$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft File: 9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft (raw, json) Hash identifier: AkCFwryaqelTy0Is5I6mP/KdS57xfQo6xafgA2NkTVE= Subject key identifier: 32:E5:C1:7A:D7:A4:3A:25:EC:9E:D2:58:25:3F:03:2B:A6:C1:58:88 Authority key identifier: F6:BA:6E:63:0A:6A:A9:8D:82:15:68:26:4E:02:7B:98:8D:F5:C9:BA Certificate issuer: /CN=A91AF3E2/serialNumber=F6BA6E630A6AA98D821568264E027B988DF5C9BA Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft Manifest number: CC Signing time: Tue 09 Sep 2025 05:51:22 +0000 Manifest this update: Tue 09 Sep 2025 05:51:22 +0000 Manifest next update: Tue 16 Sep 2025 05:51:22 +0000 Files and hashes: 1: 9rpuYwpqqY2CFWgmTgJ7mI31ybo.crl (hash: k++sh00+IbuCpTxhiCYb4F/4p2gPkbQElq/Y4yjPaR8=) 2: 50D93D94459A11F095E57A12C4F9AE02.roa (hash: lyi982HtKiog06ZDmqBvveNUhmcMavwQ9wBsxDa+hxc=) 3: 3555D0B4459A11F097133A12C4F9AE02.roa (hash: nkSWh3cyl4fI1oSf90Vp/KLgY/jLoOROmv/FMSabOTU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.crl rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 05:51:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF3E2, serialNumber=F6BA6E630A6AA98D821568264E027B988DF5C9BA Validity Not Before: Sep 9 05:51:22 2025 GMT Not After : Sep 16 05:51:22 2025 GMT Subject: CN=68bfc05a-0748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:81:30:5c:01:26:4f:c5:10:74:0e:70:e5:e5: f5:10:44:3f:dc:53:ab:de:49:ef:07:c5:d6:e9:43: a9:19:d6:2f:f1:79:eb:6b:63:97:29:ed:9e:07:a8: c8:e4:39:9f:8b:ee:bc:d3:11:cd:c3:6f:a1:30:74: bf:cd:80:ef:94:ce:e2:d7:d4:82:35:7e:60:9e:0a: 67:f5:2b:35:76:18:ba:b6:3c:03:8d:85:f2:0f:30: 96:13:41:7a:73:1b:c7:6c:53:dc:76:4c:3a:cd:9a: 20:da:65:5b:8b:fc:d5:0b:2f:68:73:c3:19:8b:b5: e8:26:c8:2f:ed:47:13:ae:ef:9f:65:53:34:7c:2f: b3:bd:aa:63:78:40:0a:e9:d5:35:f7:ce:f8:01:4d: 5f:01:15:de:f9:72:86:d5:ef:9e:8e:48:97:b9:d9: 0c:35:c1:5f:5d:8d:09:88:d9:a5:03:be:eb:92:d9: e5:5f:be:dd:af:c1:0f:d2:c3:16:19:18:bb:4d:84: ba:a4:a0:7f:4a:12:b6:d6:6c:a4:eb:9d:30:71:84: 62:9d:db:ec:b5:ee:ad:0b:38:e4:25:39:86:e6:57: 44:80:b7:1b:40:44:8e:ba:ed:f3:b7:73:2f:6d:6a: 10:90:50:e1:14:3b:e5:04:b0:b9:ad:a9:4f:9f:c6: d3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:E5:C1:7A:D7:A4:3A:25:EC:9E:D2:58:25:3F:03:2B:A6:C1:58:88 X509v3 Authority Key Identifier: keyid:F6:BA:6E:63:0A:6A:A9:8D:82:15:68:26:4E:02:7B:98:8D:F5:C9:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:bf:df:3e:66:d6:2e:38:0c:54:fa:d4:05:b5:a2:19:cc:63: 