$ rpki-client -vvf rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft File: DfoUcOPJ6yHxewN7BM9O1UJO88k.mft (raw, json) Hash identifier: Dn65N3GBWsueJBzPGj637YTV9AkT+EmZT2y1l5tGKOQ= Subject key identifier: 09:ED:0D:2E:75:70:C7:B9:E0:15:5E:9B:1B:02:6B:55:C7:17:EA:AC Authority key identifier: 0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 Certificate issuer: /CN=A91B588F/serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Certificate serial: 1D66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft Manifest number: 1D57 Signing time: Thu 18 Sep 2025 16:14:22 +0000 Manifest this update: Thu 18 Sep 2025 16:14:21 +0000 Manifest next update: Thu 25 Sep 2025 16:14:21 +0000 Files and hashes: 1: DfoUcOPJ6yHxewN7BM9O1UJO88k.crl (hash: YMcHGpJkObJr5l89pmjpa9n5+JvRQ0YtBgFbqF/Ip4M=) 2: 234A77E28D2111ECB33BB01AC4F9AE02.roa (hash: k8TIUAQe/uhiGTZr6cgQAthXD90vdh6WA7DCNugyFL0=) 3: 09DBF798B76311E6AF11523EC4F9AE02.roa (hash: KJtFM/La7mL3fu5dlcMqDcraRcAtERap2FuVwdqAgkc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7526 (0x1d66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B588F, serialNumber=0DFA1470E3C9EB21F17B037B04CF4ED5424EF3C9 Validity Not Before: Sep 18 16:14:21 2025 GMT Not After : Sep 25 16:14:21 2025 GMT Subject: CN=68cc2fdd-3cfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a9:50:c8:21:53:e6:8d:b1:e3:fe:9b:9f:c3: ec:9c:f6:a7:59:27:38:9b:d7:31:ae:74:a5:7d:c5: e8:3a:c3:03:38:36:be:4a:ae:d2:8d:0b:5c:33:7b: 51:7c:49:10:de:41:2f:ec:42:d1:1e:77:30:39:fa: 38:13:f3:8d:09:22:92:da:ea:c3:3c:18:3e:6b:d0: a5:35:a4:51:ce:f2:eb:8c:88:1c:08:4b:66:39:6d: 0b:3c:a7:1d:bb:3e:2c:88:13:0d:05:27:e4:51:62: aa:b0:69:ea:5a:c1:2f:0b:05:58:4c:c2:d8:a8:c1: 95:f6:bb:77:a4:fa:ae:a4:5f:35:03:b5:94:4f:7f: d7:45:ae:ad:42:4f:3d:5d:db:e3:a2:f6:f2:e0:7b: 9d:53:8d:fd:47:a0:82:ea:f6:7d:75:35:99:01:1d: aa:50:c6:27:28:4e:08:2c:59:9d:bb:0f:fe:37:0e: 37:70:93:a2:48:08:12:b2:d3:5f:15:19:dc:38:6f: 6f:5c:ad:4a:07:10:4d:9e:03:b1:3b:c6:3f:b9:46: 69:71:27:15:43:4a:a2:aa:e7:d8:b3:30:c3:cc:09: c5:f5:a8:a0:e1:b5:85:04:4a:b3:cb:26:4c:76:a4: e9:e7:72:28:1f:25:a9:c0:cb:b5:7b:15:ab:56:61: 48:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:ED:0D:2E:75:70:C7:B9:E0:15:5E:9B:1B:02:6B:55:C7:17:EA:AC X509v3 Authority Key Identifier: keyid:0D:FA:14:70:E3:C9:EB:21:F1:7B:03:7B:04:CF:4E:D5:42:4E:F3:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfoUcOPJ6yHxewN7BM9O1UJO88k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B588F/784D94B8B76111E6B1175A3CC4F9AE02/DfoUcOPJ6yHxewN7BM9O1UJO88k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:1a:4f:d5:ff:e5:3f:62:20:84:25:45:bd:4f:6b:e6:83:db: