$ rpki-client -vvf rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft File: IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft (raw, json) Hash identifier: DiTugrf+xbnh+IsfTHqUAo35HWFJcuTEwgeTJErNobA= Subject key identifier: 51:77:B7:16:F7:0A:A5:CF:9C:E4:FA:E0:C1:7D:91:2C:25:3C:DE:96 Authority key identifier: 21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 Certificate issuer: /CN=A91C53FD/serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9 Certificate serial: 010C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft Manifest number: 0109 Signing time: Wed 17 Sep 2025 05:37:28 +0000 Manifest this update: Wed 17 Sep 2025 05:37:27 +0000 Manifest next update: Wed 24 Sep 2025 05:37:27 +0000 Files and hashes: 1: IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl (hash: /DVDFAq5sFWM9hQT5nJXCJyzVmlSkiZEjvozDR621t4=) 2: B15E8BECFF3211EEA8607454C4F9AE02.roa (hash: rdcsVeSD/0uRXsupB+gdsyd8ZZ4QY82jQKGKV8TuBBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 05:37:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C53FD, serialNumber=21934198E8331061D275B8CFC79458D32FABD6C9 Validity Not Before: Sep 17 05:37:27 2025 GMT Not After : Sep 24 05:37:27 2025 GMT Subject: CN=68ca4917-c4d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4f:81:6d:04:6d:2b:92:4c:74:f2:5e:77:6b: eb:ab:cd:d4:f3:54:b3:ba:6e:34:0f:c5:83:20:a6: 54:2c:1c:d9:cf:a9:91:79:76:b3:fc:78:f1:44:be: 2a:d8:8c:0f:73:ce:a4:92:57:5d:5d:dd:bd:bf:1a: b7:e2:aa:f6:5d:40:dc:b1:41:1d:d1:94:fd:40:e0: 55:79:5e:cf:62:80:45:92:c2:3f:36:fe:58:f0:b1: c2:9c:17:03:20:82:c9:29:10:7e:44:83:77:d9:22: d4:2a:8d:a3:80:7a:1d:72:2f:d2:28:c1:c0:b7:fc: 92:1f:3c:fa:da:53:49:e1:b6:de:bc:7d:56:0f:34: bd:c3:4e:50:ff:8a:f8:4a:88:63:de:b3:3b:bd:66: 1c:b0:48:6f:1a:96:2a:60:91:43:e8:43:49:6d:52: 04:ab:ef:2a:54:c8:90:23:6b:18:33:a7:6d:96:2c: dc:8e:0a:a0:ba:5c:dd:e9:3e:a8:26:6a:ec:3e:26: 39:cb:2e:a1:a3:0c:1c:be:00:e8:8e:82:17:8b:2e: c2:94:4b:62:6f:b1:23:79:33:2d:85:c3:b0:a5:9d: 01:dd:bd:ca:10:c2:76:ec:c0:69:58:4f:70:16:55: f4:3d:9b:4e:b1:d9:3f:fa:25:5f:97:87:32:28:e3: a3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:77:B7:16:F7:0A:A5:CF:9C:E4:FA:E0:C1:7D:91:2C:25:3C:DE:96 X509v3 Authority Key Identifier: keyid:21:93:41:98:E8:33:10:61:D2:75:B8:CF:C7:94:58:D3:2F:AB:D6:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZNBmOgzEGHSdbjPx5RY0y-r1sk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C53FD/688E57EEFF3211EEA55D8E53C4F9AE02/IZNBmOgzEGHSdbjPx5RY0y-r1sk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:11:9f:26:0e:93:6a:ea:b1:15:ce:31:3f:9a:59:8e:c6:63: 