$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft File: l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft (raw, json) Hash identifier: nxf4C0trP8BXLNA5ZQFmi6li5H9Vb5UjaLoA3QoVrMY= Subject key identifier: FF:F6:67:20:AF:00:DC:3D:17:2C:0C:FD:82:94:BF:6F:46:1C:61:DC Authority key identifier: 97:5B:D5:5D:61:5C:98:60:AC:CF:D8:60:99:85:3B:CB:19:A9:9B:E4 Certificate issuer: /CN=A91CBB09/serialNumber=975BD55D615C9860ACCFD86099853BCB19A99BE4 Certificate serial: 0429 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft Manifest number: 0424 Signing time: Fri 19 Sep 2025 00:42:22 +0000 Manifest this update: Fri 19 Sep 2025 00:42:22 +0000 Manifest next update: Fri 26 Sep 2025 00:42:22 +0000 Files and hashes: 1: l1vVXWFcmGCsz9hgmYU7yxmpm-Q.crl (hash: puIGZuL0ay/CfGwrnRROFEj6DXJp3U/YT95ZCBaceEo=) 2: F865B8887CEB11ECA79BD83DC4F9AE02.roa (hash: 9AbsTY8cTY46TpPDuvc4IXAIWNpWgIpIVFjtcxPCVMI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.crl rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 00:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1065 (0x429) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB09, serialNumber=975BD55D615C9860ACCFD86099853BCB19A99BE4 Validity Not Before: Sep 19 00:42:22 2025 GMT Not After : Sep 26 00:42:22 2025 GMT Subject: CN=68cca6ee-f62b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:99:d9:fe:02:33:be:97:bd:67:ff:c7:bd:ff: ff:81:58:fc:08:5b:71:94:37:c5:b2:8a:1e:57:83: 86:9b:69:c0:a4:e1:c5:72:44:8d:31:df:fe:54:87: 59:a8:c2:02:f8:93:eb:e8:2f:3b:74:7c:04:b2:a2: bf:46:b4:12:c2:da:09:a7:ad:99:a2:20:8f:54:11: eb:95:5e:c0:76:5e:e0:95:99:32:56:a8:26:9a:6f: 22:e9:32:26:70:4f:c6:70:a7:98:4b:52:2f:61:e8: 03:0f:31:67:a6:76:bc:9a:0d:f4:44:a8:14:8d:2a: d1:40:28:b8:3d:34:b8:b7:7b:2a:d5:73:a3:f6:13: 74:39:93:28:92:4c:85:8f:6c:b1:27:03:8d:38:18: 3e:b3:04:d8:52:09:f0:da:23:b0:c1:f1:6e:ce:b8: 57:71:d6:56:02:ea:ed:d6:45:84:a8:f8:08:4f:87: 0f:b2:db:ee:a6:db:27:76:9e:bd:f7:ee:23:72:e0: e9:55:e9:fc:e0:f9:d2:3b:4a:8a:d7:a6:77:8f:de: d8:38:46:e3:c1:f6:8d:0c:2a:93:04:61:0b:df:ed: 99:e5:8e:ae:9e:17:ee:0a:5a:13:3c:f6:b8:e6:2a: 75:e3:e2:20:94:2a:5f:1c:bd:9c:d4:56:a5:06:48: 31:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:F6:67:20:AF:00:DC:3D:17:2C:0C:FD:82:94:BF:6F:46:1C:61:DC X509v3 Authority Key Identifier: keyid:97:5B:D5:5D:61:5C:98:60:AC:CF:D8:60:99:85:3B:CB:19:A9:9B:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB09/611DABA07CE811ECAC894839C4F9AE02/l1vVXWFcmGCsz9hgmYU7yxmpm-Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:c1:03:8d:c8:f4:fb:eb:89:95:f9:a4:ae:a7:90:91:f7:5a: cd:6e:47:3e:aa:9b:17:ef:41:46:70:72:7b:01:43:e8:6b:e9: 64:78:00:aa:73:de:ba:f9:5d:8c:88:2e:2a:0f:28:8a:b2:68: c5:a5:4f:dc:16:d2:f1:c1:63:ca:50:44:30:e2:fd:d9:c5:f9: ee:7a:4b:53:40:d4:b5:12:34:fb:1b:f4:27:2f:bc:ae:fd:10: c0:c0:76:2b:cb:27:be:7a:46:ec:89:5d:3d:5a:c5:64:70:c9: 80:00:0b:aa:68:e0:0e:34:f7:4b:3c:24:36:6c:18:a6:f4:90: 28:76:2d:69:78:fe:a1:cc:44:d7:82:10:3e:23:2f:6e:4d:4e: cc:b6:e1:1e:21:d6:a4:a1:75:cb:71:4b:00:55:4c:7c:4e:e5: 42:e8:29:04:f8:60:ad:61:5a:01:91:c4:52:ac:b5:86:c8:4f: a2:da:37:44:bd:d3:50:00:b3:49:04:d6:c2:4f:32:45:3f:35: 3c:b4:99:cb:9e:92:39:55:e8:03:05:d9:87:4f:0f:dd:9e:88: 2e:0a:5b:44:80:64:82:d5:af:29:ec:ea:f1:7a:4e:c4:c8:1c: 0d:50:1b:0d:fd:c9:ba:32:1b:87:0e:3f:fa:34:e4:3f:2c:53: 8e:03:32:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCMDkxMTAvBgNVBAUTKDk3NUJENTVENjE1Qzk4NjBBQ0NGRDg2MDk5ODUzQkNC MTlBOTlCRTQwHhcNMjUwOTE5MDA0MjIyWhcNMjUwOTI2MDA0MjIyWjAYMRYwFAYD VQQDEw02OGNjYTZlZS1mNjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJnZ/gIzvpe9Z//Hvf//gVj8CFtxlDfFsooeV4OGm2nApOHFckSNMd/+VIdZ qMIC+JPr6C87dHwEsqK/RrQSwtoJp62ZoiCPVBHrlV7Adl7glZkyVqgmmm8i6TIm cE/GcKeYS1IvYegDDzFnpna8mg30RKgUjSrRQCi4PTS4t3sq1XOj9hN0OZMokkyF j2yxJwONOBg+swTYUgnw2iOwwfFuzrhXcdZWAurt1kWEqPgIT4cPstvuptsndp69 9+4jcuDpVen84PnSO0qK16Z3j97YOEbjwfaNDCqTBGEL3+2Z5Y6unhfuCloTPPa4 5ip14+IglCpfHL2c1FalBkgxCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/2ZyCv ANw9FywM/YKUv29GHGHcMB8GA1UdIwQYMBaAFJdb1V1hXJhgrM/YYJmFO8sZqZvk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkIwOS82MTFEQUJBMDdD RTgxMUVDQUM4OTQ4MzlDNEY5QUUwMi9sMXZWWFdGY21HQ3N6OWhnbVlVN3l4bXBt LVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wxdlZYV0ZjbUdDc3o5aGdtWVU3eXhtcG0tUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkIwOS82MTFEQUJBMDdDRTgxMUVDQUM4OTQ4MzlDNEY5QUUwMi9sMXZWWFdGY21H Q3N6OWhnbVlVN3l4bXBtLVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuwQONyPT764mV+aSup5CR91rNbkc+qpsX70FGcHJ7AUPoa+lkeACq c966+V2MiC4qDyiKsmjFpU/cFtLxwWPKUEQw4v3ZxfnuektTQNS1EjT7G/QnL7yu /RDAwHYryye+ekbsiV09WsVkcMmAAAuqaOAONPdLPCQ2bBim9JAodi1peP6hzETX ghA+Iy9uTU7MtuEeIdakoXXLcUsAVUx8TuVC6CkE+GCtYVoBkcRSrLWGyE+i2jdE vdNQALNJBNbCTzJFPzU8tJnLnpI5VegDBdmHTw/dnoguCltEgGSC1a8p7Orxek7E yBwNUBsN/cm6MhuHDj/6NOQ/LFOOAzJ9 -----END CERTIFICATE-----Generated at Fri Sep 19 08:50:14 2025 by rpki-client