$ rpki-client -vvf rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft File: AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft (raw, json) Hash identifier: phmRxP9jYsWhMnyjtrqyl9gKrV3ILuNNJMX4rAIQFMo= Subject key identifier: 7C:32:C6:FD:88:5D:77:3C:CF:6D:3C:81:0A:EA:CA:D3:AC:0A:45:1D Authority key identifier: 00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 Certificate issuer: /CN=A91C09EA/serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft Manifest number: 76 Signing time: Mon 15 Sep 2025 07:15:54 +0000 Manifest this update: Mon 15 Sep 2025 07:15:54 +0000 Manifest next update: Mon 22 Sep 2025 07:15:54 +0000 Files and hashes: 1: AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl (hash: jSV8zokwknamm9Fw+xqHjYMOcSS/RIBhWBPBpQXFoGs=) 2: 7970EAA266DA11F084325D42C4F9AE02.roa (hash: PikBYoAiLsYP3+Plkjib3H61VZb7HfjBFcsCC14z91s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Sep 2025 07:15:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C09EA, serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Validity Not Before: Sep 15 07:15:54 2025 GMT Not After : Sep 22 07:15:54 2025 GMT Subject: CN=68c7bd2a-fd21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:87:67:c9:2f:2f:34:d4:eb:1f:9e:fe:e4:b7: 74:41:78:f0:66:d5:9c:28:af:51:67:0b:21:69:24: 2a:42:3e:be:a9:e7:9f:c0:54:94:1b:91:06:25:27: f2:50:48:81:f3:16:b6:57:4d:eb:76:d5:47:27:92: 93:1b:85:4e:1b:a5:05:49:75:fc:26:44:9a:4b:35: c0:3e:ca:08:3c:e0:7b:56:5e:fd:c8:12:9b:d4:4f: 01:b7:7d:06:90:c7:a5:72:de:5f:6e:cb:59:b0:f9: ae:da:cf:99:63:a9:3a:14:64:b4:72:99:2a:f9:0c: 7d:09:56:2d:d2:c8:77:00:59:91:f6:5a:dd:f9:07: da:15:bc:5b:0a:1d:f6:98:41:da:9a:aa:cd:fd:81: 01:39:19:0d:5c:7e:06:6d:e0:8b:a6:fb:7f:43:dd: 89:80:ba:97:05:8d:3c:10:95:7e:4b:45:9a:fb:a4: 55:c9:74:86:c7:ee:46:d5:9f:6a:b1:33:93:4b:cc: 63:84:fb:3d:e5:94:fe:64:f6:fc:4b:24:17:41:cc: 86:0b:02:fc:b0:2b:67:21:1e:33:2e:18:57:43:48: e8:af:2e:f1:45:53:a4:14:41:c5:a1:88:fe:bd:40: e4:3f:41:2f:6f:6d:3e:a6:c6:5f:e9:1b:67:1f:3b: 15:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:32:C6:FD:88:5D:77:3C:CF:6D:3C:81:0A:EA:CA:D3:AC:0A:45:1D X509v3 Authority Key Identifier: keyid:00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:27:e2:8e:6b:17:2b:6a:e5:a9:9a:be:ee:fa:23:52:17:d4: 7b:49:6c:bf:01:16:fc:5f:ca:62:98:29:cf:fd:9c:3f:c3:49: 88:06:58:e2:14:b7:5e:83:41:a6:33:1d:3e:fc:7a:7b:c3:ac: a7:3c:30:07:6c:f9:e4:1c:04:66:64:40:f6:3e:39:cc:d4:ce: e8:1b:17:a5:54:0d:75:b6:ee:b0:08:22:71:d1:1f:cb:46:8d: f8:59:5b:0a:41:cc:81:b1:88:68:e7:bc:68:cb:dd:07:69:70: 46:96:9a:10:8b:3f:b2:95:82:63:b0:18:9d:2e:1d:74:a6:c1: 77:70:6a:64:be:b9:1a:79:22:28:6d:4b:c5:61:dd:d5:c5:53: b9:e5:6c:59:89:6c:9c:e6:14:71:53:24:2b:7a:57:5a:70:cc: c0:54:80:0d:70:83:01:1b:57:ee:53:b5:f4:ba:37:09:e1:cf: 24:41:87:37:d9:ce:a1:b6:20:a5:22:86:2b:f3:ed:f9:01:e3: af:89:aa:b1:21:ff:b2:9d:26:5a:02:d5:9d:60:d2:47:1f:3a: 33:3e:03:36:fd:c7:2d:21:8f:49:da:35:a4:1c:c6:6c:e6:1b: a6:62:b9:74:d4:a1:19:10:c3:c9:a4:e0:24:98:ef:06:06:41: 56:0b:0a:df -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MDlFQTExMC8GA1UEBRMoMDBGRDMxRkQwNkI0MjA0QzNERENCNjM1MDcxODk1MzM3 NzhDQ0NGODAeFw0yNTA5MTUwNzE1NTRaFw0yNTA5MjIwNzE1NTRaMBgxFjAUBgNV BAMTDTY4YzdiZDJhLWZkMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0h2fJLy801Osfnv7kt3RBePBm1Zwor1FnCyFpJCpCPr6p55/AVJQbkQYlJ/JQ SIHzFrZXTet21UcnkpMbhU4bpQVJdfwmRJpLNcA+ygg84HtWXv3IEpvUTwG3fQaQ x6Vy3l9uy1mw+a7az5ljqToUZLRymSr5DH0JVi3SyHcAWZH2Wt35B9oVvFsKHfaY Qdqaqs39gQE5GQ1cfgZt4Ium+39D3YmAupcFjTwQlX5LRZr7pFXJdIbH7kbVn2qx M5NLzGOE+z3llP5k9vxLJBdBzIYLAvywK2chHjMuGFdDSOivLvFFU6QUQcWhiP69 QOQ/QS9vbT6mxl/pG2cfOxWLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfDLG/Yhd dzzPbTyBCurK06wKRR0wHwYDVR0jBBgwFoAUAP0x/Qa0IEw93LY1BxiVM3eMzPgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMwOUVBLzhDNTkxMkZFRTEz QjExRUZCQTdCREYzQkM0RjlBRTAyL0FQMHhfUWEwSUV3OTNMWTFCeGlWTTNlTXpQ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQVAweF9RYTBJRXc5M0xZMUJ4aVZNM2VNelBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMw OUVBLzhDNTkxMkZFRTEzQjExRUZCQTdCREYzQkM0RjlBRTAyL0FQMHhfUWEwSUV3 OTNMWTFCeGlWTTNlTXpQZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACEn4o5rFytq5amavu76I1IX1HtJbL8BFvxfymKYKc/9nD/DSYgGWOIU t16DQaYzHT78envDrKc8MAds+eQcBGZkQPY+OczUzugbF6VUDXW27rAIInHRH8tG jfhZWwpBzIGxiGjnvGjL3QdpcEaWmhCLP7KVgmOwGJ0uHXSmwXdwamS+uRp5Iiht S8Vh3dXFU7nlbFmJbJzmFHFTJCt6V1pwzMBUgA1wgwEbV+5TtfS6NwnhzyRBhzfZ zqG2IKUihivz7fkB46+JqrEh/7KdJloC1Z1g0kcfOjM+Azb9xy0hj0naNaQcxmzm G6ZiuXTUoRkQw8mk4CSY7wYGQVYLCt8= -----END CERTIFICATE-----Generated at Mon Sep 15 15:29:49 2025 by rpki-client