$ rpki-client -vvf rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft File: -rpT9D2gDiGn6veS1I_bdpV6gLw.mft (raw, json) Hash identifier: LwyC5pfZdyveQiPT8InVfEHkCsjKD61h/9SCHOXH1hA= Subject key identifier: C9:86:7D:0D:83:0D:E2:FE:F4:03:5D:BC:DA:75:50:91:A9:24:D6:83 Authority key identifier: FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC Certificate issuer: /CN=A91D25E5/serialNumber=FABA53F43DA00E21A7EAF792D48FDB76957A80BC Certificate serial: 0662 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft Manifest number: 065C Signing time: Thu 18 Sep 2025 22:52:43 +0000 Manifest this update: Thu 18 Sep 2025 22:52:43 +0000 Manifest next update: Thu 25 Sep 2025 22:52:43 +0000 Files and hashes: 1: -rpT9D2gDiGn6veS1I_bdpV6gLw.crl (hash: U+u1cj5DlthVaZdVAIUJ4dSWIEv7qgYluAza+FgLbZ0=) 2: EB8DE9B49B6411EBA08FBE84C4F9AE02.roa (hash: u94MQjoE9DI5ldBDPfqmoxt1XvvR3zVSKElHRq9GZVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.crl rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:52:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1634 (0x662) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D25E5, serialNumber=FABA53F43DA00E21A7EAF792D48FDB76957A80BC Validity Not Before: Sep 18 22:52:43 2025 GMT Not After : Sep 25 22:52:43 2025 GMT Subject: CN=68cc8d3b-96bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:92:d1:21:0c:7a:08:a5:f9:3c:b1:f9:a7:c5: 1f:ba:34:e9:69:a9:60:32:98:f5:7e:72:07:0c:8f: 37:43:4d:fc:65:bc:3a:0f:d1:55:88:05:22:0c:30: b5:69:49:c2:df:49:5c:54:ad:54:16:0a:e5:7c:04: a2:40:19:41:dc:89:b2:1c:79:24:00:ec:7c:dc:e1: ec:56:4e:3b:c8:96:33:14:26:ee:9a:6e:21:86:18: 09:6f:f2:69:f4:53:33:fa:46:82:0f:65:a5:12:95: 34:51:07:bc:53:19:a3:2b:54:17:74:fe:65:e5:6c: 12:c6:71:f5:2b:46:3d:29:2d:31:d0:17:43:ae:81: 4b:a5:25:b1:50:43:38:39:52:9f:1c:80:83:39:67: df:8c:7b:0d:ba:1d:ac:cd:da:47:f9:5c:56:d4:ab: c2:ae:ca:a8:71:fb:8a:bd:12:6c:16:63:f8:19:76: 34:f8:e7:3d:dd:37:d2:e9:cb:14:4c:6f:2d:31:24: cd:87:38:e0:cc:86:58:51:76:9a:3c:87:a2:65:33: 85:ef:2a:db:2e:1f:29:cd:9e:af:40:0d:d1:94:72: ef:37:e6:cc:33:6c:5f:6b:27:46:29:7e:7c:55:9d: 9d:64:8e:00:42:a9:b1:0a:ff:fa:67:a2:22:cd:28: 27:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:86:7D:0D:83:0D:E2:FE:F4:03:5D:BC:DA:75:50:91:A9:24:D6:83 X509v3 Authority Key Identifier: keyid:FA:BA:53:F4:3D:A0:0E:21:A7:EA:F7:92:D4:8F:DB:76:95:7A:80:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-rpT9D2gDiGn6veS1I_bdpV6gLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D25E5/ECBF00E89B4B11EB9730A154C4F9AE02/-rpT9D2gDiGn6veS1I_bdpV6gLw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:78:98:f4:ed:a2:5c:90:4a:45:ac:70:e7:19:e6:b4:a3:68: 