$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft File: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft (raw, json) Hash identifier: 97rKvh+GsW88vGGCQPPXKHG+4yVoh2tu11uqBBsNztI= Subject key identifier: 23:08:0B:52:52:34:99:2F:C4:D3:4E:61:C9:67:E6:8C:21:12:45:DE Authority key identifier: DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B Certificate issuer: /CN=A91D1C7F/serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Certificate serial: 03A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft Manifest number: 03A0 Signing time: Fri 19 Sep 2025 01:10:32 +0000 Manifest this update: Fri 19 Sep 2025 01:10:31 +0000 Manifest next update: Fri 26 Sep 2025 01:10:31 +0000 Files and hashes: 1: 2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl (hash: 0cRkogbkU2MlqXMZg0JTuBUCPXHTCD6rq5ql5Rsv4dE=) 2: E5B25D84B0D211ECB7B1BA7DC4F9AE02.roa (hash: 5JeHEtG1xdKCrCH6rPS3zOfVRTqBs2fv9GJfMUQ9NfQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 01:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 934 (0x3a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1C7F, serialNumber=DAB4A52A8EC1AAD6C9252EEA4D5D1569D27AF46B Validity Not Before: Sep 19 01:10:31 2025 GMT Not After : Sep 26 01:10:31 2025 GMT Subject: CN=68ccad88-9379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f4:e7:d7:50:ae:4e:de:b7:59:5f:f9:27:70: 47:3f:49:a1:b5:ce:c1:ff:40:f8:09:f3:0b:3f:d4: ed:ec:b2:fc:5d:50:31:0d:72:d2:40:c0:4b:79:4c: 28:d1:9b:39:99:30:90:7f:b8:27:aa:c4:ef:a8:2b: 5e:f3:9a:3d:b5:a2:d6:b8:0a:73:99:38:57:46:c3: 42:52:e4:26:8b:3d:ca:e4:f1:1e:d9:d5:5a:bd:fb: 74:69:b5:30:b9:73:23:e3:94:7e:df:c6:30:d7:a7: 1d:d8:8f:56:c3:55:34:72:32:e2:26:92:16:cb:06: 39:83:6c:00:d7:c1:2d:32:8f:d8:d2:d1:f3:3d:ed: 06:c7:5b:53:63:0b:8d:1f:40:2c:a8:fb:b3:6b:22: 1b:0d:69:2e:88:df:96:23:a2:55:e1:40:82:db:5b: 75:fc:2f:20:97:3d:73:f8:8a:29:62:5a:e1:dc:c6: e9:a0:45:97:de:69:3c:c8:82:4f:11:d3:f6:bb:bc: 6a:6f:e7:88:f5:81:d0:16:bd:29:87:55:33:2b:8c: a6:7a:71:5b:69:33:08:9d:bc:4b:ef:47:95:68:a7: 3d:aa:6d:8a:9b:d3:46:25:99:bc:2c:1a:4f:f9:57: 08:ed:40:19:1d:02:07:38:6b:66:38:8e:46:b3:d2: dd:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:08:0B:52:52:34:99:2F:C4:D3:4E:61:C9:67:E6:8C:21:12:45:DE X509v3 Authority Key Identifier: keyid:DA:B4:A5:2A:8E:C1:AA:D6:C9:25:2E:EA:4D:5D:15:69:D2:7A:F4:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rSlKo7BqtbJJS7qTV0VadJ69Gs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1C7F/091E1EAAB0D011ECBB04A378C4F9AE02/2rSlKo7BqtbJJS7qTV0VadJ69Gs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:80:87:39:12:6e:93:bb:94:75:55:2e:12:f1:09:fd:d3:b9: 