$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft File: dQ-le1kVZTnLFuVKYKbO21sQ654.mft (raw, json) Hash identifier: /ZEu451R0G9lXBaMzQHtfTbs2HX8idGZOgF71u9Re6Q= Subject key identifier: CB:32:59:6F:D4:87:BE:7D:3D:0D:A7:8F:C2:38:83:64:79:01:E9:D3 Authority key identifier: 75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E Certificate issuer: /CN=A91BB1F3/serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft Manifest number: DB Signing time: Wed 17 Sep 2025 06:10:07 +0000 Manifest this update: Wed 17 Sep 2025 06:10:07 +0000 Manifest next update: Wed 24 Sep 2025 06:10:07 +0000 Files and hashes: 1: dQ-le1kVZTnLFuVKYKbO21sQ654.crl (hash: Rqx04llx6SwIL+6cQAViNvNDn27MOo9wfecJcSQqkU0=) 2: F9E4E14645AE11EF8870C771C4F9AE02.roa (hash: R0ve1rGoHZXsOYQBScXwsDxNaaTbtMNOWotF4DpFkvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:10:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB1F3, serialNumber=750FA57B59156539CB16E54A60A6CEDB5B10EB9E Validity Not Before: Sep 17 06:10:07 2025 GMT Not After : Sep 24 06:10:07 2025 GMT Subject: CN=68ca50bf-ec34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:63:f2:83:61:d5:f5:cd:80:24:a9:7a:bf:57: 98:bf:d3:f7:29:4d:f2:84:2f:32:41:74:74:75:d5: be:36:a9:98:50:6c:14:4b:c3:e1:c8:7b:ae:d0:39: 7f:a1:d3:7c:b4:fb:47:4f:9e:5d:8c:51:25:42:6d: e2:86:2b:30:07:c7:d8:59:6f:ef:fa:e2:43:bc:87: 92:32:31:5c:89:f6:94:34:c2:aa:83:ee:0d:7b:10: f1:74:e4:d3:e0:bf:42:b0:82:41:00:ba:e9:04:dd: e8:9e:e4:ce:0f:ea:c8:c5:d4:07:02:d6:3c:0d:ca: 7b:83:7f:5b:06:ec:76:77:bb:a4:27:28:f9:73:89: d1:22:4d:d1:85:9e:b1:e4:64:ad:ad:ea:d4:10:eb: 80:39:25:f6:68:f5:88:84:5d:4d:fd:1a:e1:22:6f: 75:ca:76:ae:dc:c6:9c:07:64:21:b9:fb:1d:7e:b5: 74:af:18:82:23:13:07:16:be:f6:9a:64:2d:c7:af: 48:4f:f8:29:8c:93:d2:c2:3b:5e:ff:bc:d2:21:06: 01:c7:08:f8:81:ec:ac:8a:2d:c7:8c:4e:84:a9:9a: 75:59:d8:67:fd:b5:0c:0e:50:c2:31:f2:dd:2a:ce: ab:08:e4:de:34:08:a9:de:b6:d6:18:2f:ff:0e:46: f0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:32:59:6F:D4:87:BE:7D:3D:0D:A7:8F:C2:38:83:64:79:01:E9:D3 X509v3 Authority Key Identifier: keyid:75:0F:A5:7B:59:15:65:39:CB:16:E5:4A:60:A6:CE:DB:5B:10:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQ-le1kVZTnLFuVKYKbO21sQ654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB1F3/4297D05245AE11EFB6237870C4F9AE02/dQ-le1kVZTnLFuVKYKbO21sQ654.