$ rpki-client -vvf rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft File: iV5rynpcNtnzBEctDScTpILJ2yU.mft (raw, json) Hash identifier: Sl7BzhoP0MHPDV15A6y8L1Ys6LLfKZLoc2RwDZc97WY= Subject key identifier: C3:AD:31:3C:75:39:4B:8C:BC:93:CD:5C:3A:25:85:76:98:6A:A9:84 Authority key identifier: 89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 Certificate issuer: /CN=A91B829A/serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Certificate serial: 0C87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft Manifest number: 0C7D Signing time: Thu 18 Sep 2025 18:33:40 +0000 Manifest this update: Thu 18 Sep 2025 18:33:39 +0000 Manifest next update: Thu 25 Sep 2025 18:33:39 +0000 Files and hashes: 1: iV5rynpcNtnzBEctDScTpILJ2yU.crl (hash: SzNn5hujSYhn9QcK9oj+V5n/BWiFnCW5aJZPphKETpc=) 2: 37759456617811ECBB095A62C4F9AE02.roa (hash: v3SUpuH8xWSras56GKvRnCYqonsTS7bWwXVAuKOWPmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:33:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3207 (0xc87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B829A, serialNumber=895E6BCA7A5C36D9F304472D0D2713A482C9DB25 Validity Not Before: Sep 18 18:33:39 2025 GMT Not After : Sep 25 18:33:39 2025 GMT Subject: CN=68cc5084-1d0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:72:f1:44:d8:9e:96:d6:7d:07:ed:a1:3c:6b: 43:d9:2b:2c:3f:06:d9:35:30:de:dc:73:0f:5c:a7: 3c:c7:e2:5d:01:6e:4c:06:2b:72:9a:1a:d3:01:47: 9e:4d:24:e6:56:cb:6a:07:e0:4f:8e:38:83:69:19: 3b:4b:5a:53:03:75:54:23:ce:42:c6:86:c1:1d:88: ba:58:a0:0c:f0:62:74:aa:a9:ea:76:43:57:03:7f: 0d:c1:ab:e1:2d:e2:bf:58:b7:39:5c:72:eb:47:70: e0:00:a9:e6:ec:a5:69:17:8c:aa:d2:4a:83:2b:11: ab:5c:7e:04:33:3a:27:3e:14:59:9d:05:9e:35:2a: 37:a6:e3:66:ef:22:30:91:ef:33:7c:4f:f2:5a:af: 4c:e8:fd:0e:52:ed:05:b0:9e:1f:0f:fa:84:f0:e9: 39:72:98:7b:09:ea:cc:67:53:cd:9e:8e:cb:4c:bc: 1b:08:e0:44:7c:a3:9b:20:6a:03:79:f9:81:67:2f: 43:32:ba:28:82:2c:3e:ba:b8:03:c0:4f:8f:bd:ba: 86:ab:45:72:12:83:b6:76:2e:00:f1:90:b4:10:ac: c6:c3:60:dc:7e:ac:22:04:e6:b5:59:c7:40:b6:b9: 9a:d8:ae:ba:87:84:8e:3c:95:c5:5b:4c:14:4a:96: 86:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:AD:31:3C:75:39:4B:8C:BC:93:CD:5C:3A:25:85:76:98:6A:A9:84 X509v3 Authority Key Identifier: keyid:89:5E:6B:CA:7A:5C:36:D9:F3:04:47:2D:0D:27:13:A4:82:C9:DB:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iV5rynpcNtnzBEctDScTpILJ2yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B829A/1F23E058057F11EAA5516B3FC4F9AE02/iV5rynpcNtnzBEctDScTpILJ2yU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:6d:16:aa:ef:f3:fe:85:ed:97:0b:aa:e8:6e:6e:e8:48:3a: