$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft File: mZsvZTnCPq60aeZ1OfstyTPZgEA.mft (raw, json) Hash identifier: Vs6HJE4uxuYg0j02LGIij8SGfu+IDWtv349qnHbaxks= Subject key identifier: F4:CE:34:DA:0A:E4:E6:01:EE:E7:15:23:54:90:2B:5F:42:86:10:18 Authority key identifier: 99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 Certificate issuer: /CN=A91AB055/serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft Manifest number: 010D Signing time: Wed 17 Sep 2025 05:32:44 +0000 Manifest this update: Wed 17 Sep 2025 05:32:44 +0000 Manifest next update: Wed 24 Sep 2025 05:32:44 +0000 Files and hashes: 1: mZsvZTnCPq60aeZ1OfstyTPZgEA.crl (hash: kJPgfw4gm590q0yGlK6AxeumDx8RSgzkfxHfQ59SIOc=) 2: 83CA613CF55611EE8CE6274DC4F9AE02.roa (hash: BonjniXMbmI4yDYc3ynOZLv8pgVSOdRZa/c5jpsq0Ug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 05:32:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB055, serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Validity Not Before: Sep 17 05:32:44 2025 GMT Not After : Sep 24 05:32:44 2025 GMT Subject: CN=68ca47fc-3c78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c2:81:70:e2:6b:d6:d2:a9:86:4d:70:df:f9: ac:3e:58:29:5c:4c:66:43:76:98:ab:1a:35:67:6e: 3f:87:34:44:b0:cc:63:ce:b5:3f:82:f1:7f:a8:d7: ec:4b:df:7d:74:51:2a:9a:53:2e:c5:07:48:69:d7: 70:9e:bd:4f:3a:a4:a6:58:8d:46:6a:c2:86:d9:9e: 64:a8:ff:be:73:f5:85:a3:0b:90:08:59:c5:a5:68: d9:73:a6:77:29:26:85:ea:09:06:36:2f:03:ff:b2: 17:90:a9:a6:16:f1:e7:b2:61:e0:0b:1b:07:74:19: d6:f1:f2:a4:af:ba:bd:f1:e1:ef:27:34:bf:ce:26: aa:a9:0e:35:14:6d:98:c3:c3:4d:4a:bc:24:04:14: f1:70:71:34:70:6d:07:9e:88:b8:3c:c6:a4:8d:b1: 3c:18:ba:8b:bc:f4:be:df:82:93:00:b8:c6:a5:a2: dd:69:9d:e9:bb:55:90:81:37:14:05:1f:96:25:2e: e1:f9:a1:db:55:f8:fd:89:e1:bf:9c:65:7f:95:de: 85:d1:60:df:db:e4:9c:0f:a9:59:f7:91:e3:3c:43: 66:13:a3:89:76:ba:0a:c6:ce:64:ea:1f:dd:2e:4f: 86:39:6f:98:06:28:d4:5a:59:61:0a:13:91:25:c6: 38:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:CE:34:DA:0A:E4:E6:01:EE:E7:15:23:54:90:2B:5F:42:86:10:18 X509v3 Authority Key Identifier: keyid:99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:a6:88:45:45:66:18:bd:5f:6c:4a:e0:df:08:5a:3c:db:93: 2c:4a:ee:be:bb:b9:8b:27:09:00:83:46:f3:b9:48:91:2a:97: 7c:6d:7a:77:8e:06:01:44:4a:54:70:aa:e0:f5:d5:be:dc:dc: 19:1a:65:28:17:b2:9f:34:e6:e4:50:b7:7e:9f:93:c7:cb:66: 33:d9:56:80:9f:f5:41:e9:b6:52:3a:65:11:28:c6:43:ff:fc: 90:b0:24:ed:5b:34:ab:80:8e:ef:3c:ff:b9:a8:e9:71:f8:7f: b5:83:5b:de:40:8f:00:0b:44:ef:fd:57:66:bb:aa:b1:83:05: 11:e6:00:2c:49:a7:4e:90:fb:09:9a:3e:15:5f:2d:48:93:7a: 78:a8:7b:b3:7c:5a:91:6f:ea:10:55:50:be:dd:9d:c1:e9:b2: 4e:24:f5:62:17:51:f1:1f:31:3b:75:a0:a9:3d:27:31:df:33: 10:7e:9a:88:fa:8a:be:6e:9b:7d:cf:b3:cc:12:3e:4d:05:7f: b0:53:f2:5d:14:cb:c9:a9:00:04:eb:dd:c0:36:bc:ee:db:39: 4b:4d:88:05:7f:6a:69:eb:5c:a8:5b:c7:35:c6:55:82:ae:e3: 93:8c:41:f9:56:66:92:cf:02:a2:4a:5b:fd:3c:c1:80:86:31: 09:7d:b8:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwNTUxMTAvBgNVBAUTKDk5OUIyRjY1MzlDMjNFQUVCNDY5RTY3NTM5RkIyREM5 MzNEOTgwNDAwHhcNMjUwOTE3MDUzMjQ0WhcNMjUwOTI0MDUzMjQ0WjAYMRYwFAYD VQQDEw02OGNhNDdmYy0zYzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8KBcOJr1tKphk1w3/msPlgpXExmQ3aYqxo1Z24/hzREsMxjzrU/gvF/qNfs S999dFEqmlMuxQdIaddwnr1POqSmWI1GasKG2Z5kqP++c/WFowuQCFnFpWjZc6Z3 KSaF6gkGNi8D/7IXkKmmFvHnsmHgCxsHdBnW8fKkr7q98eHvJzS/ziaqqQ41FG2Y w8NNSrwkBBTxcHE0cG0Hnoi4PMakjbE8GLqLvPS+34KTALjGpaLdaZ3pu1WQgTcU BR+WJS7h+aHbVfj9ieG/nGV/ld6F0WDf2+ScD6lZ95HjPENmE6OJdroKxs5k6h/d Lk+GOW+YBijUWllhChORJcY4OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPTONNoK 5OYB7ucVI1SQK19ChhAYMB8GA1UdIwQYMBaAFJmbL2U5wj6utGnmdTn7Lckz2YBA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjA1NS80QUJCQzAxQ0Y1 NTUxMUVFQUNGMTIzNEJDNEY5QUUwMi9tWnN2WlRuQ1BxNjBhZVoxT2ZzdHlUUFpn RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21ac3ZaVG5DUHE2MGFlWjFPZnN0eVRQWmdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjA1NS80QUJCQzAxQ0Y1NTUxMUVFQUNGMTIzNEJDNEY5QUUwMi9tWnN2WlRuQ1Bx NjBhZVoxT2ZzdHlUUFpnRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUpohFRWYYvV9sSuDfCFo825MsSu6+u7mLJwkAg0bzuUiRKpd8bXp3 jgYBREpUcKrg9dW+3NwZGmUoF7KfNObkULd+n5PHy2Yz2VaAn/VB6bZSOmURKMZD //yQsCTtWzSrgI7vPP+5qOlx+H+1g1veQI8AC0Tv/Vdmu6qxgwUR5gAsSadOkPsJ mj4VXy1Ik3p4qHuzfFqRb+oQVVC+3Z3B6bJOJPViF1HxHzE7daCpPScx3zMQfpqI +oq+bpt9z7PMEj5NBX+wU/JdFMvJqQAE693ANrzu2zlLTYgFf2pp61yoW8c1xlWC ruOTjEH5VmaSzwKiSlv9PMGAhjEJfbi0 -----END CERTIFICATE-----Generated at Fri Sep 19 00:39:01 2025 by rpki-client