$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft File: G9yKnBE9vfM_vPHBQblLu31wEno.mft (raw, json) Hash identifier: YbODGZ5NfxvIGaFsYXpIY1fumCqFIS5RMA8ES9bMgJs= Subject key identifier: 9E:D8:99:8A:23:06:0B:70:31:EC:2F:D4:48:B0:17:C1:CB:9E:1C:24 Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 0607 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft Manifest number: 0602 Signing time: Thu 18 Sep 2025 23:12:26 +0000 Manifest this update: Thu 18 Sep 2025 23:12:26 +0000 Manifest next update: Thu 25 Sep 2025 23:12:26 +0000 Files and hashes: 1: G9yKnBE9vfM_vPHBQblLu31wEno.crl (hash: D50MhGnMzTSb5rULgdvM/dwF0sfYCJILD9aG+zSae04=) 2: 7F17B380BED411EBA325CC76C4F9AE02.roa (hash: XDIx2Mu+3w+iq57LYXThCAlha4BzO8LkP4nQjVrOfjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1543 (0x607) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3, serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: Sep 18 23:12:26 2025 GMT Not After : Sep 25 23:12:26 2025 GMT Subject: CN=68cc91da-0564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6e:8f:f1:b4:ab:43:af:85:5a:27:aa:bf:8d: 72:1a:04:11:97:d5:f8:ed:11:13:ca:83:1b:8c:42: 3e:40:3a:fb:e4:e5:30:40:49:df:19:0c:ef:93:0b: 4d:0c:d8:7b:ca:14:58:56:6d:b9:34:8f:e2:df:6c: 26:b3:45:5b:d7:79:38:65:fc:a4:a5:e3:c0:e7:ad: 79:b8:e8:b0:57:f9:f2:8c:5e:00:5a:fa:e1:30:2c: 6a:84:4b:9f:3a:1d:ee:51:f8:ee:73:89:cb:4d:76: 25:c2:c4:3d:70:f9:d6:b7:59:f5:e8:b1:79:db:ad: 2a:48:eb:e3:1d:9e:29:45:71:62:6d:16:1e:1e:fd: 2a:6c:c7:ec:b9:93:34:57:29:5a:4e:83:38:2e:25: ee:10:17:9f:08:b5:dc:9b:ca:34:d1:9f:d1:3e:4c: af:93:b4:f0:19:a9:81:5b:6f:9b:7b:4e:22:4e:a5: d4:58:a2:97:cd:10:b4:da:04:22:e6:23:fc:85:ad: bc:ee:04:6a:77:5d:7b:85:4e:11:e4:45:bd:24:6d: 90:f7:08:a6:d4:bb:bc:51:f2:b0:58:56:dc:1f:aa: c9:5e:92:49:45:96:a7:39:7d:8c:f0:b0:4e:73:df: d0:a6:90:8c:fb:17:bb:c8:e6:ff:c0:58:4d:d0:66: 6d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:D8:99:8A:23:06:0B:70:31:EC:2F:D4:48:B0:17:C1:CB:9E:1C:24 X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:1e:81:e3:c2:2e:e1:2d:bb:83:2e:03:a7:79:b9:b3:34:d6: 1a:18:9a:cf:ed:24:11:eb:7d:89:44:c3:ab:31:21:3f:47:13: 2f:cb:34:81:70:cf:e5:2c:91:c0:3c:e2:a9:b6:01:48:9f:47: f6:6b:58:1f:05:d8:23:30:ef:53:48:ac:83:ac:a0:60:19:db: f3:53:19:a3:f2:b8:2b:d1:d5:d9:bf:7a:4d:68:74:e8:dd:56: d4:01:b2:a6:dc:48:b8:68:b9:99:b4:f4:b2:b3:55:dc:66:5b: 57:6a:f3:1c:1f:ab:34:3c:eb:f8:02:93:93:3f:0a:86:71:ae: 3f:f6:66:3e:cb:99:bc:ff:79:72:81:03:7b:27:be:b8:c5:88: 0a:d2:86:06:bd:1b:e0:87:f1:50:3c:60:b4:e4:f5:21:4a:d8: 26:3b:40:5c:b9:b5:80:df:c9:a9:15:0a:c3:82:c9:91:d3:7d: c9:48:55:78:90:5a:fe:12:b8:7e:c3:71:f6:61:3e:39:0d:0e: e4:36:d7:53:39:d9:f9:15:38:f8:31:60:a3:8b:ae:ca:01:4c: a2:a9:cf:f0:1e:85:7b:f3:f3:20:e3:0d:be:a2:84:54:0c:5f: 60:62:10:4b:2d:57:37:4a:17:fc:62:46:ec:62:0a:ec:9b:70: f5:ac:6f:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjUwOTE4MjMxMjI2WhcNMjUwOTI1MjMxMjI2WjAYMRYwFAYD VQQDEw02OGNjOTFkYS0wNTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2m6P8bSrQ6+FWieqv41yGgQRl9X47RETyoMbjEI+QDr75OUwQEnfGQzvkwtN DNh7yhRYVm25NI/i32wms0Vb13k4ZfykpePA5615uOiwV/nyjF4AWvrhMCxqhEuf Oh3uUfjuc4nLTXYlwsQ9cPnWt1n16LF5260qSOvjHZ4pRXFibRYeHv0qbMfsuZM0 VylaToM4LiXuEBefCLXcm8o00Z/RPkyvk7TwGamBW2+be04iTqXUWKKXzRC02gQi 5iP8ha287gRqd117hU4R5EW9JG2Q9wim1Lu8UfKwWFbcH6rJXpJJRZanOX2M8LBO c9/QppCM+xe7yOb/wFhN0GZtgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ7YmYoj BgtwMewv1EiwF8HLnhwkMB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDJCMy8yQzgyNDJBRUJFRDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZm TV92UEhCUWJsTHUzMXdFbm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBHoHjwi7hLbuDLgOnebmzNNYaGJrP7SQR632JRMOrMSE/RxMvyzSB cM/lLJHAPOKptgFIn0f2a1gfBdgjMO9TSKyDrKBgGdvzUxmj8rgr0dXZv3pNaHTo 3VbUAbKm3Ei4aLmZtPSys1XcZltXavMcH6s0POv4ApOTPwqGca4/9mY+y5m8/3ly gQN7J764xYgK0oYGvRvgh/FQPGC05PUhStgmO0BcubWA38mpFQrDgsmR033JSFV4 kFr+Erh+w3H2YT45DQ7kNtdTOdn5FTj4MWCji67KAUyiqc/wHoV78/Mg4w2+ooRU DF9gYhBLLVc3Shf8YkbsYgrsm3D1rG/G -----END CERTIFICATE-----Generated at Fri Sep 19 00:58:00 2025 by rpki-client