$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.mft File: 2cuKblTiS1D0r_v6oFlb_YECQ-4.mft (raw, json) Hash identifier: uQtSv+tirEt4ophhNpZnpWRqA6tP6YpPNMYhxFQ1hlY= Subject key identifier: 91:D9:E4:E8:98:F3:88:0A:D5:81:32:9E:06:71:A6:EE:9B:89:7C:BE Authority key identifier: D9:CB:8A:6E:54:E2:4B:50:F4:AF:FB:FA:A0:59:5B:FD:81:02:43:EE Certificate issuer: /CN=A91AC4DB/serialNumber=D9CB8A6E54E24B50F4AFFBFAA0595BFD810243EE Certificate serial: 0766 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cuKblTiS1D0r_v6oFlb_YECQ-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.mft Manifest number: 0761 Signing time: Thu 18 Sep 2025 21:53:59 +0000 Manifest this update: Thu 18 Sep 2025 21:53:58 +0000 Manifest next update: Thu 25 Sep 2025 21:53:58 +0000 Files and hashes: 1: 2cuKblTiS1D0r_v6oFlb_YECQ-4.crl (hash: ggrxjoKTEPKgMjXFlGkijLQg5O92XJx6B96hWDEwM/w=) 2: 4157856E347511EB84CD472CC4F9AE02.roa (hash: btH4SgDDR4khinDDe+n8XlFXLtg61OADsgnktzAiOJQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.crl rsync://rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cuKblTiS1D0r_v6oFlb_YECQ-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 21:53:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1894 (0x766) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC4DB, serialNumber=D9CB8A6E54E24B50F4AFFBFAA0595BFD810243EE Validity Not Before: Sep 18 21:53:58 2025 GMT Not After : Sep 25 21:53:58 2025 GMT Subject: CN=68cc7f76-a015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:33:dc:18:2d:57:d0:6e:00:5a:f7:a5:24:df: 99:61:70:bb:b9:f5:02:d8:92:23:3a:18:30:30:3a: 2e:a6:9e:1a:90:74:4e:0c:51:d5:72:98:62:c8:3d: 2b:90:e1:06:bf:e4:23:40:e5:54:dc:f8:99:1a:43: b8:9a:e2:c0:b0:44:0a:4a:87:0c:72:fc:18:f1:9b: f5:a0:66:54:50:57:ca:3e:7a:77:28:37:9d:ac:3e: cf:29:44:35:86:d0:28:92:d1:cd:72:3a:a1:f1:5b: c0:bd:f6:01:6b:c9:13:8c:2c:79:89:13:5d:85:71: 07:15:c7:14:e5:74:40:ba:d5:ad:68:f0:0d:2f:4b: 13:89:df:b1:8f:4c:99:a5:a6:05:d9:51:98:33:9e: 25:b7:03:3d:1e:fe:fe:1d:fe:f6:f7:7d:f0:68:37: ce:70:92:db:5f:37:0d:5d:fa:34:6a:6b:16:b3:83: 35:70:b4:a1:e1:74:18:8c:c8:ab:9d:0d:1c:4b:43: d3:ae:1d:1a:48:6b:b0:9b:7c:da:13:4f:db:e9:0d: 17:06:5e:d5:94:7f:c2:95:34:47:2f:e6:55:5a:5a: 64:bf:d6:ce:69:4d:68:e4:62:5e:14:74:2e:c4:d6: d4:e9:c3:a3:5d:e6:90:73:c8:8a:08:63:85:40:01: 62:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:D9:E4:E8:98:F3:88:0A:D5:81:32:9E:06:71:A6:EE:9B:89:7C:BE X509v3 Authority Key Identifier: keyid:D9:CB:8A:6E:54:E2:4B:50:F4:AF:FB:FA:A0:59:5B:FD:81:02:43:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2cuKblTiS1D0r_v6oFlb_YECQ-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC4DB/3C07E2D6347311EB9794E226C4F9AE02/2cuKblTiS1D0r_v6oFlb_YECQ-4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:63:eb:0b:65:1c:c0:55:e6:07:f7:3a:9f:7a:67:bc:91:cc: b7:85:89:f5:7a:9a:db:55:45:7e:01:d7:43:ec:e9:c8:76:66: 4b:9f:5a:8e:08:8a:2e:30:99:41:55:2f:ec:75:da:80:32:74: 13:07:89:5d:6b:f4:0e:8d:aa:cf:05:7e:54:51:c9:c0:4b:02: 63:c7:08:2b:f4:44:53:11:12:b2:0b:05:37:5a:05:c0:b3:99: ec:3f:1b:5e:8a:04:15:84:27:32:3d:61:28:b2:80:ee:dd:56: a1:a9:56:8d:86:7b:d7:aa:9d:af:73:26:b6:41:01:24:50:48: cc:b9:4b:75:cb:4f:63:dc:3e:8d:60:e5:0b:c4:43:58:fe:47: c1:00:e7:14:8b:2d:1c:78:d7:aa:df:63:ba:af:18:08:cf:b3: 96:ad:d9:7f:bd:1b:b9:bf:f6:b2:71:33:05:c7:3a:85:f7:ff: 95:5b:d3:1e:02:66:07:d8:9c:2e:f9:6c:40:36:8d:77:12:82: 8d:a5:98:07:d1:74:9d:3f:a2:97:33:a7:9c:aa:77:9c:fe:09: 65:60:92:90:fb:0e:68:bd:c3:b8:ce:d3:7d:1e:b6:41:57:ca: d7:19:6b:1e:61:af:b0:06:df:b5:c7:d7:a7:e6:a4:ca:1d:01: c3:95:8d:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM0REIxMTAvBgNVBAUTKEQ5Q0I4QTZFNTRFMjRCNTBGNEFGRkJGQUEwNTk1QkZE ODEwMjQzRUUwHhcNMjUwOTE4MjE1MzU4WhcNMjUwOTI1MjE1MzU4WjAYMRYwFAYD VQQDEw02OGNjN2Y3Ni1hMDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDPcGC1X0G4AWvelJN+ZYXC7ufUC2JIjOhgwMDoupp4akHRODFHVcphiyD0r kOEGv+QjQOVU3PiZGkO4muLAsEQKSocMcvwY8Zv1oGZUUFfKPnp3KDedrD7PKUQ1 htAoktHNcjqh8VvAvfYBa8kTjCx5iRNdhXEHFccU5XRAutWtaPANL0sTid+xj0yZ paYF2VGYM54ltwM9Hv7+Hf72933waDfOcJLbXzcNXfo0amsWs4M1cLSh4XQYjMir nQ0cS0PTrh0aSGuwm3zaE0/b6Q0XBl7VlH/ClTRHL+ZVWlpkv9bOaU1o5GJeFHQu xNbU6cOjXeaQc8iKCGOFQAFioQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJHZ5OiY 84gK1YEyngZxpu6biXy+MB8GA1UdIwQYMBaAFNnLim5U4ktQ9K/7+qBZW/2BAkPu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzREQi8zQzA3RTJENjM0 NzMxMUVCOTc5NEUyMjZDNEY5QUUwMi8yY3VLYmxUaVMxRDByX3Y2b0ZsYl9ZRUNR LTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJjdUtibFRpUzFEMHJfdjZvRmxiX1lFQ1EtNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzREQi8zQzA3RTJENjM0NzMxMUVCOTc5NEUyMjZDNEY5QUUwMi8yY3VLYmxUaVMx RDByX3Y2b0ZsYl9ZRUNRLTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4Y+sLZRzAVeYH9zqfeme8kcy3hYn1eprbVUV+AddD7OnIdmZLn1qO CIouMJlBVS/sddqAMnQTB4lda/QOjarPBX5UUcnASwJjxwgr9ERTERKyCwU3WgXA s5nsPxteigQVhCcyPWEosoDu3VahqVaNhnvXqp2vcya2QQEkUEjMuUt1y09j3D6N YOULxENY/kfBAOcUiy0ceNeq32O6rxgIz7OWrdl/vRu5v/aycTMFxzqF9/+VW9Me AmYH2Jwu+WxANo13EoKNpZgH0XSdP6KXM6ecqnec/gllYJKQ+w5ovcO4ztN9HrZB V8rXGWseYa+wBt+1x9en5qTKHQHDlY2F -----END CERTIFICATE-----Generated at Fri Sep 19 00:34:15 2025 by rpki-client