$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft File: a9bIzoghkMgWnoE2ReDt2bdX6xk.mft (raw, json) Hash identifier: Fpm4MgxGf99QYtGAZ3NSlZs46EA3E8varZbZsBab/2g= Subject key identifier: 07:22:6D:00:9D:58:0C:30:88:64:C3:DA:F5:9E:39:48:A6:BA:73:B6 Authority key identifier: 6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 Certificate issuer: /CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Certificate serial: 1749 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft Manifest number: 20BC Signing time: Thu 18 Sep 2025 16:44:08 +0000 Manifest this update: Thu 18 Sep 2025 16:44:08 +0000 Manifest next update: Thu 25 Sep 2025 16:44:08 +0000 Files and hashes: 1: a9bIzoghkMgWnoE2ReDt2bdX6xk.crl (hash: u1uv0M4Eyq6eg2Gm/ZNI/UnWQf04OC9/cBFfj2qPJ5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:44:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5961 (0x1749) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Validity Not Before: Sep 18 16:44:08 2025 GMT Not After : Sep 25 16:44:08 2025 GMT Subject: CN=68cc36d8-71c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:98:a0:02:98:3b:7e:c5:40:20:c7:22:28:91: bb:94:af:a0:f4:da:19:a2:10:16:70:82:c0:f0:a9: d4:10:ed:de:98:46:4d:04:98:c5:a3:29:16:db:f9: f0:75:92:6f:b0:58:4c:22:ad:20:91:75:52:39:10: 2d:f9:91:92:dd:78:5d:63:58:53:6c:70:a8:35:dc: eb:c4:17:9d:30:76:3b:be:d9:fe:53:a5:86:d1:21: 5d:99:4c:10:4d:91:d4:13:c5:26:0f:89:f3:d2:b7: ad:2f:fe:4d:af:de:be:a9:2d:1b:76:f5:1c:85:30: 95:11:33:55:49:30:92:2a:66:91:90:32:52:b6:00: ac:80:9e:24:5a:e1:91:ce:ae:71:33:32:f5:a2:c6: 99:4f:b5:36:d1:4a:db:94:4d:73:96:84:a6:3d:1c: f8:a9:da:3d:03:1e:d2:1d:44:03:e7:dd:c9:a9:91: 8f:bb:65:cb:f4:b7:85:e5:7c:23:32:1e:29:6d:cb: 8a:56:ed:bf:30:8c:59:da:4c:9f:15:17:09:3e:66: 69:0a:d9:a9:6e:21:9d:ca:8f:16:7a:a9:1e:bf:1a: 4b:ab:ab:72:ca:2a:f6:83:5b:75:90:47:9a:0d:c2: b7:93:91:33:e5:7f:7f:97:60:ef:ea:71:e1:54:ed: 71:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:22:6D:00:9D:58:0C:30:88:64:C3:DA:F5:9E:39:48:A6:BA:73:B6 X509v3 Authority Key Identifier: keyid:6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:9c:bc:9b:83:dc:43:4e:a2:bb:8c:ff:0f:4e:4a:15:4c:08: b0:61:31:0c:93:e4:36:84:01:31:30:9b:83:fe:f4:60:2d:2f: 2c:b6:04:6c:ba:b9:be:14:4a:d6:9a:1d:18:6e:ee:15:e1:3a: 76:75:52:23:12:ef:06:a0:79:f4:d5:a1:0b:0f:a8:75:00:0f: fc:c1:e2:f9:a5:49:89:2b:3e:df:db:b2:f6:24:36:be:ac:0d: 31:ce:9e:bd:89:74:fd:89:bb:2a:33:5b:29:07:80:55:ee:e2: 77:f7:21:13:79:85:00:c8:bd:2c:71:a8:e4:c3:31:df:5a:a1: 64:5b:97:ff:e0:9a:53:a3:b9:25:56:5e:c6:8b:c1:c1:e7:76: 45:d9:80:ce:0d:e9:f6:53:b7:05:e8:41:0c:91:3c:bd:c1:62: 03:86:be:0a:ad:db:75:84:a1:34:2e:16:bb:65:7e:9b:63:fc: a6:a9:98:40:07:2d:11:1a:f6:fc:e0:99:0f:df:83:2d:db:73: ad:5b:19:ae:8f:19:5f:aa:e7:3e:29:24:37:97:40:f2:c8:28: ad:d3:c6:79:26:06:9b:5c:05:4d:84:0b:92:88:d8:15:39:24: 38:16:c7:b9:c0:1e:aa:7b:b9:9d:02:07:ee:a1:b9:ed:61:8e: 85:86:09:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF0kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKDZCRDZDOENFODgyMTkwQzgxNjlFODEzNjQ1RTBFREQ5 Qjc1N0VCMTkwHhcNMjUwOTE4MTY0NDA4WhcNMjUwOTI1MTY0NDA4WjAYMRYwFAYD VQQDEw02OGNjMzZkOC03MWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5igApg7fsVAIMciKJG7lK+g9NoZohAWcILA8KnUEO3emEZNBJjFoykW2/nw dZJvsFhMIq0gkXVSORAt+ZGS3XhdY1hTbHCoNdzrxBedMHY7vtn+U6WG0SFdmUwQ TZHUE8UmD4nz0retL/5Nr96+qS0bdvUchTCVETNVSTCSKmaRkDJStgCsgJ4kWuGR zq5xMzL1osaZT7U20UrblE1zloSmPRz4qdo9Ax7SHUQD593JqZGPu2XL9LeF5Xwj Mh4pbcuKVu2/MIxZ2kyfFRcJPmZpCtmpbiGdyo8WeqkevxpLq6tyyir2g1t1kEea DcK3k5Ez5X9/l2Dv6nHhVO1xNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcibQCd WAwwiGTD2vWeOUimunO2MB8GA1UdIwQYMBaAFGvWyM6IIZDIFp6BNkXg7dm3V+sZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtNZ1dub0UyUmVEdDJiZFg2 eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5Ykl6b2doa01nV25vRTJSZUR0MmJkWDZ4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtN Z1dub0UyUmVEdDJiZFg2eGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBznLybg9xDTqK7jP8PTkoVTAiwYTEMk+Q2hAExMJuD/vRgLS8stgRs urm+FErWmh0Ybu4V4Tp2dVIjEu8GoHn01aELD6h1AA/8weL5pUmJKz7f27L2JDa+ rA0xzp69iXT9ibsqM1spB4BV7uJ39yETeYUAyL0scajkwzHfWqFkW5f/4JpTo7kl Vl7Gi8HB53ZF2YDODen2U7cF6EEMkTy9wWIDhr4Krdt1hKE0Lha7ZX6bY/ymqZhA By0RGvb84JkP34Mt23OtWxmujxlfquc+KSQ3l0DyyCit08Z5JgabXAVNhAuSiNgV OSQ4Fse5wB6qe7mdAgfuobntYY6FhgkH -----END CERTIFICATE-----Generated at Fri Sep 19 09:08:42 2025 by rpki-client