:b0:19:f5:94: 9f:ed:fd:a6:0f:e8:52:6e:4d:1b:e3:ea:e3:29:6c: 9d:96:4d:6f:6e:90:16:b7:ca:b7:21:d4:49:ef:28: 78:27:ff:f2:d5:eb:7f:ff:0d:c9:85:11:8f:96:f0: 5e:d8:64:65:4a:a3:51:b8:23:10:30:94:c0:39:5c: b1:b9:5a:da:73:54:30:2f:80:74:1b:d9:6a:76:73: 35:9d:90:4f:cc:55:55:fd:d3:90:38:43:b9:db:55: 45:4f:95:7f:3b:65:f5:2b:9d:98:98:6b:1d:5b:b0: fe:7f:5b:ef:e5:51:64:cb:d8:08:b2:e2:e2:aa:b6: 00:df:27:88:24:5a:16:73:32:f1:56:ca:c7:c1:86: e6:80:94:ac:46:d5:9e:c2:17:a3:34:8d:1f:23:2f: 30:e2:9e:76:1e:ed:bb:b7:84:52:b0:79:ba:ee:8b: b4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:7D:18:54:2A:3E:B0:DC:61:58:97:5F:E1:6E:4C:67:AA:50:47:CF X509v3 Authority Key Identifier: keyid:B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:33:f4:20:ef:ed:65:d5:9d:b6:6f:cf:8b:c5:be:ad:9e:d6: f1:17:aa:2f:5c:b9:c1:9f:37:c9:4a:0b:ae:ae:3a:72:42:db: 8c:3f:3a:3c:79:ce:a6:55:e9:c7:35:f8:20:9e:7c:77:81:d5: d1:88:9d:ea:30:92:c6:b8:8a:e3:8c:06:4d:8a:4d:17:b8:18: d8:98:f5:c0:f0:fc:b4:a3:7a:42:ea:0e:1a:ff:bd:0e:d4:45: af:fb:e8:97:7d:ad:d5:32:3d:de:59:1e:c6:c5:b6:14:9d:3e: 91:fc:01:17:df:a9:ed:82:78:2d:cb:25:4b:5c:28:f6:67:5e: f7:7d:25:ce:16:c0:39:73:68:01:dc:99:7e:35:9c:41:48:d3: 85:fd:12:33:eb:72:5b:52:e6:e2:60:03:9d:f6:a4:6c:7e:c6: ed:59:9c:21:9e:cf:64:4a:00:15:61:bb:cb:7c:5b:99:86:37: be:5c:17:4b:99:c9:0a:3e:e4:eb:13:b1:71:6a:c6:dc:bc:76: 16:e8:9a:8a:9c:c9:43:8b:5a:62:ef:f4:e5:58:0d:1f:75:04: c0:c6:c0:ae:6e:cc:e3:95:0b:7e:b6:1e:3f:74:1d:64:b6:6c: c0:11:17:00:74:94:b0:c3:94:73:0c:67:ee:a2:1b:33:f0:37: 1d:b0:a9:75 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDRDOTExMC8GA1UEBRMoQjBENTI1RUE5OUQ0QzhFQzc1NjA3MTI2QTQ5RUY2NzA3 QkQ2RjRBRDAeFw0yNTA5MDUwNzQ2MjFaFw0yNTA5MTIwNzQ2MjFaMBgxFjAUBgNV BAMTDTY4YmE5NTRkLTM4NmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDP7q4Ln0I4XPsRabM38YAvjfZ3wxpFhWC3Z+Dho9IbjwgIDTKOIR6B2dj/bvYC k17HZs+O+OofKRwPev+zW0gGwKQRUZDeL2PpX4wq+vkfrgcCIMqusBn1lJ/t/aYP 6FJuTRvj6uMpbJ2WTW9ukBa3yrch1EnvKHgn//LV63//DcmFEY+W8F7YZGVKo1G4 IxAwlMA5XLG5WtpzVDAvgHQb2Wp2czWdkE/MVVX905A4Q7nbVUVPlX87ZfUrnZiY ax1bsP5/W+/lUWTL2Aiy4uKqtgDfJ4gkWhZzMvFWysfBhuaAlKxG1Z7CF6M0jR8j LzDinnYe7bu3hFKwebrui7TnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUdn0YVCo+ sNxhWJdf4W5MZ6pQR88wHwYDVR0jBBgwFoAUsNUl6pnUyOx1YHEmpJ72cHvW9K0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NEM5LzdCQTNFNzBDMEVD OTExRjBBMjZGRjE0NEM0RjlBRTAyL3NOVWw2cG5VeU94MVlIRW1wSjcyY0h2VzlL MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc05VbDZwblV5T3gxWUhFbXBKNzJjSHZXOUswLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NEM5LzdCQTNFNzBDMEVDOTExRjBBMjZGRjE0NEM0RjlBRTAyL3NOVWw2cG5VeU94 MVlIRW1wSjcyY0h2VzlLMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIAz9CDv7WXVnbZvz4vFvq2e1vEXqi9cucGfN8lKC66uOnJC24w/Ojx5 zqZV6cc1+CCefHeB1dGIneowksa4iuOMBk2KTRe4GNiY9cDw/LSjekLqDhr/vQ7U Ra/76Jd9rdUyPd5ZHsbFthSdPpH8ARffqe2CeC3LJUtcKPZnXvd9Jc4WwDlzaAHc mX41nEFI04X9EjPrcltS5uJgA532pGx+xu1ZnCGez2RKABVhu8t8W5mGN75cF0uZ yQo+5OsTsXFqxty8dhbomoqcyUOLWmLv9OVYDR91BMDGwK5uzOOVC362Hj90HWS2 bMARFwB0lLDDlHMMZ+6iGzPwNx2wqXU= -----END CERTIFICATE-----Generated at Sat Sep 6 21:13:20 2025 by rpki-client