$ rpki-client -vvf rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft File: kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft (raw, json) Hash identifier: VT0nsZQskxXHnlE1EqVV2s6Hn6aJLcF77lMS4k8jl98= Subject key identifier: 15:AC:6A:5F:99:6C:E0:EB:B6:64:B2:EF:9A:69:1E:26:DD:5F:19:59 Authority key identifier: 91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 Certificate issuer: /CN=A9115CB5/serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Certificate serial: 058D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft Manifest number: 0581 Signing time: Thu 18 Sep 2025 23:35:08 +0000 Manifest this update: Thu 18 Sep 2025 23:35:07 +0000 Manifest next update: Thu 25 Sep 2025 23:35:07 +0000 Files and hashes: 1: kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl (hash: CPy0JhPRZ52zEuM/CZWf2c2yZIP323V+ju/9vXnKe/4=) 2: C41538940B4711EC99840631C4F9AE02.roa (hash: jmBBk9G7I6kWRNtiv9uf3HqTLrY1UbUUMPlSvnBT+V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 23:35:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1421 (0x58d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115CB5, serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Validity Not Before: Sep 18 23:35:07 2025 GMT Not After : Sep 25 23:35:07 2025 GMT Subject: CN=68cc972b-66c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:40:73:4f:9c:ea:80:51:fa:b4:d6:3a:e4:24: a7:9a:32:67:ae:60:53:19:86:41:23:ca:87:b9:57: 41:a2:06:0a:a6:ff:f2:80:38:30:08:4a:1a:4e:1b: df:e8:f2:f3:e6:f7:04:8f:54:96:26:42:0f:7a:d5: de:1a:df:31:2a:86:e3:87:11:03:4f:a5:bb:11:be: c1:4d:49:f6:73:9a:ff:90:69:0f:53:39:6b:66:82: fc:33:51:d0:23:d7:2c:87:93:f1:c6:49:79:12:f7: cc:b4:fa:1f:16:9d:07:43:07:49:5b:40:56:cf:90: e8:36:7f:4e:bc:3f:de:d0:ca:87:09:18:c2:0a:94: d7:d7:f9:97:5d:bd:c7:6e:a4:7b:43:df:a1:5a:9a: eb:a8:b6:5b:0c:eb:9e:83:58:83:a8:0e:70:67:ee: c0:b3:61:b0:3d:81:78:f1:53:e4:6b:fd:20:cd:bf: f9:c8:ba:1e:ce:84:47:1a:82:50:78:93:fe:aa:ee: b9:41:87:72:c8:a6:73:5e:1d:d5:87:46:e9:9b:2e: 33:36:d3:f5:0e:9c:48:81:d9:48:2b:c5:31:38:13: b4:9f:e6:a9:8a:66:6d:c7:9b:6f:c7:f9:8c:84:fc: 5e:34:30:61:14:4a:0c:bc:ef:71:5d:24:73:d1:39: 39:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:AC:6A:5F:99:6C:E0:EB:B6:64:B2:EF:9A:69:1E:26:DD:5F:19:59 X509v3 Authority Key Identifier: keyid:91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:48:03:e4:96:b8:0b:1f:b7:dc:48:7e:43:e3:06:82:43:41: e3:1c:f1:8b:16:34:1a:fb:22:91:8b:31:dc:e6:c8:99:5e:4c: 07:9d:dd:41:cf:f0:57:c0:dc:2d:d3:ed:bd:dc:8f:00:5b:b5: 63:5b:a1:3d:89:93:7b:d1:33:f5:4d:e5:d8:90:3f:58:63:9a: 7f:70:36:92:bb:b4:04:dd:40:16:f4:50:4b:55:9a:31:45:5f: 88:18:92:a3:92:f4:df:82:9d:2f:c2:cb:dc:43:f2:63:bf:1a: a5:81:12:31:af:e0:28:01:57:19:34:c1:e2:1c:c6:c2:7d:79: df:10:dd:0e:da:4c:80:c9:cb:f8:cf:be:f8:3e:fd:0c:fa:92: 45:8d:30:77:ff:11:10:95:b0:ce:b4:49:ca:97:24:cc:fc:fd: 9d:38:d9:f7:32:cb:4d:a8:4d:a0:4b:aa:b2:52:4b:68:ff:5b: ee:40:58:6a:c8:0a:80:f1:42:3b:0c:1c:d7:97:58:b0:42:51: 53:13:7c:c9:9e:3e:53:4a:88:8f:89:71:b3:9a:5a:cc:76:ac: 4c:7b:f3:85:91:c0:48:7b:66:2d:e8:bc:4c:ab:42:73:5f:3d: aa:f1:aa:c3:3d:65:7b:99:73:bf:fb:50:57:38:2f:dd:97:ee: af:e7:b9:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDQjUxMTAvBgNVBAUTKDkxRjQ5MzlBQkFFRDQwRkEzNjZFQ0M3NjM1OURDQTJC Q0I2OENFNDcwHhcNMjUwOTE4MjMzNTA3WhcNMjUwOTI1MjMzNTA3WjAYMRYwFAYD VQQDEw02OGNjOTcyYi02NmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoEBzT5zqgFH6tNY65CSnmjJnrmBTGYZBI8qHuVdBogYKpv/ygDgwCEoaThvf 6PLz5vcEj1SWJkIPetXeGt8xKobjhxEDT6W7Eb7BTUn2c5r/kGkPUzlrZoL8M1HQ I9csh5Pxxkl5EvfMtPofFp0HQwdJW0BWz5DoNn9OvD/e0MqHCRjCCpTX1/mXXb3H bqR7Q9+hWprrqLZbDOueg1iDqA5wZ+7As2GwPYF48VPka/0gzb/5yLoezoRHGoJQ eJP+qu65QYdyyKZzXh3Vh0bpmy4zNtP1DpxIgdlIK8UxOBO0n+apimZtx5tvx/mM hPxeNDBhFEoMvO9xXSRz0Tk5cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBWsal+Z bODrtmSy75ppHibdXxlZMB8GA1UdIwQYMBaAFJH0k5q67UD6Nm7MdjWdyivLaM5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUNCNS9EOUZEMkRGRUYz N0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQbzJic3gyTlozS0s4dG96 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmU1RtcnJ0UVBvMmJzeDJOWjNLSzh0b3prYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NUNCNS9EOUZEMkRGRUYzN0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQ bzJic3gyTlozS0s4dG96a2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcSAPklrgLH7fcSH5D4waCQ0HjHPGLFjQa+yKRizHc5siZXkwHnd1B z/BXwNwt0+293I8AW7VjW6E9iZN70TP1TeXYkD9YY5p/cDaSu7QE3UAW9FBLVZox RV+IGJKjkvTfgp0vwsvcQ/JjvxqlgRIxr+AoAVcZNMHiHMbCfXnfEN0O2kyAycv4 z774Pv0M+pJFjTB3/xEQlbDOtEnKlyTM/P2dONn3MstNqE2gS6qyUkto/1vuQFhq yAqA8UI7DBzXl1iwQlFTE3zJnj5TSoiPiXGzmlrMdqxMe/OFkcBIe2Yt6LxMq0Jz Xz2q8arDPWV7mXO/+1BXOC/dl+6v57m3 -----END CERTIFICATE-----Generated at Fri Sep 19 10:40:12 2025 by rpki-client