$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft File: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft (raw, json) Hash identifier: DyXZjs6bn17+vNv0QStZovW51oBJYzo2CNjPEk0R+UM= Subject key identifier: 13:77:AB:5C:58:AE:C7:CE:06:98:1C:E1:21:CA:85:FB:B5:BC:41:B8 Authority key identifier: D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 Certificate issuer: /CN=A91A8B67/serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Certificate serial: 9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft Manifest number: 93 Signing time: Wed 17 Sep 2025 07:17:08 +0000 Manifest this update: Wed 17 Sep 2025 07:17:08 +0000 Manifest next update: Wed 24 Sep 2025 07:17:08 +0000 Files and hashes: 1: 1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl (hash: VHCqIJfAeRMLeuBipHtgHC+xSoqerelyuzvX2UuAnQs=) 2: 1363F5E60E8E11F082304B42C4F9AE02.roa (hash: hu1JiBFiyTnMySrt80yNdScgCjSfSkHINTEYjzYfdUg=) 3: E90F04F4114711F0B6E44E12C4F9AE02.roa (hash: PlQx8+H4QWwRWOJyC7w29KW+ohdqt59u/vmKToMRgGo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8B67, serialNumber=D459D267525234A0535EC38D8CCC8990194DE189 Validity Not Before: Sep 17 07:17:08 2025 GMT Not After : Sep 24 07:17:08 2025 GMT Subject: CN=68ca6074-4920 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b6:e5:3d:04:6c:23:de:94:86:a0:cf:a3:a2: 25:98:17:aa:0d:e4:19:21:d9:43:1b:68:bc:20:98: 47:59:8b:55:6a:98:ec:04:9c:9b:a7:63:6f:a7:b3: 51:bb:9b:76:2c:ed:ba:c0:12:0f:5a:b9:68:cf:4b: 1c:c1:59:59:d3:d2:aa:af:39:7f:6a:dc:c0:09:a1: a2:3c:ea:df:57:5e:b0:28:8e:28:86:24:0b:51:dd: 83:37:d3:d1:51:ea:a6:92:46:d9:52:4b:02:cd:fd: c3:9f:c8:a4:e3:e5:f7:03:9d:0c:43:5c:c0:4b:b2: 0b:64:75:9b:0e:89:1a:ff:4f:b6:e9:ec:9e:15:1f: 8c:cc:91:e5:c3:26:5f:f1:cd:e4:02:62:36:97:5d: e8:bb:de:90:e5:b8:6b:35:a5:38:27:6e:c5:ad:db: c5:ad:c8:66:25:a9:6c:bc:be:55:d5:98:dd:a4:b1: 68:5d:9e:ca:15:7c:64:e5:66:6c:09:a1:26:cf:82: 23:01:1b:63:e1:93:1b:08:b8:b6:c2:95:2e:56:5f: e3:2d:c8:1b:e5:b1:19:ab:e1:4e:bd:88:9e:97:35: 10:25:45:f7:5d:1c:ea:a3:6e:13:a7:40:d6:ee:04: d3:33:c6:56:58:56:cf:1d:41:98:ff:a9:7c:3d:4b: c0:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:77:AB:5C:58:AE:C7:CE:06:98:1C:E1:21:CA:85:FB:B5:BC:41:B8 X509v3 Authority Key Identifier: keyid:D4:59:D2:67:52:52:34:A0:53:5E:C3:8D:8C:CC:89:90:19:4D:E1:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8B67/2FA00D3EC6AA11EF84FB0D0DC4F9AE02/1FnSZ1JSNKBTXsONjMyJkBlN4Yk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:81:a4:51:6e:d5:33:bb:c6:f4:7e:28:d4:0f:72:17:01:9e: 