0c:f0:33:e3:ff:1f:06:78:85:51:d1:e0:a0:6f:42:15:5e:67: 97:93:66:72:56:1a:c8:6e:76:63:49:38:e1:92:8c:b9:10:84: db:ad:3f:12:17:f8:18:e2:e0:16:49:72:c8:cd:c4:1c:56:ad: f6:47:33:ec:03:05:53:e0:cd:a4:6f:44:ca:12:1f:21:60:8d: a8:80:40:36:96:73:87:eb:c2:b5:a4:4e:74:b7:20:86:a6:a5: b5:ad:bb:2b:b4:06:9a:01:e6:d6:43:7e:cd:5c:ab:a4:57:4f: fc:38:ed:47:f2:84:5b:2c:f3:b7:aa:80:b4:de:d1:5e:4a:36: 33:42:25:c8:52:a2:3e:71:a5:0b:28:7d:3d:2e:c0:33:3c:dc: 3c:86:b9:9c:aa:a6:ec:05:89:e7:3d:ea:63:ef:70:72:c1:89: b4:8f:ff:6a:d7:94:12:8d:8f:b7:99:7f:26:31:e7:b5:2f:6d: 6b:dc:86:3e:68:be:2d:86:7c:a5:a8:84:78:c1:1a:fd:6b:9b: f1:09:3a:87:2b:a9:4f:76:7e:8a:06:47:c9:dd:98:b3:86:77: d1:87:2a:5a:a2:f1:98:19:37:1d:bd:58:23:bc:dc:9b:bf:ea: 5e:40:ab:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI1RTUxMTAvBgNVBAUTKEZBQkE1M0Y0M0RBMDBFMjFBN0VBRjc5MkQ0OEZEQjc2 OTU3QTgwQkMwHhcNMjUwOTE4MjI1MjQzWhcNMjUwOTI1MjI1MjQzWjAYMRYwFAYD VQQDEw02OGNjOGQzYi05NmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5LRIQx6CKX5PLH5p8UfujTpaalgMpj1fnIHDI83Q038Zbw6D9FViAUiDDC1 aUnC30lcVK1UFgrlfASiQBlB3ImyHHkkAOx83OHsVk47yJYzFCbumm4hhhgJb/Jp 9FMz+kaCD2WlEpU0UQe8UxmjK1QXdP5l5WwSxnH1K0Y9KS0x0BdDroFLpSWxUEM4 OVKfHICDOWffjHsNuh2szdpH+VxW1KvCrsqocfuKvRJsFmP4GXY0+Oc93TfS6csU TG8tMSTNhzjgzIZYUXaaPIeiZTOF7yrbLh8pzZ6vQA3RlHLvN+bMM2xfaydGKX58 VZ2dZI4AQqmxCv/6Z6IizSgn2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMmGfQ2D DeL+9ANdvNp1UJGpJNaDMB8GA1UdIwQYMBaAFPq6U/Q9oA4hp+r3ktSP23aVeoC8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjVFNS9FQ0JGMDBFODlC NEIxMUVCOTczMEExNTRDNEY5QUUwMi8tcnBUOUQyZ0RpR242dmVTMUlfYmRwVjZn THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ycFQ5RDJnRGlHbjZ2ZVMxSV9iZHBWNmdMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjVFNS9FQ0JGMDBFODlCNEIxMUVCOTczMEExNTRDNEY5QUUwMi8tcnBUOUQyZ0Rp R242dmVTMUlfYmRwVjZnTHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmeJj07aJckEpFrHDnGea0o2gM8DPj/x8GeIVR0eCgb0IVXmeXk2Zy VhrIbnZjSTjhkoy5EITbrT8SF/gY4uAWSXLIzcQcVq32RzPsAwVT4M2kb0TKEh8h YI2ogEA2lnOH68K1pE50tyCGpqW1rbsrtAaaAebWQ37NXKukV0/8OO1H8oRbLPO3 qoC03tFeSjYzQiXIUqI+caULKH09LsAzPNw8hrmcqqbsBYnnPepj73BywYm0j/9q 15QSjY+3mX8mMee1L21r3IY+aL4thnylqIR4wRr9a5vxCTqHK6lPdn6KBkfJ3Ziz hnfRhypaovGYGTcdvVgjvNybv+peQKvV -----END CERTIFICATE-----Generated at Fri Sep 19 10:56:52 2025 by rpki-client