$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft File: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft (raw, json) Hash identifier: EX3WCAPbJYX1vyxRowuQAyonGR/UmjmxexGbnVQgO7s= Subject key identifier: CC:3E:66:AB:F1:96:1E:42:B2:EA:AC:78:97:B0:07:09:61:EC:53:49 Authority key identifier: E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 Certificate issuer: /CN=A91B9B0D/serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Certificate serial: 0691 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft Manifest number: 068A Signing time: Thu 18 Sep 2025 22:40:17 +0000 Manifest this update: Thu 18 Sep 2025 22:40:17 +0000 Manifest next update: Thu 25 Sep 2025 22:40:17 +0000 Files and hashes: 1: 5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl (hash: qLSPlWGi2QJWMuOBmCddZCdCbP080UibdFIzz7KKA5w=) 2: 3F9CDA68179911EDB9008D18C4F9AE02.roa (hash: tNq0wofO9dQz+k+RyZIdbIOpj1vNXpBAnuEbiTZO6hQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1681 (0x691) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D, serialNumber=E4D62D31297F17E49C42FA7A7B6623624AD94175 Validity Not Before: Sep 18 22:40:17 2025 GMT Not After : Sep 25 22:40:17 2025 GMT Subject: CN=68cc8a51-93d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4f:ed:f7:9f:63:e5:31:69:fd:de:44:26:7d: 40:56:56:76:40:85:e8:b1:07:79:c6:50:10:3b:64: f9:30:c4:59:ed:84:a6:b1:29:fa:f1:12:f4:5a:ae: 5a:76:8e:1b:89:8c:f4:6b:86:a0:fa:0d:48:2d:d9: 95:e4:43:d6:33:d5:55:9f:60:da:98:f3:26:77:03: d8:94:7d:49:93:1f:4a:5c:b8:6c:a0:1f:87:70:73: fd:8f:52:7c:a8:5b:b4:69:e4:ce:8d:7d:85:ba:fb: a3:db:7e:d7:6b:f9:fb:f1:9d:0d:96:8f:86:b1:e1: 55:81:a9:5a:10:12:8a:9a:08:e1:01:09:2b:5d:c0: 50:a8:2f:c2:28:8e:71:c4:a4:0c:6a:c0:7d:9f:48: 8d:34:fa:af:df:b8:50:97:b3:a9:2e:70:ae:b6:11: 3b:fb:74:4f:8d:f6:e9:de:22:e2:c2:9f:34:ab:c0: 0b:ae:03:76:e9:d0:23:f6:db:02:a9:ea:da:87:fb: 2b:b4:5c:a4:fb:5b:2b:6d:79:9e:8d:94:f7:90:3c: d3:49:a7:f3:bf:72:ea:a6:ea:57:b4:35:7a:b7:51: 05:9b:b2:39:c7:b9:40:26:08:e4:0c:e6:66:da:3b: 3c:2c:50:4b:54:aa:35:3b:85:b3:be:77:9e:9c:e4: 24:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:3E:66:AB:F1:96:1E:42:B2:EA:AC:78:97:B0:07:09:61:EC:53:49 X509v3 Authority Key Identifier: keyid:E4:D6:2D:31:29:7F:17:E4:9C:42:FA:7A:7B:66:23:62:4A:D9:41:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NYtMSl_F-ScQvp6e2YjYkrZQXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/A28ECBC08AB611EB8237D414C4F9AE02/5NYtMSl_F-ScQvp6e2YjYkrZQXU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:05:b0:7a:72:66:bc:94:5b:ec:0a:8b:36:83:a9:36:82:06: da:a6:9e:ab:b5:cd:6a:0c:48:d7:8c:75:bf:9e:98:9c:70:9e: 48:d9:75:c4:5d:5a:30:20:c7:d4:4f:4e:81:cf:98:c1:29:c6: 31:8a:42:9d:23:97:2c:10:b9:34:4d:5d:6e:c4:7b:66:68:5b: a6:9a:c0:4c:e6:f0:b1:96:6e:94:d0:aa:3d:c2:7c:81:55:03: 4f:08:f3:1f:66:95:59:e7:31:27:66:39:fa:1c:eb:66:9c:9c: 3f:41:a4:1b:e0:ba:f9:23:12:47:2b:1e:68:3f:42:35:6d:2f: e5:c4:32:52:e3:24:82:6c:00:bb:c0:23:bb:f3:13:90:f4:c6: 6b:b9:87:7d:24:af:b3:f2:3c:ab:ab:13:05:45:98:65:4b:60: b0:2b:55:28:18:92:c4:4d:74:ce:fb:4f:b7:3f:9b:57:b6:21: de:62:8a:b0:bf:4d:92:6f:55:fc:9d:07:b9:37:45:fd:4b:8d: bd:aa:79:4d:bb:b3:bc:c5:b2:f2:f0:aa:75:ee:91:73:2b:b9: 2b:21:2f:f6:21:e0:06:9d:3f:51:47:8f:a5:5f:db:66:f2:e1: c6:18:96:58:25:4d:84:3d:15:64:2b:4f:7f:8f:ea:8d:12:d0: ca:e7:e1:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEU0RDYyRDMxMjk3RjE3RTQ5QzQyRkE3QTdCNjYyMzYy NEFEOTQxNzUwHhcNMjUwOTE4MjI0MDE3WhcNMjUwOTI1MjI0MDE3WjAYMRYwFAYD VQQDEw02OGNjOGE1MS05M2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0/t959j5TFp/d5EJn1AVlZ2QIXosQd5xlAQO2T5MMRZ7YSmsSn68RL0Wq5a do4biYz0a4ag+g1ILdmV5EPWM9VVn2DamPMmdwPYlH1Jkx9KXLhsoB+HcHP9j1J8 qFu0aeTOjX2Fuvuj237Xa/n78Z0Nlo+GseFVgalaEBKKmgjhAQkrXcBQqC/CKI5x xKQMasB9n0iNNPqv37hQl7OpLnCuthE7+3RPjfbp3iLiwp80q8ALrgN26dAj9tsC qerah/srtFyk+1srbXmejZT3kDzTSafzv3LqpupXtDV6t1EFm7I5x7lAJgjkDOZm 2js8LFBLVKo1O4WzvneenOQkoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMw+Zqvx lh5CsuqseJewBwlh7FNJMB8GA1UdIwQYMBaAFOTWLTEpfxfknEL6entmI2JK2UF1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC9BMjhFQ0JDMDhB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0YtU2NRdnA2ZTJZallrclpR WFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOWXRNU2xfRi1TY1F2cDZlMllqWWtyWlFYVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUIwRC9BMjhFQ0JDMDhBQjYxMUVCODIzN0Q0MTRDNEY5QUUwMi81Tll0TVNsX0Yt U2NRdnA2ZTJZallrclpRWFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYBbB6cma8lFvsCos2g6k2ggbapp6rtc1qDEjXjHW/npiccJ5I2XXE XVowIMfUT06Bz5jBKcYxikKdI5csELk0TV1uxHtmaFummsBM5vCxlm6U0Ko9wnyB VQNPCPMfZpVZ5zEnZjn6HOtmnJw/QaQb4Lr5IxJHKx5oP0I1bS/lxDJS4ySCbAC7 wCO78xOQ9MZruYd9JK+z8jyrqxMFRZhlS2CwK1UoGJLETXTO+0+3P5tXtiHeYoqw v02Sb1X8nQe5N0X9S429qnlNu7O8xbLy8Kp17pFzK7krIS/2IeAGnT9RR4+lX9tm 8uHGGJZYJU2EPRVkK09/j+qNEtDK5+HQ -----END CERTIFICATE-----Generated at Fri Sep 19 13:42:11 2025 by rpki-client