$ rpki-client -vvf rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft File: _nzI0SyMuUDQbq7bWwrUPQUDYvE.mft (raw, json) Hash identifier: x5f9mHXYwcCevObCjZLiBMk4F5wvE0aWlVJ2Oidxp1g= Subject key identifier: CD:DD:1E:BB:26:26:5A:57:C4:C2:95:D5:AE:55:18:15:60:6E:CF:AC Authority key identifier: FE:7C:C8:D1:2C:8C:B9:40:D0:6E:AE:DB:5B:0A:D4:3D:05:03:62:F1 Certificate issuer: /CN=A91D404F/serialNumber=FE7CC8D12C8CB940D06EAEDB5B0AD43D050362F1 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft Manifest number: 7D Signing time: Fri 05 Sep 2025 07:11:01 +0000 Manifest this update: Fri 05 Sep 2025 07:11:01 +0000 Manifest next update: Fri 12 Sep 2025 07:11:01 +0000 Files and hashes: 1: _nzI0SyMuUDQbq7bWwrUPQUDYvE.crl (hash: AXKM6zylyjWXrF8dEdHFsZCreuiBaTHYj9TDgwx/cHw=) 2: F943DF74CBF711EFB86EC74FC4F9AE02.roa (hash: OQsiNqk/6UEhG+WoM7b9x1Qk45e1mg8EolKiz0N5DwU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.crl rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:11:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D404F, serialNumber=FE7CC8D12C8CB940D06EAEDB5B0AD43D050362F1 Validity Not Before: Sep 5 07:11:01 2025 GMT Not After : Sep 12 07:11:01 2025 GMT Subject: CN=68ba8d05-0344 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:76:f3:45:18:d0:65:23:30:54:39:82:44:8a: 84:70:79:bb:7d:99:b5:16:bb:de:b7:e7:2c:08:e1: 2b:d6:be:c4:fb:ba:22:42:de:af:32:ac:e4:39:cd: 8a:ad:c1:5b:f0:30:78:ef:4b:bf:d4:ba:f2:d1:27: 6b:5d:fb:24:26:cb:65:ef:ff:df:5c:0b:ca:e7:ba: e4:42:44:31:22:fc:5a:21:7d:b0:ba:33:33:24:f8: 6b:63:d5:63:8a:bd:01:63:d0:44:c7:60:81:f1:ab: 08:9b:67:f3:b9:eb:14:31:28:e1:aa:d1:99:43:97: 23:a3:00:e9:61:75:64:b4:a3:d3:f9:c2:fd:3b:00: e9:62:9b:ad:e9:1d:ac:30:d9:4b:1f:6d:9a:71:08: 09:4f:2d:71:57:62:fa:a6:11:5f:38:96:b0:ec:63: ab:fb:5d:34:fe:11:a7:05:47:15:fd:4a:2a:5d:5e: 56:7f:1f:e8:50:ef:3f:24:ee:7f:eb:6e:86:b2:2e: 11:de:81:a9:a4:16:43:9e:a9:dc:80:16:ca:88:83: ec:59:cc:eb:82:a9:81:77:1b:44:5b:f2:70:0d:86: ad:2d:91:bd:9e:a5:ce:9a:eb:9d:77:96:58:84:d2: d9:7f:14:56:10:13:3b:d2:da:5d:40:5f:71:40:df: 6f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:DD:1E:BB:26:26:5A:57:C4:C2:95:D5:AE:55:18:15:60:6E:CF:AC X509v3 Authority Key Identifier: keyid:FE:7C:C8:D1:2C:8C:B9:40:D0:6E:AE:DB:5B:0A:D4:3D:05:03:62:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_nzI0SyMuUDQbq7bWwrUPQUDYvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D404F/D5D0FEB4CBF711EF869C904FC4F9AE02/_nzI0SyMuUDQbq7bWwrUPQUDYvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:16:16:c2:87:4f:cd:ad:39:4f:f9:56:4a:f3:78:8d:85:74: 