$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft File: 9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft (raw, json) Hash identifier: vAWnzGoTMlA5Ku/bbNT01ONXvaiOjrHAgznMYx4c6GQ= Subject key identifier: EC:A3:C7:F6:F8:4F:D4:10:91:EB:BA:5C:A7:C6:3A:BF:98:2A:EB:A5 Authority key identifier: F7:26:7E:80:BE:81:7F:04:3D:28:FB:7E:73:05:F4:C4:88:A8:39:1A Certificate issuer: /CN=A91C7AA5/serialNumber=F7267E80BE817F043D28FB7E7305F4C488A8391A Certificate serial: 83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft Manifest number: 6F Signing time: Fri 05 Sep 2025 07:49:49 +0000 Manifest this update: Fri 05 Sep 2025 07:49:48 +0000 Manifest next update: Fri 12 Sep 2025 07:49:48 +0000 Files and hashes: 1: 9yZ-gL6BfwQ9KPt-cwX0xIioORo.crl (hash: mKO7q2tXYy7DnzMfjjRB3udv5T8Yt1Poeu2DrSwwQYQ=) 2: 0AC13D943C5711F0BFBB572EC4F9AE02.roa (hash: 61Maf4HdTVjL1p15SmMO0sDKtCDOS9JEKlRjMIwn4Cg=) 3: 151DF27C622811F0B73BE516C4F9AE02.roa (hash: ryWZk4WLGGcXKcudFMNiB3yA26BHUntG7BSh+vyHPp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.crl rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:48:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 131 (0x83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7AA5, serialNumber=F7267E80BE817F043D28FB7E7305F4C488A8391A Validity Not Before: Sep 5 07:49:48 2025 GMT Not After : Sep 12 07:49:48 2025 GMT Subject: CN=68ba961d-c9d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:57:b8:f8:0f:97:81:3b:db:ef:b8:48:95:f7: 93:f9:4e:8f:36:66:e3:e5:8a:b1:f9:c1:93:2f:60: 02:15:22:ed:5f:e9:7d:33:09:a6:d0:12:4d:ab:51: 2b:18:82:d2:be:46:3b:08:ff:06:1f:19:4a:38:cc: 86:e7:8d:65:b1:21:c4:2a:a4:05:a0:95:a0:73:43: 73:06:8f:fe:cb:54:5c:fd:34:cf:8f:71:61:96:13: 65:cf:71:fc:f9:10:9f:c9:91:3b:ac:70:63:d9:3d: 4d:b4:f5:8d:b6:2f:ea:27:3e:40:13:b3:11:09:51: d1:67:96:ee:7b:89:0a:c6:79:d9:13:fb:4f:ed:f8: 48:16:48:9d:b1:4e:df:f5:88:f6:e4:8a:ef:cb:e6: 00:9e:c5:84:8e:8e:9c:b9:59:af:f2:0d:12:01:b3: ed:e1:0f:38:0d:69:a2:71:2b:c5:6a:4b:29:24:75: a5:16:da:ce:71:9e:33:91:b2:b2:29:fa:99:b4:b8: ae:7c:f3:fe:4b:2b:59:d4:9b:ec:1d:2f:00:99:d4: e9:26:53:b8:59:c1:44:c5:d0:65:29:c7:aa:b6:00: d3:bc:9d:48:c1:91:f5:5b:15:e1:76:2a:26:1d:c2: a5:e2:dd:3a:ae:0d:02:0a:96:9f:2b:fb:e9:36:c9: 2e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:A3:C7:F6:F8:4F:D4:10:91:EB:BA:5C:A7:C6:3A:BF:98:2A:EB:A5 X509v3 Authority Key Identifier: