$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft File: 3dzECt5nfyP4p5ukFo729r7wZcc.mft (raw, json) Hash identifier: kJqryq8DhNdbeq+UJ5xA1m+c7qgo7P1tiUs2OtDoh+E= Subject key identifier: 20:FE:BE:93:BA:7E:36:73:8D:E3:04:CE:6B:FF:39:F9:10:FD:E2:29 Authority key identifier: DD:DC:C4:0A:DE:67:7F:23:F8:A7:9B:A4:16:8E:F6:F6:BE:F0:65:C7 Certificate issuer: /CN=A91CB2E2/serialNumber=DDDCC40ADE677F23F8A79BA4168EF6F6BEF065C7 Certificate serial: 0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft Manifest number: 09 Signing time: Wed 17 Sep 2025 08:52:45 +0000 Manifest this update: Wed 17 Sep 2025 08:52:45 +0000 Manifest next update: Wed 24 Sep 2025 08:52:45 +0000 Files and hashes: 1: 3dzECt5nfyP4p5ukFo729r7wZcc.crl (hash: k7OXHTYCj3SR5kYjuDO30yT+W8gMdVWcoYiEoabRzyk=) 2: 240EF95E896311F0B911053BC4F9AE02.roa (hash: l/wARrq1lISnaNIca31Ucy5U5vcCEK4kZC3D4iFHaJ4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.crl rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 08:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB2E2, serialNumber=DDDCC40ADE677F23F8A79BA4168EF6F6BEF065C7 Validity Not Before: Sep 17 08:52:45 2025 GMT Not After : Sep 24 08:52:45 2025 GMT Subject: CN=68ca76dd-a6b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f5:cc:6e:f2:3d:61:86:8d:05:8d:44:c2:b0: ad:38:f3:e8:99:0b:8b:4e:4f:58:55:5d:34:8d:34: 62:e0:19:68:ef:a3:85:2b:ed:9d:9b:3a:7d:11:38: 4a:b5:2d:74:a2:ae:51:8f:0f:9c:5a:9c:22:b2:68: 64:04:6e:68:fd:f9:e8:13:6a:5a:cb:eb:07:1f:cc: b6:a1:21:d2:53:51:d4:bf:7c:5f:7f:c4:41:6d:38: 16:09:21:94:16:c9:79:bb:f3:9a:13:4b:4c:ef:d4: 07:be:65:e9:e5:6c:b1:21:2c:70:5f:67:21:6b:91: 41:2b:54:27:c3:b6:8b:e7:57:6e:6e:60:32:51:4e: 69:f2:1c:48:86:a2:52:22:b6:29:b9:98:e7:52:5f: fc:6c:f1:11:31:c5:04:49:dd:88:a4:35:76:1f:07: a3:66:8d:33:ee:59:6e:7e:a8:2b:c5:cf:f9:b1:d2: b1:d4:ba:70:bc:24:2d:38:77:28:e6:7f:2c:e3:ee: 74:77:5d:94:d4:f5:06:3d:5b:e0:60:e8:2d:8d:e1: 53:a9:02:d4:d1:67:d4:ee:b3:5d:9b:79:ed:45:a6: e9:56:b0:9e:85:8e:ec:a3:8a:66:ad:31:50:65:6f: e9:62:35:1f:8a:6d:6c:6a:fd:c1:55:28:fa:18:90: 03:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:FE:BE:93:BA:7E:36:73:8D:E3:04:CE:6B:FF:39:F9:10:FD:E2:29 X509v3 Authority Key Identifier: keyid:DD:DC:C4:0A:DE:67:7F:23:F8:A7:9B:A4:16:8E:F6:F6:BE:F0:65:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3dzECt5nfyP4p5ukFo729r7wZcc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB2E2/411C63B0895911F0BA65345DC4F9AE02/3dzECt5nfyP4p5ukFo729r7wZcc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:43:a3:91:43:0f:82:f0:0d:e6:70:c7:83:87:42:ca:bb:7a: 