$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft File: -Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft (raw, json) Hash identifier: Rle6K95Aa58wH0FpTTH/A21GOklNEenDEhje32cBQM4= Subject key identifier: 24:41:47:A6:E9:74:24:43:9F:7D:99:FD:66:2F:3A:D0:8B:85:BD:51 Authority key identifier: F8:18:FC:98:8E:C7:03:2C:3E:2C:6A:48:A5:54:98:AB:7C:D5:65:FD Certificate issuer: /CN=A91B0F3F/serialNumber=F818FC988EC7032C3E2C6A48A55498AB7CD565FD Certificate serial: 0A6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft Manifest number: 0A4B Signing time: Thu 18 Sep 2025 19:58:54 +0000 Manifest this update: Thu 18 Sep 2025 19:58:53 +0000 Manifest next update: Thu 25 Sep 2025 19:58:53 +0000 Files and hashes: 1: -Bj8mI7HAyw-LGpIpVSYq3zVZf0.crl (hash: XrHPIOsyTPH/eroomTGxmYslcKpekWsfFH+9jLV1gzc=) 2: 59E4B0A81B9211F0A5D50649C4F9AE02.roa (hash: 4uAphyYn6AbiifiDtaxCom6jwozyhzmoBVY1cw2irI4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.crl rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 19:58:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2666 (0xa6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0F3F, serialNumber=F818FC988EC7032C3E2C6A48A55498AB7CD565FD Validity Not Before: Sep 18 19:58:53 2025 GMT Not After : Sep 25 19:58:53 2025 GMT Subject: CN=68cc647d-76d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:93:3c:e3:1a:0e:c0:51:bd:2f:a3:d2:1d:37: c5:10:eb:f1:1f:c5:99:e0:92:5c:da:4d:db:4c:96: b1:42:07:0b:fe:7a:5f:14:d5:f6:11:6c:fa:02:fc: 3b:5a:a6:34:63:6d:dc:e9:4b:c2:98:1f:f1:57:cb: d1:6d:8a:78:61:9e:cf:86:c2:63:bc:36:25:42:46: 11:c7:98:d8:48:54:e4:19:4a:25:18:dd:e8:53:07: dd:32:c0:42:5d:f8:44:e5:ce:38:e7:38:15:9e:52: 92:46:78:8a:61:f9:0e:bf:db:9a:85:f6:2b:73:e1: d7:fe:00:da:07:d2:2c:cf:cd:1d:3c:c0:5a:3e:38: ea:4c:af:e4:8b:4f:e2:d6:56:86:65:70:9a:25:a8: 9d:e5:bb:31:d1:82:0b:e1:a9:87:14:e7:da:c7:02: 4e:24:9e:a9:87:ac:6d:3b:15:2e:87:4e:35:13:bd: fb:11:bb:63:31:06:35:19:50:31:c6:d3:9f:70:af: 7c:b5:29:bb:34:cf:fe:28:c2:a5:3e:60:1c:7d:a1: a0:32:d8:82:fa:9e:e1:c9:7f:0d:07:39:e4:37:db: 61:ee:1e:92:06:f0:e5:b3:62:92:e2:4b:29:c2:c7: 32:f9:4d:9d:c3:0f:15:7b:e0:8d:7a:28:00:7d:0d: be:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:41:47:A6:E9:74:24:43:9F:7D:99:FD:66:2F:3A:D0:8B:85:BD:51 X509v3 Authority Key Identifier: keyid:F8:18:FC:98:8E:C7:03:2C:3E:2C:6A:48:A5:54:98:AB:7C:D5:65:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0F3F/09373AD678C211EABD772359C4F9AE02/-Bj8mI7HAyw-LGpIpVSYq3zVZf0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:c7:63:76:8a:9d:e8:4a:09:d8:8b:ae:17:25:f9:fb:31:52: ca:e4:71:73:1f:c0:45:9e:fd:2d:24:27:49:94:7f:59:04:51: c0:11:37:4d:68:ef:0a:1e:92:e2:9b:63:36:6f:a2:09:10:64: c4:b9:e5:bf:ef:72:80:5a:64:56:47:92:60:5f:6a:e9:c7:ae: 10:86:84:df:f8:18:54:6f:12:69:af:a7:9a:26:2e:8b:df:71: c4:b2:e6:5f:9a:b5:c1:bc:99:94:f7:d7:e9:61:e7:10:bc:30: 50:b8:bd:1c:8b:50:3b:8c:2c:27:f7:d2:6b:9c:02:91:03:df: a7:5f:c1:a9:25:84:61:c1:9e:4f:2b:b9:29:0c:37:99:ca:c8: ce:30:a2:61:d5:c3:29:fe:ff:31:57:5c:59:2f:51:80:bc:53: e0:4e:89:18:a6:93:df:bb:95:be:58:a1:c2:60:eb:b7:a5:20: 01:50:6e:00:5b:86:70:a9:97:b9:a2:e3:33:4b:b9:46:f5:39: 61:c1:a8:2c:24:8d:d1:fe:0b:4a:8f:9d:92:40:ec:50:72:34: 50:8d:70:b7:07:1a:70:7d:c8:d5:7d:0c:d8:36:ee:67:2a:1c: 5d:5f:eb:d0:0c:66:c0:07:d0:31:f8:fc:f2:7b:b1:c9:03:35: 65:6c:65:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBGM0YxMTAvBgNVBAUTKEY4MThGQzk4OEVDNzAzMkMzRTJDNkE0OEE1NTQ5OEFC N0NENTY1RkQwHhcNMjUwOTE4MTk1ODUzWhcNMjUwOTI1MTk1ODUzWjAYMRYwFAYD VQQDEw02OGNjNjQ3ZC03NmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJM84xoOwFG9L6PSHTfFEOvxH8WZ4JJc2k3bTJaxQgcL/npfFNX2EWz6Avw7 WqY0Y23c6UvCmB/xV8vRbYp4YZ7PhsJjvDYlQkYRx5jYSFTkGUolGN3oUwfdMsBC XfhE5c445zgVnlKSRniKYfkOv9uahfYrc+HX/gDaB9Isz80dPMBaPjjqTK/ki0/i 1laGZXCaJaid5bsx0YIL4amHFOfaxwJOJJ6ph6xtOxUuh041E737EbtjMQY1GVAx xtOfcK98tSm7NM/+KMKlPmAcfaGgMtiC+p7hyX8NBznkN9th7h6SBvDls2KS4ksp wscy+U2dww8Ve+CNeigAfQ2+twIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCRBR6bp dCRDn32Z/WYvOtCLhb1RMB8GA1UdIwQYMBaAFPgY/JiOxwMsPixqSKVUmKt81WX9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEYzRi8wOTM3M0FENjc4 QzIxMUVBQkQ3NzIzNTlDNEY5QUUwMi8tQmo4bUk3SEF5dy1MR3BJcFZTWXEzelZa ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1CajhtSTdIQXl3LUxHcElwVlNZcTN6VlpmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MEYzRi8wOTM3M0FENjc4QzIxMUVBQkQ3NzIzNTlDNEY5QUUwMi8tQmo4bUk3SEF5 dy1MR3BJcFZTWXEzelZaZjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAix2N2ip3oSgnYi64XJfn7MVLK5HFzH8BFnv0tJCdJlH9ZBFHAETdN aO8KHpLim2M2b6IJEGTEueW/73KAWmRWR5JgX2rpx64QhoTf+BhUbxJpr6eaJi6L 33HEsuZfmrXBvJmU99fpYecQvDBQuL0ci1A7jCwn99JrnAKRA9+nX8GpJYRhwZ5P K7kpDDeZysjOMKJh1cMp/v8xV1xZL1GAvFPgTokYppPfu5W+WKHCYOu3pSABUG4A W4ZwqZe5ouMzS7lG9TlhwagsJI3R/gtKj52SQOxQcjRQjXC3BxpwfcjVfQzYNu5n KhxdX+vQDGbAB9Ax+Pzye7HJAzVlbGU9 -----END CERTIFICATE-----Generated at Thu Sep 18 23:49:29 2025 by rpki-client