$ rpki-client -vvf rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft File: CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft (raw, json) Hash identifier: 8AzqaeLTg43Ph9aTVcJpp0vrb50lr6eCagIvRr1gP6k= Subject key identifier: 60:F5:BD:71:BE:1B:8F:78:AC:D1:1E:E0:34:E0:4A:98:22:23:52:E7 Authority key identifier: 0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD Certificate issuer: /CN=A91777B9/serialNumber=0A088A19BBDB61DED1916C860AB2B8BEE186EDCD Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft Manifest number: BC Signing time: Wed 17 Sep 2025 06:35:58 +0000 Manifest this update: Wed 17 Sep 2025 06:35:58 +0000 Manifest next update: Wed 24 Sep 2025 06:35:58 +0000 Files and hashes: 1: CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl (hash: Q+/xcwoa3iUQaWrkBrUgo/K4tMhFYT0KvE5RXfyBIPU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:35:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777B9, serialNumber=0A088A19BBDB61DED1916C860AB2B8BEE186EDCD Validity Not Before: Sep 17 06:35:58 2025 GMT Not After : Sep 24 06:35:58 2025 GMT Subject: CN=68ca56ce-1f6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b0:5a:6d:73:41:d0:0a:31:bd:e4:73:b4:13: b6:aa:d9:26:a0:00:e2:18:94:bd:ee:d6:ef:e3:1a: 46:b2:48:08:d0:85:0c:64:a6:dd:92:46:b5:12:15: 3c:0c:0e:45:a8:bc:15:e2:66:77:21:64:a9:31:96: 5e:5a:2b:dc:17:2c:59:c4:0b:cc:49:38:c0:30:a3: 90:15:43:60:2b:0c:22:69:38:1f:53:6e:45:ac:3f: ed:6c:ca:ba:a4:98:c1:5f:cf:ce:f7:39:fd:c1:7e: 89:20:44:33:94:44:da:5f:20:13:d3:c2:87:fc:9c: 1e:66:9e:01:82:af:f3:dc:bf:4d:97:5a:c0:32:c3: 78:73:a3:5f:4b:60:7f:a7:58:ba:27:5e:47:9a:cb: 06:63:19:ca:3f:a8:82:7b:e5:13:f7:dc:a0:71:37: 3c:03:b3:8c:f8:39:20:06:be:1a:65:eb:19:b1:7c: 3b:7e:4c:1e:62:2d:a6:fa:eb:5e:3c:4f:ff:2f:cb: 7b:7a:c7:60:f7:ed:65:1c:62:ed:55:40:cf:1a:84: aa:49:04:c8:c9:21:ac:80:21:c1:47:5f:95:f0:15: 7c:ee:6f:f0:c2:d2:e5:8b:e2:34:46:65:79:d5:93: 70:b2:c0:18:65:03:b5:5e:cb:c5:6f:04:31:dc:57: a5:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F5:BD:71:BE:1B:8F:78:AC:D1:1E:E0:34:E0:4A:98:22:23:52:E7 X509v3 Authority Key Identifier: keyid:0A:08:8A:19:BB:DB:61:DE:D1:91:6C:86:0A:B2:B8:BE:E1:86:ED:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CgiKGbvbYd7RkWyGCrK4vuGG7c0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777B9/DB517B0875B611EFB8E21514C4F9AE02/CgiKGbvbYd7RkWyGCrK4vuGG7c0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:74:7f:ac:6f:74:bc:bd:6d:92:95:34:4d:b0:2d:45:1b:fd: 