$ rpki-client -vvf rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft File: b35Y0Iljiffn_k6HlapVXVxVUYg.mft (raw, json) Hash identifier: DpA5kUFsCrke6B9OLw57rnECHEyGIFtXjtxWsIQirQk= Subject key identifier: DF:8A:4F:30:E4:D4:7F:66:71:64:AB:EC:33:13:90:E5:6F:F0:00:20 Authority key identifier: 6F:7E:58:D0:89:63:89:F7:E7:FE:4E:87:95:AA:55:5D:5C:55:51:88 Certificate issuer: /CN=A91706E4/serialNumber=6F7E58D0896389F7E7FE4E8795AA555D5C555188 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft Manifest number: 98 Signing time: Tue 09 Sep 2025 06:31:01 +0000 Manifest this update: Tue 09 Sep 2025 06:31:00 +0000 Manifest next update: Tue 16 Sep 2025 06:31:00 +0000 Files and hashes: 1: b35Y0Iljiffn_k6HlapVXVxVUYg.crl (hash: EqJ9MH7ncMzMgwShNu0m8N9M4Y34aQr6OEoFlcAtsq0=) 2: 31E9AEC6E30411EFBC0C3B2CC4F9AE02.roa (hash: iUCXkP/k8vFDK+xe4w0gGSkxJOnd/FNj32EaA1KJbt4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.crl rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 06:30:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91706E4, serialNumber=6F7E58D0896389F7E7FE4E8795AA555D5C555188 Validity Not Before: Sep 9 06:31:00 2025 GMT Not After : Sep 16 06:31:00 2025 GMT Subject: CN=68bfc9a4-9e63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2e:8f:fc:24:ae:67:59:8d:57:0e:1e:42:96: 97:ca:d7:b7:da:b3:83:53:7f:e2:c7:80:24:1c:db: 0c:44:06:b5:40:9f:31:ce:02:db:fd:a3:8a:bb:eb: a6:49:5a:c5:e6:a4:2f:56:b4:b0:72:72:63:ed:cf: f8:f4:0c:e2:0b:c0:98:35:d8:c4:05:f4:04:68:84: 87:bd:39:da:f6:27:2d:a1:3b:2a:e4:a5:83:e5:b5: 6d:13:e3:df:90:89:19:3d:e0:cf:cb:0b:dc:3d:4d: 51:cc:30:32:79:79:59:96:32:15:da:28:b3:2f:8a: bd:bf:29:aa:09:30:61:5a:4b:9c:80:9d:c2:40:be: 77:9a:72:38:2f:25:35:67:67:ee:6c:e6:08:6a:5c: 28:df:f1:7a:d7:e5:1c:c9:b9:5d:81:c0:fa:8b:b7: f4:79:25:c8:30:d0:34:4d:dc:ba:f8:a7:fa:90:d8: 29:3d:bf:e3:a9:86:1e:97:25:06:5f:f8:35:be:a9: 83:ed:78:51:eb:98:7c:41:a3:40:16:85:4f:d4:22: 62:5b:44:d7:7e:37:49:b7:f5:40:f1:7d:0e:8d:aa: e3:9e:2f:39:13:76:22:e2:35:99:b2:93:ab:e7:0a: b1:79:e7:35:d5:54:4a:db:8e:8f:ef:38:b0:2b:0f: 9d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:8A:4F:30:E4:D4:7F:66:71:64:AB:EC:33:13:90:E5:6F:F0:00:20 X509v3 Authority Key Identifier: keyid:6F:7E:58:D0:89:63:89:F7:E7:FE:4E:87:95:AA:55:5D:5C:55:51:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b35Y0Iljiffn_k6HlapVXVxVUYg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706E4/3ABA80AAA68411EF8F5ED37FC4F9AE02/b35Y0Iljiffn_k6HlapVXVxVUYg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:86:02:37:dd:07:e3:9f:3a:8f:a5:17:78:cc:9b:c2:36:24: af:79:53:8f:fe:d0:92:5a:d4:a8:e2:8f:fe:ca:d7:82:38:3f: 6d:f7:49:a8:16:5a:3c:65:32:8a:63:67:ab:63:5c:29:bb:d0: 1d:b1:70:42:c4:c6:12:b7:12:19:26:b4:da:90:6c:05:eb:7f: 70:76:7c:8d:42:08:92:87:d6:58:c0:5d:ae:85:d3:d6:18:18: ef:13:bd:4e:20:61:75:f3:43:10:6d:ac:e4:38:d0:f5:06:18: 70:78:3b:c6:19:3a:d9:d7:fe:e4:0f:ab:30:20:31:ba:84:c4: cc:b2:43:10:eb:ab:27:54:fa:ed:b5:40:82:0b:77:86:9d:63: 7e:2d:90:2a:40:b3:31:ca:cd:44:e3:d8:e3:94:04:38:8e:12: 12:f9:0e:88:31:db:20:17:07:00:55:df:4c:f1:4b:2b:08:fe: 65:57:4a:6c:f4:3d:b9:03:34:fa:bd:15:10:cd:79:8b:0c:44: ac:b0:a2:1c:cd:3a:e7:6d:a0:a8:47:a1:42:7a:80:00:b3:a5: 86:80:cc:83:46:1a:ef:ca:d3:41:e3:8a:8c:63:0b:ad:56:1e: b1:dd:de:fd:a2:1f:46:c2:d3:b9:c1:cb:c6:a3:4c:70:48:bb: 41:86:88:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA2RTQxMTAvBgNVBAUTKDZGN0U1OEQwODk2Mzg5RjdFN0ZFNEU4Nzk1QUE1NTVE NUM1NTUxODgwHhcNMjUwOTA5MDYzMTAwWhcNMjUwOTE2MDYzMTAwWjAYMRYwFAYD VQQDEw02OGJmYzlhNC05ZTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1C6P/CSuZ1mNVw4eQpaXyte32rODU3/ix4AkHNsMRAa1QJ8xzgLb/aOKu+um SVrF5qQvVrSwcnJj7c/49AziC8CYNdjEBfQEaISHvTna9ictoTsq5KWD5bVtE+Pf kIkZPeDPywvcPU1RzDAyeXlZljIV2iizL4q9vymqCTBhWkucgJ3CQL53mnI4LyU1 Z2fubOYIalwo3/F61+UcybldgcD6i7f0eSXIMNA0Tdy6+Kf6kNgpPb/jqYYelyUG X/g1vqmD7XhR65h8QaNAFoVP1CJiW0TXfjdJt/VA8X0Ojarjni85E3Yi4jWZspOr 5wqxeec11VRK246P7ziwKw+dcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+KTzDk 1H9mcWSr7DMTkOVv8AAgMB8GA1UdIwQYMBaAFG9+WNCJY4n35/5Oh5WqVV1cVVGI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDZFNC8zQUJBODBBQUE2 ODQxMUVGOEY1RUQzN0ZDNEY5QUUwMi9iMzVZMElsamlmZm5fazZIbGFwVlhWeFZV WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IzNVkwSWxqaWZmbl9rNkhsYXBWWFZ4VlVZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDZFNC8zQUJBODBBQUE2ODQxMUVGOEY1RUQzN0ZDNEY5QUUwMi9iMzVZMElsamlm Zm5fazZIbGFwVlhWeFZVWWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkhgI33QfjnzqPpRd4zJvCNiSveVOP/tCSWtSo4o/+yteCOD9t90mo Flo8ZTKKY2erY1wpu9AdsXBCxMYStxIZJrTakGwF639wdnyNQgiSh9ZYwF2uhdPW GBjvE71OIGF180MQbazkOND1BhhweDvGGTrZ1/7kD6swIDG6hMTMskMQ66snVPrt tUCCC3eGnWN+LZAqQLMxys1E49jjlAQ4jhIS+Q6IMdsgFwcAVd9M8UsrCP5lV0ps 9D25AzT6vRUQzXmLDESssKIczTrnbaCoR6FCeoAAs6WGgMyDRhrvytNB44qMYwut Vh6x3d79oh9GwtO5wcvGo0xwSLtBhohQ -----END CERTIFICATE-----Generated at Wed Sep 10 10:16:08 2025 by rpki-client