$ rpki-client -vvf rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft File: n2T-UJklN_sLQOUvnPrDEMonGRg.mft (raw, json) Hash identifier: fyURjJY5YXeFrmimnPxJexwcaiBc+iJ7M1HCzJ7F4sM= Subject key identifier: 3C:73:E0:07:F2:6F:75:58:C3:D2:8E:A5:F3:05:EF:70:C8:21:E7:F5 Authority key identifier: 9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 Certificate issuer: /CN=A91A57F8/serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Certificate serial: 0223 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft Manifest number: 0213 Signing time: Fri 19 Sep 2025 03:07:36 +0000 Manifest this update: Fri 19 Sep 2025 03:07:35 +0000 Manifest next update: Fri 26 Sep 2025 03:07:35 +0000 Files and hashes: 1: n2T-UJklN_sLQOUvnPrDEMonGRg.crl (hash: zs9QBDswQfnOuB4LsRL+HK+SRqJ6YUQp2PAvU5x39UM=) 2: A508D320BBC711ED8DF23C40C4F9AE02.roa (hash: dWDbCVpbD2Fv8B28JP0RFzPPUhHwh3HRs+s/QVcOin8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 03:07:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A57F8, serialNumber=9F64FE50992537FB0B40E52F9CFAC310CA271918 Validity Not Before: Sep 19 03:07:35 2025 GMT Not After : Sep 26 03:07:35 2025 GMT Subject: CN=68ccc8f8-da90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:51:40:87:a2:0e:80:46:4c:74:45:a5:8c:eb: ba:4b:3b:08:d0:8d:bf:02:ed:4c:c1:09:91:18:a1: 84:50:ff:2e:bb:c9:d9:97:ca:53:3a:2f:4d:bc:85: 45:d9:09:a4:4a:71:5f:31:ed:0c:1d:08:68:e3:8a: e5:c5:3e:e1:73:74:c0:13:c8:ae:8c:4a:6d:d3:76: 57:1c:4d:9a:39:9e:e9:a3:c2:db:53:cf:b1:a7:83: b6:90:e8:95:22:30:c3:a2:01:8d:bb:0a:ec:d1:17: c2:c0:4b:b5:91:08:41:0e:83:b5:c6:ef:e0:fd:c6: f5:1e:5e:ec:f5:37:fb:aa:c7:a5:7c:34:b5:ad:44: f8:d4:e8:aa:7f:82:28:8e:db:b3:b4:ed:b1:10:fe: 41:12:97:f7:15:16:b3:78:31:30:a0:95:ae:87:9e: e0:04:96:50:25:71:3e:b5:66:10:75:70:4d:55:1a: ef:3f:53:42:ed:f1:17:97:d9:f7:99:77:1f:d4:88: 6c:ad:3f:77:99:80:d3:59:3b:94:6b:08:c8:dd:2b: 20:b7:1f:30:bc:0d:c3:75:8f:c5:7a:22:01:5f:85: 78:e1:e2:9e:01:bd:fa:60:73:4a:c4:58:1c:db:46: f1:d7:a1:d6:91:2a:c6:d0:20:f1:58:a2:eb:48:c2: ba:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:73:E0:07:F2:6F:75:58:C3:D2:8E:A5:F3:05:EF:70:C8:21:E7:F5 X509v3 Authority Key Identifier: keyid:9F:64:FE:50:99:25:37:FB:0B:40:E5:2F:9C:FA:C3:10:CA:27:19:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2T-UJklN_sLQOUvnPrDEMonGRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A57F8/34509400B97511ED8040DE22C4F9AE02/n2T-UJklN_sLQOUvnPrDEMonGRg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:5b:e2:23:d5:42:7a:e7:c5:ae:fc:6a:ad:44:c0:99:47:d8: f9:a7:43:0f:c4:21:5b:bc:eb:71:a4:e8:eb:78:90:57:a2:21: 0c:1d:22:5a:54:37:58:83:88:31:cb:ef:e9:bf:a7:ac:c8:9d: aa:21:f8:44:1c:76:58:eb:c0:ef:f7:f3:d7:80:a9:7e:7f:26: dc:ca:f6:17:bf:15:b8:6c:69:ac:a5:49:a6:d5:87:06:a4:f1: 83:ae:15:fa:04:6c:6a:49:23:e2:81:d1:c7:40:54:2f:c0:24: 50:da:95:fe:46:74:c7:7e:33:72:7b:c0:76:58:f4:b4:f4:ae: 7d:c2:d3:1a:2b:62:60:48:64:fc:0d:a1:00:6f:64:d7:8c:31: 66:ac:ee:db:58:a5:11:3d:ec:b3:00:9c:0e:62:bb:36:91:3c: 1c:c4:a1:f3:0c:09:b9:47:5d:7a:2a:81:66:4b:12:fd:af:d8: fa:5d:bd:71:3a:3a:53:ef:df:87:0a:dd:ae:5b:dc:1f:cd:fd: 0e:25:a8:74:fe:77:f5:0c:c6:3c:e6:53:87:e4:2c:ec:33:07: 69:9a:21:3f:6b:b6:c5:c4:24:68:e3:30:2c:db:90:6f:2c:ba: 3f:bb:e6:da:d4:a0:d1:ef:53:66:3a:a2:53:e4:c7:58:ec:e1: d9:03:d8:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU3RjgxMTAvBgNVBAUTKDlGNjRGRTUwOTkyNTM3RkIwQjQwRTUyRjlDRkFDMzEw Q0EyNzE5MTgwHhcNMjUwOTE5MDMwNzM1WhcNMjUwOTI2MDMwNzM1WjAYMRYwFAYD VQQDEw02OGNjYzhmOC1kYTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlFAh6IOgEZMdEWljOu6SzsI0I2/Au1MwQmRGKGEUP8uu8nZl8pTOi9NvIVF 2QmkSnFfMe0MHQho44rlxT7hc3TAE8iujEpt03ZXHE2aOZ7po8LbU8+xp4O2kOiV IjDDogGNuwrs0RfCwEu1kQhBDoO1xu/g/cb1Hl7s9Tf7qselfDS1rUT41Oiqf4Io jtuztO2xEP5BEpf3FRazeDEwoJWuh57gBJZQJXE+tWYQdXBNVRrvP1NC7fEXl9n3 mXcf1IhsrT93mYDTWTuUawjI3Ssgtx8wvA3DdY/FeiIBX4V44eKeAb36YHNKxFgc 20bx16HWkSrG0CDxWKLrSMK6PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDxz4Afy b3VYw9KOpfMF73DIIef1MB8GA1UdIwQYMBaAFJ9k/lCZJTf7C0DlL5z6wxDKJxkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTdGOC8zNDUwOTQwMEI5 NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5fc0xRT1V2blByREVNb25H UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24yVC1VSmtsTl9zTFFPVXZuUHJERU1vbkdSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTdGOC8zNDUwOTQwMEI5NzUxMUVEODA0MERFMjJDNEY5QUUwMi9uMlQtVUprbE5f c0xRT1V2blByREVNb25HUmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOW+Ij1UJ658Wu/GqtRMCZR9j5p0MPxCFbvOtxpOjreJBXoiEMHSJa VDdYg4gxy+/pv6esyJ2qIfhEHHZY68Dv9/PXgKl+fybcyvYXvxW4bGmspUmm1YcG pPGDrhX6BGxqSSPigdHHQFQvwCRQ2pX+RnTHfjNye8B2WPS09K59wtMaK2JgSGT8 DaEAb2TXjDFmrO7bWKURPeyzAJwOYrs2kTwcxKHzDAm5R116KoFmSxL9r9j6Xb1x OjpT79+HCt2uW9wfzf0OJah0/nf1DMY85lOH5CzsMwdpmiE/a7bFxCRo4zAs25Bv LLo/u+ba1KDR71NmOqJT5MdY7OHZA9gW -----END CERTIFICATE-----Generated at Fri Sep 19 09:25:55 2025 by rpki-client