$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft File: CJy1orM7eG11SgfWgKnElBQmGeE.mft (raw, json) Hash identifier: mD/c17bOE4fhGizP/YdDGtThv5iyi3julZUynGbRKCg= Subject key identifier: 8E:D8:99:C0:88:98:A0:FB:5F:BB:77:B4:8A:F5:DB:EE:98:D6:9D:87 Authority key identifier: 08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 Certificate issuer: /CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft Manifest number: C1 Signing time: Wed 03 Sep 2025 06:29:16 +0000 Manifest this update: Wed 03 Sep 2025 06:29:15 +0000 Manifest next update: Wed 10 Sep 2025 06:29:15 +0000 Files and hashes: 1: CJy1orM7eG11SgfWgKnElBQmGeE.crl (hash: qvVAOTWcz/bbRAKAmzuBYgjt5y3AP8F9DPa1M9gmpMM=) 2: EEE0092A646611EFA25D167EC4F9AE02.roa (hash: 2I1s5RbX9mRnDSwDS9XqFVY3yT7dmC+Kb1B8YfP6Dhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 06:29:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C18, serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Validity Not Before: Sep 3 06:29:15 2025 GMT Not After : Sep 10 06:29:15 2025 GMT Subject: CN=68b7e03b-bacf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:14:3e:b3:05:5e:2d:bc:60:78:aa:4f:e3:08: b5:5b:f4:f3:40:fc:25:e8:0d:08:b1:f3:b9:87:43: 07:c7:85:da:e9:f2:2f:c2:1a:45:b2:44:28:bc:43: 00:a7:82:d5:89:bb:3d:5f:43:4e:f1:e6:28:ac:9c: e2:51:df:93:95:ee:45:1d:85:e2:d4:86:2a:e2:26: 77:9a:76:97:3e:8d:3a:04:72:c6:06:43:9d:7b:b8: 12:13:f0:5e:ab:7e:e8:ff:c7:93:f6:a9:d4:76:95: b7:74:00:6f:8b:5e:f7:5b:ea:cd:0f:4e:ce:87:a8: 2c:35:10:14:ee:ed:5a:40:e3:af:f6:50:94:ee:3e: 02:b4:90:03:c8:9f:43:bb:2f:48:12:f7:f2:8a:7a: 48:cc:77:d7:bd:0a:b6:1c:2a:2f:08:74:b0:46:a1: c3:45:7c:98:b0:0d:b6:88:ec:92:88:a2:d0:88:ea: a9:0d:16:5a:ee:3f:37:42:52:c1:89:92:ca:49:a4: 33:0b:bb:bc:63:85:87:11:29:ed:d0:30:fd:8e:c1: 39:ad:2c:ea:3a:f7:99:70:a4:cf:56:2d:1f:9f:fa: b8:54:1f:ff:69:82:91:2d:76:24:8e:2a:e4:ee:cb: ce:54:8f:c0:29:d1:04:1f:69:21:29:eb:70:c5:8c: c8:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:D8:99:C0:88:98:A0:FB:5F:BB:77:B4:8A:F5:DB:EE:98:D6:9D:87 X509v3 Authority Key Identifier: keyid:08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:ff:80:5c:fe:74:3a:d9:5f:1a:93:0b:fd:00:c0:4e:c6:07: 9a:f2:19:de:b0:cc:cc:5a:6a:2f:d8:5c:5f:af:ee:84:62:28: ba:72:43:ee:5b:0c:3c:d1:db:66:a2:ad:72:c9:eb:4e:f7:c6: 9e:11:ae:8a:68:3a:fb:8f:8a:7b:85:62:65:c5:2d:ad:e4:de: 47:f1:b7:64:32:a9:b5:d4:88:ad:08:9b:5c:f9:30:09:6a:fd: 10:9d:0a:93:68:58:55:0b:5d:df:6b:d0:5c:96:c1:4e:49:8b: 20:d4:63:49:20:64:97:35:95:87:ee:21:e5:a0:83:9f:b1:dd: 05:d1:60:59:2d:10:79:36:89:d0:78:b2:ca:ca:72:a8:51:79: ea:8e:f2:2a:d4:7f:03:1c:59:9d:5d:77:bc:05:19:c1:5a:0a: f8:e2:93:11:3f:37:46:38:93:dd:e9:4d:2d:26:7d:46:2e:be: 57:5b:73:a4:7d:06:96:17:4a:44:e4:cd:e7:0d:d9:23:d4:78: f5:52:fd:aa:44:b0:ae:2a:26:39:2a:4a:dd:7c:56:01:01:0b: 98:81:d4:e3:18:56:24:eb:cd:8e:58:20:4c:fe:26:9a:e2:1e: 49:56:bb:27:80:0b:a9:e1:e0:7c:a6:43:a8:79:e1:13:5b:ef: 80:10:96:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTgxMTAvBgNVBAUTKDA4OUNCNUEyQjMzQjc4NkQ3NTRBMDdENjgwQTlDNDk0 MTQyNjE5RTEwHhcNMjUwOTAzMDYyOTE1WhcNMjUwOTEwMDYyOTE1WjAYMRYwFAYD VQQDEw02OGI3ZTAzYi1iYWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6hQ+swVeLbxgeKpP4wi1W/TzQPwl6A0IsfO5h0MHx4Xa6fIvwhpFskQovEMA p4LVibs9X0NO8eYorJziUd+Tle5FHYXi1IYq4iZ3mnaXPo06BHLGBkOde7gSE/Be q37o/8eT9qnUdpW3dABvi173W+rND07Oh6gsNRAU7u1aQOOv9lCU7j4CtJADyJ9D uy9IEvfyinpIzHfXvQq2HCovCHSwRqHDRXyYsA22iOySiKLQiOqpDRZa7j83QlLB iZLKSaQzC7u8Y4WHESnt0DD9jsE5rSzqOveZcKTPVi0fn/q4VB//aYKRLXYkjirk 7svOVI/AKdEEH2khKetwxYzIQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI7YmcCI mKD7X7t3tIr12+6Y1p2HMB8GA1UdIwQYMBaAFAictaKzO3htdUoH1oCpxJQUJhnh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxOC82ODNCQTA5NjY0 NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VHMTFTZ2ZXZ0tuRWxCUW1H ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NKeTFvck03ZUcxMVNnZldnS25FbEJRbUdlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxOC82ODNCQTA5NjY0NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VH MTFTZ2ZXZ0tuRWxCUW1HZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP/4Bc/nQ62V8akwv9AMBOxgea8hnesMzMWmov2Fxfr+6EYii6ckPu Www80dtmoq1yyetO98aeEa6KaDr7j4p7hWJlxS2t5N5H8bdkMqm11IitCJtc+TAJ av0QnQqTaFhVC13fa9BclsFOSYsg1GNJIGSXNZWH7iHloIOfsd0F0WBZLRB5NonQ eLLKynKoUXnqjvIq1H8DHFmdXXe8BRnBWgr44pMRPzdGOJPd6U0tJn1GLr5XW3Ok fQaWF0pE5M3nDdkj1Hj1Uv2qRLCuKiY5KkrdfFYBAQuYgdTjGFYk682OWCBM/iaa 4h5JVrsngAup4eB8pkOoeeETW++AEJZp -----END CERTIFICATE-----Generated at Thu Sep 4 13:58:36 2025 by rpki-client