$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.mft File: c9kAkk5wFUjm4yA4gPbAlypMKRo.mft (raw, json) Hash identifier: ldx9pS+7vNzAOVNhMNzTTO4bF5iBKlf57oaqNtvP1Gs= Subject key identifier: 8D:A6:AD:DA:8F:1F:85:ED:B5:96:7D:05:12:A6:BD:A7:AC:84:B8:78 Authority key identifier: 73:D9:00:92:4E:70:15:48:E6:E3:20:38:80:F6:C0:97:2A:4C:29:1A Certificate issuer: /CN=A91C9E72/serialNumber=73D900924E701548E6E3203880F6C0972A4C291A Certificate serial: B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c9kAkk5wFUjm4yA4gPbAlypMKRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.mft Manifest number: B1 Signing time: Sat 13 Sep 2025 06:11:17 +0000 Manifest this update: Sat 13 Sep 2025 06:11:17 +0000 Manifest next update: Sat 20 Sep 2025 06:11:17 +0000 Files and hashes: 1: c9kAkk5wFUjm4yA4gPbAlypMKRo.crl (hash: c6wNBQrAdZL1OZtoduDF3Mt0CZ8W59jEQhieLoTP0uQ=) 2: 5440C4C8848111EF9F3ECE34C4F9AE02.roa (hash: 3hnmn/EG7rhYM2a7/Cnm16lA4qC355sf3kWBw8CmIQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.crl rsync://rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c9kAkk5wFUjm4yA4gPbAlypMKRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 22:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E72, serialNumber=73D900924E701548E6E3203880F6C0972A4C291A Validity Not Before: Sep 13 06:11:17 2025 GMT Not After : Sep 20 06:11:17 2025 GMT Subject: CN=68c50b05-180d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:13:c8:1d:37:cd:7a:33:a6:52:d4:78:7e:02: 25:b9:c7:19:73:db:e4:4a:ce:03:9b:c0:8d:c7:7f: 42:0d:6e:47:c1:27:0d:17:6f:2c:d8:6a:56:6a:d2: c4:f6:67:88:c7:4f:5b:fb:11:87:de:48:19:f5:8f: b5:b1:5c:03:93:d7:d8:b6:15:6d:96:8e:45:8e:b1: 37:da:47:38:52:ec:ab:3b:ce:ec:e7:9d:c6:85:28: e9:cd:d6:50:d1:bc:8c:a2:a9:8b:f2:41:a5:56:fb: 24:c8:cf:82:fb:fd:1a:90:b9:61:8c:10:f4:ed:ac: 75:36:a3:11:bd:a4:6e:05:04:f8:ec:2f:39:31:d9: 8d:15:c1:ea:af:76:63:73:45:af:76:7d:7b:1b:5e: 54:18:c4:25:15:f5:83:6d:f3:90:c8:fa:ac:46:5b: e5:bc:35:a8:c5:ef:1a:c0:d5:b8:5f:0b:1b:3b:cd: 04:90:eb:55:c8:cb:0f:1d:7e:10:34:b2:ec:40:23: b5:7a:1a:aa:d2:ff:30:5f:1a:39:31:ae:e8:1e:f8: 65:93:66:76:c8:17:a6:b6:72:e5:fb:e9:14:22:05: 19:82:c9:fe:92:e3:51:80:fe:91:da:e3:16:8c:29: 6b:35:c8:3e:84:07:85:67:f1:ef:48:9d:0a:60:43: 88:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:A6:AD:DA:8F:1F:85:ED:B5:96:7D:05:12:A6:BD:A7:AC:84:B8:78 X509v3 Authority Key Identifier: keyid:73:D9:00:92:4E:70:15:48:E6:E3:20:38:80:F6:C0:97:2A:4C:29:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c9kAkk5wFUjm4yA4gPbAlypMKRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E72/E6B44902848011EFAAD8E233C4F9AE02/c9kAkk5wFUjm4yA4gPbAlypMKRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:fe:45:22:02:ec:98:cb:2c:c2:3c:48:3c:bd:f5:1a:17:0d: 8a:c5:cc:e8:61:2d:13:c9:ae:f3:da:b2:6f:30:cc:b9:f3:07: f8:9e:3f:ac:43:75:33:72:8f:64:41:24:26:41:2e:fa:99:36: 31:d6:71:ae:d2:12:d8:a2:3c:fb:e8:29:dc:8a:d6:67:13:54: 88:0a:34:6f:0e:b3:1c:13:e0:1d:30:f8:e0:e1:5e:f3:f1:83: 0e:fb:ff:f4:39:9a:9e:c3:43:4f:4b:67:f5:a1:29:f4:b7:e2: b4:9d:13:81:be:77:f3:4b:68:80:ee:dc:e1:ef:5f:e1:1e:89: de:77:76:96:f1:78:61:09:e3:71:9b:a5:c9:00:e2:b7:d5:d2: 2d:4d:09:e6:bf:19:1f:e7:a8:4e:a2:3f:97:07:60:63:36:1e: 1e:7b:42:5f:f7:bf:b1:76:80:33:15:00:42:a4:94:93:2c:c4: bc:a5:7f:90:2a:d2:92:cc:af:ce:46:17:7d:61:66:c1:52:72: b6:23:a2:43:bb:47:2f:84:0c:99:e3:3f:5e:ed:cd:f6:d8:28: 9d:c0:b6:52:eb:f0:43:9f:a2:dd:04:08:7f:9a:6b:14:6a:4f: 87:a2:18:ef:6d:7a:8a:f8:81:02:37:45:ec:64:eb:cb:83:35: 14:ed:46:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFNzIxMTAvBgNVBAUTKDczRDkwMDkyNEU3MDE1NDhFNkUzMjAzODgwRjZDMDk3 MkE0QzI5MUEwHhcNMjUwOTEzMDYxMTE3WhcNMjUwOTIwMDYxMTE3WjAYMRYwFAYD VQQDEw02OGM1MGIwNS0xODBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRPIHTfNejOmUtR4fgIluccZc9vkSs4Dm8CNx39CDW5HwScNF28s2GpWatLE 9meIx09b+xGH3kgZ9Y+1sVwDk9fYthVtlo5FjrE32kc4UuyrO87s553GhSjpzdZQ 0byMoqmL8kGlVvskyM+C+/0akLlhjBD07ax1NqMRvaRuBQT47C85MdmNFcHqr3Zj c0Wvdn17G15UGMQlFfWDbfOQyPqsRlvlvDWoxe8awNW4XwsbO80EkOtVyMsPHX4Q NLLsQCO1ehqq0v8wXxo5Ma7oHvhlk2Z2yBemtnLl++kUIgUZgsn+kuNRgP6R2uMW jClrNcg+hAeFZ/HvSJ0KYEOILQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI2mrdqP H4XttZZ9BRKmvaeshLh4MB8GA1UdIwQYMBaAFHPZAJJOcBVI5uMgOID2wJcqTCka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU3Mi9FNkI0NDkwMjg0 ODAxMUVGQUFEOEUyMzNDNEY5QUUwMi9jOWtBa2s1d0ZVam00eUE0Z1BiQWx5cE1L Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M5a0FrazV3RlVqbTR5QTRnUGJBbHlwTUtSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU3Mi9FNkI0NDkwMjg0ODAxMUVGQUFEOEUyMzNDNEY5QUUwMi9jOWtBa2s1d0ZV am00eUE0Z1BiQWx5cE1LUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj/kUiAuyYyyzCPEg8vfUaFw2KxczoYS0Tya7z2rJvMMy58wf4nj+s Q3Uzco9kQSQmQS76mTYx1nGu0hLYojz76CncitZnE1SICjRvDrMcE+AdMPjg4V7z 8YMO+//0OZqew0NPS2f1oSn0t+K0nROBvnfzS2iA7tzh71/hHoned3aW8XhhCeNx m6XJAOK31dItTQnmvxkf56hOoj+XB2BjNh4ee0Jf97+xdoAzFQBCpJSTLMS8pX+Q KtKSzK/ORhd9YWbBUnK2I6JDu0cvhAyZ4z9e7c322CidwLZS6/BDn6LdBAh/mmsU ak+HohjvbXqK+IECN0XsZOvLgzUU7UZG -----END CERTIFICATE-----Generated at Sun Sep 14 15:37:18 2025 by rpki-client