$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft File: aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft (raw, json) Hash identifier: 7j6iCtJRy4kflrs6g/Q/1UNOs1jMkUXbcC1GMnPG8HU= Subject key identifier: 41:18:EE:57:5B:5E:CB:FC:95:34:84:C6:8F:F7:6F:2C:E9:4E:E1:E6 Authority key identifier: 68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA Certificate issuer: /CN=A91A5208/serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft Manifest number: 7A Signing time: Wed 17 Sep 2025 07:33:31 +0000 Manifest this update: Wed 17 Sep 2025 07:33:31 +0000 Manifest next update: Wed 24 Sep 2025 07:33:31 +0000 Files and hashes: 1: aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl (hash: FsqS3s1UZzP4NBvjqjQvD0cfoZNpqpxQOto1kiCL/5s=) 2: FF9C9380E84D11EFBDF0C033C4F9AE02.roa (hash: C95CWdcWS0/9Z9oU15qyADSExZ8oTkF5cAIWUUfMLiU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5208, serialNumber=68AD0D0470F6AC6F19C64EEF4094EE0BB5871EDA Validity Not Before: Sep 17 07:33:31 2025 GMT Not After : Sep 24 07:33:31 2025 GMT Subject: CN=68ca644b-f0da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:25:1a:03:d6:6e:63:ce:f5:33:61:3a:89:47: 24:36:e7:ec:da:9a:db:62:91:e1:0b:77:f5:2c:4a: 27:28:2d:0b:6b:43:cb:db:ea:7a:cb:37:1f:88:e1: 61:73:50:a1:b8:73:96:ea:40:8b:36:f8:81:45:4c: 88:09:dd:22:bb:d9:51:a0:a4:17:33:27:ce:3a:ee: b8:aa:26:32:2a:94:d4:37:54:5d:21:79:31:7f:71: 56:2d:f9:18:5c:c6:f2:33:1a:9e:de:92:63:76:43: e9:8f:26:e4:63:bc:5e:83:90:4e:c6:51:0e:f6:a5: 49:ff:55:e0:40:f0:89:75:42:c8:fe:68:50:dd:4e: 91:ec:db:fb:24:a8:69:18:89:45:7c:67:cd:1f:80: e4:9c:79:25:1b:9e:0b:aa:80:49:b7:e2:66:7c:e6: 8f:fc:ac:cc:01:ce:62:d8:75:94:f5:d2:6e:9e:5c: 3c:a9:6d:e0:e3:75:d2:81:7d:41:62:1d:cf:e4:5c: c3:a5:23:2d:f0:f5:92:98:98:c2:a8:45:e4:9f:77: 9e:4f:0b:71:85:18:74:32:f6:de:4d:d7:db:10:07: 43:df:5e:aa:d8:d8:39:de:f9:c7:61:1b:93:0c:e3: 10:a1:a7:74:25:94:0c:f0:02:49:2d:1e:09:64:87: b9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:18:EE:57:5B:5E:CB:FC:95:34:84:C6:8F:F7:6F:2C:E9:4E:E1:E6 X509v3 Authority Key Identifier: keyid:68:AD:0D:04:70:F6:AC:6F:19:C6:4E:EF:40:94:EE:0B:B5:87:1E:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK0NBHD2rG8Zxk7vQJTuC7WHHto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5208/9E28557EE4EE11EFB1ED760EC4F9AE02/aK0NBHD2rG8Zxk7vQJTuC7WHHto.