67:de:af:c1:ce:0a:d9:7c:94:af:bd:7e:93:fb:9f:8e:a1:b0: 17:98:10:41:82:83:d2:3d:06:dc:13:87:75:81:de:66:81:8f: 0b:58:40:91:bd:fc:1d:91:5d:21:e7:62:c4:95:95:1a:a9:33: 0f:9a:b8:e5:86:c1:a4:9d:a8:69:2f:6c:81:08:80:c0:de:f9: e3:9a:7e:a1:1f:da:57:4f:24:0a:60:b0:72:c4:4f:1c:88:94: eb:4b:78:3b:21:cc:46:53:08:a1:25:61:ea:0b:b2:64:8c:c7: b8:bb:ad:26:4c:34:ed:d1:bd:7a:7f:67:f1:93:f0:23:c7:19: 45:3d:22:1d:d5:c8:91:72:2e:a4:b7:83:50:e1:a6:7e:be:97: ee:4d:6e:be:99:19:39:2a:0e:93:25:82:af:c5:56:36:3f:44: 80:8e:c6:e2:67:0f:9d:24:60:63:21:09:16:17:44:bd:e0:07: 73:88:5f:83:ae:d3:7e:23:87:0c:c3:6c:a6:63:91:e7:c5:ac: 71:02:74:eb:d1:9a:ec:31:93:87:23:dc:67:3e:e5:e7:c7:e4: 7d:7b:e6:e1:03:b4:65:cb:ae:0d:46:eb:54:0a:d4:8e:65:e8: 24:67:59:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFDN0YxMTAvBgNVBAUTKERBQjRBNTJBOEVDMUFBRDZDOTI1MkVFQTRENUQxNTY5 RDI3QUY0NkIwHhcNMjUwOTE5MDExMDMxWhcNMjUwOTI2MDExMDMxWjAYMRYwFAYD VQQDEw02OGNjYWQ4OC05Mzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPTn11CuTt63WV/5J3BHP0mhtc7B/0D4CfMLP9Tt7LL8XVAxDXLSQMBLeUwo 0Zs5mTCQf7gnqsTvqCte85o9taLWuApzmThXRsNCUuQmiz3K5PEe2dVavft0abUw uXMj45R+38Yw16cd2I9Ww1U0cjLiJpIWywY5g2wA18EtMo/Y0tHzPe0Gx1tTYwuN H0AsqPuzayIbDWkuiN+WI6JV4UCC21t1/C8glz1z+IopYlrh3MbpoEWX3mk8yIJP EdP2u7xqb+eI9YHQFr0ph1UzK4ymenFbaTMInbxL70eVaKc9qm2Km9NGJZm8LBpP +VcI7UAZHQIHOGtmOI5Gs9LdVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCMIC1JS NJkvxNNOYcln5owhEkXeMB8GA1UdIwQYMBaAFNq0pSqOwarWySUu6k1dFWnSevRr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUM3Ri8wOTFFMUVBQUIw RDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0YkpKUzdxVFYwVmFkSjY5 R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyU2xLbzdCcXRiSkpTN3FUVjBWYWRKNjlHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MUM3Ri8wOTFFMUVBQUIwRDAxMUVDQkIwNEEzNzhDNEY5QUUwMi8yclNsS283QnF0 YkpKUzdxVFYwVmFkSjY5R3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLgIc5Em6Tu5R1VS4S8Qn907ln3q/BzgrZfJSvvX6T+5+OobAXmBBB goPSPQbcE4d1gd5mgY8LWECRvfwdkV0h52LElZUaqTMPmrjlhsGknahpL2yBCIDA 3vnjmn6hH9pXTyQKYLByxE8ciJTrS3g7IcxGUwihJWHqC7JkjMe4u60mTDTt0b16 f2fxk/AjxxlFPSId1ciRci6kt4NQ4aZ+vpfuTW6+mRk5Kg6TJYKvxVY2P0SAjsbi Zw+dJGBjIQkWF0S94AdziF+DrtN+I4cMw2ymY5HnxaxxAnTr0ZrsMZOHI9xnPuXn x+R9e+bhA7Rly64NRutUCtSOZegkZ1kU -----END CERTIFICATE-----Generated at Fri Sep 19 06:55:55 2025 by rpki-client