$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft File: 2zxJsbLapmnoFyU5XfcR6D-K09E.mft (raw, json) Hash identifier: 4znp82LYPloMiWTH/cAocZ2NpG18OWEuF+Eh97Qq08k= Subject key identifier: 3B:49:C8:0F:70:5D:DA:54:1B:78:C4:C9:15:F1:EC:F7:DE:AC:5F:23 Authority key identifier: DB:3C:49:B1:B2:DA:A6:69:E8:17:25:39:5D:F7:11:E8:3F:8A:D3:D1 Certificate issuer: /CN=A91B1833/serialNumber=DB3C49B1B2DAA669E81725395DF711E83F8AD3D1 Certificate serial: 03FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zxJsbLapmnoFyU5XfcR6D-K09E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft Manifest number: 03F5 Signing time: Wed 17 Sep 2025 00:55:33 +0000 Manifest this update: Wed 17 Sep 2025 00:55:33 +0000 Manifest next update: Wed 24 Sep 2025 00:55:33 +0000 Files and hashes: 1: 2zxJsbLapmnoFyU5XfcR6D-K09E.crl (hash: JS8D6GIa04QuCa9A90XBlxGs7ttwSYNkBCXKQx7USuY=) 2: 93CBDF448EE111EC9D298C83C4F9AE02.roa (hash: BUnFVKWXS5jIu8y5GkL7bgepdNyRdvPBw8U/+IQhx6g=) 3: 48ECA4C48EE411EC9936A210C4F9AE02.roa (hash: +5J/6WRU15WkYWy0ca5x0funlOBTzCAMAXyUc4i4gAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.crl rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zxJsbLapmnoFyU5XfcR6D-K09E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 00:55:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1023 (0x3ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1833, serialNumber=DB3C49B1B2DAA669E81725395DF711E83F8AD3D1 Validity Not Before: Sep 17 00:55:33 2025 GMT Not After : Sep 24 00:55:33 2025 GMT Subject: CN=68ca0705-11d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:70:2d:f3:9b:22:24:2e:0d:0b:76:01:2d:11: ad:a7:6f:e9:3c:77:0e:5d:34:c9:19:3a:29:75:29: 46:fa:77:37:a1:c8:3d:8c:60:73:6f:bb:df:41:00: ab:36:d5:03:54:7a:bd:f2:69:e9:64:64:4c:e4:3f: 1f:09:94:aa:dd:3c:d9:3b:fd:29:99:12:a4:e8:c1: 49:7e:14:18:4c:41:10:ec:85:c4:ed:fa:27:af:f2: 7b:d5:31:61:d4:32:a4:ac:93:54:75:ae:51:ba:00: f1:ad:a7:7f:f1:89:38:fd:51:81:7d:5c:b5:2e:28: fc:e7:f4:70:04:fb:70:9e:b5:c7:a6:fb:87:56:d0: 70:9a:7d:15:b1:3a:1c:88:06:ce:a6:4e:6b:d0:f9: 3a:f5:3b:ae:9f:f1:a2:53:ad:67:36:f9:a1:fe:37: 1a:4c:ed:4c:ac:66:6a:5b:ac:17:13:e7:c0:2d:9c: ba:13:27:bd:91:69:56:44:7e:0d:03:be:82:1b:4e: b4:7b:2f:3a:21:fa:b4:06:ef:8a:9d:9d:35:33:b7: 1b:37:43:6a:d6:78:7c:f6:cd:a2:65:b4:a3:a4:d4: 24:c1:7d:e0:d6:10:d4:1a:41:c0:be:c1:ac:63:7b: a1:6b:77:32:58:7c:ab:5f:0c:56:74:66:a0:6a:de: 1a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:49:C8:0F:70:5D:DA:54:1B:78:C4:C9:15:F1:EC:F7:DE:AC:5F:23 X509v3 Authority Key Identifier: keyid:DB:3C:49:B1:B2:DA:A6:69:E8:17:25:39:5D:F7:11:E8:3F:8A:D3:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zxJsbLapmnoFyU5XfcR6D-K09E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1833/FE68E0B28E3311ECAD674675C4F9AE02/2zxJsbLapmnoFyU5XfcR6D-K09E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:6a:1b:9a:28:b4:a9:b4:14:eb:e0:da:2a:bc:08:63:5a:c2: 89:53:4b:eb:80:0f:77:fa:e9:d9:ba:62:78:87:3f:46:a0:6f: b6:a1:53:26:af:86:cb:fc:78:79:f5:c9:85:be:11:ec:44:48: c7:31:a6:86:4b:04:98:37:ec:3d:41:aa:f2:ae:f4:e8:0f:8e: 0f:1f:e7:fc:a3:e5:3a:56:f7:24:0c:c2:d2:3c:77:ed:00:93: e4:27:35:01:da:fc:de:ae:b0:fa:1c:a2:71:58:33:f9:43:0c: 2a:3e:b4:bd:16:6a:f7:7c:05:50:26:42:3a:0c:ef:0d:20:f4: b6:89:82:cb:72:23:32:92:50:23:3d:1c:6c:9c:cd:86:1a:25: 47:b1:07:c6:06:ea:35:2a:b7:58:07:3d:b5:06:2e:84:79:5a: 9c:31:6e:b4:06:e3:9c:40:15:e9:d0:4e:69:9e:32:d1:3c:96: 0d:0e:dd:3a:c7:da:47:59:24:49:f9:5c:bc:27:ec:c7:ab:cc: 9f:81:f3:b4:17:84:3c:fc:7b:e0:28:f7:96:1e:25:25:e6:b7: e9:cb:fc:79:41:77:42:fe:9b:f0:26:93:cc:ec:3c:74:d3:f5: f2:f5:06:92:85:7c:1a:44:b0:18:9c:ed:f0:8d:8d:53:0b:ed: b0:ba:fa:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE4MzMxMTAvBgNVBAUTKERCM0M0OUIxQjJEQUE2NjlFODE3MjUzOTVERjcxMUU4 M0Y4QUQzRDEwHhcNMjUwOTE3MDA1NTMzWhcNMjUwOTI0MDA1NTMzWjAYMRYwFAYD VQQDEw02OGNhMDcwNS0xMWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3At85siJC4NC3YBLRGtp2/pPHcOXTTJGTopdSlG+nc3ocg9jGBzb7vfQQCr NtUDVHq98mnpZGRM5D8fCZSq3TzZO/0pmRKk6MFJfhQYTEEQ7IXE7fonr/J71TFh 1DKkrJNUda5RugDxrad/8Yk4/VGBfVy1Lij85/RwBPtwnrXHpvuHVtBwmn0VsToc iAbOpk5r0Pk69Tuun/GiU61nNvmh/jcaTO1MrGZqW6wXE+fALZy6Eye9kWlWRH4N A76CG060ey86Ifq0Bu+KnZ01M7cbN0Nq1nh89s2iZbSjpNQkwX3g1hDUGkHAvsGs Y3uha3cyWHyrXwxWdGagat4aIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtJyA9w XdpUG3jEyRXx7PferF8jMB8GA1UdIwQYMBaAFNs8SbGy2qZp6BclOV33Eeg/itPR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTgzMy9GRTY4RTBCMjhF MzMxMUVDQUQ2NzQ2NzVDNEY5QUUwMi8yenhKc2JMYXBtbm9GeVU1WGZjUjZELUsw OUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ6eEpzYkxhcG1ub0Z5VTVYZmNSNkQtSzA5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTgzMy9GRTY4RTBCMjhFMzMxMUVDQUQ2NzQ2NzVDNEY5QUUwMi8yenhKc2JMYXBt bm9GeVU1WGZjUjZELUswOUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUahuaKLSptBTr4NoqvAhjWsKJU0vrgA93+unZumJ4hz9GoG+2oVMm r4bL/Hh59cmFvhHsREjHMaaGSwSYN+w9QaryrvToD44PH+f8o+U6VvckDMLSPHft AJPkJzUB2vzerrD6HKJxWDP5QwwqPrS9Fmr3fAVQJkI6DO8NIPS2iYLLciMyklAj PRxsnM2GGiVHsQfGBuo1KrdYBz21Bi6EeVqcMW60BuOcQBXp0E5pnjLRPJYNDt06 x9pHWSRJ+Vy8J+zHq8yfgfO0F4Q8/HvgKPeWHiUl5rfpy/x5QXdC/pvwJpPM7Dx0 0/Xy9QaShXwaRLAYnO3wjY1TC+2wuvoY -----END CERTIFICATE-----Generated at Fri Sep 19 00:43:01 2025 by rpki-client