18:99:14:77:9c:90:e7:05:7e:de:79:bd:36:d6:9d:c3:4c:99: 5b:81:bb:a4:4d:a5:e0:e6:fc:94:a1:be:c5:d5:77:f4:55:d2: 4f:2c:1e:cb:a9:4c:cd:e3:ba:92:8c:3f:e8:f7:f3:11:ee:41: 08:18:07:41:c1:29:f3:79:e4:0b:b7:1d:17:cb:c7:67:85:90: b0:8d:c9:67:23:b0:e4:2b:b1:85:06:b1:81:d3:ee:d8:c4:9a: 3b:25:59:22:6e:68:25:42:47:a1:bc:83:f6:0d:07:8f:6e:0d: 89:fb:25:2a:35:f4:06:77:8a:43:2b:02:5d:fe:21:03:43:d3: 49:a9:1d:e9:99:57:e2:08:d3:53:59:45:c3:48:4b:a3:f8:55: d3:24:68:fe:ef:e7:df:92:08:de:8b:1a:15:3d:97:bd:69:55: ed:3d:65:75:14:3e:b9:5a:a6:b8:46:1e:1d:8d:16:00:03:13: bb:3a:83:50:ae:c1:61:a3:7e:b1:fa:56:9b:42:30:90:b6:08: b3:d4:5a:b1:f1:32:bc:58:bf:af:f0:fb:f1:21:e9:dd:ef:20: 7d:08:e3:52:25:4d:fa:a5:9c:b1:c8:66:91:0f:03:e1:14:53: 41:bf:9d:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QjkxMTAvBgNVBAUTKDBBMDg4QTE5QkJEQjYxREVEMTkxNkM4NjBBQjJCOEJF RTE4NkVEQ0QwHhcNMjUwOTE3MDYzNTU4WhcNMjUwOTI0MDYzNTU4WjAYMRYwFAYD VQQDEw02OGNhNTZjZS0xZjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbBabXNB0AoxveRztBO2qtkmoADiGJS97tbv4xpGskgI0IUMZKbdkka1EhU8 DA5FqLwV4mZ3IWSpMZZeWivcFyxZxAvMSTjAMKOQFUNgKwwiaTgfU25FrD/tbMq6 pJjBX8/O9zn9wX6JIEQzlETaXyAT08KH/JweZp4Bgq/z3L9Nl1rAMsN4c6NfS2B/ p1i6J15HmssGYxnKP6iCe+UT99ygcTc8A7OM+DkgBr4aZesZsXw7fkweYi2m+ute PE//L8t7esdg9+1lHGLtVUDPGoSqSQTIySGsgCHBR1+V8BV87m/wwtLli+I0RmV5 1ZNwssAYZQO1XsvFbwQx3FelJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGD1vXG+ G494rNEe4DTgSpgiI1LnMB8GA1UdIwQYMBaAFAoIihm722He0ZFshgqyuL7hhu3N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdCOS9EQjUxN0IwODc1 QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9DZ2lLR2J2YllkN1JrV3lHQ3JLNHZ1R0c3 YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NnaUtHYnZiWWQ3UmtXeUdDcks0dnVHRzdjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzdCOS9EQjUxN0IwODc1QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9DZ2lLR2J2Yllk N1JrV3lHQ3JLNHZ1R0c3YzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7dH+sb3S8vW2SlTRNsC1FG/0YmRR3nJDnBX7eeb021p3DTJlbgbuk TaXg5vyUob7F1Xf0VdJPLB7LqUzN47qSjD/o9/MR7kEIGAdBwSnzeeQLtx0Xy8dn hZCwjclnI7DkK7GFBrGB0+7YxJo7JVkibmglQkehvIP2DQePbg2J+yUqNfQGd4pD KwJd/iEDQ9NJqR3pmVfiCNNTWUXDSEuj+FXTJGj+7+ffkgjeixoVPZe9aVXtPWV1 FD65Wqa4Rh4djRYAAxO7OoNQrsFho36x+labQjCQtgiz1Fqx8TK8WL+v8PvxIend 7yB9CONSJU36pZyxyGaRDwPhFFNBv53u -----END CERTIFICATE-----Generated at Fri Sep 19 00:47:48 2025 by rpki-client