$ rpki-client -vvf rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft File: fnHZ0UYSF7D4LAexXE8CnyZySYo.mft (raw, json) Hash identifier: 8aZCc7+Nhkk1A84hhzd+1h01C7kqmN2qMJZY4Ues434= Subject key identifier: EE:C9:94:12:61:23:87:14:36:FB:A8:29:28:A1:16:B8:1C:19:E8:33 Authority key identifier: 7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A Certificate issuer: /CN=A91A11A1/serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft Manifest number: 013D Signing time: Sun 07 Sep 2025 04:53:27 +0000 Manifest this update: Sun 07 Sep 2025 04:53:27 +0000 Manifest next update: Sun 14 Sep 2025 04:53:27 +0000 Files and hashes: 1: fnHZ0UYSF7D4LAexXE8CnyZySYo.crl (hash: l0dE3lG7cflYXmpwN91lR7o1/CFr/WXP7GlpyjexzFw=) 2: FA66BA00BD1311EEBC015623C4F9AE02.roa (hash: y81/Bm4goLn9P37Big7/CzEV9a1Uz1uENuSDaA4pS5U=) 3: F57B503EB05F11EEB6F38532C4F9AE02.roa (hash: MOWmFDpIkvE9ZXw3XjwL/Gz8uOZnXK7NosAmPb+jAAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 04:53:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A11A1, serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Validity Not Before: Sep 7 04:53:27 2025 GMT Not After : Sep 14 04:53:27 2025 GMT Subject: CN=68bd0fc7-0b7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:47:e7:4c:76:ff:75:61:12:e2:be:c9:2d:14: c6:4b:b3:8c:d8:36:07:df:e5:85:4b:a8:7b:b1:49: 11:9a:ad:54:f7:4c:11:51:b3:2f:42:84:94:6e:50: 69:a0:4d:10:46:62:25:ce:9f:da:f4:4c:b9:c4:89: f1:aa:cb:c8:ce:e1:91:e4:5e:05:0f:de:f7:25:bf: 35:23:62:d9:bc:bf:a5:b1:98:be:e5:80:73:ea:b9: 77:e3:e0:2d:22:a4:66:3a:d2:5c:ef:7a:e5:84:63: 98:d5:6e:31:10:ef:51:88:a5:0f:49:db:1a:ca:2c: 96:f1:76:48:f5:d9:d0:53:cd:45:5d:9d:82:65:d2: 4b:3b:4b:80:e3:26:e0:ce:c2:1f:5d:8b:3a:65:ce: 16:7b:24:fd:bf:88:a4:b6:47:36:31:6e:f6:8d:60: f6:7d:13:24:66:c0:ad:4e:80:01:8d:ef:a0:4b:77: b4:87:d8:69:b1:05:21:72:4d:e5:f3:d4:d1:8d:61: b8:a4:e5:27:73:f2:32:4f:e3:f2:e4:92:f3:a5:8a: b7:9c:e8:0e:6f:a5:94:de:00:7f:c4:7a:18:f4:b5: b9:1f:31:cb:3e:cd:2d:c6:5d:a2:1e:86:c1:b5:e7: 69:79:2b:53:91:8e:95:d0:31:e7:e2:3d:60:76:5e: 7e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:C9:94:12:61:23:87:14:36:FB:A8:29:28:A1:16:B8:1C:19:E8:33 X509v3 Authority Key Identifier: keyid:7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:b0:0f:df:c3:d1:f8:ac:83:fb:72:61:65:f8:32:66:6f:dd: 81:7b:08:3f:57:e6:c3:5c:1f:77:0c:e8:55:c8:2a:1d:4c:dd: 60:31:53:d7:50:d8:ba:51:19:96:11:3c:fa:57:2d:59:19:c4: 20:e4:db:52:8e:ca:23:14:78:2f:a3:7f:54:92:75:2f:7c:a9: 62:73:c6:bd:70:be:61:73:31:f9:21:94:ad:a9:0b:1a:16:65: 23:04:85:3b:74:5c:0b:c5:68:a5:b3:48:a2:99:d4:6b:ad:1e: 3f:22:36:dc:fc:d2:48:25:67:7b:06:23:f9:5c:99:7c:40:ee: f0:08:3f:80:5b:1f:7a:7c:7a:5f:56:9b:01:1d:4d:d2:01:3d: b5:33:7b:8a:3f:ee:fa:0b:a2:71:a8:d2:2e:61:b3:46:de:a8: 0e:a1:81:6d:b6:62:9a:80:57:46:18:65:cf:b7:63:b7:93:8b: c0:a4:e8:4f:d4:6e:2b:78:2c:32:30:be:94:9a:cd:b7:38:4d: 60:29:76:90:60:80:98:1f:73:8b:7d:46:8c:fb:ff:00:3b:d0: b9:bb:6b:ba:d6:a9:1b:14:1d:e4:0f:fb:38:fc:81:cf:8b:16: 40:27:bb:e2:94:0b:d2:a5:dd:54:ff:8a:0e:58:54:1e:1f:40: 13:f3:34:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTExQTExMTAvBgNVBAUTKDdFNzFEOUQxNDYxMjE3QjBGODJDMDdCMTVDNEYwMjlG MjY3MjQ5OEEwHhcNMjUwOTA3MDQ1MzI3WhcNMjUwOTE0MDQ1MzI3WjAYMRYwFAYD VQQDEw02OGJkMGZjNy0wYjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskfnTHb/dWES4r7JLRTGS7OM2DYH3+WFS6h7sUkRmq1U90wRUbMvQoSUblBp oE0QRmIlzp/a9Ey5xInxqsvIzuGR5F4FD973Jb81I2LZvL+lsZi+5YBz6rl34+At IqRmOtJc73rlhGOY1W4xEO9RiKUPSdsayiyW8XZI9dnQU81FXZ2CZdJLO0uA4ybg zsIfXYs6Zc4WeyT9v4iktkc2MW72jWD2fRMkZsCtToABje+gS3e0h9hpsQUhck3l 89TRjWG4pOUnc/IyT+Py5JLzpYq3nOgOb6WU3gB/xHoY9LW5HzHLPs0txl2iHobB tedpeStTkY6V0DHn4j1gdl5+QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7JlBJh I4cUNvuoKSihFrgcGegzMB8GA1UdIwQYMBaAFH5x2dFGEhew+CwHsVxPAp8mckmK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTFBMS9BOUI3M0NBOEIw NUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9mbkhaMFVZU0Y3RDRMQWV4WEU4Q255WnlT WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuSFowVVlTRjdENExBZXhYRThDbnlaeVNZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTFBMS9BOUI3M0NBOEIwNUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9mbkhaMFVZU0Y3 RDRMQWV4WEU4Q255WnlTWW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpsA/fw9H4rIP7cmFl+DJmb92Bewg/V+bDXB93DOhVyCodTN1gMVPX UNi6URmWETz6Vy1ZGcQg5NtSjsojFHgvo39UknUvfKlic8a9cL5hczH5IZStqQsa FmUjBIU7dFwLxWils0iimdRrrR4/Ijbc/NJIJWd7BiP5XJl8QO7wCD+AWx96fHpf VpsBHU3SAT21M3uKP+76C6JxqNIuYbNG3qgOoYFttmKagFdGGGXPt2O3k4vApOhP 1G4reCwyML6Ums23OE1gKXaQYICYH3OLfUaM+/8AO9C5u2u61qkbFB3kD/s4/IHP ixZAJ7vilAvSpd1U/4oOWFQeH0AT8zQz -----END CERTIFICATE-----Generated at Sun Sep 7 14:22:32 2025 by rpki-client