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:4a:9c:1b:62:e2:42:a7:f8:67:a7:94:a2:98:7b:ca:53:19: 36:da:0b:e8:85:6e:50:f8:8d:74:87:75:29:d0:fc:be:5d:6f: ca:65:e1:05:c2:27:78:10:3c:1e:8b:37:bd:ff:e0:6a:ac:41: 19:e4:ea:aa:20:91:47:3c:16:f9:a3:ab:18:85:3b:33:f8:b5: f9:e2:27:90:6c:4a:a9:b8:ed:99:12:b1:e4:61:b1:4a:ee:5f: c6:60:b5:bb:29:10:8d:58:25:af:36:16:f0:00:b1:46:31:64: 30:59:4c:5c:39:68:64:6a:95:bd:c2:e2:c8:2f:58:ca:6d:dc: a4:cd:32:02:8e:b4:77:b1:df:4b:94:59:9d:a1:89:72:25:ee: 78:95:f3:7b:11:5e:05:45:04:82:b2:41:13:fe:e0:6a:ea:6b: a7:2f:c8:af:62:9f:fa:e7:b9:21:55:b0:07:c2:97:64:2c:d8: 05:1a:4d:d5:3a:01:65:74:0c:b2:18:8f:fd:2e:3c:e2:b6:9e: 38:4a:57:be:2b:99:de:a7:ab:7a:24:03:87:3b:cf:af:92:d3: da:02:14:1e:8a:6a:ec:af:ce:d3:69:a6:38:3c:e6:22:da:a4: a5:39:d8:d3:14:73:b3:80:c7:90:cf:6b:ce:7f:d2:30:85:16: 58:eb:e1:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxRjMxMTAvBgNVBAUTKDc1MEZBNTdCNTkxNTY1MzlDQjE2RTU0QTYwQTZDRURC NUIxMEVCOUUwHhcNMjUwOTE3MDYxMDA3WhcNMjUwOTI0MDYxMDA3WjAYMRYwFAYD VQQDEw02OGNhNTBiZi1lYzM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2Pyg2HV9c2AJKl6v1eYv9P3KU3yhC8yQXR0ddW+NqmYUGwUS8PhyHuu0Dl/ odN8tPtHT55djFElQm3ihiswB8fYWW/v+uJDvIeSMjFcifaUNMKqg+4NexDxdOTT 4L9CsIJBALrpBN3onuTOD+rIxdQHAtY8Dcp7g39bBux2d7ukJyj5c4nRIk3RhZ6x 5GStrerUEOuAOSX2aPWIhF1N/RrhIm91ynau3MacB2QhufsdfrV0rxiCIxMHFr72 mmQtx69IT/gpjJPSwjte/7zSIQYBxwj4geysii3HjE6EqZp1Wdhn/bUMDlDCMfLd Ks6rCOTeNAip3rbWGC//DkbweQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMsyWW/U h759PQ2nj8I4g2R5AenTMB8GA1UdIwQYMBaAFHUPpXtZFWU5yxblSmCmzttbEOue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjFGMy80Mjk3RDA1MjQ1 QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpUbkxGdVZLWUtiTzIxc1E2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRLWxlMWtWWlRuTEZ1VktZS2JPMjFzUTY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjFGMy80Mjk3RDA1MjQ1QUUxMUVGQjYyMzc4NzBDNEY5QUUwMi9kUS1sZTFrVlpU bkxGdVZLWUtiTzIxc1E2NTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtSpwbYuJCp/hnp5SimHvKUxk22gvohW5Q+I10h3Up0Py+XW/KZeEF wid4EDweize9/+BqrEEZ5OqqIJFHPBb5o6sYhTsz+LX54ieQbEqpuO2ZErHkYbFK 7l/GYLW7KRCNWCWvNhbwALFGMWQwWUxcOWhkapW9wuLIL1jKbdykzTICjrR3sd9L lFmdoYlyJe54lfN7EV4FRQSCskET/uBq6munL8ivYp/657khVbAHwpdkLNgFGk3V OgFldAyyGI/9Ljzitp44Sle+K5nep6t6JAOHO8+vktPaAhQeimrsr87TaaY4POYi 2qSlOdjTFHOzgMeQz2vOf9IwhRZY6+Ed -----END CERTIFICATE-----Generated at Thu Sep 18 23:51:31 2025 by rpki-client