$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft File: U4XhOhtYRftEzutr7Y3rTomvOCk.mft (raw, json) Hash identifier: /lu0fzKN/tbWEAn3/KNgQ4x5SkeCjdK8O3/Mg+D2GvE= Subject key identifier: F2:BD:2D:72:25:2A:F2:CD:79:69:4D:F6:15:D0:19:A6:77:56:12:97 Authority key identifier: 53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 Certificate issuer: /CN=A91ACFEB/serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Certificate serial: 09AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft Manifest number: 099E Signing time: Thu 04 Sep 2025 20:18:21 +0000 Manifest this update: Thu 04 Sep 2025 20:18:21 +0000 Manifest next update: Thu 11 Sep 2025 20:18:21 +0000 Files and hashes: 1: U4XhOhtYRftEzutr7Y3rTomvOCk.crl (hash: yIUx/yAKl72vZbMDyJt+HN1eS/2z5auzPkn4Uy8U2AI=) 2: 3636BCD2937011EA8A795583C4F9AE02.roa (hash: Xd/9pByFb2cbZ9xoUnmDVjNmjmus87X0lFOERhfsZNI=) 3: 35831FCE937011EA8A795583C4F9AE02.roa (hash: N79J5/addSjvuTRJUjHpGEDoonJ5OZtfdl2v8Aonsr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 20:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2478 (0x9ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACFEB, serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Validity Not Before: Sep 4 20:18:21 2025 GMT Not After : Sep 11 20:18:21 2025 GMT Subject: CN=68b9f40d-10e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ee:6d:d7:a7:fc:f8:80:99:bb:f9:2b:74:c7: 6c:5b:70:21:c3:ae:0d:51:88:e5:d2:9e:5d:71:49: 08:ff:93:36:dc:7a:70:8a:c7:27:12:d4:02:ee:a1: a0:d1:a2:43:2c:4b:3a:01:53:f5:ef:4e:5b:20:cd: 41:59:3b:1a:37:27:79:12:70:f4:25:7e:39:22:f1: 65:cf:ce:a4:22:6f:77:3c:31:1c:99:14:bb:e9:80: 64:35:a9:5e:84:e0:86:14:76:a5:0f:5c:2e:48:ad: 7b:90:b3:b2:c2:4c:55:c9:ef:b1:c7:07:f1:3f:7d: 91:00:13:a5:7c:e9:1c:5a:fc:4b:34:79:5a:68:7d: 99:e3:ee:0e:6d:97:05:7e:e3:de:81:f9:a4:6b:af: 55:53:6a:5e:87:a9:72:06:78:c3:bd:3e:57:48:9e: 1b:d6:e4:de:fe:93:bd:05:12:9c:71:d0:a1:49:bd: eb:49:2c:15:0b:ec:99:eb:94:c9:c7:e4:f6:08:b1: d3:b0:0b:69:57:98:e0:76:7f:91:62:3c:c0:3b:6a: e2:ed:51:4e:56:6a:f5:d5:eb:0f:00:73:18:04:a9: 60:d5:5e:92:5d:17:d4:e6:4f:77:82:da:52:f6:95: 3b:4d:ae:01:69:fd:86:4e:9b:82:76:f1:1d:49:36: 3b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BD:2D:72:25:2A:F2:CD:79:69:4D:F6:15:D0:19:A6:77:56:12:97 X509v3 Authority Key Identifier: keyid:53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:43:cc:50:12:52:f7:b3:26:1a:ce:c1:f2:90:4e:98:ad:66: f0:1a:6c:fd:13:cc:0c:7d:b1:9b:c7:4c:36:1e:06:c7:12:e1: 68:4e:37:db:98:f5:e6:a8:0e:12:af:4e:0a:c8:0f:b3:44:ed: e6:6c:8f:5f:e9:83:2a:f0:12:f2:e1:fb:cb:43:8b:00:66:37: 5a:84:71:6a:7c:0f:82:0a:41:d2:85:bf:64:37:b6:d1:1c:45: 4d:6c:d9:bb:d3:08:87:51:12:47:d7:1d:05:4b:2e:f7:70:b2: c4:19:14:df:bb:a8:83:da:15:04:16:90:04:e3:88:86:f3:ba: 90:a5:59:7c:c8:27:6f:ec:a0:6d:d7:2c:c8:4f:00:f9:e3:8d: c8:9a:84:04:26:6e:14:5d:3d:53:6b:56:4d:c6:3a:ea:d3:6d: 3d:8b:d6:bb:9a:8c:c9:3b:ea:05:dd:db:f2:3d:de:bd:86:1c: 77:dc:ee:45:db:5b:31:49:cc:69:c3:a6:d6:11:63:3d:92:39: d1:f8:94:2c:d7:bc:fc:0a:23:12:3a:fb:f6:18:52:41:aa:40: c0:58:fc:c4:89:72:ec:1e:bc:ee:4f:81:dc:c6:e6:c6:e6:fe: 9b:86:2b:2a:40:97:06:ca:60:88:cb:5d:ed:bb:f6:08:03:17: 9f:10:87:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNGRUIxMTAvBgNVBAUTKDUzODVFMTNBMUI1ODQ1RkI0NENFRUI2QkVEOERFQjRF ODlBRjM4MjkwHhcNMjUwOTA0MjAxODIxWhcNMjUwOTExMjAxODIxWjAYMRYwFAYD VQQDEw02OGI5ZjQwZC0xMGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnu5t16f8+ICZu/krdMdsW3Ahw64NUYjl0p5dcUkI/5M23HpwiscnEtQC7qGg 0aJDLEs6AVP1705bIM1BWTsaNyd5EnD0JX45IvFlz86kIm93PDEcmRS76YBkNale hOCGFHalD1wuSK17kLOywkxVye+xxwfxP32RABOlfOkcWvxLNHlaaH2Z4+4ObZcF fuPegfmka69VU2peh6lyBnjDvT5XSJ4b1uTe/pO9BRKccdChSb3rSSwVC+yZ65TJ x+T2CLHTsAtpV5jgdn+RYjzAO2ri7VFOVmr11esPAHMYBKlg1V6SXRfU5k93gtpS 9pU7Ta4Baf2GTpuCdvEdSTY74wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPK9LXIl KvLNeWlN9hXQGaZ3VhKXMB8GA1UdIwQYMBaAFFOF4TobWEX7RM7ra+2N606Jrzgp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0ZFQi9DQjJDMzNFNjkz NkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJmdEV6dXRyN1kzclRvbXZP Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0WGhPaHRZUmZ0RXp1dHI3WTNyVG9tdk9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0ZFQi9DQjJDMzNFNjkzNkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJm dEV6dXRyN1kzclRvbXZPQ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABQ8xQElL3syYazsHykE6YrWbwGmz9E8wMfbGbx0w2HgbHEuFoTjfb mPXmqA4Sr04KyA+zRO3mbI9f6YMq8BLy4fvLQ4sAZjdahHFqfA+CCkHShb9kN7bR HEVNbNm70wiHURJH1x0FSy73cLLEGRTfu6iD2hUEFpAE44iG87qQpVl8yCdv7KBt 1yzITwD5443ImoQEJm4UXT1Ta1ZNxjrq0209i9a7mozJO+oF3dvyPd69hhx33O5F 21sxScxpw6bWEWM9kjnR+JQs17z8CiMSOvv2GFJBqkDAWPzEiXLsHrzuT4HcxubG 5v6bhisqQJcGymCIy13tu/YIAxefEIdf -----END CERTIFICATE-----Generated at Sat Sep 6 15:28:38 2025 by rpki-client