$ rpki-client -vvf rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft File: aMK1iNFoWlh0LYouGIhl2zEQPPc.mft (raw, json) Hash identifier: o9ZMVh41/3lDXzSPXtZdnzbWSCcczymdJIzvYXETSY0= Subject key identifier: B8:14:4E:DD:DE:A9:FE:05:A9:10:B4:61:0C:CA:AC:BE:B6:4C:A1:9F Authority key identifier: 68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 Certificate issuer: /CN=A91AADAF/serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft Manifest number: A9 Signing time: Fri 05 Sep 2025 06:39:01 +0000 Manifest this update: Fri 05 Sep 2025 06:39:00 +0000 Manifest next update: Fri 12 Sep 2025 06:39:00 +0000 Files and hashes: 1: aMK1iNFoWlh0LYouGIhl2zEQPPc.crl (hash: 3oy+cK135MaiAkmuq8pUcKMxJ1TFRnvbTcYceibVw6w=) 2: B2D0D768766011F08F4AF05AC4F9AE02.roa (hash: jw3dgD5r99gdiqJPpFrsCsOclRW/9zVLzwyZyaUhXJg=) 3: 01BA52A28CF411EFAE6F7F10C4F9AE02.roa (hash: EDXTUfDV5y3+rKMOJtb6JOA7sYGQ4kz4K9vrUd4nHN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:39:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AADAF, serialNumber=68C2B588D1685A58742D8A2E188865DB31103CF7 Validity Not Before: Sep 5 06:39:00 2025 GMT Not After : Sep 12 06:39:00 2025 GMT Subject: CN=68ba8584-fc96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:b2:24:1c:5a:98:15:70:16:69:84:60:65:0a: 4a:18:ae:23:72:f2:b4:65:35:47:9e:a1:a6:70:50: 1f:87:ae:3c:58:33:4b:33:8e:40:40:ad:9e:07:34: 31:a8:74:fd:d6:91:43:6e:26:ca:7d:07:43:14:4d: 15:92:72:c4:eb:9c:17:11:8f:3d:fc:0d:ec:12:0b: 2d:39:10:23:c0:cb:81:27:02:a9:78:6b:fa:e3:d2: 2d:a6:06:ae:29:0c:5f:c5:2e:7d:7f:5d:2b:df:f8: fb:3f:43:e2:d8:e2:99:b4:24:92:f9:02:fd:5a:f5: f4:95:1e:da:81:82:92:48:ca:42:fc:8e:e6:e5:e7: 95:71:7d:91:f4:62:b9:b5:eb:7e:61:60:0f:dc:22: 0d:fb:88:06:32:43:a0:c6:a3:ea:b3:a9:8b:71:c2: 65:1e:dd:bb:7e:3c:07:f6:4c:2c:a3:bd:92:9f:1d: db:c6:06:1e:dc:0b:85:4b:00:b9:03:5d:ad:9d:86: 9b:55:31:a4:44:ca:87:36:56:fd:a1:0f:ad:14:a1: 54:41:0e:34:bf:37:15:02:ce:f3:1f:cf:aa:f5:de: 6b:83:e3:7a:69:b1:c0:86:3f:ca:5b:6e:29:cd:86: 22:96:6b:ef:53:30:29:4c:14:68:fa:84:a0:e8:f1: db:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:14:4E:DD:DE:A9:FE:05:A9:10:B4:61:0C:CA:AC:BE:B6:4C:A1:9F X509v3 Authority Key Identifier: keyid:68:C2:B5:88:D1:68:5A:58:74:2D:8A:2E:18:88:65:DB:31:10:3C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMK1iNFoWlh0LYouGIhl2zEQPPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AADAF/87159C968CF311EF9F3EA40FC4F9AE02/aMK1iNFoWlh0LYouGIhl2zEQPPc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:76:ec:ed:af:88:ef:d9:3c:83:d9:11:64:3f:8e:7c:f1:cf: 