$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft File: gFLXiRiFOIg0vD1ozrIclvdiXmc.mft (raw, json) Hash identifier: OQ4LQtJYGjA+2ekkRNP3UGJEV8j1UgQFG10Nsaa/++Y= Subject key identifier: 22:E1:C5:1F:A8:2C:06:1D:9B:AC:4E:33:08:AB:00:9D:E8:57:A4:41 Authority key identifier: 80:52:D7:89:18:85:38:88:34:BC:3D:68:CE:B2:1C:96:F7:62:5E:67 Certificate issuer: /CN=A91CBE89/serialNumber=8052D7891885388834BC3D68CEB21C96F7625E67 Certificate serial: 1E92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFLXiRiFOIg0vD1ozrIclvdiXmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft Manifest number: 1E91 Signing time: Thu 18 Sep 2025 16:09:07 +0000 Manifest this update: Thu 18 Sep 2025 16:09:07 +0000 Manifest next update: Thu 25 Sep 2025 16:09:07 +0000 Files and hashes: 1: gFLXiRiFOIg0vD1ozrIclvdiXmc.crl (hash: CnXuafF2BDgbVT4XfcpOOLOOyp0PvRlyUe2aBLqVycE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.crl rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFLXiRiFOIg0vD1ozrIclvdiXmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:09:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7826 (0x1e92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBE89, serialNumber=8052D7891885388834BC3D68CEB21C96F7625E67 Validity Not Before: Sep 18 16:09:07 2025 GMT Not After : Sep 25 16:09:07 2025 GMT Subject: CN=68cc2ea3-35ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:52:49:a4:cb:90:a0:2a:0f:c4:a7:d5:70:49: 22:6a:be:6e:8a:4e:d1:33:bf:f1:02:0e:8a:9a:16: 3d:75:e3:f4:5e:57:d2:7d:8c:9a:35:44:9c:99:16: e0:8a:13:e6:2b:df:17:a1:93:93:fd:a0:36:9d:b0: f4:3d:06:28:d3:1e:76:c8:38:1e:91:2f:34:7c:14: 33:48:4d:21:5b:81:3d:cc:77:5a:34:64:16:c2:18: 5a:ec:b5:a2:c3:d6:de:63:bb:9e:3f:ad:ea:00:a3: 97:c6:2b:bd:c5:57:21:ad:d2:e4:9e:87:bd:1e:d6: 20:87:9d:fa:bd:0e:60:47:a7:82:95:0b:0a:8c:5e: ec:80:71:5a:01:f5:72:e9:03:7f:b0:2d:a8:0d:93: 39:c9:09:c7:5c:80:b3:ee:87:d4:99:29:52:cc:93: 5b:29:a9:82:13:85:b4:01:45:e4:05:8e:02:fd:37: 30:72:ba:25:e0:4c:55:c0:cc:aa:4e:81:d1:01:36: bc:8c:7a:89:4a:78:af:08:f8:8a:06:95:98:42:9f: d4:3b:f2:2c:84:40:03:0c:0f:c2:9f:17:e3:77:d4: 5f:2d:38:6b:91:54:64:34:d1:0b:8b:27:23:2d:66: a3:0b:c6:d3:ec:35:77:85:b6:bb:97:77:5d:3f:55: 3d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:E1:C5:1F:A8:2C:06:1D:9B:AC:4E:33:08:AB:00:9D:E8:57:A4:41 X509v3 Authority Key Identifier: