$ rpki-client -vvf rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft File: RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft (raw, json) Hash identifier: xQ34GvFcPAH6SHRXOVmuJq9fBQ1I7GQfeoWtLhQd0W4= Subject key identifier: C0:05:1F:8B:00:01:DC:08:C2:24:9D:C2:19:20:6F:EF:96:8F:A6:69 Authority key identifier: 45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 Certificate issuer: /CN=A91A78A7/serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Certificate serial: 02B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft Manifest number: 02B3 Signing time: Wed 17 Sep 2025 01:59:44 +0000 Manifest this update: Wed 17 Sep 2025 01:59:43 +0000 Manifest next update: Wed 24 Sep 2025 01:59:43 +0000 Files and hashes: 1: RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl (hash: wpoocC5hxs0TvFgwCFM1AUacXXfiAS0N65bH+yONs1k=) 2: D470449E0E4411ED9C0F5B45C4F9AE02.roa (hash: M5cm8ltbxVdRcxdqwX20eH12vgkHWhKoQMG7Vy7tBQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 01:59:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 695 (0x2b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A78A7, serialNumber=45337DC5E4839E49819129DEA2A9461B021CD190 Validity Not Before: Sep 17 01:59:43 2025 GMT Not After : Sep 24 01:59:43 2025 GMT Subject: CN=68ca160f-2cdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:db:05:87:d4:a2:bb:44:b4:42:fb:ae:f7:0f: c1:3d:ea:67:b5:a7:e5:b1:08:2c:7d:09:c1:30:f2: 17:d8:29:35:7b:18:b9:0d:b5:24:87:6c:14:b4:eb: 3c:b3:dc:74:ed:f1:69:61:9f:b6:98:ac:4d:42:32: f0:c2:05:c0:ff:d4:64:60:dc:e0:91:07:1f:d0:b5: 85:7f:4b:39:e5:03:45:b6:a6:2b:e6:4f:17:f4:7c: cf:c6:2b:8b:7f:c3:fc:3c:c4:78:b2:32:1c:e7:3b: d2:3e:09:86:aa:ba:9d:e6:15:c5:e9:dd:a6:d5:3f: a8:64:d7:48:06:60:99:c9:e7:a0:09:27:84:71:a5: 5a:da:94:59:f0:7d:82:09:76:8f:93:04:3b:60:12: 17:8f:49:1c:39:22:a1:fc:c9:93:06:0d:4f:ca:48: 17:97:9f:28:1b:bf:00:32:6a:1d:76:43:49:74:4b: 84:39:21:04:af:38:eb:40:08:ff:d9:a2:86:11:3e: 88:98:6c:bb:f6:dd:ae:1b:d6:60:00:8f:71:fc:08: 6f:38:d8:c3:77:ad:7d:76:84:d3:82:22:a1:48:f9: e9:95:69:ed:41:e3:67:0c:69:43:fe:fd:29:a8:fb: ed:e5:62:81:ea:da:9b:4a:dd:51:28:06:86:50:1f: 28:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:05:1F:8B:00:01:DC:08:C2:24:9D:C2:19:20:6F:EF:96:8F:A6:69 X509v3 Authority Key Identifier: keyid:45:33:7D:C5:E4:83:9E:49:81:91:29:DE:A2:A9:46:1B:02:1C:D1:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTN9xeSDnkmBkSneoqlGGwIc0ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A78A7/104B19460CBD11EDAA77D12DC4F9AE02/RTN9xeSDnkmBkSneoqlGGwIc0ZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:0c:57:ee:68:ce:ca:22:47:de:76:ef:6d:26:47:2e:d0:5f: 