b1:ad:ba:e7:78:04:ee:2c:21:3e:42:db:0d:ca:4d:f5:96:85: c1:d0:1e:b9:4e:34:9e:16:e3:7f:eb:84:b8:20:98:18:25:d2: 7e:10:5b:75:a6:de:a2:9e:d0:d8:3b:e0:59:17:0f:a1:40:6b: fd:21:2d:46:43:92:a5:f4:7e:a7:4b:55:93:21:cd:c7:44:f7: 5e:39:96:20:d1:c0:94:a1:3c:b0:ff:db:17:34:0e:18:6b:a3: 1a:ba:f4:e4:88:f6:63:8f:7a:70:07:f5:d0:44:8d:46:13:c0: 29:50:1d:7e:f9:ba:1f:5d:14:5f:52:70:d7:9f:8e:68:5e:bb: 90:c3:f1:0c:64:c9:3e:03:5c:da:16:e8:6b:13:3d:f5:d1:ad: 83:6f:9d:3a:eb:2e:4e:aa:4f:1d:da:4e:51:b1:93:2b:da:07: 53:12:ac:d8:83:31:75:f6:30:00:fd:fd:f9:a5:9f:8c:d4:82: d2:4c:b2:22:3f:71:e8:e0:e3:b5:90:3e:9f:ff:9f:d4:f8:1e: dd:c5:e4:b3:bc:54:a1:bd:a4:b2:6d:ca:dc:1a:ad:7b:f6:e6: 3d:6d:a9:a4:30:90:ab:77:64:e1:55:5d:4b:5f:95:f3:af:bc: e5:7b:5e:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU4OEYxMTAvBgNVBAUTKDBERkExNDcwRTNDOUVCMjFGMTdCMDM3QjA0Q0Y0RUQ1 NDI0RUYzQzkwHhcNMjUwOTE4MTYxNDIxWhcNMjUwOTI1MTYxNDIxWjAYMRYwFAYD VQQDEw02OGNjMmZkZC0zY2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6lQyCFT5o2x4/6bn8PsnPanWSc4m9cxrnSlfcXoOsMDODa+Sq7SjQtcM3tR fEkQ3kEv7ELRHncwOfo4E/ONCSKS2urDPBg+a9ClNaRRzvLrjIgcCEtmOW0LPKcd uz4siBMNBSfkUWKqsGnqWsEvCwVYTMLYqMGV9rt3pPqupF81A7WUT3/XRa6tQk89 Xdvjovby4HudU439R6CC6vZ9dTWZAR2qUMYnKE4ILFmduw/+Nw43cJOiSAgSstNf FRncOG9vXK1KBxBNngOxO8Y/uUZpcScVQ0qiqufYszDDzAnF9aig4bWFBEqzyyZM dqTp53IoHyWpwMu1exWrVmFIFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAntDS51 cMe54BVemxsCa1XHF+qsMB8GA1UdIwQYMBaAFA36FHDjyesh8XsDewTPTtVCTvPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTg4Ri83ODREOTRCOEI3 NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5SHhld043Qk05TzFVSk84 OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Rmb1VjT1BKNnlIeGV3TjdCTTlPMVVKTzg4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTg4Ri83ODREOTRCOEI3NjExMUU2QjExNzVBM0NDNEY5QUUwMi9EZm9VY09QSjZ5 SHhld043Qk05TzFVSk84OGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeGk/V/+U/YiCEJUW9T2vmg9uxrbrneATuLCE+QtsNyk31loXB0B65 TjSeFuN/64S4IJgYJdJ+EFt1pt6intDYO+BZFw+hQGv9IS1GQ5Kl9H6nS1WTIc3H RPdeOZYg0cCUoTyw/9sXNA4Ya6MauvTkiPZjj3pwB/XQRI1GE8ApUB1++bofXRRf UnDXn45oXruQw/EMZMk+A1zaFuhrEz310a2Db5066y5Oqk8d2k5RsZMr2gdTEqzY gzF19jAA/f35pZ+M1ILSTLIiP3Ho4OO1kD6f/5/U+B7dxeSzvFShvaSybcrcGq17 9uY9bamkMJCrd2ThVV1LX5Xzr7zle17t -----END CERTIFICATE-----Generated at Fri Sep 19 00:38:54 2025 by rpki-client