$ rpki-client -vvf rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft File: r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft (raw, json) Hash identifier: lGx9gnV2MkE23T8yOpKbLQRjAvd49fVQ0FFY0VGVtSA= Subject key identifier: 67:FC:36:44:4B:27:80:DB:44:C9:89:3B:B8:4C:F1:21:3D:BB:31:D3 Authority key identifier: AF:C3:17:47:67:E4:EA:FC:4D:EE:0F:49:25:A1:C6:5C:DC:59:FA:2A Certificate issuer: /CN=A91C064C/serialNumber=AFC3174767E4EAFC4DEE0F4925A1C65CDC59FA2A Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r8MXR2fk6vxN7g9JJaHGXNxZ-io.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft Manifest number: 016D Signing time: Fri 19 Sep 2025 04:22:54 +0000 Manifest this update: Fri 19 Sep 2025 04:22:53 +0000 Manifest next update: Fri 26 Sep 2025 04:22:53 +0000 Files and hashes: 1: r8MXR2fk6vxN7g9JJaHGXNxZ-io.crl (hash: nfOwnFCTMeEvuucWIgmDuf5c6tf5/PxNViZh4Tq6VTs=) 2: 583FA34E672E11EEB31AC02CC4F9AE02.roa (hash: UDY5XZZpboPOe4PuKIjoZcv8Z+maPhsL8V3N8OWNJu4=) 3: 810B798472CC11EEA1A5574DC4F9AE02.roa (hash: QxDb9utS5i/B8urK72tRRFJFcT0cVUwBUSamNqzNfT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.crl rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r8MXR2fk6vxN7g9JJaHGXNxZ-io.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 04:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C064C, serialNumber=AFC3174767E4EAFC4DEE0F4925A1C65CDC59FA2A Validity Not Before: Sep 19 04:22:53 2025 GMT Not After : Sep 26 04:22:53 2025 GMT Subject: CN=68ccda9e-c5ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:59:cd:0c:42:fa:db:c9:f2:2f:b0:99:a2:a3: 40:38:4a:e6:06:9d:6d:5b:03:50:15:4c:62:c8:a9: 66:d9:2d:53:68:8d:4f:fc:83:09:6d:bf:14:9e:a3: b1:d5:7b:33:f3:2f:2b:48:0f:de:42:58:89:7e:a3: d1:c8:d3:40:23:ad:c1:0d:31:b3:ad:ee:fa:5a:cf: 4f:4e:e7:85:70:63:e3:db:54:c8:be:80:df:0c:fa: bd:ef:f7:22:05:07:e6:46:c4:a3:53:74:69:fc:98: 62:46:a2:e0:d8:9f:74:e3:47:33:f5:be:3a:a5:16: fc:a3:d3:b3:c3:fa:bd:13:8f:8a:68:f1:e0:04:7e: 5c:c6:01:00:ca:47:7f:69:df:b4:2d:ad:7a:9d:ce: 25:18:0a:42:e4:96:b4:5c:c4:a3:ad:28:e0:32:f6: f3:5f:ae:40:e7:01:73:ec:c6:c1:01:69:7b:5a:43: 42:2f:f9:20:ec:bf:17:56:bf:7b:82:03:4c:46:11: 7f:17:29:a7:db:6d:ee:33:bd:c9:a0:3f:68:e4:ea: ea:25:9c:cc:b9:62:fc:51:d2:02:92:ef:22:bc:b0: f1:0f:c8:84:13:f8:b1:01:0e:22:24:2d:4a:73:25: 8c:d9:c0:3a:f0:33:f5:91:fe:0d:2d:81:bb:fc:63: 63:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:FC:36:44:4B:27:80:DB:44:C9:89:3B:B8:4C:F1:21:3D:BB:31:D3 X509v3 Authority Key Identifier: keyid:AF:C3:17:47:67:E4:EA:FC:4D:EE:0F:49:25:A1:C6:5C:DC:59:FA:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r8MXR2fk6vxN7g9JJaHGXNxZ-io.