$ rpki-client -vvf rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft File: aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft (raw, json) Hash identifier: 6AmIhDl2bv1py7Q7mFHW04ZQ4ZKG0ze1XnEZ7CS8/g4= Subject key identifier: C1:C8:90:27:B9:6C:59:76:D0:EC:33:23:56:56:DD:DB:60:40:E2:09 Authority key identifier: 68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A Certificate issuer: /CN=A91289A2/serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Certificate serial: 0406 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft Manifest number: 03FF Signing time: Wed 17 Sep 2025 00:55:48 +0000 Manifest this update: Wed 17 Sep 2025 00:55:48 +0000 Manifest next update: Wed 24 Sep 2025 00:55:48 +0000 Files and hashes: 1: aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl (hash: n2Qw4v6jivmZQ61CV36RMdQFcYZkRB8tINnbcmQhuWE=) 2: 97E8ACD68E6611EC9EBE626FC4F9AE02.roa (hash: 3IMIlDIIJ2OW6DDbM2+fc2GlxtLv0j04UxGtHanf/68=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 00:55:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1030 (0x406) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91289A2, serialNumber=68140C15825ED50A03781052ADDE2ECA1A6FEA3A Validity Not Before: Sep 17 00:55:48 2025 GMT Not After : Sep 24 00:55:48 2025 GMT Subject: CN=68ca0714-d8f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5e:40:f9:bb:66:07:1a:01:b6:bb:3d:59:72: 72:08:5e:b5:c3:f0:59:01:9e:60:33:87:03:a8:2a: bb:31:09:53:8f:47:dd:8f:9a:11:89:44:19:11:9e: c1:5d:1d:b8:42:4f:55:50:68:dc:b3:f0:e3:f0:6f: b0:67:4d:26:3c:35:c8:8e:f3:06:ad:a7:a5:4c:54: 5c:b0:ba:59:0d:ea:16:a4:9e:33:74:ec:16:1f:1d: 84:89:99:52:72:18:f0:71:51:c1:48:92:84:31:f7: 58:fb:9e:ae:7a:b4:ff:1a:2e:f7:ca:c4:3f:32:11: c6:f5:23:f7:1e:de:b8:d6:af:dc:e5:a2:06:52:f0: e3:00:a0:c2:6f:14:b6:e1:6f:02:42:4f:87:a7:e4: 72:83:10:6c:5b:8a:84:8b:eb:10:f4:ba:d1:b1:be: 4e:bf:9a:2b:19:a5:89:a2:3b:40:5e:c0:07:49:54: 3e:13:9f:84:e8:2a:80:4a:4f:05:43:4e:0a:50:7d: 73:04:29:07:93:05:f5:22:7a:0a:08:e6:dd:38:3a: 6e:23:96:bd:1e:85:91:f6:80:2b:25:45:07:6b:76: 8e:70:4b:64:bb:52:68:69:27:1c:6c:b7:65:fb:6e: 71:6e:08:6d:96:53:52:d4:44:a0:af:43:41:7e:40: f4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:C8:90:27:B9:6C:59:76:D0:EC:33:23:56:56:DD:DB:60:40:E2:09 X509v3 Authority Key Identifier: keyid:68:14:0C:15:82:5E:D5:0A:03:78:10:52:AD:DE:2E:CA:1A:6F:EA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aBQMFYJe1QoDeBBSrd4uyhpv6jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91289A2/FB52F64E8E6311EC9E015D6DC4F9AE02/aBQMFYJe1QoDeBBSrd4uyhpv6jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:0f:52:83:56:5f:00:36:b6:e1:b9:c5:bd:de:78:e3:57:6a: f8:54:96:61:07:6e:6b:a5:e8:10:f4:d3:bb:11:d3:93:89:dc: 71:7e:e0:6e:ca:ee:2a:50:ae:55:2f:c1:03:7a:ed:ef:61:9d: de:e5:57:c4:79:02:c7:a1:46:71:75:4b:b2:32:11:fd:e5:50: b4:29:83:ef:56:80:c3:d8:93:8b:54:8f:3e:f7:54:1e:e6:8e: 7f:50:b9:fe:57:6a:9c:af:51:b7:f8:ed:40:8b:d7:3c:52:8f: 09:b9:f7:ff:e7:8f:b6:ea:20:68:35:03:f9:97:4e:9d:c9:86: 6f:99:b1:8b:a3:62:f7:12:72:f0:4c:ce:94:fa:61:53:85:13: b0:fd:ce:86:42:12:0c:a8:99:2a:49:ad:ed:25:3d:c8:9c:07: dd:92:9a:de:c5:6b:56:30:ce:50:62:9d:0a:4b:9f:66:ac:a7: e0:73:62:5e:03:2a:a1:87:b0:53:57:14:5d:c4:c5:2d:ec:49: 85:41:fe:7b:d6:94:84:76:cc:20:89:02:7b:07:4e:92:39:40: fb:3f:8b:e9:6a:d8:0d:e1:81:f0:64:f4:37:2a:ff:80:4b:2a: bc:46:d4:e3:04:ff:8d:ee:a7:69:84:1e:21:0f:53:29:89:71: f3:c1:23:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg5QTIxMTAvBgNVBAUTKDY4MTQwQzE1ODI1RUQ1MEEwMzc4MTA1MkFEREUyRUNB MUE2RkVBM0EwHhcNMjUwOTE3MDA1NTQ4WhcNMjUwOTI0MDA1NTQ4WjAYMRYwFAYD VQQDEw02OGNhMDcxNC1kOGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0F5A+btmBxoBtrs9WXJyCF61w/BZAZ5gM4cDqCq7MQlTj0fdj5oRiUQZEZ7B XR24Qk9VUGjcs/Dj8G+wZ00mPDXIjvMGraelTFRcsLpZDeoWpJ4zdOwWHx2EiZlS chjwcVHBSJKEMfdY+56uerT/Gi73ysQ/MhHG9SP3Ht641q/c5aIGUvDjAKDCbxS2 4W8CQk+Hp+RygxBsW4qEi+sQ9LrRsb5Ov5orGaWJojtAXsAHSVQ+E5+E6CqASk8F Q04KUH1zBCkHkwX1InoKCObdODpuI5a9HoWR9oArJUUHa3aOcEtku1JoaSccbLdl +25xbghtllNS1ESgr0NBfkD0NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHIkCe5 bFl20OwzI1ZW3dtgQOIJMB8GA1UdIwQYMBaAFGgUDBWCXtUKA3gQUq3eLsoab+o6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODlBMi9GQjUyRjY0RThF NjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFRb0RlQkJTcmQ0dXlocHY2 am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FCUU1GWUplMVFvRGVCQlNyZDR1eWhwdjZqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODlBMi9GQjUyRjY0RThFNjMxMUVDOUUwMTVENkRDNEY5QUUwMi9hQlFNRllKZTFR b0RlQkJTcmQ0dXlocHY2am8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoD1KDVl8ANrbhucW93njjV2r4VJZhB25rpegQ9NO7EdOTidxxfuBu yu4qUK5VL8EDeu3vYZ3e5VfEeQLHoUZxdUuyMhH95VC0KYPvVoDD2JOLVI8+91Qe 5o5/ULn+V2qcr1G3+O1Ai9c8Uo8Juff/54+26iBoNQP5l06dyYZvmbGLo2L3EnLw TM6U+mFThROw/c6GQhIMqJkqSa3tJT3InAfdkprexWtWMM5QYp0KS59mrKfgc2Je Ayqhh7BTVxRdxMUt7EmFQf571pSEdswgiQJ7B06SOUD7P4vpatgN4YHwZPQ3Kv+A Syq8RtTjBP+N7qdphB4hD1MpiXHzwSM9 -----END CERTIFICATE-----Generated at Thu Sep 18 23:04:23 2025 by rpki-client