$ rpki-client -vvf rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft File: P7b20GZYOGwje40UDa0VsoOLtco.mft (raw, json) Hash identifier: 9Y5kFMIH0XAXxI3fpseP5CehcPXqyGKy7BhM7rdDHJ0= Subject key identifier: AF:E3:88:C8:CD:BA:6F:A1:F3:E9:82:D2:51:5A:B9:59:9F:B3:21:39 Authority key identifier: 3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA Certificate issuer: /CN=A91B171C/serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Certificate serial: 0B69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft Manifest number: 0B59 Signing time: Thu 18 Sep 2025 19:20:31 +0000 Manifest this update: Thu 18 Sep 2025 19:20:30 +0000 Manifest next update: Thu 25 Sep 2025 19:20:30 +0000 Files and hashes: 1: P7b20GZYOGwje40UDa0VsoOLtco.crl (hash: lyYAG74u6y/ExRJk28KgzUQCSmwXc8UCrwRwJFOsg3k=) 2: 2F5ED8E43E1711EA9A272644C4F9AE02.roa (hash: d1wEAtOklHH/pS7iavUcvo62WbDBiArhDOGZCIjBXFU=) 3: 9F9FD574758811EA93AADD3FC4F9AE02.roa (hash: bzYatoV9vXAn/TFneZ8B1b8ytRqlQM8seu8F8tZug0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 19:20:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2921 (0xb69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B171C, serialNumber=3FB6F6D06658386C237B8D140DAD15B2838BB5CA Validity Not Before: Sep 18 19:20:30 2025 GMT Not After : Sep 25 19:20:30 2025 GMT Subject: CN=68cc5b7e-32b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:0f:a6:4a:8c:c3:62:65:2f:74:3e:d0:15:6a: 9d:2f:4e:61:05:90:e0:f3:ab:d4:9a:e7:ac:6b:49: ae:56:25:db:32:f9:1c:46:9a:49:15:fd:2b:ff:91: fb:a5:04:6c:9c:8d:2f:23:f3:d6:94:a7:3c:66:10: 8f:b6:b1:37:84:1c:a6:10:1f:da:13:f6:11:15:7e: 78:54:50:3f:ea:0d:e5:e0:d9:ad:d3:5d:6a:30:41: fe:bd:1a:9b:6a:a7:18:8b:f7:75:75:9b:c7:17:fa: 53:17:9b:09:5b:a3:f2:82:b5:01:4a:df:9e:60:9a: dc:b3:4e:38:30:05:96:99:7d:32:96:ca:c6:fe:c0: 55:c0:cf:38:d8:5e:62:c0:8c:7a:ba:c0:c4:32:a3: 36:15:f6:fe:a2:44:ac:30:09:ec:e5:3a:46:5f:0d: c2:30:2b:3a:ca:ca:b4:97:52:0a:64:4c:6d:a4:ee: d1:54:d2:cf:19:ac:84:53:45:3f:3d:ee:6b:a4:76: 0d:a4:14:8d:01:14:96:c5:97:af:fd:fe:88:c4:52: 6b:18:fe:73:92:7b:07:cb:3e:f3:de:ee:b5:03:cc: 2e:65:e2:41:65:6c:ce:7f:c9:4f:e7:60:60:65:c0: 4c:ea:9f:30:2e:f6:7c:66:11:c6:cb:de:19:bb:2f: e7:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:E3:88:C8:CD:BA:6F:A1:F3:E9:82:D2:51:5A:B9:59:9F:B3:21:39 X509v3 Authority Key Identifier: keyid:3F:B6:F6:D0:66:58:38:6C:23:7B:8D:14:0D:AD:15:B2:83:8B:B5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7b20GZYOGwje40UDa0VsoOLtco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B171C/E7EF08363E1511EAB371A541C4F9AE02/P7b20GZYOGwje40UDa0VsoOLtco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:18:1f:c8:31:9a:c1:65:cc:fd:69:70:ee:ad:f6:e3:c7:4d: 8f:12:22:45:a9:76:a5:91:e0:dc:b2:56:6b:2f:e9:30:3d:1f: ba:d1:78:16:96:74:4c:df:47:20:cf:ab:cd:d1:8b:5d:84:58: a6:fe:0b:c0:67:12:db:52:f7:2f:ea:26:d9:83:02:3c:40:c8: 9b:b7:ae:35:25:3e:bc:de:86:6d:ae:05:dd:84:2c:1f:70:7f: da:4b:5d:71:27:81:74:1c:f2:a2:72:e9:9c:39:0a:01:b6:33: c0:c8:cd:0f:cc:a3:a0:9c:ed:b8:a8:4e:ba:37:db:c1:ee:e7: 35:37:51:6b:75:2e:be:08:d3:45:01:31:70:99:fa:0f:4d:78: ef:06:af:da:84:d6:7c:48:32:fe:c5:9c:b3:df:ea:e7:bf:d2: 2c:c0:24:5d:1a:74:83:f5:46:9c:1f:92:5a:77:0c:f7:b3:50: 22:48:27:9d:b4:82:52:d6:3f:e2:44:12:92:9c:4a:2c:a7:00: d9:76:47:e0:4c:cb:da:bc:a7:e7:f2:92:af:49:5e:ac:58:36: a6:a0:78:25:db:c4:df:9b:46:84:15:8e:c6:74:6a:fd:54:2c: 3b:0c:c4:4d:c7:d8:2b:3b:ab:d2:1d:4b:e4:a7:5b:fe:16:7f: 55:3c:4d:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE3MUMxMTAvBgNVBAUTKDNGQjZGNkQwNjY1ODM4NkMyMzdCOEQxNDBEQUQxNUIy ODM4QkI1Q0EwHhcNMjUwOTE4MTkyMDMwWhcNMjUwOTI1MTkyMDMwWjAYMRYwFAYD VQQDEw02OGNjNWI3ZS0zMmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApA+mSozDYmUvdD7QFWqdL05hBZDg86vUmuesa0muViXbMvkcRppJFf0r/5H7 pQRsnI0vI/PWlKc8ZhCPtrE3hBymEB/aE/YRFX54VFA/6g3l4Nmt011qMEH+vRqb aqcYi/d1dZvHF/pTF5sJW6PygrUBSt+eYJrcs044MAWWmX0ylsrG/sBVwM842F5i wIx6usDEMqM2Ffb+okSsMAns5TpGXw3CMCs6ysq0l1IKZExtpO7RVNLPGayEU0U/ Pe5rpHYNpBSNARSWxZev/f6IxFJrGP5zknsHyz7z3u61A8wuZeJBZWzOf8lP52Bg ZcBM6p8wLvZ8ZhHGy94Zuy/n4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK/jiMjN um+h8+mC0lFauVmfsyE5MB8GA1UdIwQYMBaAFD+29tBmWDhsI3uNFA2tFbKDi7XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTcxQy9FN0VGMDgzNjNF MTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9Hd2plNDBVRGEwVnNvT0x0 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3YjIwR1pZT0d3amU0MFVEYTBWc29PTHRjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTcxQy9FN0VGMDgzNjNFMTUxMUVBQjM3MUE1NDFDNEY5QUUwMi9QN2IyMEdaWU9H d2plNDBVRGEwVnNvT0x0Y28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTGB/IMZrBZcz9aXDurfbjx02PEiJFqXalkeDcslZrL+kwPR+60XgW lnRM30cgz6vN0YtdhFim/gvAZxLbUvcv6ibZgwI8QMibt641JT683oZtrgXdhCwf cH/aS11xJ4F0HPKicumcOQoBtjPAyM0PzKOgnO24qE66N9vB7uc1N1FrdS6+CNNF ATFwmfoPTXjvBq/ahNZ8SDL+xZyz3+rnv9IswCRdGnSD9UacH5Jadwz3s1AiSCed tIJS1j/iRBKSnEospwDZdkfgTMvavKfn8pKvSV6sWDamoHgl28Tfm0aEFY7GdGr9 VCw7DMRNx9grO6vSHUvkp1v+Fn9VPE3g -----END CERTIFICATE-----Generated at Thu Sep 18 23:27:58 2025 by rpki-client