$ rpki-client -vvf rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft File: 7D2Af3k8nPX84zXuFeCYREm0MJY.mft (raw, json) Hash identifier: rMXsiDkaKKRQE/rWUjMt7x7SRxOb9Q5bw8rC09Cl1Z4= Subject key identifier: 3B:34:8B:C2:18:DC:8B:B9:8B:2D:A9:3E:F1:E2:9A:BE:BF:B0:30:DE Authority key identifier: EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 Certificate issuer: /CN=A91517CF/serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Certificate serial: 97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft Manifest number: 95 Signing time: Wed 17 Sep 2025 07:09:28 +0000 Manifest this update: Wed 17 Sep 2025 07:09:28 +0000 Manifest next update: Wed 24 Sep 2025 07:09:28 +0000 Files and hashes: 1: 7D2Af3k8nPX84zXuFeCYREm0MJY.crl (hash: otoJE/tKMer5t7tYIy5N5amqlQcd/e6RnT2AxhY4MKA=) 2: 18164B6AB2C811EFA702DF80C4F9AE02.roa (hash: WLNXMP0ra3REMtSs7laKuUO//z/EEyMC3rb1Y8gR3Jk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:09:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91517CF, serialNumber=EC3D807F793C9CF5FCE335EE15E0984449B43096 Validity Not Before: Sep 17 07:09:28 2025 GMT Not After : Sep 24 07:09:28 2025 GMT Subject: CN=68ca5ea8-5ca0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:50:dc:6f:a5:43:81:df:f9:cb:56:56:1e:71: 28:02:e4:a9:1c:12:01:d6:89:61:ac:e5:90:d1:fb: c7:da:f9:8e:81:78:28:f3:2d:53:42:36:11:d1:84: 73:4d:42:8e:2c:79:3e:45:31:b7:79:97:59:bf:ec: d1:92:82:73:1e:fd:31:db:86:e9:b1:1e:6e:29:6a: ef:c0:ac:9a:98:1e:b0:08:b7:02:da:7d:4e:8f:90: a2:ff:ac:cb:78:0e:6e:b6:9a:6a:8a:e3:84:37:1c: 67:1b:ef:62:98:19:d9:33:f9:18:9c:5b:3c:f6:5a: e7:28:e3:3c:97:0c:32:04:bd:0b:89:fc:19:31:61: ff:ac:63:d9:a4:8c:a4:42:19:6e:42:66:be:b1:fb: 8d:24:9a:4a:ab:2b:e1:ab:69:48:ba:5b:2c:f5:4e: 25:0f:c0:e6:54:11:8c:94:ff:48:0e:5a:8e:8c:6b: 1c:40:36:eb:9c:80:e1:8b:d5:d0:7b:6a:52:a1:7b: b8:0f:8a:d9:3b:2e:48:f9:8a:63:cf:68:3d:1c:0d: 6d:95:e0:d1:9a:37:6c:b7:24:c4:bb:74:9c:01:00: b6:86:1b:6d:62:75:d4:47:a3:4a:31:04:95:d2:3e: bc:4b:11:7e:40:a8:c8:56:90:65:8d:f5:43:61:e1: e6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:34:8B:C2:18:DC:8B:B9:8B:2D:A9:3E:F1:E2:9A:BE:BF:B0:30:DE X509v3 Authority Key Identifier: keyid:EC:3D:80:7F:79:3C:9C:F5:FC:E3:35:EE:15:E0:98:44:49:B4:30:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7D2Af3k8nPX84zXuFeCYREm0MJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91517CF/B4155458B2C711EF916BB67FC4F9AE02/7D2Af3k8nPX84zXuFeCYREm0MJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:7c:0b:71:8f:2f:49:c1:ef:18:ca:04:c1:89:12:0f:cd:60: 