$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft File: 1RZ7lweHQQlX4l2fh1CFYPAFd24.mft (raw, json) Hash identifier: V5nJuXK8bqgME9h8+bvku/uw/6R/M7eg4+b3AqhSrCM= Subject key identifier: D4:FA:08:03:FF:74:A5:21:ED:C7:C7:12:2A:83:78:7A:62:EF:DE:B2 Authority key identifier: D5:16:7B:97:07:87:41:09:57:E2:5D:9F:87:50:85:60:F0:05:77:6E Certificate issuer: /CN=A91B9011/serialNumber=D5167B970787410957E25D9F87508560F005776E Certificate serial: 05F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft Manifest number: 05EE Signing time: Thu 18 Sep 2025 23:15:47 +0000 Manifest this update: Thu 18 Sep 2025 23:15:47 +0000 Manifest next update: Thu 25 Sep 2025 23:15:47 +0000 Files and hashes: 1: 1RZ7lweHQQlX4l2fh1CFYPAFd24.crl (hash: pkcKBTcheSicuN8yyd4J9vY0OuJiqHXRMJENMEIcp9A=) 2: 438893AC55BE11EDBDE51983C4F9AE02.roa (hash: Y1Hqc3CucW1MGNfTEVOgwuu3xdmSB7zSj6HU8UBJr7c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.crl rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1523 (0x5f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9011, serialNumber=D5167B970787410957E25D9F87508560F005776E Validity Not Before: Sep 18 23:15:47 2025 GMT Not After : Sep 25 23:15:47 2025 GMT Subject: CN=68cc92a3-b94d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:11:dd:92:7e:23:b8:94:48:16:91:18:20:68: fe:dc:8f:f6:1e:b2:d9:d5:fa:28:7f:b7:55:eb:8c: b8:c7:99:ff:a0:ba:9c:37:cf:94:66:58:dc:d9:e4: 8f:54:4a:05:d3:c3:38:ac:44:4c:f8:fe:52:31:4e: e0:1a:6f:dc:55:10:fd:1c:cb:4f:2b:32:7e:67:73: 15:fb:45:e5:15:3a:28:5d:80:ff:50:3b:f6:b3:0b: f4:ab:1c:ce:9d:68:9a:90:48:3c:93:9f:c6:f8:1e: de:f4:ae:d8:0e:4d:3f:fb:67:3b:00:89:a2:f8:6b: 41:38:b1:32:3c:76:21:f8:da:fd:7f:de:6c:6b:08: e1:de:a0:a4:72:57:15:32:1f:d9:e3:a9:0c:eb:51: 36:a2:f3:e0:03:82:e2:d9:4e:f9:bb:2c:0a:32:5a: 13:04:81:41:b0:d7:81:a3:04:a7:c1:b0:9b:f0:48: a4:6e:b0:e8:61:2b:d0:e6:c8:8f:76:cb:d0:fc:4b: 54:9f:9d:7d:cd:81:b6:b2:38:3a:8e:f5:4e:c0:45: e8:c6:15:9f:18:71:de:b9:42:81:80:2b:b9:3a:81: 1a:39:74:a7:f5:b9:16:d8:96:a6:b7:13:78:c6:29: 7b:51:61:66:1b:fa:af:49:41:3e:6d:e0:9d:ce:63: 7f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:FA:08:03:FF:74:A5:21:ED:C7:C7:12:2A:83:78:7A:62:EF:DE:B2 X509v3 Authority Key Identifier: keyid:D5:16:7B:97:07:87:41:09:57:E2:5D:9F:87:50:85:60:F0:05:77:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RZ7lweHQQlX4l2fh1CFYPAFd24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9011/3888E0C4C73A11EB90075510C4F9AE02/1RZ7lweHQQlX4l2fh1CFYPAFd24.