$ rpki-client -vvf rpki.apnic.net/member_repository/A91476FE/90FE4720083711F09DB91B70C4F9AE02/_3wGiSUYZz7M4Ea2pxfzU85TxQk.mft File: _3wGiSUYZz7M4Ea2pxfzU85TxQk.mft (raw, json) Hash identifier: ezB1TpOyupfkupK5pEkPiOZxC1O3MnvoUpiqCjtODQE= Subject key identifier: 24:15:96:53:5A:8F:2A:05:30:EC:FE:9B:43:D0:0A:2C:CE:1C:84:64 Authority key identifier: FF:7C:06:89:25:18:67:3E:CC:E0:46:B6:A7:17:F3:53:CE:53:C5:09 Certificate issuer: /CN=A91476FE/serialNumber=FF7C06892518673ECCE046B6A717F353CE53C509 Certificate serial: 63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3wGiSUYZz7M4Ea2pxfzU85TxQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476FE/90FE4720083711F09DB91B70C4F9AE02/_3wGiSUYZz7M4Ea2pxfzU85TxQk.mft Manifest number: 60 Signing time: Wed 17 Sep 2025 07:52:48 +0000 Manifest this update: Wed 17 Sep 2025 07:52:48 +0000 Manifest next update: Wed 24 Sep 2025 07:52:47 +0000 Files and hashes: 1: _3wGiSUYZz7M4Ea2pxfzU85TxQk.crl (hash: CiC8nI1LHqjWRotKQvV/mBy3ahOBJHlM2rakUh+vKM8=) 2: CC704C6639B711F09D08292CC4F9AE02.roa (hash: M1ecwuMzW/hIMvSj6913M6NZRe+PJV/YKqOHZ/y8oF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476FE/90FE4720083711F09DB91B70C4F9AE02/_3wGiSUYZz7M4Ea2pxfzU85TxQk.crl rsync://rpki.apnic.net/member_repository/A91476FE/90FE4720083711F09DB91B70C4F9AE02/_3wGiSUYZz7M4Ea2pxfzU85TxQk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3wGiSUYZz7M4Ea2pxfzU85TxQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:52:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476FE, serialNumber=FF7C06892518673ECCE046B6A717F353CE53C509 Validity Not Before: Sep 17 07:52:48 2025 GMT Not After : Sep 24 07:52:47 2025 GMT Subject: CN=68ca68d0-8cdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:47:a4:f4:b5:e7:50:fd:8a:67:33:eb:fe:7d: 55:23:a5:ab:5b:a3:16:97:78:a5:64:14:f4:b2:62: 68:17:84:20:2a:a2:3d:17:65:71:49:b5:ed:44:b5: 0e:6a:d4:c2:3c:44:f3:62:b4:4d:31:33:73:87:5c: 1f:7d:31:02:d2:af:1b:e4:c5:2f:5a:93:a7:87:ff: 28:68:c3:04:ae:a6:d9:0b:6d:b2:ec:6d:92:e0:53: 9f:ff:41:f7:62:30:5a:87:4d:57:16:d2:aa:f1:f8: 07:41:ff:ff:d8:f3:3b:ff:32:b6:8f:f3:da:8b:50: 6e:36:32:63:8b:ee:5d:9d:e2:01:ba:a6:f7:9c:b4: e4:fd:0e:bf:9c:32:f3:e0:7e:7e:d2:c6:ac:f3:10: d3:6e:22:dd:2a:e6:38:bc:c8:64:b1:fc:c5:9c:56: 0d:d0:53:48:d0:60:1b:05:c4:74:4b:c8:ab:3a:90: 8d:b2:08:37:71:19:48:54:09:1b:26:24:ea:4c:b0: 70:55:30:80:60:12:36:8e:7c:d6:13:dd:c3:97:85: af:51:fb:83:f6:fa:92:02:2b:82:81:67:22:ab:14: ef:fa:ae:63:f4:52:21:74:4e:61:de:3a:d0:29:1e: 80:9c:7e:ef:f0:8f:5f:2c:1f:83:3d:ed:2d:bd:de: f1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:15:96:53:5A:8F:2A:05:30:EC:FE:9B:43:D0:0A:2C:CE:1C:84:64 X509v3 Authority Key Identifier: keyid:FF:7C:06:89:25:18:67:3E:CC:E0:46:B6:A7:17:F3:53:CE:53:C5:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476FE/90FE4720083711F09DB91B70C4F9AE02/_3wGiSUYZz7M4Ea2pxfzU85TxQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_3wGiSUYZz7M4Ea2pxfzU85TxQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476FE/90FE4720083711F09DB91B70C4F9AE02/_3wGiSUYZz7M4Ea2pxfzU85TxQk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:3a:e8:5e:66:34:f0:ec:f7:00:4c:8f:25:e8:0b:e1:24:a9: c7:54:d7:33:46:c6:79:0e:86:42:ed:42:e2:02:6d:5b:99:49: 6f:38:5f:d3:32:92:35:27:6f:03:0e:7e:3c:81:fe:9b:e1:ea: 2e:56:d0:1c:55:dd:f3:e3:69:4a:92:c3:01:fd:ec:7d:9d:cb: af:00:67:c8:69:0d:6d:72:3e:8d:b0:4c:e8:0b:c8:6c:03:f8: 4b:1c:e0:34:02:ba:4a:c6:4b:48:5e:5e:85:ae:87:60:1f:26: e7:ea:df:02:71:32:d9:3a:e5:44:54:11:61:71:e7:bb:80:2c: f5:3b:ad:ef:72:01:fa:a3:5e:86:64:db:4d:13:41:11:d2:54: c0:2e:e7:ad:d9:0c:75:0f:3e:7a:1b:d6:e3:3f:68:fb:94:f9: ea:c0:f0:65:1d:0b:55:31:4d:55:d0:24:6b:34:51:17:ef:3b: ed:f7:00:44:ba:3c:c3:c2:3b:e0:15:ae:5b:eb:84:eb:a1:79: eb:ae:98:16:2a:69:76:e7:7b:a7:8d:c7:0d:37:9c:a1:ad:a6: ad:c5:ec:50:d3:ec:37:dc:2c:21:4b:0e:a0:c7:1e:b0:33:8d: 6c:b2:74:70:07:35:8f:af:f2:ae:35:fa:7f:65:fc:74:22:58: a1:e4:3c:f7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NzZGRTExMC8GA1UEBRMoRkY3QzA2ODkyNTE4NjczRUNDRTA0NkI2QTcxN0YzNTND RTUzQzUwOTAeFw0yNTA5MTcwNzUyNDhaFw0yNTA5MjQwNzUyNDdaMBgxFjAUBgNV BAMTDTY4Y2E2OGQwLThjZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaR6T0tedQ/YpnM+v+fVUjpatboxaXeKVkFPSyYmgXhCAqoj0XZXFJte1EtQ5q 1MI8RPNitE0xM3OHXB99MQLSrxvkxS9ak6eH/yhowwSuptkLbbLsbZLgU5//Qfdi MFqHTVcW0qrx+AdB///Y8zv/MraP89qLUG42MmOL7l2d4gG6pvectOT9Dr+cMvPg fn7SxqzzENNuIt0q5ji8yGSx/MWcVg3QU0jQYBsFxHRLyKs6kI2yCDdxGUhUCRsm JOpMsHBVMIBgEjaOfNYT3cOXha9R+4P2+pICK4KBZyKrFO/6rmP0UiF0TmHeOtAp HoCcfu/wj18sH4M97S293vELAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUJBWWU1qP KgUw7P6bQ9AKLM4chGQwHwYDVR0jBBgwFoAU/3wGiSUYZz7M4Ea2pxfzU85TxQkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3NkZFLzkwRkU0NzIwMDgz NzExRjA5REI5MUI3MEM0RjlBRTAyL18zd0dpU1VZWno3TTRFYTJweGZ6VTg1VHhR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvXzN3R2lTVVlaejdNNEVhMnB4ZnpVODVUeFFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3 NkZFLzkwRkU0NzIwMDgzNzExRjA5REI5MUI3MEM0RjlBRTAyL18zd0dpU1VZWno3 TTRFYTJweGZ6VTg1VHhRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFE66F5mNPDs9wBMjyXoC+EkqcdU1zNGxnkOhkLtQuICbVuZSW84X9My kjUnbwMOfjyB/pvh6i5W0BxV3fPjaUqSwwH97H2dy68AZ8hpDW1yPo2wTOgLyGwD +Esc4DQCukrGS0heXoWuh2AfJufq3wJxMtk65URUEWFx57uALPU7re9yAfqjXoZk 200TQRHSVMAu563ZDHUPPnob1uM/aPuU+erA8GUdC1UxTVXQJGs0URfvO+33AES6 PMPCO+AVrlvrhOuheeuumBYqaXbne6eNxw03nKGtpq3F7FDT7DfcLCFLDqDHHrAz jWyydHAHNY+v8q41+n9l/HQiWKHkPPc= -----END CERTIFICATE-----Generated at Fri Sep 19 00:41:04 2025 by rpki-client