06:8e:0a:1f:5c:97:b5:22:1c:41:d4:7c:ab:6b:0e:4e:a8:58: 81:9c:66:46:4b:ea:0a:6f:b7:94:6a:a0:26:71:89:22:6b:d3: 34:1e:7f:0d:2b:72:e4:7f:ef:b7:04:dc:cc:4e:98:41:76:42: b6:9e:21:bb:53:13:3f:34:7e:e0:3f:14:04:5b:48:d9:9a:cf: 65:ca:da:a7:32:f5:9d:7a:37:c8:55:15:41:ba:de:71:0a:35: ce:a8:98:7c:60:15:e5:e9:0a:e6:5f:11:51:ed:30:89:e2:79: 63:97:71:39:6f:7a:e1:1a:6e:31:e4:7b:ba:bd:2b:bf:af:65: 4a:08:08:55:08:2c:e5:8b:1b:dd:2c:1a:b7:f1:d6:2d:3c:d3: 10:49:a2:ff:5f:32:c3:81:f6:be:7f:89:75:68:2f:c5:88:c3: 57:3a:b5:d1:13:d7:6b:5b:67:5a:8d:b7:1f:38:bc:c9:38:c3: 9d:88:36:d5:85:27:9b:a9:c9:b7:78:0b:a7:8f:5b:0f:24:cb: 1c:60:c6:e0:f9:4d:b2:de:2f:1d:bf:b8:07:43:49:0b:b5:85: a1:0b:c4:89:7e:90:33:f9:b8:05:96:c1:36:95:41:df:ec:e3: 54:62:9f:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE3Q0YxMTAvBgNVBAUTKEVDM0Q4MDdGNzkzQzlDRjVGQ0UzMzVFRTE1RTA5ODQ0 NDlCNDMwOTYwHhcNMjUwOTE3MDcwOTI4WhcNMjUwOTI0MDcwOTI4WjAYMRYwFAYD VQQDEw02OGNhNWVhOC01Y2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFDcb6VDgd/5y1ZWHnEoAuSpHBIB1olhrOWQ0fvH2vmOgXgo8y1TQjYR0YRz TUKOLHk+RTG3eZdZv+zRkoJzHv0x24bpsR5uKWrvwKyamB6wCLcC2n1Oj5Ci/6zL eA5utppqiuOENxxnG+9imBnZM/kYnFs89lrnKOM8lwwyBL0LifwZMWH/rGPZpIyk QhluQma+sfuNJJpKqyvhq2lIulss9U4lD8DmVBGMlP9IDlqOjGscQDbrnIDhi9XQ e2pSoXu4D4rZOy5I+Ypjz2g9HA1tleDRmjdstyTEu3ScAQC2hhttYnXUR6NKMQSV 0j68SxF+QKjIVpBljfVDYeHmmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDs0i8IY 3Iu5iy2pPvHimr6/sDDeMB8GA1UdIwQYMBaAFOw9gH95PJz1/OM17hXgmERJtDCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTdDRi9CNDE1NTQ1OEIy QzcxMUVGOTE2QkI2N0ZDNEY5QUUwMi83RDJBZjNrOG5QWDg0elh1RmVDWVJFbTBN SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdEMkFmM2s4blBYODR6WHVGZUNZUkVtME1KWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTdDRi9CNDE1NTQ1OEIyQzcxMUVGOTE2QkI2N0ZDNEY5QUUwMi83RDJBZjNrOG5Q WDg0elh1RmVDWVJFbTBNSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgfAtxjy9Jwe8YygTBiRIPzWAGjgofXJe1IhxB1Hyraw5OqFiBnGZG S+oKb7eUaqAmcYkia9M0Hn8NK3Lkf++3BNzMTphBdkK2niG7UxM/NH7gPxQEW0jZ ms9lytqnMvWdejfIVRVBut5xCjXOqJh8YBXl6QrmXxFR7TCJ4nljl3E5b3rhGm4x 5Hu6vSu/r2VKCAhVCCzlixvdLBq38dYtPNMQSaL/XzLDgfa+f4l1aC/FiMNXOrXR E9drW2dajbcfOLzJOMOdiDbVhSebqcm3eAunj1sPJMscYMbg+U2y3i8dv7gHQ0kL tYWhC8SJfpAz+bgFlsE2lUHf7ONUYp8b -----END CERTIFICATE-----Generated at Thu Sep 18 20:24:43 2025 by rpki-client