30:e0:34:41:65:a4:bf:a9:2f:43:eb:6e:77:fc:41:93:c1:7e: 96:50:b4:d4:22:05:27:c9:a6:25:a7:08:37:45:0b:a6:e4:48: 7a:6c:c0:9e:89:9b:5e:f3:ed:6b:c3:6a:6c:d4:77:2b:64:e4: b0:c2:3a:31:47:91:f9:7d:43:5a:ed:27:2e:02:ee:05:4f:f0: 9d:75:3e:1d:21:90:b1:c0:8f:3f:45:b8:d5:40:ca:96:02:df: b2:ec:c7:5a:ab:f7:c1:5f:ec:58:13:6e:b8:cb:ed:fd:ea:9b: 6d:41:05:92:41:0d:9b:3c:43:96:84:c6:09:21:64:1f:e0:d9: 48:25:78:61:51:d5:de:ff:a9:c9:80:f2:7f:53:95:86:ef:a5: 10:af:f2:04:37:2e:31:d7:f8:7f:ff:aa:6a:60:55:fa:d2:3d: 8c:e4:44:83:df:13:73:6d:16:76:4f:cd:46:e4:f4:cc:bc:13: cf:7b:de:8c:5e:47:4a:f4:cb:ef:05:c4:50:c0:95:24:c7:b6: ef:32:c3:ef:1e:5a:a7:bc:37:6f:f4:72:7f:f7:ce:61:e6:49: 1f:36:cf:47:dc:26:80:84:a6:2e:6b:a2:82:6b:26:f4:a1:50: 2b:a6:89:ab -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDA0RjExMC8GA1UEBRMoRkU3Q0M4RDEyQzhDQjk0MEQwNkVBRURCNUIwQUQ0M0Qw NTAzNjJGMTAeFw0yNTA5MDUwNzExMDFaFw0yNTA5MTIwNzExMDFaMBgxFjAUBgNV BAMTDTY4YmE4ZDA1LTAzNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDddvNFGNBlIzBUOYJEioRwebt9mbUWu9635ywI4SvWvsT7uiJC3q8yrOQ5zYqt wVvwMHjvS7/UuvLRJ2td+yQmy2Xv/99cC8rnuuRCRDEi/FohfbC6MzMk+Gtj1WOK vQFj0ETHYIHxqwibZ/O56xQxKOGq0ZlDlyOjAOlhdWS0o9P5wv07AOlim63pHaww 2UsfbZpxCAlPLXFXYvqmEV84lrDsY6v7XTT+EacFRxX9SipdXlZ/H+hQ7z8k7n/r boayLhHegamkFkOeqdyAFsqIg+xZzOuCqYF3G0Rb8nANhq0tkb2epc6a6513lliE 0tl/FFYQEzvS2l1AX3FA329VAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzd0euyYm WlfEwpXVrlUYFWBuz6wwHwYDVR0jBBgwFoAU/nzI0SyMuUDQbq7bWwrUPQUDYvEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0MDRGL0Q1RDBGRUI0Q0JG NzExRUY4NjlDOTA0RkM0RjlBRTAyL19uekkwU3lNdVVEUWJxN2JXd3JVUFFVRFl2 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvX256STBTeU11VURRYnE3Yld3clVQUVVEWXZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0 MDRGL0Q1RDBGRUI0Q0JGNzExRUY4NjlDOTA0RkM0RjlBRTAyL19uekkwU3lNdVVE UWJxN2JXd3JVUFFVRFl2RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIUWFsKHT82tOU/5VkrzeI2FdDDgNEFlpL+pL0Prbnf8QZPBfpZQtNQi BSfJpiWnCDdFC6bkSHpswJ6Jm17z7WvDamzUdytk5LDCOjFHkfl9Q1rtJy4C7gVP 8J11Ph0hkLHAjz9FuNVAypYC37Lsx1qr98Ff7FgTbrjL7f3qm21BBZJBDZs8Q5aE xgkhZB/g2UgleGFR1d7/qcmA8n9TlYbvpRCv8gQ3LjHX+H//qmpgVfrSPYzkRIPf E3NtFnZPzUbk9My8E8973oxeR0r0y+8FxFDAlSTHtu8yw+8eWqe8N2/0cn/3zmHm SR82z0fcJoCEpi5rooJrJvShUCumias= -----END CERTIFICATE-----Generated at Sat Sep 6 21:13:23 2025 by rpki-client