$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft File: ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft (raw, json) Hash identifier: JVfDgtPqZOZ3XoOZfPNkxQPEEfxth9HLDPjlP1YYUh4= Subject key identifier: 77:4B:A3:06:67:99:4F:AE:93:51:DF:E1:F2:19:91:00:8F:C0:10:E1 Authority key identifier: 92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 Certificate issuer: /CN=A91CB8BA/serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Certificate serial: 08E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft Manifest number: 08D8 Signing time: Thu 04 Sep 2025 20:39:41 +0000 Manifest this update: Thu 04 Sep 2025 20:39:41 +0000 Manifest next update: Thu 11 Sep 2025 20:39:41 +0000 Files and hashes: 1: ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl (hash: xIOVrjSF3t51Jj1lD+lYda1DX49/MXVe+eaHd6k8dBY=) 2: 0B6B9DE6BAAE11EA8F1DA435C4F9AE02.roa (hash: Pjk7KOVj7H3BoAMc7NRiJiAFk/4ChSG9JZtPBtMlKPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 20:39:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2272 (0x8e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Validity Not Before: Sep 4 20:39:41 2025 GMT Not After : Sep 11 20:39:41 2025 GMT Subject: CN=68b9f90d-5e5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1b:f0:69:d1:b3:5a:c5:a7:f3:28:d8:f4:c4: 46:c8:c4:a3:d3:16:4f:7b:f4:73:39:9f:39:01:41: 7b:f6:74:26:21:ee:6f:d5:1d:05:42:5f:1a:d3:f5: b2:80:0b:c8:a1:4b:1d:d2:71:55:ad:66:4a:1c:9a: 31:a7:6f:7f:96:7f:8a:96:dc:96:88:76:9b:86:be: e7:51:23:2a:9d:7a:78:18:85:2b:7f:43:96:0c:59: 43:8e:7f:2f:a9:fe:5a:60:77:03:b5:6a:f4:3c:8d: a4:d7:24:67:87:e0:2a:e9:21:fa:8d:c3:d7:c2:8b: 1b:64:24:10:8d:02:48:36:e7:ff:f1:f3:cc:97:5a: 7e:04:7f:1b:db:7c:8a:b5:5c:d5:83:fd:05:94:aa: e5:33:ca:61:c7:65:bc:1b:9f:33:8f:a8:1e:66:ca: 45:5c:d7:d3:2a:ce:42:5a:d2:0a:43:ce:ce:96:91: 2c:f1:ea:e8:ac:bf:5e:10:3e:95:e7:3b:90:6f:39: b9:d7:c2:f3:a0:12:07:da:bd:90:60:12:8f:bf:cb: c3:cc:13:c7:c5:18:85:92:24:b3:48:6d:55:63:52: 61:84:18:05:ff:a0:1a:d0:be:e2:d1:6c:de:a4:36: 49:2c:05:8a:99:9e:21:0f:cf:65:fd:33:68:74:a9: 00:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:4B:A3:06:67:99:4F:AE:93:51:DF:E1:F2:19:91:00:8F:C0:10:E1 X509v3 Authority Key Identifier: keyid:92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:7c:9b:ef:d8:71:1b:fe:eb:dd:e7:d4:68:13:7b:d4:1a:c6: b7:91:08:81:99:14:c1:d0:ce:f9:29:6a:ec:1b:61:80:30:51: f6:58:5f:82:92:97:d6:46:70:cb:46:cc:47:42:cf:1c:a6:da: b7:1b:55:b3:c3:c4:d9:b3:f0:ac:e0:a2:5e:dd:29:5d:99:8f: a7:4c:65:2a:9f:a3:5d:5a:9f:b6:38:75:f8:33:e2:6b:55:3c: e1:f5:36:54:da:82:00:8e:80:4d:58:97:89:0d:4f:97:1d:ce: 57:7e:52:f8:f4:51:72:73:f5:a8:97:99:07:6c:c5:55:de:4e: 92:33:58:9d:43:e4:2a:9b:6e:ef:20:f2:1c:a6:a1:01:53:b9: b9:77:22:e2:3f:fd:a7:8c:47:b1:22:f1:2f:2c:98:c3:4a:90: af:49:ad:cc:5a:cf:34:47:32:70:c1:13:0b:f7:8a:56:ea:b0: e8:2b:ed:88:bc:6c:71:0f:92:04:52:c9:59:ac:dc:aa:cf:2b: 0a:25:0c:05:03:34:0f:97:84:17:37:14:02:af:99:83:40:5e: 64:92:d4:40:0c:9c:0f:e2:64:a1:c9:f4:5d:79:7c:69:5a:af: 33:47:76:78:7b:42:99:1a:46:4e:e9:1b:21:b3:60:e3:8e:48: 5d:bc:b8:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDkyMkQ2MEVBMTkzOTY3MTc3QkM2QzM5QTQwNjg1OThB M0I3NUE2RDMwHhcNMjUwOTA0MjAzOTQxWhcNMjUwOTExMjAzOTQxWjAYMRYwFAYD VQQDEw02OGI5ZjkwZC01ZTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3hvwadGzWsWn8yjY9MRGyMSj0xZPe/RzOZ85AUF79nQmIe5v1R0FQl8a0/Wy gAvIoUsd0nFVrWZKHJoxp29/ln+KltyWiHabhr7nUSMqnXp4GIUrf0OWDFlDjn8v qf5aYHcDtWr0PI2k1yRnh+Aq6SH6jcPXwosbZCQQjQJINuf/8fPMl1p+BH8b23yK tVzVg/0FlKrlM8phx2W8G58zj6geZspFXNfTKs5CWtIKQ87OlpEs8erorL9eED6V 5zuQbzm518LzoBIH2r2QYBKPv8vDzBPHxRiFkiSzSG1VY1JhhBgF/6Aa0L7i0Wze pDZJLAWKmZ4hD89l/TNodKkAhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHdLowZn mU+uk1Hf4fIZkQCPwBDhMB8GA1UdIwQYMBaAFJItYOoZOWcXe8bDmkBoWYo7dabT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8zMjA5MDFDNEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4ZDd4c09hUUdoWmlqdDFw dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tpMWc2aGs1WnhkN3hzT2FRR2haaWp0MXB0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8zMjA5MDFDNEJBODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4 ZDd4c09hUUdoWmlqdDFwdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgfJvv2HEb/uvd59RoE3vUGsa3kQiBmRTB0M75KWrsG2GAMFH2WF+C kpfWRnDLRsxHQs8cptq3G1Wzw8TZs/Cs4KJe3SldmY+nTGUqn6NdWp+2OHX4M+Jr VTzh9TZU2oIAjoBNWJeJDU+XHc5XflL49FFyc/Wol5kHbMVV3k6SM1idQ+Qqm27v IPIcpqEBU7m5dyLiP/2njEexIvEvLJjDSpCvSa3MWs80RzJwwRML94pW6rDoK+2I vGxxD5IEUslZrNyqzysKJQwFAzQPl4QXNxQCr5mDQF5kktRADJwP4mShyfRdeXxp Wq8zR3Z4e0KZGkZO6Rshs2DjjkhdvLib -----END CERTIFICATE-----Generated at Sat Sep 6 06:45:31 2025 by rpki-client