8f:fe:2e:ff:47:12:9e:74:b9:81:f3:af:9c:48:af:68:c6:8d: 25:0c:0e:97:6d:9e:2a:2b:72:77:10:1e:04:de:b6:e8:07:f5: d1:91:fb:6a:f9:be:65:80:b1:95:0a:e2:e9:ba:24:cd:97:cd: 80:cc:fa:5e:a0:88:26:77:8f:78:c1:a5:85:c5:9a:b7:c0:91: 24:f2:6e:c8:b2:71:f5:4e:cf:40:ef:39:53:d0:b8:92:dc:44: 30:3e:9d:87:15:2f:c9:dd:5a:90:d7:62:a9:09:cd:5f:da:2d: 25:76:6e:c6:72:6c:cd:9f:7f:5a:19:a4:a5:58:20:91:db:7e: 5c:52:dd:a7:22:d5:e8:c1:2c:5b:17:3c:59:ae:b6:ae:bf:ef: b5:ec:48:57:4e:47:d5:90:1c:79:9a:ff:ab:88:d0:7f:8c:49: 2e:76:1a:51:48:f4:13:48:d3:a3:86:7a:3a:7a:71:8e:b9:18: 90:0d:81:46:3e:cd:ee:8c:f1:1d:e2:5c:5c:a4:d6:5d:ee:1b: 4e:c7:65:98:f2:74:8d:22:c2:b9:1d:2f:50:b1:d2:2d:b5:96: 01:74:46:50:56:46:d9:0a:c1:ef:23:2b:0c:c8:c6:b8:36:50: 82:33:25:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTc4QTcxMTAvBgNVBAUTKDQ1MzM3REM1RTQ4MzlFNDk4MTkxMjlERUEyQTk0NjFC MDIxQ0QxOTAwHhcNMjUwOTE3MDE1OTQzWhcNMjUwOTI0MDE1OTQzWjAYMRYwFAYD VQQDEw02OGNhMTYwZi0yY2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAutsFh9Siu0S0Qvuu9w/BPepntaflsQgsfQnBMPIX2Ck1exi5DbUkh2wUtOs8 s9x07fFpYZ+2mKxNQjLwwgXA/9RkYNzgkQcf0LWFf0s55QNFtqYr5k8X9HzPxiuL f8P8PMR4sjIc5zvSPgmGqrqd5hXF6d2m1T+oZNdIBmCZyeegCSeEcaVa2pRZ8H2C CXaPkwQ7YBIXj0kcOSKh/MmTBg1PykgXl58oG78AMmoddkNJdEuEOSEErzjrQAj/ 2aKGET6ImGy79t2uG9ZgAI9x/AhvONjDd619doTTgiKhSPnplWntQeNnDGlD/v0p qPvt5WKB6tqbSt1RKAaGUB8o/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMAFH4sA AdwIwiSdwhkgb++Wj6ZpMB8GA1UdIwQYMBaAFEUzfcXkg55JgZEp3qKpRhsCHNGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzhBNy8xMDRCMTk0NjBD QkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5rbUJrU25lb3FsR0d3SWMw WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JUTjl4ZVNEbmttQmtTbmVvcWxHR3dJYzBaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzhBNy8xMDRCMTk0NjBDQkQxMUVEQUE3N0QxMkRDNEY5QUUwMi9SVE45eGVTRG5r bUJrU25lb3FsR0d3SWMwWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXDFfuaM7KIkfedu9tJkcu0F+P/i7/RxKedLmB86+cSK9oxo0lDA6X bZ4qK3J3EB4E3rboB/XRkftq+b5lgLGVCuLpuiTNl82AzPpeoIgmd494waWFxZq3 wJEk8m7IsnH1Ts9A7zlT0LiS3EQwPp2HFS/J3VqQ12KpCc1f2i0ldm7GcmzNn39a GaSlWCCR235cUt2nItXowSxbFzxZrrauv++17EhXTkfVkBx5mv+riNB/jEkudhpR SPQTSNOjhno6enGOuRiQDYFGPs3ujPEd4lxcpNZd7htOx2WY8nSNIsK5HS9QsdIt tZYBdEZQVkbZCsHvIysMyMa4NlCCMyVy -----END CERTIFICATE-----Generated at Thu Sep 18 22:16:20 2025 by rpki-client