73:08:34:cd:c0:06:f8:4c:d8:76:e9:41:ff:49:7c:56:22:6e: 0a:ca:6d:73:13:a8:82:bd:04:5b:05:01:22:fc:ba:63:77:ac: 65:7d:cf:dd:82:0f:db:25:b0:cb:f3:8b:03:26:91:22:10:a1: fe:d9:e8:04:a6:a2:51:98:fb:57:47:55:0e:05:c2:9e:e1:0f: 56:08:7e:aa:93:a8:2d:0f:a1:fd:53:a3:1d:b8:e1:df:89:e6: 34:bd:a2:ba:3d:9b:94:da:2f:aa:91:3d:23:14:1b:6b:9b:2a: 05:e8:48:c9:5c:4f:cb:7f:a5:15:62:af:d5:d0:3c:ef:81:3b: 5b:a1:1b:67:49:7f:c6:8d:ef:d4:9f:ed:3b:73:32:72:87:21: 84:5a:8b:d1:f5:75:eb:39:27:05:23:3d:e5:38:84:c7:62:93: 59:ca:d1:0d:dd:de:cd:90:06:3b:b9:a5:45:d7:de:7e:1d:e6: 76:b5:cf:a1:1e:c2:48:d0:e0:af:ea:83:49:10:c5:44:2c:c4: 0f:a9:85:41:04:bb:ed:1b:f6:ce:bb:64:3b:ac:05:b5:bf:fd: 50:68:54:0e:1c:b8:12:5d:1b:3c:a4:22:ee:a9:2d:19:45:ce: d3:e1:e2:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFEQUYxMTAvBgNVBAUTKDY4QzJCNTg4RDE2ODVBNTg3NDJEOEEyRTE4ODg2NURC MzExMDNDRjcwHhcNMjUwOTA1MDYzOTAwWhcNMjUwOTEyMDYzOTAwWjAYMRYwFAYD VQQDEw02OGJhODU4NC1mYzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA27IkHFqYFXAWaYRgZQpKGK4jcvK0ZTVHnqGmcFAfh648WDNLM45AQK2eBzQx qHT91pFDbibKfQdDFE0VknLE65wXEY89/A3sEgstORAjwMuBJwKpeGv649Itpgau KQxfxS59f10r3/j7P0Pi2OKZtCSS+QL9WvX0lR7agYKSSMpC/I7m5eeVcX2R9GK5 tet+YWAP3CIN+4gGMkOgxqPqs6mLccJlHt27fjwH9kwso72Snx3bxgYe3AuFSwC5 A12tnYabVTGkRMqHNlb9oQ+tFKFUQQ40vzcVAs7zH8+q9d5rg+N6abHAhj/KW24p zYYilmvvUzApTBRo+oSg6PHbLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgUTt3e qf4FqRC0YQzKrL62TKGfMB8GA1UdIwQYMBaAFGjCtYjRaFpYdC2KLhiIZdsxEDz3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQURBRi84NzE1OUM5NjhD RjMxMUVGOUYzRUE0MEZDNEY5QUUwMi9hTUsxaU5Gb1dsaDBMWW91R0lobDJ6RVFQ UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNSzFpTkZvV2xoMExZb3VHSWhsMnpFUVBQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QURBRi84NzE1OUM5NjhDRjMxMUVGOUYzRUE0MEZDNEY5QUUwMi9hTUsxaU5Gb1ds aDBMWW91R0lobDJ6RVFQUGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxduztr4jv2TyD2RFkP4588c9zCDTNwAb4TNh26UH/SXxWIm4Kym1z E6iCvQRbBQEi/Lpjd6xlfc/dgg/bJbDL84sDJpEiEKH+2egEpqJRmPtXR1UOBcKe 4Q9WCH6qk6gtD6H9U6MduOHfieY0vaK6PZuU2i+qkT0jFBtrmyoF6EjJXE/Lf6UV Yq/V0DzvgTtboRtnSX/Gje/Un+07czJyhyGEWovR9XXrOScFIz3lOITHYpNZytEN 3d7NkAY7uaVF195+HeZ2tc+hHsJI0OCv6oNJEMVELMQPqYVBBLvtG/bOu2Q7rAW1 v/1QaFQOHLgSXRs8pCLuqS0ZRc7T4eL7 -----END CERTIFICATE-----Generated at Sat Sep 6 12:43:03 2025 by rpki-client