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:87:66:34:b0:bd:b9:72:f2:cf:8f:5e:8a:fe:e1:5e:a3:bc: dd:2b:10:fe:49:8d:f4:6c:8a:2a:cb:87:dd:e5:0a:b4:f0:3d: a4:6a:77:0b:42:5a:09:09:75:d0:87:cd:c1:40:fb:85:73:d4: 77:a9:e2:77:23:6b:92:16:c2:a6:0d:bb:10:87:b6:dd:04:cb: 7d:9f:fd:f1:e7:e2:4f:5b:7d:09:42:f6:4f:49:2a:d4:84:f4: 40:8e:bd:b6:d0:e3:d8:66:1e:d5:e1:88:89:c1:00:5f:4b:9f: 51:f7:97:46:72:ce:e6:11:12:84:c1:81:b7:85:65:82:c3:f9: 14:9b:a2:a1:c8:78:3a:71:51:81:3e:5b:8b:48:c2:3d:d9:27: 06:09:d5:54:19:ac:f9:83:a8:87:f0:84:73:56:18:05:92:4c: 86:e9:ea:ac:8d:1b:0b:cb:8f:00:33:6f:f7:de:b9:a1:c5:94: a1:54:b6:f3:08:cf:92:8b:13:e4:a6:c8:30:68:e0:66:dc:8c: 5d:40:7c:4f:2f:b0:b4:ba:cf:61:57:8a:09:e0:fd:eb:31:57: 85:86:f7:04:30:fd:f2:39:b9:9f:f4:35:0b:a6:10:f8:fd:65: 88:ac:c0:7f:b3:6d:fb:6c:87:e2:6a:3d:e4:1e:03:0a:2a:69: 36:68:07:18 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTIwODExMC8GA1UEBRMoNjhBRDBEMDQ3MEY2QUM2RjE5QzY0RUVGNDA5NEVFMEJC NTg3MUVEQTAeFw0yNTA5MTcwNzMzMzFaFw0yNTA5MjQwNzMzMzFaMBgxFjAUBgNV BAMTDTY4Y2E2NDRiLWYwZGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHJRoD1m5jzvUzYTqJRyQ25+zamttikeELd/UsSicoLQtrQ8vb6nrLNx+I4WFz UKG4c5bqQIs2+IFFTIgJ3SK72VGgpBczJ8467riqJjIqlNQ3VF0heTF/cVYt+Rhc xvIzGp7ekmN2Q+mPJuRjvF6DkE7GUQ72pUn/VeBA8Il1Qsj+aFDdTpHs2/skqGkY iUV8Z80fgOSceSUbnguqgEm34mZ85o/8rMwBzmLYdZT10m6eXDypbeDjddKBfUFi Hc/kXMOlIy3w9ZKYmMKoReSfd55PC3GFGHQy9t5N19sQB0PfXqrY2Dne+cdhG5MM 4xChp3QllAzwAkktHglkh7lVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQRjuV1te y/yVNITGj/dvLOlO4eYwHwYDVR0jBBgwFoAUaK0NBHD2rG8Zxk7vQJTuC7WHHtow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1MjA4LzlFMjg1NTdFRTRF RTExRUZCMUVENzYwRUM0RjlBRTAyL2FLME5CSEQyckc4WnhrN3ZRSlR1QzdXSEh0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYUswTkJIRDJyRzhaeGs3dlFKVHVDN1dISHRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1 MjA4LzlFMjg1NTdFRTRFRTExRUZCMUVENzYwRUM0RjlBRTAyL2FLME5CSEQyckc4 WnhrN3ZRSlR1QzdXSEh0by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEOHZjSwvbly8s+PXor+4V6jvN0rEP5JjfRsiirLh93lCrTwPaRqdwtC WgkJddCHzcFA+4Vz1Hep4ncja5IWwqYNuxCHtt0Ey32f/fHn4k9bfQlC9k9JKtSE 9ECOvbbQ49hmHtXhiInBAF9Ln1H3l0ZyzuYREoTBgbeFZYLD+RSboqHIeDpxUYE+ W4tIwj3ZJwYJ1VQZrPmDqIfwhHNWGAWSTIbp6qyNGwvLjwAzb/feuaHFlKFUtvMI z5KLE+SmyDBo4GbcjF1AfE8vsLS6z2FXigng/esxV4WG9wQw/fI5uZ/0NQumEPj9 ZYiswH+zbftsh+JqPeQeAwoqaTZoBxg= -----END CERTIFICATE-----Generated at Fri Sep 19 00:40:13 2025 by rpki-client