$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft File: tY0p97gQfxWFtf_nDFAsbI9dMwI.mft (raw, json) Hash identifier: k0nnjVLL8YwMtP5T8JuFqw5F17KpP4ZFHD7Cdj1WJIg= Subject key identifier: 55:B7:9D:F2:1C:70:C0:40:C9:00:1D:3F:94:E3:06:59:EF:A7:FA:FA Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 0892 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft Manifest number: 0878 Signing time: Mon 08 Sep 2025 20:39:15 +0000 Manifest this update: Mon 08 Sep 2025 20:39:14 +0000 Manifest next update: Mon 15 Sep 2025 20:39:14 +0000 Files and hashes: 1: tY0p97gQfxWFtf_nDFAsbI9dMwI.crl (hash: BiQqcAAxcuPc7cRjO19uwGkmhsNPGttTKS+NlLNuTsk=) 2: C33EB0EC7C4211EB933D233EC4F9AE02.roa (hash: V3s4r52s3OPKDLcYcdmKSn/0GHVPcogcj1iQaYzRFaU=) 3: F6F5BCCE53E711F084348F87C4F9AE02.roa (hash: eEq3ZG4qI8pUpOyGlAwoIW1Iq8bp1Jor6FtXouhYCXM=) 4: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (hash: w/43LlQIYPABEvYlfxDIIPmu3emguiTlymMjfBLzQJU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 20:39:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2194 (0x892) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: Sep 8 20:39:14 2025 GMT Not After : Sep 15 20:39:14 2025 GMT Subject: CN=68bf3ef3-3ed5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3c:2b:2b:0d:98:2a:03:89:4d:3b:85:b2:86: 61:2b:b0:31:89:a2:7b:7d:08:f2:0e:dd:81:5e:67: 3d:68:90:87:d5:34:14:97:70:ed:7f:44:c8:b0:c4: 30:16:ee:2e:0e:bf:73:5d:48:78:25:e8:6d:93:43: 13:4d:15:51:93:1f:ad:93:69:8c:ad:28:67:71:08: 68:27:9e:b4:fd:1e:52:08:82:7c:ff:c0:a4:a3:f0: ea:9d:21:5a:91:45:07:eb:13:b4:94:95:8a:fa:53: 46:53:3f:fd:19:f5:43:34:38:3c:a6:44:05:5a:9d: 51:04:2f:6a:10:3e:f9:1d:c5:3d:d3:2d:3c:8a:f3: 82:e3:0f:23:20:fd:8d:ae:14:28:1c:e5:4d:21:7a: ef:76:f0:bc:8d:51:48:5d:6d:b4:ae:f7:02:00:d9: f2:0a:80:c6:1c:ae:75:70:f3:00:e6:af:c9:42:da: 0b:4f:1d:4e:ec:bc:cb:57:ab:e3:6a:86:d5:51:50: 3a:ea:77:83:14:97:ec:2b:ff:90:a7:da:a7:fa:54: 4a:f5:cb:00:57:5a:c9:6b:4c:7d:ca:86:56:f4:ea: 0c:80:60:36:97:65:12:14:60:e4:b2:8e:a4:52:b4: c8:cb:6e:bc:73:58:9f:7d:9b:ba:82:04:89:b6:e7: a5:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:B7:9D:F2:1C:70:C0:40:C9:00:1D:3F:94:E3:06:59:EF:A7:FA:FA X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:a7:cb:ca:0e:a4:1e:11:b1:73:75:d1:27:e6:9d:c4:0c:b7: 53:d1:79:e1:18:61:18:f4:d5:f1:c6:96:37:5f:93:f3:7c:50: 3c:e3:b5:9e:9c:71:e8:ae:67:b3:39:31:45:77:f7:ba:5a:bb: 77:b7:f4:bc:a9:4b:50:be:14:5a:ef:7a:ba:87:4e:8e:ee:20: e5:8f:2f:d3:0b:db:f1:62:a1:6c:09:0b:f0:7b:d9:b8:df:ea: dd:a5:1f:26:53:c0:c1:0e:c8:7c:35:2b:e6:73:9c:10:0a:88: 9b:02:74:72:95:45:0a:59:9e:da:69:5c:35:80:ed:25:b2:f6: 0b:71:f3:f9:58:59:b2:a8:dc:36:d0:53:b7:4c:73:cb:77:ea: b4:65:1e:eb:a4:1b:47:cf:77:17:32:65:50:5b:e7:29:ea:dd: 17:a6:29:28:00:32:38:8d:bc:1c:8f:98:47:05:d0:6f:59:92: 5e:79:97:4d:b6:0b:83:1a:8f:2a:00:3b:ef:e8:34:ec:63:5c: df:b5:37:18:27:ec:e4:35:72:ab:dc:36:e4:05:74:0a:dc:55: 80:46:f5:d9:51:ff:f3:9d:79:06:0d:77:93:99:64:d4:7a:d6: ac:4c:61:f3:1d:58:e6:67:28:d8:72:62:ec:b5:59:f8:9f:5f: 92:df:7e:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjUwOTA4MjAzOTE0WhcNMjUwOTE1MjAzOTE0WjAYMRYwFAYD VQQDEw02OGJmM2VmMy0zZWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5DwrKw2YKgOJTTuFsoZhK7AxiaJ7fQjyDt2BXmc9aJCH1TQUl3Dtf0TIsMQw Fu4uDr9zXUh4Jehtk0MTTRVRkx+tk2mMrShncQhoJ560/R5SCIJ8/8Cko/DqnSFa kUUH6xO0lJWK+lNGUz/9GfVDNDg8pkQFWp1RBC9qED75HcU90y08ivOC4w8jIP2N rhQoHOVNIXrvdvC8jVFIXW20rvcCANnyCoDGHK51cPMA5q/JQtoLTx1O7LzLV6vj aobVUVA66neDFJfsK/+Qp9qn+lRK9csAV1rJa0x9yoZW9OoMgGA2l2USFGDkso6k UrTIy268c1iffZu6ggSJtuelLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFW3nfIc cMBAyQAdP5TjBlnvp/r6MB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0NBNC8xNUY2OEI1Q0NGMTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4 V0Z0Zl9uREZBc2JJOWRNd0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArp8vKDqQeEbFzddEn5p3EDLdT0XnhGGEY9NXxxpY3X5PzfFA847We nHHormezOTFFd/e6Wrt3t/S8qUtQvhRa73q6h06O7iDljy/TC9vxYqFsCQvwe9m4 3+rdpR8mU8DBDsh8NSvmc5wQCoibAnRylUUKWZ7aaVw1gO0lsvYLcfP5WFmyqNw2 0FO3THPLd+q0ZR7rpBtHz3cXMmVQW+cp6t0XpikoADI4jbwcj5hHBdBvWZJeeZdN tguDGo8qADvv6DTsY1zftTcYJ+zkNXKr3DbkBXQK3FWARvXZUf/znXkGDXeTmWTU etasTGHzHVjmZyjYcmLstVn4n1+S334T -----END CERTIFICATE-----Generated at Wed Sep 10 13:33:57 2025 by rpki-client