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:31:64:f8:a9:da:f6:46:1b:bb:6f:78:23:65:08:a6:4c:07: 75:c2:14:f3:f8:6a:46:51:60:48:17:99:0a:12:a8:cb:e9:ed: f4:eb:49:5d:02:64:64:e2:df:83:61:60:e9:6a:1f:94:d8:b0: 8b:43:40:f0:2e:56:3f:e4:bb:35:92:cd:c3:ac:02:ff:77:f3: 16:03:a5:2d:c2:a3:64:23:49:00:1c:b5:0e:72:81:28:d2:6d: fa:d0:ee:61:d2:34:7f:41:01:c5:90:33:0d:b6:b1:00:7d:52: ff:22:56:90:57:9e:59:f4:b8:5e:4e:52:61:0e:70:63:b0:e1: bb:4d:e1:03:e4:48:82:83:59:71:5e:e3:c4:bd:8a:e9:26:46: a6:44:69:72:2c:c4:fa:df:e2:87:1e:d7:bb:f2:45:ae:e2:37: a8:15:c6:05:84:3a:bb:aa:c5:3a:2c:8b:de:e8:cd:81:23:16: ee:c2:31:01:d4:11:6c:ca:05:4e:8f:44:76:97:1f:1a:3a:53: 52:46:44:6c:8f:81:29:6d:0c:34:78:bf:32:fc:b2:84:9d:4c: 83:8d:70:3b:01:2e:d0:7f:db:2f:72:a3:73:2f:2a:16:e4:d3: 81:1a:13:9c:9e:78:f6:c2:b3:fa:10:af:e0:93:20:03:49:13: 1d:44:87:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkwMTExMTAvBgNVBAUTKEQ1MTY3Qjk3MDc4NzQxMDk1N0UyNUQ5Rjg3NTA4NTYw RjAwNTc3NkUwHhcNMjUwOTE4MjMxNTQ3WhcNMjUwOTI1MjMxNTQ3WjAYMRYwFAYD VQQDEw02OGNjOTJhMy1iOTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2RHdkn4juJRIFpEYIGj+3I/2HrLZ1foof7dV64y4x5n/oLqcN8+UZljc2eSP VEoF08M4rERM+P5SMU7gGm/cVRD9HMtPKzJ+Z3MV+0XlFTooXYD/UDv2swv0qxzO nWiakEg8k5/G+B7e9K7YDk0/+2c7AImi+GtBOLEyPHYh+Nr9f95sawjh3qCkclcV Mh/Z46kM61E2ovPgA4Li2U75uywKMloTBIFBsNeBowSnwbCb8EikbrDoYSvQ5siP dsvQ/EtUn519zYG2sjg6jvVOwEXoxhWfGHHeuUKBgCu5OoEaOXSn9bkW2JamtxN4 xil7UWFmG/qvSUE+beCdzmN/uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNT6CAP/ dKUh7cfHEiqDeHpi796yMB8GA1UdIwQYMBaAFNUWe5cHh0EJV+Jdn4dQhWDwBXdu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTAxMS8zODg4RTBDNEM3 M0ExMUVCOTAwNzU1MTBDNEY5QUUwMi8xUlo3bHdlSFFRbFg0bDJmaDFDRllQQUZk MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFSWjdsd2VIUVFsWDRsMmZoMUNGWVBBRmQyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTAxMS8zODg4RTBDNEM3M0ExMUVCOTAwNzU1MTBDNEY5QUUwMi8xUlo3bHdlSFFR bFg0bDJmaDFDRllQQUZkMjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqMWT4qdr2Rhu7b3gjZQimTAd1whTz+GpGUWBIF5kKEqjL6e3060ld AmRk4t+DYWDpah+U2LCLQ0DwLlY/5Ls1ks3DrAL/d/MWA6UtwqNkI0kAHLUOcoEo 0m360O5h0jR/QQHFkDMNtrEAfVL/IlaQV55Z9LheTlJhDnBjsOG7TeED5EiCg1lx XuPEvYrpJkamRGlyLMT63+KHHte78kWu4jeoFcYFhDq7qsU6LIve6M2BIxbuwjEB 1BFsygVOj0R2lx8aOlNSRkRsj4EpbQw0eL8y/LKEnUyDjXA7AS7Qf9svcqNzLyoW 5NOBGhOcnnj2wrP6EK/gkyADSRMdRIcT -----END CERTIFICATE-----Generated at Fri Sep 19 00:50:04 2025 by rpki-client