$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft File: 1Sj61Lh2q_twrziSIg8pPheRtrw.mft (raw, json) Hash identifier: x9+VSy0IYrkympSxx5Opfs0Gt3GgtjETqwEDnh8rdc8= Subject key identifier: 17:08:6E:CE:EF:A1:CB:67:ED:19:41:C9:A1:5F:D2:55:BF:1D:E5:81 Authority key identifier: D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC Certificate issuer: /CN=A91CE6C5/serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Certificate serial: 0372 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft Manifest number: 0366 Signing time: Tue 09 Sep 2025 01:02:53 +0000 Manifest this update: Tue 09 Sep 2025 01:02:52 +0000 Manifest next update: Tue 16 Sep 2025 01:02:52 +0000 Files and hashes: 1: 1Sj61Lh2q_twrziSIg8pPheRtrw.crl (hash: IzCd5XUcZb7plnggmuN50FiyMtXVYoB5lgMkbGY6qWo=) 2: C0E56FB2D56B11EFB540FB53C4F9AE02.roa (hash: WjUHxTEWTF20WZmvNCerm3WpHrjM2Bec4x3sz7dnvmU=) 3: A0841A68D0D511EC81001E73C4F9AE02.roa (hash: 28rk2f2SK8fYlNSOWgKUvbvWyh9sktvms5gVEW96hEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:02:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 882 (0x372) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6C5, serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Validity Not Before: Sep 9 01:02:52 2025 GMT Not After : Sep 16 01:02:52 2025 GMT Subject: CN=68bf7cbc-b2a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3f:3a:92:1c:60:9d:e9:b9:9d:a7:56:6d:34: e5:f4:f6:92:cb:2d:71:3d:80:0b:d5:85:e8:99:08: 1a:e0:8d:c6:ef:95:21:42:07:c3:84:f7:ef:fd:2e: f7:13:b2:78:e4:67:af:fc:73:60:5a:e6:20:c7:9c: 34:8c:b4:ad:60:4c:96:42:58:6d:3e:17:4f:87:6e: ba:84:70:5e:36:03:00:9e:18:e8:b5:40:b2:19:ef: 40:44:54:cc:e1:43:07:41:42:01:3b:5d:36:af:90: ab:45:69:aa:63:47:b3:f8:2f:b1:04:e1:a1:6c:f9: fd:51:e3:57:38:48:18:f9:4e:17:ef:66:31:b1:46: cc:40:f9:ed:7c:ea:66:f8:83:37:1b:71:92:3f:33: fd:93:94:43:60:ee:89:6d:11:5b:73:b7:1a:f4:da: 2a:04:db:8e:e1:d1:94:ee:7d:94:71:4e:e1:24:07: 9f:7e:da:9c:c5:96:1d:33:7f:22:1d:eb:59:de:fc: e1:67:37:29:5e:db:c0:f3:cb:08:9c:a2:69:d7:90: 95:cb:8b:d7:ea:70:37:fb:bd:f8:dc:0e:38:21:de: 15:1d:ae:b1:39:49:43:ff:15:90:3f:91:70:15:e4: 7c:c8:5f:08:3a:27:62:df:b7:56:2d:6f:c8:21:44: d3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:08:6E:CE:EF:A1:CB:67:ED:19:41:C9:A1:5F:D2:55:BF:1D:E5:81 X509v3 Authority Key Identifier: keyid:D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:de:c1:42:72:d2:4d:74:b7:c3:28:15:1f:9c:05:3f:0e:9a: a5:3e:93:7a:77:07:d3:a3:c3:5b:e3:7f:95:dd:c4:f9:0d:48: cc:c2:c1:a5:e1:52:8e:7b:95:82:36:5f:56:7d:6f:f8:88:b8: 0d:c9:db:3b:f7:5c:84:90:d8:7b:13:45:fd:2a:2a:c6:78:50: c3:96:69:1e:40:4d:c9:03:c9:46:17:82:08:7a:d0:56:d9:54: cb:e9:b9:b4:d9:37:05:ab:8f:e2:8a:83:0a:af:9c:de:07:85: 31:80:c8:40:ba:bf:78:c1:67:52:c9:57:1c:10:f8:f0:3c:6a: 01:12:10:92:ea:63:2a:be:c4:b9:4f:df:32:18:fe:18:25:70: c3:af:09:e6:a3:97:ec:37:de:42:50:92:42:6a:ce:c8:25:6a: 1d:78:24:95:94:cd:b5:7f:a2:e2:89:00:bc:98:02:a4:b4:14: 36:c8:06:de:7e:7d:4e:42:a5:9f:f4:b7:23:7c:98:b1:25:7b: a9:ea:aa:bb:7f:31:e9:df:d4:94:ac:e8:36:e1:b1:8c:87:df: 09:68:9c:49:cb:e3:4a:e0:c7:19:16:3b:df:b4:6c:70:64:f0: 3f:18:64:39:0f:07:16:da:07:42:74:53:93:1d:b9:9c:17:65: c3:da:67:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2QzUxMTAvBgNVBAUTKEQ1MjhGQUQ0Qjg3NkFCRkI3MEFGMzg5MjIyMEYyOTNF MTc5MUI2QkMwHhcNMjUwOTA5MDEwMjUyWhcNMjUwOTE2MDEwMjUyWjAYMRYwFAYD VQQDEw02OGJmN2NiYy1iMmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsj86khxgnem5nadWbTTl9PaSyy1xPYAL1YXomQga4I3G75UhQgfDhPfv/S73 E7J45Gev/HNgWuYgx5w0jLStYEyWQlhtPhdPh266hHBeNgMAnhjotUCyGe9ARFTM 4UMHQUIBO102r5CrRWmqY0ez+C+xBOGhbPn9UeNXOEgY+U4X72YxsUbMQPntfOpm +IM3G3GSPzP9k5RDYO6JbRFbc7ca9NoqBNuO4dGU7n2UcU7hJAefftqcxZYdM38i HetZ3vzhZzcpXtvA88sInKJp15CVy4vX6nA3+7343A44Id4VHa6xOUlD/xWQP5Fw FeR8yF8IOidi37dWLW/IIUTTQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBcIbs7v octn7RlByaFf0lW/HeWBMB8GA1UdIwQYMBaAFNUo+tS4dqv7cK84kiIPKT4Xkba8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZDNS9FODI2NjAyMEM2 QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFfdHdyemlTSWc4cFBoZVJ0 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTajYxTGgycV90d3J6aVNJZzhwUGhlUnRydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZDNS9FODI2NjAyMEM2QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFf dHdyemlTSWc4cFBoZVJ0cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd3sFCctJNdLfDKBUfnAU/DpqlPpN6dwfTo8Nb43+V3cT5DUjMwsGl 4VKOe5WCNl9WfW/4iLgNyds791yEkNh7E0X9KirGeFDDlmkeQE3JA8lGF4IIetBW 2VTL6bm02TcFq4/iioMKr5zeB4UxgMhAur94wWdSyVccEPjwPGoBEhCS6mMqvsS5 T98yGP4YJXDDrwnmo5fsN95CUJJCas7IJWodeCSVlM21f6LiiQC8mAKktBQ2yAbe fn1OQqWf9LcjfJixJXup6qq7fzHp39SUrOg24bGMh98JaJxJy+NK4McZFjvftGxw ZPA/GGQ5DwcW2gdCdFOTHbmcF2XD2mdS -----END CERTIFICATE-----Generated at Tue Sep 9 18:17:26 2025 by rpki-client