$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft File: E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft (raw, json) Hash identifier: ehb5ZEBG/pmaKu+A/i4ZTsPK8rOvGPc/bUK82ig/1dY= Subject key identifier: 9D:02:68:22:90:5F:FE:EC:AF:21:D9:21:D7:61:1A:B8:D8:99:9C:3E Authority key identifier: 13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 Certificate issuer: /CN=A91CE9D6/serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Certificate serial: 0A3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft Manifest number: 0A24 Signing time: Sat 06 Sep 2025 19:58:47 +0000 Manifest this update: Sat 06 Sep 2025 19:58:46 +0000 Manifest next update: Sat 13 Sep 2025 19:58:46 +0000 Files and hashes: 1: E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl (hash: R0lfT6XnsEbpWKOzxiwDnGv6oZIm2t7aazZN22MS1hE=) 2: 722D43AC7A5A11EABD77E486C4F9AE02.roa (hash: dz0lDVUdbKurIPgLKnTIK+TUvk2MtsrFSHr5aV4oHoA=) 3: E4EFE6905ECB11ECA9B55A3BC4F9AE02.roa (hash: ACLukHzl4iP7lAUKq3zWaW1x17F+UkqOsay4tSs+0D0=) 4: A1C764027A5B11EA98745A0EC4F9AE02.roa (hash: WPHw7kNP0n6c5UltUwmrIvy70bAxnVBFcfWA6in4LsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 19:58:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2618 (0xa3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9D6, serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Validity Not Before: Sep 6 19:58:46 2025 GMT Not After : Sep 13 19:58:46 2025 GMT Subject: CN=68bc9277-c083 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7e:ba:da:3c:e6:66:19:23:7d:15:2e:ba:79: 28:dc:63:05:71:dd:c0:59:5f:69:a5:33:6e:a2:ea: 21:88:37:30:f2:b2:a4:ef:d1:ae:b8:4f:60:bf:db: 95:45:b1:e1:d5:95:5f:5b:20:23:7c:fd:be:1f:eb: 12:31:aa:28:12:98:f6:6e:66:73:53:fc:d9:39:fc: 86:d4:77:d9:ce:4d:1f:14:37:e7:cf:02:ca:7b:f4: fd:10:42:e8:b2:9d:d4:93:00:af:01:1a:9e:a3:1e: b4:83:22:f5:c6:90:bb:d3:61:df:79:59:fa:c4:c6: a3:07:43:72:9e:0e:71:4f:51:25:44:e8:7f:2d:3d: ff:76:b0:11:92:db:5d:7a:1b:4a:c5:fc:9e:36:05: 02:d2:c3:ce:90:da:13:12:5e:6a:15:bd:43:eb:09: a3:55:13:d8:e3:21:4d:44:68:4a:4a:74:42:88:11: 27:3e:32:06:8a:33:01:11:13:8d:13:d2:dc:7a:b7: f6:19:43:6c:5f:c3:e4:88:52:e6:c9:ae:2c:9c:ad: bf:02:33:19:d4:00:58:99:15:45:fd:c5:29:ba:e0: f3:e4:6d:e1:ff:e5:6b:d6:68:aa:b9:f1:1e:85:44: 17:2d:c1:6b:ed:d4:c6:5e:17:93:3b:f2:42:26:22: 55:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:02:68:22:90:5F:FE:EC:AF:21:D9:21:D7:61:1A:B8:D8:99:9C:3E X509v3 Authority Key