$ rpki-client -vvf rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft File: J3d5rGk2otMhSl8XQCE_25JWxqM.mft (raw, json) Hash identifier: To1PQL+ooQY+LooCkOm45lvuWzEYG+nmQJC/rWzQ/PE= Subject key identifier: FE:54:DF:1C:B3:91:62:77:DE:4A:2C:A1:AC:0D:3E:86:73:EB:3A:30 Authority key identifier: 27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 Certificate issuer: /CN=A91770B7/serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Certificate serial: 02BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft Manifest number: 02B7 Signing time: Wed 17 Sep 2025 01:58:42 +0000 Manifest this update: Wed 17 Sep 2025 01:58:41 +0000 Manifest next update: Wed 24 Sep 2025 01:58:41 +0000 Files and hashes: 1: J3d5rGk2otMhSl8XQCE_25JWxqM.crl (hash: on8VC5Nd843sP3K0IBry4QCFR+CBdf7BNHXLhY+rE1c=) 2: 2841A0CE0BE111ED9E3AA135C4F9AE02.roa (hash: hJkxXQfC6FPhKQvUl8F7nqWwJZPrWQsil7QshGWSWw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 01:58:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 700 (0x2bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91770B7, serialNumber=277779AC6936A2D3214A5F1740213FDB9256C6A3 Validity Not Before: Sep 17 01:58:41 2025 GMT Not After : Sep 24 01:58:41 2025 GMT Subject: CN=68ca15d1-394c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:eb:c4:d4:94:7f:73:0e:31:f3:07:44:c9:60: 55:e7:04:1e:98:07:26:65:38:e0:5a:01:0f:73:6f: e1:9a:51:05:ae:14:8e:fa:08:c5:24:e0:63:df:25: 9d:c4:07:89:b5:f9:d4:07:92:82:1e:71:d0:20:d3: cc:66:a7:5b:1f:92:23:98:e1:d0:c3:5e:e4:70:ad: 96:30:c4:e8:1a:ee:7b:3a:51:df:9f:e8:6f:9e:a5: 33:13:3d:1e:2d:f2:6d:36:a4:0b:48:a3:1c:f6:2d: d1:fe:c5:d0:cb:2d:b4:3e:81:50:f7:ca:c8:38:91: 63:65:6c:9f:8a:49:ff:19:3f:b7:11:ea:fc:4b:9f: 5e:c4:36:5e:ad:54:86:68:ae:b7:f7:f9:4f:ef:c4: 5b:07:62:10:ff:c1:e8:fe:c1:13:7e:2e:2a:f8:79: 3b:8f:27:8b:48:c2:58:06:ac:7b:4e:2d:04:65:db: 86:b4:08:55:a0:68:1d:d9:d8:5e:51:f1:ac:f9:01: 4f:ac:cf:06:c8:2a:ce:34:28:b1:fc:f8:e3:46:e0: df:c1:cb:71:df:25:bd:96:28:04:be:5a:10:24:6f: ee:83:eb:c1:98:fb:00:47:ed:3d:6e:09:f6:a9:b0: dd:21:ef:f5:4d:ac:e9:8d:d5:84:dc:60:9b:fd:cb: 3e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:54:DF:1C:B3:91:62:77:DE:4A:2C:A1:AC:0D:3E:86:73:EB:3A:30 X509v3 Authority Key Identifier: keyid:27:77:79:AC:69:36:A2:D3:21:4A:5F:17:40:21:3F:DB:92:56:C6:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J3d5rGk2otMhSl8XQCE_25JWxqM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91770B7/A5264EE00BDD11ED9AB9EC2BC4F9AE02/J3d5rGk2otMhSl8XQCE_25JWxqM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:c3:15:10:30:64:02:50:d9:91:a7:69:2a:3c:9d:f9:8d:cb: 