$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft File: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft (raw, json) Hash identifier: P9SMtSyAqeZnbXRFAgGVVcERYvuWx8Nl6GJhnO6SUJQ= Subject key identifier: D0:0B:A7:2E:3B:17:90:15:63:89:E8:C5:4F:AA:66:9F:E4:CD:8D:F8 Authority key identifier: 53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 Certificate issuer: /CN=A91BA251/serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Certificate serial: 057C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft Manifest number: 0572 Signing time: Tue 16 Sep 2025 23:40:27 +0000 Manifest this update: Tue 16 Sep 2025 23:40:26 +0000 Manifest next update: Tue 23 Sep 2025 23:40:26 +0000 Files and hashes: 1: U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl (hash: RvZzx4dAe3J1Fyq+N7CiLAP/Vz99O15Ygw/ftxssMQc=) 2: 567C8DB8354111ECBCC05B63C4F9AE02.roa (hash: bYFWsdvkvj/YP0lWqT722iQHX6ldCjoCu3l/f+mKfk8=) 3: DEA2CCF8050511EEB4D8141FC4F9AE02.roa (hash: CWQZ2s8MFSjBmURLoXYowyPCs3y0c7wnZAfg2tROfa4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 23:40:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1404 (0x57c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA251, serialNumber=53D5DB870E5CCD48E98D73560DBD5E65946C2DD4 Validity Not Before: Sep 16 23:40:26 2025 GMT Not After : Sep 23 23:40:26 2025 GMT Subject: CN=68c9f56b-523d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ca:68:cd:b1:e7:ad:c9:04:b1:9e:5f:12:f1: 2b:65:ef:a8:2e:9e:cb:7e:eb:ea:ef:1f:3e:61:0f: c0:43:41:87:7c:f9:ec:06:13:9a:e0:0b:e2:98:7c: 70:e8:f8:cb:5c:14:f1:2a:24:13:58:a5:e8:e1:db: d1:ba:7d:04:e2:4c:a1:1b:41:fe:26:e5:8b:3f:19: 34:3d:96:2e:ca:e5:3b:93:42:b5:cb:50:bc:87:be: 4f:72:bf:1f:43:7a:fc:31:ec:57:41:d0:04:7d:a6: cd:3b:88:8c:3c:81:d7:b4:6d:5a:de:aa:b1:91:4e: fd:ae:d1:46:e5:9c:fb:f0:a4:04:3d:38:3d:33:9b: f5:4b:62:ac:7f:f0:aa:2d:6f:74:d0:8a:e8:48:85: 3f:a8:91:93:9c:bf:5d:6b:79:26:e9:21:7d:c6:36: 01:81:0f:5f:4b:3b:0a:d4:4a:83:a9:28:4d:68:0e: 10:7c:9d:c7:4b:c8:7e:c2:16:f1:54:54:9f:78:b0: 48:94:81:70:0d:c4:67:01:56:0e:77:44:c1:35:85: 53:f9:2f:11:43:22:b7:16:3e:d1:3b:b9:5a:3b:4f: 06:e7:a0:90:8c:dc:e7:d2:19:48:fb:cf:38:53:91: 34:42:04:a5:42:f8:89:83:60:4b:c6:13:28:3c:13: 5f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:0B:A7:2E:3B:17:90:15:63:89:E8:C5:4F:AA:66:9F:E4:CD:8D:F8 X509v3 Authority Key Identifier: keyid:53:D5:DB:87:0E:5C:CD:48:E9:8D:73:56:0D:BD:5E:65:94:6C:2D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA251/D93D7960F74811EBA75FCC13C4F9AE02/U9Xbhw5czUjpjXNWDb1eZZRsLdQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:7f:dd:69:db:79:04:c4:07:ca:cf:e4:7d:71:d7:41:ce:eb: 6e:03:9b:9d:40:36:79:c4:ec:8f:e8:38:8e:be:fd:57:30:de: ae:3b:3f:8d:20:2c:b6:41:52:00:f5:3e:23:a6:6e:23:b0:f0: 96:6b:d7:a3:9b:4d:5e:a7:31:2f:f3:b0:5d:af:c9:70:03:89: 33:c2:d5:34:d3:bb:19:3c:b7:94:be:ac:92:b8:c8:00:ac:da: 61:60:35:b4:09:15:88:5c:2d:7b:ab:54:e1:b3:72:92:9f:95: 90:b4:9c:5b:ad:06:89:30:12:fa:4d:04:50:54:66:bb:7e:d5: f9:96:1e:22:6d:e7:1b:78:cb:db:3a:c4:de:e3:43:9c:41:85: 99:06:7e:ef:19:b4:b5:57:00:2a:1c:a7:7f:9f:a6:6b:4c:fd: 23:62:ef:b1:32:83:7e:95:3d:71:a7:84:25:1e:89:97:ca:05: c3:c1:cd:2d:ce:6a:ef:ed:43:52:98:19:33:fa:6b:f6:7d:dc: 80:de:73:70:fd:0e:06:78:9c:7f:93:b8:6b:bc:47:8e:98:89: d7:06:b6:f1:a1:d2:ae:b8:42:82:28:40:0c:90:29:0e:c9:96: 6c:08:a7:f8:13:56:b7:06:cd:c8:5a:e3:01:ab:3e:42:a6:7d: ef:4f:26:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEyNTExMTAvBgNVBAUTKDUzRDVEQjg3MEU1Q0NENDhFOThENzM1NjBEQkQ1RTY1 OTQ2QzJERDQwHhcNMjUwOTE2MjM0MDI2WhcNMjUwOTIzMjM0MDI2WjAYMRYwFAYD VQQDEw02OGM5ZjU2Yi01MjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnMpozbHnrckEsZ5fEvErZe+oLp7Lfuvq7x8+YQ/AQ0GHfPnsBhOa4AvimHxw 6PjLXBTxKiQTWKXo4dvRun0E4kyhG0H+JuWLPxk0PZYuyuU7k0K1y1C8h75Pcr8f Q3r8MexXQdAEfabNO4iMPIHXtG1a3qqxkU79rtFG5Zz78KQEPTg9M5v1S2Ksf/Cq LW900IroSIU/qJGTnL9da3km6SF9xjYBgQ9fSzsK1EqDqShNaA4QfJ3HS8h+whbx VFSfeLBIlIFwDcRnAVYOd0TBNYVT+S8RQyK3Fj7RO7laO08G56CQjNzn0hlI+884 U5E0QgSlQviJg2BLxhMoPBNfKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNALpy47 F5AVY4noxU+qZp/kzY34MB8GA1UdIwQYMBaAFFPV24cOXM1I6Y1zVg29XmWUbC3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTI1MS9EOTNENzk2MEY3 NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pVanBqWE5XRGIxZVpaUnNM ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U5WGJodzVjelVqcGpYTldEYjFlWlpSc0xkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTI1MS9EOTNENzk2MEY3NDgxMUVCQTc1RkNDMTNDNEY5QUUwMi9VOVhiaHc1Y3pV anBqWE5XRGIxZVpaUnNMZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPf91p23kExAfKz+R9cddBzutuA5udQDZ5xOyP6DiOvv1XMN6uOz+N ICy2QVIA9T4jpm4jsPCWa9ejm01epzEv87Bdr8lwA4kzwtU007sZPLeUvqySuMgA rNphYDW0CRWIXC17q1Ths3KSn5WQtJxbrQaJMBL6TQRQVGa7ftX5lh4ibecbeMvb OsTe40OcQYWZBn7vGbS1VwAqHKd/n6ZrTP0jYu+xMoN+lT1xp4QlHomXygXDwc0t zmrv7UNSmBkz+mv2fdyA3nNw/Q4GeJx/k7hrvEeOmInXBrbxodKuuEKCKEAMkCkO yZZsCKf4E1a3Bs3IWuMBqz5Cpn3vTyaY -----END CERTIFICATE-----Generated at Fri Sep 19 00:40:34 2025 by rpki-client