Identifier: keyid:13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:a4:d8:9a:a8:e1:27:ce:60:23:13:21:25:47:da:6a:96:e5: 02:75:43:b8:6d:46:6c:4a:1a:de:b7:fb:c0:69:0c:21:13:31: 7f:4f:ac:a3:8c:50:51:ce:19:a7:a3:c0:62:dc:b3:81:5f:68: cd:49:09:ee:b6:12:0d:77:0b:74:09:0d:57:e8:2a:bc:e1:e4: 84:a5:c4:e1:9b:42:9d:77:13:4e:73:31:b4:9f:e9:c8:41:b9: 2f:e6:5c:ad:f5:dc:02:df:94:cd:22:8d:47:cd:86:0b:ee:01: 59:1e:84:61:c9:cd:b0:06:f5:19:dc:8b:ea:2e:dc:34:c0:c0: 20:b4:21:fb:13:50:5f:f3:c0:a7:b8:55:fa:08:c4:2c:49:14: 79:46:54:2c:dc:2b:5f:44:a6:29:04:41:b5:6f:37:ed:73:e0: 12:29:dc:f0:89:0e:18:6d:17:92:8c:fd:1d:eb:18:a2:4a:79: a0:61:ff:85:2d:b9:36:9b:79:dc:8e:98:34:30:40:d3:cf:7e: 91:ea:0f:48:28:7f:5e:2d:7e:99:f2:c7:e7:fc:23:c5:e1:e0: e6:87:f9:89:1f:0f:25:d8:3d:0b:9f:63:eb:87:97:06:eb:64: 0e:20:e5:9b:6d:8f:d6:b9:f2:68:43:47:ea:18:9c:44:d1:b2: 8b:4a:76:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RDYxMTAvBgNVBAUTKDEzNjc0MUJEOUU4NzBGMDZFQ0U1Q0IzNTVCOEM3NTcx Q0M5NkJBNzQwHhcNMjUwOTA2MTk1ODQ2WhcNMjUwOTEzMTk1ODQ2WjAYMRYwFAYD VQQDEw02OGJjOTI3Ny1jMDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsX662jzmZhkjfRUuunko3GMFcd3AWV9ppTNuouohiDcw8rKk79GuuE9gv9uV RbHh1ZVfWyAjfP2+H+sSMaooEpj2bmZzU/zZOfyG1HfZzk0fFDfnzwLKe/T9EELo sp3UkwCvARqeox60gyL1xpC702HfeVn6xMajB0Nyng5xT1ElROh/LT3/drARkttd ehtKxfyeNgUC0sPOkNoTEl5qFb1D6wmjVRPY4yFNRGhKSnRCiBEnPjIGijMBERON E9Lcerf2GUNsX8PkiFLmya4snK2/AjMZ1ABYmRVF/cUpuuDz5G3h/+Vr1miqufEe hUQXLcFr7dTGXheTO/JCJiJVFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ0CaCKQ X/7sryHZIddhGrjYmZw+MB8GA1UdIwQYMBaAFBNnQb2ehw8G7OXLNVuMdXHMlrp0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlENi85RTY2RjUxMjdB NTUxMUVBQkZCRTk0N0FDNEY5QUUwMi9FMmRCdlo2SER3YnM1Y3MxVzR4MWNjeVd1 blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UyZEJ2WjZIRHdiczVjczFXNHgxY2N5V3VuUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTlENi85RTY2RjUxMjdBNTUxMUVBQkZCRTk0N0FDNEY5QUUwMi9FMmRCdlo2SER3 YnM1Y3MxVzR4MWNjeVd1blEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBppNiaqOEnzmAjEyElR9pqluUCdUO4bUZsShret/vAaQwhEzF/T6yj jFBRzhmno8Bi3LOBX2jNSQnuthINdwt0CQ1X6Cq84eSEpcThm0KddxNOczG0n+nI Qbkv5lyt9dwC35TNIo1HzYYL7gFZHoRhyc2wBvUZ3IvqLtw0wMAgtCH7E1Bf88Cn uFX6CMQsSRR5RlQs3CtfRKYpBEG1bzftc+ASKdzwiQ4YbReSjP0d6xiiSnmgYf+F Lbk2m3ncjpg0MEDTz36R6g9IKH9eLX6Z8sfn/CPF4eDmh/mJHw8l2D0Ln2Prh5cG 62QOIOWbbY/WufJoQ0fqGJxE0bKLSnYn -----END CERTIFICATE-----Generated at Mon Sep 8 14:33:51 2025 by rpki-client