5d:98:e9:41:b1:5a:96:fe:59:85:22:55:30:63:b0:85:24:ec: b9:1e:7e:16:1d:ca:15:16:a0:18:de:74:ab:24:e3:ed:98:e6: 23:95:82:f3:8e:fd:a9:0d:a8:4c:78:d3:31:94:34:ea:54:a1: 49:61:d8:10:20:b7:69:39:e8:72:4e:01:c6:f1:cb:c3:d0:8f: 34:08:a2:59:2a:93:f5:5e:bb:5c:a0:77:ba:ca:4b:ea:17:ab: 88:ca:6b:53:a7:ec:b1:d3:14:37:d5:78:00:ef:71:fe:7d:e9: 7a:3d:f0:b0:0b:20:4c:0a:61:00:91:5c:c7:9a:24:a7:3a:62: 10:09:ef:e0:d5:8b:2b:57:21:4a:0b:24:91:58:12:62:22:f0: 5f:fe:27:d3:8d:f7:fb:35:91:64:6e:29:28:d2:6f:a9:81:45: 60:7b:8b:87:dd:1a:85:48:b7:81:4c:36:e0:c0:1a:3b:f6:11: 7e:0d:f2:18:7f:b1:7c:bb:21:b8:da:4f:9a:7c:da:e6:f9:f5: 0b:4d:68:36:2a:87:a4:6d:20:88:32:53:bc:0d:1a:de:c6:9a: da:5d:8d:4c:c5:de:f2:ce:f4:1e:36:0c:41:ab:5f:37:22:06: 3b:1a:2e:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcwQjcxMTAvBgNVBAUTKDI3Nzc3OUFDNjkzNkEyRDMyMTRBNUYxNzQwMjEzRkRC OTI1NkM2QTMwHhcNMjUwOTE3MDE1ODQxWhcNMjUwOTI0MDE1ODQxWjAYMRYwFAYD VQQDEw02OGNhMTVkMS0zOTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOvE1JR/cw4x8wdEyWBV5wQemAcmZTjgWgEPc2/hmlEFrhSO+gjFJOBj3yWd xAeJtfnUB5KCHnHQINPMZqdbH5IjmOHQw17kcK2WMMToGu57OlHfn+hvnqUzEz0e LfJtNqQLSKMc9i3R/sXQyy20PoFQ98rIOJFjZWyfikn/GT+3Eer8S59exDZerVSG aK639/lP78RbB2IQ/8Ho/sETfi4q+Hk7jyeLSMJYBqx7Ti0EZduGtAhVoGgd2dhe UfGs+QFPrM8GyCrONCix/PjjRuDfwctx3yW9ligEvloQJG/ug+vBmPsAR+09bgn2 qbDdIe/1TazpjdWE3GCb/cs+jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5U3xyz kWJ33kosoawNPoZz6zowMB8GA1UdIwQYMBaAFCd3eaxpNqLTIUpfF0AhP9uSVsaj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzBCNy9BNTI2NEVFMDBC REQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90TWhTbDhYUUNFXzI1Sld4 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozZDVyR2syb3RNaFNsOFhRQ0VfMjVKV3hxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzBCNy9BNTI2NEVFMDBCREQxMUVEOUFCOUVDMkJDNEY5QUUwMi9KM2Q1ckdrMm90 TWhTbDhYUUNFXzI1Sld4cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHwxUQMGQCUNmRp2kqPJ35jctdmOlBsVqW/lmFIlUwY7CFJOy5Hn4W HcoVFqAY3nSrJOPtmOYjlYLzjv2pDahMeNMxlDTqVKFJYdgQILdpOehyTgHG8cvD 0I80CKJZKpP1XrtcoHe6ykvqF6uIymtTp+yx0xQ31XgA73H+fel6PfCwCyBMCmEA kVzHmiSnOmIQCe/g1YsrVyFKCySRWBJiIvBf/ifTjff7NZFkbiko0m+pgUVge4uH 3RqFSLeBTDbgwBo79hF+DfIYf7F8uyG42k+afNrm+fULTWg2KoekbSCIMlO8DRre xpraXY1Mxd7yzvQeNgxBq183IgY7Gi50 -----END CERTIFICATE-----Generated at Fri Sep 19 00:52:29 2025 by rpki-client