$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft File: 57QbPSVuxr0M5xIbNw3kdBuDXmE.mft (raw, json) Hash identifier: IlltLMEJcY00TwcWEC0OxumlcRHgdWCYaEBtcfRT4kI= Subject key identifier: 1F:B0:15:1B:2C:9B:05:9B:F2:DA:86:43:A3:FC:17:DA:B0:9C:43:02 Authority key identifier: E7:B4:1B:3D:25:6E:C6:BD:0C:E7:12:1B:37:0D:E4:74:1B:83:5E:61 Certificate issuer: /CN=A91C6A39/serialNumber=E7B41B3D256EC6BD0CE7121B370DE4741B835E61 Certificate serial: 0E37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft Manifest number: 0E28 Signing time: Thu 18 Sep 2025 17:59:32 +0000 Manifest this update: Thu 18 Sep 2025 17:59:31 +0000 Manifest next update: Thu 25 Sep 2025 17:59:31 +0000 Files and hashes: 1: 57QbPSVuxr0M5xIbNw3kdBuDXmE.crl (hash: QNlKOzdTX1uloH9mu1tUGQqWEvxpviwo2IfqmcCeE2s=) 2: 032B593EB1C511E9A4B3CE25C4F9AE02.roa (hash: f/BgI5BL/1PcY7ExwBK48s2FrmJ9kEJMRjBuMiCgse4=) 3: 0F56E156828C11EDA6BCA176C4F9AE02.roa (hash: 6jQR+LA7AhS3kcRLFdYcgiTc91j8m964KZdBUexFMD8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.crl rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3639 (0xe37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6A39, serialNumber=E7B41B3D256EC6BD0CE7121B370DE4741B835E61 Validity Not Before: Sep 18 17:59:31 2025 GMT Not After : Sep 25 17:59:31 2025 GMT Subject: CN=68cc4883-4707 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:65:ee:ce:ba:f9:ca:c4:f7:f3:1c:9c:10:9d: 93:f7:56:28:e9:cf:d8:c5:55:74:93:71:88:ab:c7: c6:b6:8d:30:d0:3a:41:ad:ef:71:1a:2d:13:ff:83: 0a:df:1f:30:ce:5f:4c:52:91:7c:4a:16:ee:da:7f: 26:26:bf:e1:fb:54:14:b2:3e:af:a6:30:1e:56:00: fb:5b:a2:df:76:fc:52:fd:c6:60:77:7e:90:d2:92: 70:51:f9:2a:28:4f:1d:fc:b9:ba:78:e9:1e:27:69: 7b:45:12:34:37:62:c5:b9:9b:d6:17:a7:d7:f8:bc: a7:c1:30:7a:ad:b5:6c:97:7d:37:09:ea:aa:36:6b: 29:eb:a6:f1:b4:6d:4e:a5:e7:c5:a9:cc:6e:0f:f4: cc:34:70:aa:f7:b6:1b:e6:a6:36:ef:0f:76:2d:f9: d3:63:8f:a9:75:7e:0c:c0:29:df:a0:fc:72:c6:29: d1:3b:fb:4f:b6:d7:f3:d0:85:31:a7:f8:e7:93:75: 45:81:4b:7a:d7:01:df:45:0f:bc:2d:b4:a4:58:5d: e5:8d:41:af:f7:66:8a:70:75:97:c5:19:aa:1a:e0: f8:c7:c0:33:23:7c:5f:ec:e5:7c:0e:5a:20:d9:5f: d9:3b:bb:fe:19:f5:4c:51:4e:47:d4:ec:62:cf:8b: 48:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:B0:15:1B:2C:9B:05:9B:F2:DA:86:43:A3:FC:17:DA:B0:9C:43:02 X509v3 Authority Key Identifier: keyid:E7:B4:1B:3D:25:6E:C6:BD:0C:E7:12:1B:37:0D:E4:74:1B:83:5E:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57QbPSVuxr0M5xIbNw3kdBuDXmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6A39/730F00B2B1C411E9BECB1825C4F9AE02/57QbPSVuxr0M5xIbNw3kdBuDXmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption eb:3d:dc:5c:4f:69:b1:78:e8:dd:df:aa:d0:91:13:d7:22:de: 39:cb:24:57:01:c6:91:05:4a:42:fa:f1:8e:de:49:81:52:a3: cb:c7:7e:13:6e:2d:04:dc:ea:f0:cf:0c:39:25:a9:0c:6d:be: 18:e6:01:68:d4:2c:a3:c8:ee:83:ef:78:bd:fb:cd:8f:15:57: 72:6e:7d:5e:6e:95:18:e0:ae:6f:5a:28:7e:16:ef:35:0a:2c: ce:88:78:f2:83:40:68:9c:43:76:9f:43:c3:3b:6f:be:da:c4: 99:9f:8f:41:e3:2e:cc:85:79:96:f4:ed:08:86:5f:1c:85:06: 2d:74:70:d6:f0:89:d7:f4:03:e1:35:74:e3:11:2f:25:5d:77: c8:2b:1d:54:e0:6c:2a:67:de:33:7a:b9:00:63:df:98:13:52: e6:ce:08:f3:a1:c3:31:c6:a9:4f:15:46:c5:20:23:96:36:20: c6:25:c3:ed:f5:37:28:4a:17:a0:86:2d:ac:94:6c:41:d6:77: 99:7a:a3:a3:73:ec:ab:e2:9e:ef:48:bc:a1:75:5f:39:12:bc: 6d:27:1c:22:3c:77:f3:95:39:ff:27:08:cc:4f:f3:21:02:0a: bd:dd:14:db:16:91:01:41:d8:42:2c:a7:bc:d5:f3:2a:f4:89: 94:4c:6d:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZBMzkxMTAvBgNVBAUTKEU3QjQxQjNEMjU2RUM2QkQwQ0U3MTIxQjM3MERFNDc0 MUI4MzVFNjEwHhcNMjUwOTE4MTc1OTMxWhcNMjUwOTI1MTc1OTMxWjAYMRYwFAYD VQQDEw02OGNjNDg4My00NzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2Xuzrr5ysT38xycEJ2T91Yo6c/YxVV0k3GIq8fGto0w0DpBre9xGi0T/4MK 3x8wzl9MUpF8Shbu2n8mJr/h+1QUsj6vpjAeVgD7W6LfdvxS/cZgd36Q0pJwUfkq KE8d/Lm6eOkeJ2l7RRI0N2LFuZvWF6fX+LynwTB6rbVsl303CeqqNmsp66bxtG1O pefFqcxuD/TMNHCq97Yb5qY27w92LfnTY4+pdX4MwCnfoPxyxinRO/tPttfz0IUx p/jnk3VFgUt61wHfRQ+8LbSkWF3ljUGv92aKcHWXxRmqGuD4x8AzI3xf7OV8Dlog 2V/ZO7v+GfVMUU5H1Oxiz4tIzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB+wFRss mwWb8tqGQ6P8F9qwnEMCMB8GA1UdIwQYMBaAFOe0Gz0lbsa9DOcSGzcN5HQbg15h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkEzOS83MzBGMDBCMkIx QzQxMUU5QkVDQjE4MjVDNEY5QUUwMi81N1FiUFNWdXhyME01eEliTncza2RCdURY bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3UWJQU1Z1eHIwTTV4SWJOdzNrZEJ1RFhtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkEzOS83MzBGMDBCMkIxQzQxMUU5QkVDQjE4MjVDNEY5QUUwMi81N1FiUFNWdXhy ME01eEliTncza2RCdURYbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDrPdxcT2mxeOjd36rQkRPXIt45yyRXAcaRBUpC+vGO3kmBUqPLx34T bi0E3Orwzww5JakMbb4Y5gFo1CyjyO6D73i9+82PFVdybn1ebpUY4K5vWih+Fu81 CizOiHjyg0BonEN2n0PDO2++2sSZn49B4y7MhXmW9O0Ihl8chQYtdHDW8InX9APh NXTjES8lXXfIKx1U4GwqZ94zerkAY9+YE1LmzgjzocMxxqlPFUbFICOWNiDGJcPt 9TcoSheghi2slGxB1neZeqOjc+yr4p7vSLyhdV85ErxtJxwiPHfzlTn/JwjMT/Mh Agq93RTbFpEBQdhCLKe81fMq9ImUTG2L -----END CERTIFICATE-----Generated at Fri Sep 19 07:12:29 2025 by rpki-client