keyid:80:52:D7:89:18:85:38:88:34:BC:3D:68:CE:B2:1C:96:F7:62:5E:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFLXiRiFOIg0vD1ozrIclvdiXmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:5f:37:fa:c3:2a:2a:0d:32:3b:39:a1:5d:2a:ae:d8:47:60: 7a:8b:dc:b6:12:b5:0c:a4:36:3d:ab:67:d4:d0:2f:d6:87:38: 36:e0:1a:e4:d7:51:94:f5:83:96:6b:67:33:f1:c4:df:b1:03: c5:0a:da:af:74:c5:85:8e:1e:62:75:e9:3b:ba:db:bc:b7:84: 10:1f:8f:54:71:4a:b4:eb:71:fd:c8:fc:69:8f:8e:69:ea:da: db:99:c2:64:0b:d8:42:c0:b8:73:a9:d1:00:2e:16:56:4c:8e: 5d:db:e3:ca:fb:d1:29:20:c7:61:43:83:12:d8:4e:97:ba:ac: 3b:6c:ed:27:4f:6c:48:ba:da:48:aa:b0:e5:cd:4a:6c:41:82: c2:97:f3:11:3d:f2:94:70:81:99:a7:29:d4:28:83:4f:4d:ea: 9f:7d:03:f1:59:b9:04:f7:07:42:8b:9f:06:81:9f:f1:95:2a: e0:33:ce:78:73:de:1c:b8:7f:47:63:b6:f7:3f:88:20:63:fe: c3:06:8b:4f:b0:ef:ff:47:54:61:31:1a:a3:8c:34:99:93:aa: 35:a4:50:51:2b:13:cd:6c:30:3a:c5:81:2b:f9:19:57:a5:16: 7d:5e:98:3d:8d:df:63:61:db:7b:50:27:22:0a:62:d9:c6:93: 77:30:88:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JFODkxMTAvBgNVBAUTKDgwNTJENzg5MTg4NTM4ODgzNEJDM0Q2OENFQjIxQzk2 Rjc2MjVFNjcwHhcNMjUwOTE4MTYwOTA3WhcNMjUwOTI1MTYwOTA3WjAYMRYwFAYD VQQDEw02OGNjMmVhMy0zNWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41JJpMuQoCoPxKfVcEkiar5uik7RM7/xAg6KmhY9deP0XlfSfYyaNUScmRbg ihPmK98XoZOT/aA2nbD0PQYo0x52yDgekS80fBQzSE0hW4E9zHdaNGQWwhha7LWi w9beY7ueP63qAKOXxiu9xVchrdLknoe9HtYgh536vQ5gR6eClQsKjF7sgHFaAfVy 6QN/sC2oDZM5yQnHXICz7ofUmSlSzJNbKamCE4W0AUXkBY4C/Tcwcrol4ExVwMyq ToHRATa8jHqJSnivCPiKBpWYQp/UO/IshEADDA/Cnxfjd9RfLThrkVRkNNELiycj LWajC8bT7DV3hba7l3ddP1U9fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLhxR+o LAYdm6xOMwirAJ3oV6RBMB8GA1UdIwQYMBaAFIBS14kYhTiINLw9aM6yHJb3Yl5n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkU4OS9GMjcyNkExODc2 M0MxMUU2QjAxRTA4NTlDNEY5QUUwMi9nRkxYaVJpRk9JZzB2RDFvenJJY2x2ZGlY bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dGTFhpUmlGT0lnMHZEMW96ckljbHZkaVhtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkU4OS9GMjcyNkExODc2M0MxMUU2QjAxRTA4NTlDNEY5QUUwMi9nRkxYaVJpRk9J ZzB2RDFvenJJY2x2ZGlYbWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDXzf6wyoqDTI7OaFdKq7YR2B6i9y2ErUMpDY9q2fU0C/Whzg24Brk 11GU9YOWa2cz8cTfsQPFCtqvdMWFjh5idek7utu8t4QQH49UcUq063H9yPxpj45p 6trbmcJkC9hCwLhzqdEALhZWTI5d2+PK+9EpIMdhQ4MS2E6Xuqw7bO0nT2xIutpI qrDlzUpsQYLCl/MRPfKUcIGZpynUKINPTeqffQPxWbkE9wdCi58GgZ/xlSrgM854 c94cuH9HY7b3P4ggY/7DBotPsO//R1RhMRqjjDSZk6o1pFBRKxPNbDA6xYEr+RlX pRZ9Xpg9jd9jYdt7UCciCmLZxpN3MIjP -----END CERTIFICATE-----Generated at Fri Sep 19 05:20:56 2025 by rpki-client