$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft File: cxfXd72qYzPNlqgQS5TeD6R1IRM.mft (raw, json) Hash identifier: g9RVK+H1RFHC/qJFO8lAcMzqpcX+9mHvy5uM/AVxfJU= Subject key identifier: 0F:31:98:AC:F4:51:99:0A:E4:06:86:50:21:41:08:7B:9A:2D:C7:DA Authority key identifier: 73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 Certificate issuer: /CN=A91BA941/serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Certificate serial: A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft Manifest number: A3 Signing time: Wed 17 Sep 2025 06:58:15 +0000 Manifest this update: Wed 17 Sep 2025 06:58:15 +0000 Manifest next update: Wed 24 Sep 2025 06:58:15 +0000 Files and hashes: 1: cxfXd72qYzPNlqgQS5TeD6R1IRM.crl (hash: rs6tiLpoKkWU2e9zyrUmIRwwKH2Vsg16Dinp/JGhleg=) 2: 48A5FCA4A0A211EF81FA6876C4F9AE02.roa (hash: hQ884t+I5StX9TWBv4SYubO1nFPYJpeoarqEYGTcC7s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:58:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA941, serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Validity Not Before: Sep 17 06:58:15 2025 GMT Not After : Sep 24 06:58:15 2025 GMT Subject: CN=68ca5c07-562b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d9:4e:53:25:01:bb:88:cf:4d:af:95:e8:e6: 47:1f:0c:19:fa:70:49:d2:d7:35:19:25:b0:b5:1d: ef:db:d6:09:ab:e3:7c:0b:0a:8e:c9:1c:dc:ad:cf: 24:90:a7:47:b6:4a:03:38:9c:18:78:7d:07:52:56: 0f:0b:9a:df:44:94:2e:31:e1:39:e1:b1:65:b2:fd: ef:24:2f:27:be:88:5e:d1:bb:6a:cb:00:c0:32:9c: 5f:82:24:b5:3a:98:d3:cb:98:8b:b0:e3:30:1b:45: 35:b6:ba:b7:bf:e3:31:a8:da:5b:23:da:46:ca:36: ad:1d:c4:ff:31:c7:ba:4a:bc:c2:91:da:71:aa:1e: cb:86:aa:e9:21:86:d8:b6:10:e3:d9:25:ef:95:1f: 7d:aa:2e:ee:fd:5a:07:95:c7:67:a0:1f:8b:74:9d: 1c:34:32:cf:3f:7f:4d:f7:e0:ed:26:9a:74:8d:a1: 65:70:30:62:a4:de:a5:da:6d:1f:72:73:5e:57:43: 24:ac:de:7f:19:ae:a2:8a:4d:e2:c4:7a:c4:e2:1f: b2:1e:f3:ae:da:f3:1b:03:72:b2:b6:4c:f9:a0:d0: ce:3a:4c:06:24:ff:de:f2:95:92:cf:bf:28:aa:db: 4a:4a:d8:a8:70:e8:3a:1e:15:7e:6d:00:7c:bd:c9: ef:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:31:98:AC:F4:51:99:0A:E4:06:86:50:21:41:08:7B:9A:2D:C7:DA X509v3 Authority Key Identifier: keyid:73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:a8:db:43:37:9e:1f:f0:b7:d6:d0:3d:94:bb:81:12:b6:3f: 91:7d:a2:2b:95:51:67:9e:1e:f2:5c:71:c9:82:a6:20:f1:94: 39:9d:7c:ed:49:60:69:4a:2a:07:aa:3f:d1:57:4c:f0:8f:31: 20:c9:ed:34:f7:e7:75:bc:e1:d1:d3:21:37:a0:b1:94:ad:da: 81:59:2f:3d:99:8b:95:08:42:d4:39:1f:6e:92:b2:68:9b:ff: c8:3f:c8:2f:5d:9b:68:c3:91:c6:08:7d:55:53:d4:8a:0f:fc: 43:ad:07:b9:7d:90:4d:af:fc:52:77:f3:55:30:8c:0b:23:93: b1:46:77:51:9a:95:1d:c0:29:f2:81:5b:c9:54:f3:0b:83:e7: 81:13:fd:70:1b:85:3f:29:ff:37:c3:b0:85:a6:ea:36:88:11: 3a:f6:eb:d2:41:58:a5:99:e5:ce:4b:9e:3c:df:ee:0f:38:b8: 48:4a:8f:be:1f:8c:d5:83:e0:fa:71:16:85:64:49:dc:dd:d1: 0d:66:c4:0f:e4:a6:9a:ea:fc:8a:fe:0f:5a:6a:86:42:35:b7: 7a:ba:f4:d3:9a:3b:ee:f2:6b:47:30:ba:26:3d:fe:9b:30:44: 9c:f6:c8:08:bb:96:2d:79:ad:68:93:b4:e2:31:ca:2f:12:51: 8a:1e:fa:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE5NDExMTAvBgNVBAUTKDczMTdENzc3QkRBQTYzMzNDRDk2QTgxMDRCOTRERTBG QTQ3NTIxMTMwHhcNMjUwOTE3MDY1ODE1WhcNMjUwOTI0MDY1ODE1WjAYMRYwFAYD VQQDEw02OGNhNWMwNy01NjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttlOUyUBu4jPTa+V6OZHHwwZ+nBJ0tc1GSWwtR3v29YJq+N8CwqOyRzcrc8k kKdHtkoDOJwYeH0HUlYPC5rfRJQuMeE54bFlsv3vJC8nvohe0btqywDAMpxfgiS1 OpjTy5iLsOMwG0U1trq3v+MxqNpbI9pGyjatHcT/Mce6SrzCkdpxqh7LhqrpIYbY thDj2SXvlR99qi7u/VoHlcdnoB+LdJ0cNDLPP39N9+DtJpp0jaFlcDBipN6l2m0f cnNeV0MkrN5/Ga6iik3ixHrE4h+yHvOu2vMbA3Kytkz5oNDOOkwGJP/e8pWSz78o qttKStiocOg6HhV+bQB8vcnvjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA8xmKz0 UZkK5AaGUCFBCHuaLcfaMB8GA1UdIwQYMBaAFHMX13e9qmMzzZaoEEuU3g+kdSET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTk0MS85QjNEMjU0OEEw QTAxMUVGOTA1MjMyNUZDNEY5QUUwMi9jeGZYZDcycVl6UE5scWdRUzVUZUQ2UjFJ Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4ZlhkNzJxWXpQTmxxZ1FTNVRlRDZSMUlSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTk0MS85QjNEMjU0OEEwQTAxMUVGOTA1MjMyNUZDNEY5QUUwMi9jeGZYZDcycVl6 UE5scWdRUzVUZUQ2UjFJUk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtqNtDN54f8LfW0D2Uu4EStj+RfaIrlVFnnh7yXHHJgqYg8ZQ5nXzt SWBpSioHqj/RV0zwjzEgye009+d1vOHR0yE3oLGUrdqBWS89mYuVCELUOR9ukrJo m//IP8gvXZtow5HGCH1VU9SKD/xDrQe5fZBNr/xSd/NVMIwLI5OxRndRmpUdwCny gVvJVPMLg+eBE/1wG4U/Kf83w7CFpuo2iBE69uvSQVilmeXOS5483+4POLhISo++ H4zVg+D6cRaFZEnc3dENZsQP5Kaa6vyK/g9aaoZCNbd6uvTTmjvu8mtHMLomPf6b MESc9sgIu5Ytea1ok7TiMcovElGKHvq/ -----END CERTIFICATE-----Generated at Fri Sep 19 01:01:22 2025 by rpki-client