95:d3:c8:05:6d:b7:8f:e8:bb:66:af:27:97:18:ba:83:65:9f: ba:5d:7f:fc:48:68:8c:42:72:ce:3f:0a:88:c3:c8:f1:8b:71: 88:48:68:0b:a6:57:bb:98:26:f9:10:9e:76:65:d7:32:45:19: a2:4d:c3:12:e4:26:b1:55:3e:81:dd:e6:17:52:74:f2:12:19: 2c:bc:11:6f:1c:d5:64:c9:12:b5:d9:c6:21:05:c2:4f:92:60: dc:7b:7a:ff:81:61:5e:3d:39:f6:06:b7:56:4b:25:df:87:f7: 45:5f:ce:7c:f2:cf:7a:0d:14:16:af:7a:76:61:66:a3:a6:e2: 41:1e:5d:90:7a:97:ec:cb:37:af:1f:88:b4:c2:e1:1a:fd:05: 10:01:3d:e4:56:04:30:32:1a:61:f8:21:03:37:74:71:4b:68: 24:8b:8d:3f:d0:9a:81:da:a8:9e:6d:65:0c:85:63:52:e9:db: 95:71:0a:50:8f:aa:7c:fd:cc:cd:26:45:5c:d6:2f:09:6b:89: 11:58:b1:ea:36:3b:6b:38:ea:ec:4c:29:3f:c8:9d:39:f4:aa: 55:a8:b7:46:95:71:62:1b:3a:75:98:01:0d:6e:3f:9b:45:2c: 93:2b:17:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThCNjcxMTAvBgNVBAUTKEQ0NTlEMjY3NTI1MjM0QTA1MzVFQzM4RDhDQ0M4OTkw MTk0REUxODkwHhcNMjUwOTE3MDcxNzA4WhcNMjUwOTI0MDcxNzA4WjAYMRYwFAYD VQQDEw02OGNhNjA3NC00OTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLblPQRsI96UhqDPo6IlmBeqDeQZIdlDG2i8IJhHWYtVapjsBJybp2Nvp7NR u5t2LO26wBIPWrloz0scwVlZ09Kqrzl/atzACaGiPOrfV16wKI4ohiQLUd2DN9PR UeqmkkbZUksCzf3Dn8ik4+X3A50MQ1zAS7ILZHWbDoka/0+26eyeFR+MzJHlwyZf 8c3kAmI2l13ou96Q5bhrNaU4J27FrdvFrchmJalsvL5V1ZjdpLFoXZ7KFXxk5WZs CaEmz4IjARtj4ZMbCLi2wpUuVl/jLcgb5bEZq+FOvYielzUQJUX3XRzqo24Tp0DW 7gTTM8ZWWFbPHUGY/6l8PUvA2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBN3q1xY rsfOBpgc4SHKhfu1vEG4MB8GA1UdIwQYMBaAFNRZ0mdSUjSgU17DjYzMiZAZTeGJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEI2Ny8yRkEwMEQzRUM2 QUExMUVGODRGQjBEMERDNEY5QUUwMi8xRm5TWjFKU05LQlRYc09Oak15SmtCbE40 WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFGblNaMUpTTktCVFhzT05qTXlKa0JsTjRZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEI2Ny8yRkEwMEQzRUM2QUExMUVGODRGQjBEMERDNEY5QUUwMi8xRm5TWjFKU05L QlRYc09Oak15SmtCbE40WWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQgaRRbtUzu8b0fijUD3IXAZ6V08gFbbeP6LtmryeXGLqDZZ+6XX/8 SGiMQnLOPwqIw8jxi3GISGgLple7mCb5EJ52ZdcyRRmiTcMS5CaxVT6B3eYXUnTy EhksvBFvHNVkyRK12cYhBcJPkmDce3r/gWFePTn2BrdWSyXfh/dFX8588s96DRQW r3p2YWajpuJBHl2QepfsyzevH4i0wuEa/QUQAT3kVgQwMhph+CEDN3RxS2gki40/ 0JqB2qiebWUMhWNS6duVcQpQj6p8/czNJkVc1i8Ja4kRWLHqNjtrOOrsTCk/yJ05 9KpVqLdGlXFiGzp1mAENbj+bRSyTKxeC -----END CERTIFICATE-----Generated at Fri Sep 19 02:33:12 2025 by rpki-client