$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft File: D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft (raw, json) Hash identifier: xqDo0/H7t2GK7xF1/54wCIM23JbIgdvD07nDbQ9J7ZE= Subject key identifier: D2:A9:C3:8F:50:7B:41:C7:F9:E2:2A:06:1E:EB:74:C1:2A:3A:04:7A Authority key identifier: 0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 Certificate issuer: /CN=A911E0B4/serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Certificate serial: 94 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft Manifest number: 91 Signing time: Fri 05 Sep 2025 06:58:20 +0000 Manifest this update: Fri 05 Sep 2025 06:58:19 +0000 Manifest next update: Fri 12 Sep 2025 06:58:19 +0000 Files and hashes: 1: D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl (hash: qhmtpeWI5pHRYQID0dVAa3pP65crxbqxG0uME/sBYOc=) 2: 5AF3ECBEAFBA11EF91955453C4F9AE02.roa (hash: x22vmPwJWZ5KhIsY5PtxJtvF9T7oNt50WfxUCDRwJlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:58:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4, serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Validity Not Before: Sep 5 06:58:19 2025 GMT Not After : Sep 12 06:58:19 2025 GMT Subject: CN=68ba8a0c-4774 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7b:a0:a1:e8:2d:d2:b4:65:7a:e1:bf:1e:23: a6:81:64:42:c6:b4:42:96:9f:32:9c:5f:a1:61:84: 2b:c6:71:81:49:f5:b0:fa:c0:e8:d8:bd:b9:77:00: 58:c8:8b:09:e3:d6:54:c3:47:4b:5a:f1:a1:f9:3a: 18:0d:90:2b:92:39:72:64:18:12:4b:15:3e:b3:dd: 56:8c:8f:a7:79:67:36:69:2c:5c:94:d1:ef:0a:2d: 2e:78:dd:f3:d1:88:d8:d8:f6:b5:09:30:e3:6b:25: 10:f1:e4:9d:b1:06:81:5d:6e:1c:b7:2f:02:79:d4: 28:ef:e5:86:64:05:dc:f3:3e:5d:62:f4:3d:93:81: 9a:f6:f5:6a:98:2a:37:aa:be:2a:c5:13:e1:6d:52: 79:fd:fa:dc:89:0a:ba:0a:48:3e:c7:b4:19:58:1e: f5:14:8a:23:79:27:8e:9a:9c:73:e8:74:af:f2:c1: 0e:17:c1:e7:c6:31:6f:55:5e:4c:aa:37:87:fc:56: 47:fa:f9:28:6b:91:1b:7b:bf:b7:46:86:01:7a:3b: 83:31:e0:8f:ce:c8:98:7f:20:eb:f8:79:cc:9f:31: f9:fc:94:7f:96:ae:ee:14:1a:a0:13:5c:a3:38:48: a8:01:b3:2e:db:26:74:61:ad:26:29:b7:41:0b:c3: f7:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A9:C3:8F:50:7B:41:C7:F9:E2:2A:06:1E:EB:74:C1:2A:3A:04:7A X509v3 Authority Key Identifier: keyid:0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:d4:54:47:72:d1:cd:f3:d6:0a:07:57:5f:74:bf:83:3b:69: b7:cb:14:5f:42:20:fb:58:5e:85:78:71:9f:2c:3d:a9:3a:24: 66:92:20:7a:9f:22:27:f7:d2:f2:43:01:28:42:c0:a1:b2:f4: 10:dc:79:50:5a:84:5f:22:73:1e:ca:31:a2:81:86:fc:14:7e: d1:3e:9b:62:d4:2e:f8:3d:27:33:77:5f:a6:4f:88:5b:f7:58: c6:57:9a:a7:98:72:7a:0e:e3:64:19:3d:3a:35:61:e3:a8:98: 34:54:5f:33:44:89:22:c5:b2:d1:cc:ce:c0:77:a9:79:25:55: ee:99:d9:26:1b:87:d6:da:11:fe:07:35:55:76:3b:29:65:92: af:7c:e6:93:f8:ee:ed:7d:5c:e0:6d:b9:a1:6e:59:39:3e:38: c0:5a:a4:74:5d:da:28:e3:c0:a1:90:b4:4a:4d:66:cd:5a:ad: 12:7f:30:da:aa:54:0c:53:39:e6:1b:1e:9e:3d:96:a0:d9:4f: e6:24:f2:4d:fe:aa:10:31:ea:7f:ed:d4:29:69:60:b1:f6:bf: 71:14:71:c7:38:b1:1c:00:d0:0e:0d:90:4d:5c:2c:55:3c:ce: 00:93:61:06:56:f7:c3:c1:5e:58:2b:b7:2e:a9:81:58:1b:95: 82:55:62:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUwQjQxMTAvBgNVBAUTKDBGRDQ0Mzc1MjFEQjVDMEJDOTlFNDVCNTk3NTRGRjdC NjcxRjg2RjMwHhcNMjUwOTA1MDY1ODE5WhcNMjUwOTEyMDY1ODE5WjAYMRYwFAYD VQQDEw02OGJhOGEwYy00Nzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnugoegt0rRleuG/HiOmgWRCxrRClp8ynF+hYYQrxnGBSfWw+sDo2L25dwBY yIsJ49ZUw0dLWvGh+ToYDZArkjlyZBgSSxU+s91WjI+neWc2aSxclNHvCi0ueN3z 0YjY2Pa1CTDjayUQ8eSdsQaBXW4cty8CedQo7+WGZAXc8z5dYvQ9k4Ga9vVqmCo3 qr4qxRPhbVJ5/frciQq6Ckg+x7QZWB71FIojeSeOmpxz6HSv8sEOF8HnxjFvVV5M qjeH/FZH+vkoa5Ebe7+3RoYBejuDMeCPzsiYfyDr+HnMnzH5/JR/lq7uFBqgE1yj OEioAbMu2yZ0Ya0mKbdBC8P3AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKpw49Q e0HH+eIqBh7rdMEqOgR6MB8GA1UdIwQYMBaAFA/UQ3Uh21wLyZ5FtZdU/3tnH4bz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTBCNC9FOTY0ODlBRUFG MzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhBdkpua1cxbDFUX2UyY2Zo dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q5UkRkU0hiWEF2Sm5rVzFsMVRfZTJjZmh2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTBCNC9FOTY0ODlBRUFGMzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhB dkpua1cxbDFUX2UyY2Zodk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/1FRHctHN89YKB1dfdL+DO2m3yxRfQiD7WF6FeHGfLD2pOiRmkiB6 nyIn99LyQwEoQsChsvQQ3HlQWoRfInMeyjGigYb8FH7RPpti1C74PSczd1+mT4hb 91jGV5qnmHJ6DuNkGT06NWHjqJg0VF8zRIkixbLRzM7Ad6l5JVXumdkmG4fW2hH+ BzVVdjspZZKvfOaT+O7tfVzgbbmhblk5PjjAWqR0Xdoo48ChkLRKTWbNWq0SfzDa qlQMUznmGx6ePZag2U/mJPJN/qoQMep/7dQpaWCx9r9xFHHHOLEcANAODZBNXCxV PM4Ak2EGVvfDwV5YK7cuqYFYG5WCVWIp -----END CERTIFICATE-----Generated at Sat Sep 6 21:11:01 2025 by rpki-client