9a:cb:83:9a:52:a1:f3:ea:b6:bf:32:79:6e:9e:14:8a:b9:05: f1:60:24:31:e7:da:99:59:70:09:00:53:24:c3:d6:25:82:76: b5:ac:03:17:36:6c:11:f1:f7:52:16:bf:fb:ad:0b:3d:dc:40: 02:5c:46:1d:98:97:37:3e:5d:66:3a:dc:ad:70:b0:56:d6:ff: 04:d5:a5:df:ab:ab:9b:57:bb:c9:32:8c:51:fa:5b:0b:57:f9: fd:b6:c3:69:15:61:95:20:f9:6c:7a:a3:26:a4:a6:c3:a7:1f: 56:b7:4a:23:1a:7c:7c:4c:6c:04:80:93:71:0c:8a:31:ca:5f: dd:c1:fe:cc:2b:57:1c:a0:cc:fa:27:ed:f2:3f:93:5b:53:f1: a1:fc:f2:84:5e:d8:50:73:eb:ef:de:9a:3f:1f:57:00:34:82: 0a:36:e4:11:86:9d:db:7e:0e:8c:4d:19:cb:90:42:92:5e:9b: 73:26:42:3b:6d:ed:17:a2:cf:16:2f:68:05:8f:55:a4:67:83: be:ab:08:eb:54:11:61:3b:2a:64:fa:77:cf:76:b0:07:11:e9: 59:9a:f1:49:73:e6:13:42:9b:a8:27:e0:b3:4e:00:70:1c:43: a3:f1:e0:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzRTIxMTAvBgNVBAUTKEY2QkE2RTYzMEE2QUE5OEQ4MjE1NjgyNjRFMDI3Qjk4 OERGNUM5QkEwHhcNMjUwOTA5MDU1MTIyWhcNMjUwOTE2MDU1MTIyWjAYMRYwFAYD VQQDEw02OGJmYzA1YS0wNzQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIEwXAEmT8UQdA5w5eX1EEQ/3FOr3knvB8XW6UOpGdYv8Xnra2OXKe2eB6jI 5Dmfi+680xHNw2+hMHS/zYDvlM7i19SCNX5gngpn9Ss1dhi6tjwDjYXyDzCWE0F6 cxvHbFPcdkw6zZog2mVbi/zVCy9oc8MZi7XoJsgv7UcTru+fZVM0fC+zvapjeEAK 6dU19874AU1fARXe+XKG1e+ejkiXudkMNcFfXY0JiNmlA77rktnlX77dr8EP0sMW GRi7TYS6pKB/ShK21myk650wcYRindvste6tCzjkJTmG5ldEgLcbQESOuu3zt3Mv bWoQkFDhFDvlBLC5ralPn8bTywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDLlwXrX pDol7J7SWCU/AyumwViIMB8GA1UdIwQYMBaAFPa6bmMKaqmNghVoJk4Ce5iN9cm6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjNFMi9EQTYyMkU5QTVC OUUxMUVGQkNEQkM1NUJDNEY5QUUwMi85cnB1WXdwcXFZMkNGV2dtVGdKN21JMzF5 Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlycHVZd3BxcVkyQ0ZXZ21UZ0o3bUkzMXliby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjNFMi9EQTYyMkU5QTVCOUUxMUVGQkNEQkM1NUJDNEY5QUUwMi85cnB1WXdwcXFZ MkNGV2dtVGdKN21JMzF5Ym8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVv98+ZtYuOAxU+tQFtaIZzGOay4OaUqHz6ra/MnlunhSKuQXxYCQx 59qZWXAJAFMkw9Ylgna1rAMXNmwR8fdSFr/7rQs93EACXEYdmJc3Pl1mOtytcLBW 1v8E1aXfq6ubV7vJMoxR+lsLV/n9tsNpFWGVIPlseqMmpKbDpx9Wt0ojGnx8TGwE gJNxDIoxyl/dwf7MK1ccoMz6J+3yP5NbU/Gh/PKEXthQc+vv3po/H1cANIIKNuQR hp3bfg6MTRnLkEKSXptzJkI7be0Xos8WL2gFj1WkZ4O+qwjrVBFhOypk+nfPdrAH EelZmvFJc+YTQpuoJ+CzTgBwHEOj8eBA -----END CERTIFICATE-----Generated at Tue Sep 9 14:18:16 2025 by rpki-client