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C064C/683C9D98672D11EE9C809F12C4F9AE02/r8MXR2fk6vxN7g9JJaHGXNxZ-io.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:92:37:de:76:4d:52:05:04:47:78:01:9f:55:13:c7:cb:d3: 98:47:da:84:71:8a:8a:57:0b:e9:cc:11:ce:1e:39:2a:8f:bd: 57:65:32:68:ff:99:e9:a3:3c:09:dd:11:c6:b0:f5:ac:91:f2: 77:ca:1b:66:e8:42:f3:b7:7a:6c:45:2b:16:8d:3c:b5:3d:f5: 3d:60:2c:b6:e7:43:c4:2c:ee:6d:35:9f:d9:3e:67:e4:34:c6: ff:d9:06:75:8f:5d:56:e5:83:75:5c:f8:48:83:63:51:4c:49: 21:c8:33:d4:18:bd:a2:e6:13:29:b7:56:91:bd:85:ce:92:49: 1d:40:28:72:28:30:43:69:46:9e:66:b7:34:af:5a:99:87:f0: c5:aa:1f:8c:48:5c:88:d5:d7:c0:1d:3f:44:d5:e6:94:48:05: 32:b8:b9:99:1e:16:5c:38:af:96:44:19:86:c3:30:af:e9:57: 16:71:a8:84:a7:8c:8f:94:8c:6f:6d:fe:62:27:5b:ae:a4:52: a9:e7:9b:1b:8e:23:5c:74:7f:72:75:19:fe:64:b0:e6:6f:dc: 62:a0:64:9d:dc:81:fa:3c:01:a5:40:5e:d9:b7:59:41:87:bb: bf:cf:c2:65:b8:5e:d3:86:8a:5d:15:63:e3:c5:96:32:af:4e: df:17:b2:f7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzA2NEMxMTAvBgNVBAUTKEFGQzMxNzQ3NjdFNEVBRkM0REVFMEY0OTI1QTFDNjVD REM1OUZBMkEwHhcNMjUwOTE5MDQyMjUzWhcNMjUwOTI2MDQyMjUzWjAYMRYwFAYD VQQDEw02OGNjZGE5ZS1jNWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9FnNDEL628nyL7CZoqNAOErmBp1tWwNQFUxiyKlm2S1TaI1P/IMJbb8UnqOx 1Xsz8y8rSA/eQliJfqPRyNNAI63BDTGzre76Ws9PTueFcGPj21TIvoDfDPq97/ci BQfmRsSjU3Rp/JhiRqLg2J9040cz9b46pRb8o9Ozw/q9E4+KaPHgBH5cxgEAykd/ ad+0La16nc4lGApC5Ja0XMSjrSjgMvbzX65A5wFz7MbBAWl7WkNCL/kg7L8XVr97 ggNMRhF/Fymn223uM73JoD9o5OrqJZzMuWL8UdICku8ivLDxD8iEE/ixAQ4iJC1K cyWM2cA68DP1kf4NLYG7/GNjfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGf8NkRL J4DbRMmJO7hM8SE9uzHTMB8GA1UdIwQYMBaAFK/DF0dn5Or8Te4PSSWhxlzcWfoq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDY0Qy82ODNDOUQ5ODY3 MkQxMUVFOUM4MDlGMTJDNEY5QUUwMi9yOE1YUjJmazZ2eE43ZzlKSmFIR1hOeFot aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I4TVhSMmZrNnZ4TjdnOUpKYUhHWE54Wi1pby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDY0Qy82ODNDOUQ5ODY3MkQxMUVFOUM4MDlGMTJDNEY5QUUwMi9yOE1YUjJmazZ2 eE43ZzlKSmFIR1hOeFotaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUkjfedk1SBQRHeAGfVRPHy9OYR9qEcYqKVwvpzBHOHjkqj71XZTJo /5npozwJ3RHGsPWskfJ3yhtm6ELzt3psRSsWjTy1PfU9YCy250PELO5tNZ/ZPmfk NMb/2QZ1j11W5YN1XPhIg2NRTEkhyDPUGL2i5hMpt1aRvYXOkkkdQChyKDBDaUae Zrc0r1qZh/DFqh+MSFyI1dfAHT9E1eaUSAUyuLmZHhZcOK+WRBmGwzCv6VcWcaiE p4yPlIxvbf5iJ1uupFKp55sbjiNcdH9ydRn+ZLDmb9xioGSd3IH6PAGlQF7Zt1lB h7u/z8JluF7ThopdFWPjxZYyr07fF7L3 -----END CERTIFICATE-----Generated at Fri Sep 19 07:07:28 2025 by rpki-client