keyid:F7:26:7E:80:BE:81:7F:04:3D:28:FB:7E:73:05:F4:C4:88:A8:39:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:ab:52:66:5d:61:ad:55:b0:94:f8:c5:cf:97:cd:f8:a8:d6: 12:72:64:4f:97:ec:96:c5:a3:fd:4a:20:73:1a:c5:32:e1:d1: b6:47:98:5b:33:83:a5:8d:bc:92:5d:ef:1a:0b:47:a3:c1:60: 82:09:ac:f8:0b:8f:78:2e:25:bc:db:99:8f:4b:18:cc:54:bb: c7:41:a2:9c:7c:19:fc:6a:91:70:52:8d:72:fc:ed:93:b0:12: bb:37:32:f3:d0:9e:45:d5:d8:97:0e:68:76:7f:fb:27:cb:31: 06:73:50:95:9b:b0:9e:9c:cd:57:48:84:13:a2:06:ff:9a:4e: 3c:72:3e:1e:ed:23:65:30:1f:87:ac:04:b8:3e:90:1d:a1:18: 27:66:e5:9e:56:3f:71:48:b1:ea:14:98:6e:c7:0b:d0:72:20: c6:cf:00:65:b6:bf:70:e6:ec:13:1e:31:af:40:3c:5e:5d:15: a4:18:47:fe:1b:ec:3e:5f:79:78:e4:3b:4f:5b:36:a8:d8:f9: e4:57:b3:64:bd:21:af:9e:bf:9b:79:eb:16:28:76:83:b3:11: 8e:b9:ae:56:4f:fa:af:7b:4e:76:2b:e1:29:c6:1e:ff:73:1b: d6:4d:32:ae:4c:3f:2c:fd:b1:cb:84:ad:1c:48:f2:8d:49:b3: 4b:91:88:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdBQTUxMTAvBgNVBAUTKEY3MjY3RTgwQkU4MTdGMDQzRDI4RkI3RTczMDVGNEM0 ODhBODM5MUEwHhcNMjUwOTA1MDc0OTQ4WhcNMjUwOTEyMDc0OTQ4WjAYMRYwFAYD VQQDEw02OGJhOTYxZC1jOWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlFe4+A+XgTvb77hIlfeT+U6PNmbj5Yqx+cGTL2ACFSLtX+l9Mwmm0BJNq1Er GILSvkY7CP8GHxlKOMyG541lsSHEKqQFoJWgc0NzBo/+y1Rc/TTPj3FhlhNlz3H8 +RCfyZE7rHBj2T1NtPWNti/qJz5AE7MRCVHRZ5bue4kKxnnZE/tP7fhIFkidsU7f 9Yj25Irvy+YAnsWEjo6cuVmv8g0SAbPt4Q84DWmicSvFakspJHWlFtrOcZ4zkbKy KfqZtLiufPP+SytZ1JvsHS8AmdTpJlO4WcFExdBlKceqtgDTvJ1IwZH1WxXhdiom HcKl4t06rg0CCpafK/vpNskupwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOyjx/b4 T9QQkeu6XKfGOr+YKuulMB8GA1UdIwQYMBaAFPcmfoC+gX8EPSj7fnMF9MSIqDka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0FBNS9CQUZCMzU3NDE1 QkIxMUYwQkZENTQ4ODFDNEY5QUUwMi85eVotZ0w2QmZ3UTlLUHQtY3dYMHhJaW9P Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5Wi1nTDZCZndROUtQdC1jd1gweElpb09Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0FBNS9CQUZCMzU3NDE1QkIxMUYwQkZENTQ4ODFDNEY5QUUwMi85eVotZ0w2QmZ3 UTlLUHQtY3dYMHhJaW9PUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0q1JmXWGtVbCU+MXPl834qNYScmRPl+yWxaP9SiBzGsUy4dG2R5hb M4OljbySXe8aC0ejwWCCCaz4C494LiW825mPSxjMVLvHQaKcfBn8apFwUo1y/O2T sBK7NzLz0J5F1diXDmh2f/snyzEGc1CVm7CenM1XSIQTogb/mk48cj4e7SNlMB+H rAS4PpAdoRgnZuWeVj9xSLHqFJhuxwvQciDGzwBltr9w5uwTHjGvQDxeXRWkGEf+ G+w+X3l45DtPWzao2PnkV7NkvSGvnr+beesWKHaDsxGOua5WT/qve052K+Epxh7/ cxvWTTKuTD8s/bHLhK0cSPKNSbNLkYi2 -----END CERTIFICATE-----Generated at Fri Sep 5 11:27:41 2025 by rpki-client