90:52:79:77:5e:2d:fb:c8:da:25:31:99:9a:2e:3c:57:d1:d1: 91:ab:ab:a5:bb:4e:00:24:21:af:d3:42:aa:b4:47:41:d8:9c: 70:15:70:88:39:30:12:8f:d3:bb:a7:54:c2:2a:7b:5f:4c:cf: 5b:ff:2d:41:b2:4e:f1:e1:d0:8d:e0:b5:90:87:0a:c9:3e:c5: d1:fa:bd:91:39:c4:69:5c:9e:28:f5:2d:23:38:fe:c9:3d:e6: c2:65:b6:96:ca:c1:5e:c7:26:66:c1:ea:88:f2:ef:6b:f9:c4: c4:44:74:5c:5a:13:7e:75:17:ed:32:57:e3:85:b6:e2:0e:f8: 08:11:5e:bd:9a:b6:5f:76:04:99:a8:f4:ff:66:6d:d6:fa:69: 5a:1d:b9:bd:45:2b:88:8c:2c:29:5c:cc:a5:2d:ed:ef:99:58: ec:04:55:4d:d6:5d:67:ae:2b:9b:0f:f1:fa:d0:21:ac:b5:02: 22:78:24:f9:72:6b:e8:88:6d:3a:d8:dc:1a:35:7a:f7:5b:b5: 9b:76:ef:61:20:6d:69:c4:cb:3b:68:76:cb:44:66:ca:4e:a2: 93:e0:67:85:b4:a3:7d:ab:eb:bb:2f:32:5c:5a:91:a9:a8:7a: 13:bd:19:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUzRkQxMTAvBgNVBAUTKDIxOTM0MTk4RTgzMzEwNjFEMjc1QjhDRkM3OTQ1OEQz MkZBQkQ2QzkwHhcNMjUwOTE3MDUzNzI3WhcNMjUwOTI0MDUzNzI3WjAYMRYwFAYD VQQDEw02OGNhNDkxNy1jNGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA40+BbQRtK5JMdPJed2vrq83U81Szum40D8WDIKZULBzZz6mReXaz/HjxRL4q 2IwPc86kklddXd29vxq34qr2XUDcsUEd0ZT9QOBVeV7PYoBFksI/Nv5Y8LHCnBcD IILJKRB+RIN32SLUKo2jgHodci/SKMHAt/ySHzz62lNJ4bbevH1WDzS9w05Q/4r4 Sohj3rM7vWYcsEhvGpYqYJFD6ENJbVIEq+8qVMiQI2sYM6dtlizcjgqgulzd6T6o JmrsPiY5yy6howwcvgDojoIXiy7ClEtib7EjeTMthcOwpZ0B3b3KEMJ27MBpWE9w FlX0PZtOsdk/+iVfl4cyKOOj2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFF3txb3 CqXPnOT64MF9kSwlPN6WMB8GA1UdIwQYMBaAFCGTQZjoMxBh0nW4z8eUWNMvq9bJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTNGRC82ODhFNTdFRUZG MzIxMUVFQTU1RDhFNTNDNEY5QUUwMi9JWk5CbU9nekVHSFNkYmpQeDVSWTB5LXIx c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0laTkJtT2d6RUdIU2RialB4NVJZMHktcjFzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTNGRC82ODhFNTdFRUZGMzIxMUVFQTU1RDhFNTNDNEY5QUUwMi9JWk5CbU9nekVH SFNkYmpQeDVSWTB5LXIxc2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1EZ8mDpNq6rEVzjE/mlmOxmOQUnl3Xi37yNolMZmaLjxX0dGRq6ul u04AJCGv00KqtEdB2JxwFXCIOTASj9O7p1TCKntfTM9b/y1Bsk7x4dCN4LWQhwrJ PsXR+r2ROcRpXJ4o9S0jOP7JPebCZbaWysFexyZmweqI8u9r+cTERHRcWhN+dRft MlfjhbbiDvgIEV69mrZfdgSZqPT/Zm3W+mlaHbm9RSuIjCwpXMylLe3vmVjsBFVN 1l1nriubD/H60CGstQIieCT5cmvoiG062NwaNXr3W7Wbdu9hIG1pxMs7aHbLRGbK TqKT4GeFtKN9q+u7LzJcWpGpqHoTvRll -----END CERTIFICATE-----Generated at Fri Sep 19 01:00:54 2025 by rpki-client