63:fb:ec:80:de:ce:6f:46:fe:30:d7:bf:4b:93:b8:87:ef:a7: 4c:c6:3e:8e:42:33:3f:93:f5:c0:d4:45:60:5a:e1:e8:25:37: 6d:2c:ec:7a:c9:4d:da:cf:ab:a4:ef:da:f9:73:2c:53:00:94: b1:d1:2a:4c:7f:1b:28:07:a1:2d:f7:a9:04:6d:a3:da:2c:c5: 20:2b:8b:3a:7a:b7:b3:49:4f:0b:ba:21:10:ec:1b:d5:45:04: 1c:53:dd:e9:b1:1b:94:84:4b:80:5c:27:77:7f:fe:8b:cb:41: c3:97:1e:4d:24:f3:55:46:51:bb:fd:43:31:ff:86:f9:71:c4: 31:46:2c:00:97:da:0d:33:19:9a:08:6d:26:2c:be:e8:de:bf: 82:fc:6f:b6:a5:cb:61:77:72:90:33:e0:fa:7a:96:d7:21:ef: 72:a8:8c:8e:7a:ef:af:52:a1:64:65:19:07:4b:55:e1:f1:4c: 44:b2:83:91:ac:45:c1:46:3d:2a:f6:ab:81:01:94:03:78:bd: 97:10:9b:ae:a7:18:aa:a6:42:b5:2b:ff:f7:2e:60:75:36:90: cd:b5:d2:77:9c:9a:ef:7e:04:8f:cd:a2:bf:18:c3:c7:4b:5d: 80:a6:b4:df -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjJFMjExMC8GA1UEBRMoREREQ0M0MEFERTY3N0YyM0Y4QTc5QkE0MTY4RUY2RjZC RUYwNjVDNzAeFw0yNTA5MTcwODUyNDVaFw0yNTA5MjQwODUyNDVaMBgxFjAUBgNV BAMTDTY4Y2E3NmRkLWE2YjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDs9cxu8j1hho0FjUTCsK048+iZC4tOT1hVXTSNNGLgGWjvo4Ur7Z2bOn0ROEq1 LXSirlGPD5xanCKyaGQEbmj9+egTalrL6wcfzLahIdJTUdS/fF9/xEFtOBYJIZQW yXm785oTS0zv1Ae+ZenlbLEhLHBfZyFrkUErVCfDtovnV25uYDJRTmnyHEiGolIi tim5mOdSX/xs8RExxQRJ3YikNXYfB6NmjTPuWW5+qCvFz/mx0rHUunC8JC04dyjm fyzj7nR3XZTU9QY9W+Bg6C2N4VOpAtTRZ9Tus12bee1FpulWsJ6FjuyjimatMVBl b+liNR+KbWxq/cFVKPoYkAMPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIP6+k7p+ NnON4wTOa/85+RD94ikwHwYDVR0jBBgwFoAU3dzECt5nfyP4p5ukFo729r7wZccw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCMkUyLzQxMUM2M0IwODk1 OTExRjBCQTY1MzQ1REM0RjlBRTAyLzNkekVDdDVuZnlQNHA1dWtGbzcyOXI3d1pj Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM2R6RUN0NW5meVA0cDV1a0ZvNzI5cjd3WmNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNC MkUyLzQxMUM2M0IwODk1OTExRjBCQTY1MzQ1REM0RjlBRTAyLzNkekVDdDVuZnlQ NHA1dWtGbzcyOXI3d1pjYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKJDo5FDD4LwDeZwx4OHQsq7emP77IDezm9G/jDXv0uTuIfvp0zGPo5C Mz+T9cDURWBa4eglN20s7HrJTdrPq6Tv2vlzLFMAlLHRKkx/GygHoS33qQRto9os xSArizp6t7NJTwu6IRDsG9VFBBxT3emxG5SES4BcJ3d//ovLQcOXHk0k81VGUbv9 QzH/hvlxxDFGLACX2g0zGZoIbSYsvujev4L8b7aly2F3cpAz4Pp6ltch73KojI56 769SoWRlGQdLVeHxTESyg5GsRcFGPSr2q4EBlAN4vZcQm66nGKqmQrUr//cuYHU2 kM210necmu9+BI/Nor8Yw8dLXYCmtN8= -----END CERTIFICATE-----Generated at Thu Sep 18 21:59:54 2025 by rpki-client