c5:12:a7:9d:c5:9b:25:fc:4f:4e:8c:05:47:b5:3e:5e:93:c6: a9:fe:b1:50:6a:82:19:04:14:88:03:2d:84:9f:c3:0b:2c:13: 26:b9:ed:52:62:a1:e9:af:11:fe:43:ef:55:e7:a5:1f:21:8f: f7:66:85:da:f2:60:bf:e5:a3:83:8d:5a:e3:94:60:53:9f:f3: 23:a8:15:40:b9:8f:bb:96:3f:8f:9c:0c:62:f4:db:cf:f3:40: a7:d9:f0:2f:c3:2d:e6:1d:1e:71:eb:12:6b:af:cc:5c:34:18: 93:2e:a1:f8:30:73:35:f0:83:35:8e:41:4d:23:6e:ae:3e:d3: 47:33:84:ca:8b:e0:c2:e4:57:6b:58:20:51:a1:2d:2c:86:60: d2:f3:93:6d:0d:54:9c:88:fe:c3:0f:04:2f:b6:7d:8a:48:d0: 8d:d8:a3:67:21:26:cf:82:66:c8:00:16:24:4c:9e:23:3e:c8: 01:99:da:2f:b6:bf:5e:0e:75:09:de:6f:d5:59:1b:48:31:7b: 43:b7:16:60:1e:21:a8:c9:d7:2f:dc:5a:08:ac:d6:57:cc:41: 9b:33:3f:d5:4a:4f:02:e2:e5:01:a4:57:56:67:fa:6b:d5:c1: e3:0a:aa:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgyOUExMTAvBgNVBAUTKDg5NUU2QkNBN0E1QzM2RDlGMzA0NDcyRDBEMjcxM0E0 ODJDOURCMjUwHhcNMjUwOTE4MTgzMzM5WhcNMjUwOTI1MTgzMzM5WjAYMRYwFAYD VQQDEw02OGNjNTA4NC0xZDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0nLxRNieltZ9B+2hPGtD2SssPwbZNTDe3HMPXKc8x+JdAW5MBitymhrTAUee TSTmVstqB+BPjjiDaRk7S1pTA3VUI85CxobBHYi6WKAM8GJ0qqnqdkNXA38Nwavh LeK/WLc5XHLrR3DgAKnm7KVpF4yq0kqDKxGrXH4EMzonPhRZnQWeNSo3puNm7yIw ke8zfE/yWq9M6P0OUu0FsJ4fD/qE8Ok5cph7CerMZ1PNno7LTLwbCOBEfKObIGoD efmBZy9DMroogiw+urgDwE+PvbqGq0VyEoO2di4A8ZC0EKzGw2DcfqwiBOa1WcdA trma2K66h4SOPJXFW0wUSpaGTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMOtMTx1 OUuMvJPNXDolhXaYaqmEMB8GA1UdIwQYMBaAFIlea8p6XDbZ8wRHLQ0nE6SCydsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODI5QS8xRjIzRTA1ODA1 N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050bnpCRWN0RFNjVHBJTEoy eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lWNXJ5bnBjTnRuekJFY3REU2NUcElMSjJ5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODI5QS8xRjIzRTA1ODA1N0YxMUVBQTU1MTZCM0ZDNEY5QUUwMi9pVjVyeW5wY050 bnpCRWN0RFNjVHBJTEoyeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBabRaq7/P+he2XC6robm7oSDrFEqedxZsl/E9OjAVHtT5ek8ap/rFQ aoIZBBSIAy2En8MLLBMmue1SYqHprxH+Q+9V56UfIY/3ZoXa8mC/5aODjVrjlGBT n/MjqBVAuY+7lj+PnAxi9NvP80Cn2fAvwy3mHR5x6xJrr8xcNBiTLqH4MHM18IM1 jkFNI26uPtNHM4TKi+DC5FdrWCBRoS0shmDS85NtDVSciP7DDwQvtn2KSNCN2KNn ISbPgmbIABYkTJ4jPsgBmdovtr9eDnUJ3m/VWRtIMXtDtxZgHiGoydcv3FoIrNZX zEGbMz/VSk8C4uUBpFdWZ/pr1cHjCqr/ -----END CERTIFICATE-----Generated at Fri Sep 19 05:29:38 2025 by rpki-client