$ rpki-client -vvf rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft File: Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft (raw, json) Hash identifier: MnXIE2VdCOAZ1s8BjItB9zJ1AOrtNSWLklAAXge1fKU= Subject key identifier: 2D:52:B9:F0:64:C1:ED:D1:7B:90:5C:5A:A3:6A:47:5D:21:0B:7B:72 Authority key identifier: 0D:AF:4F:1A:C5:81:98:93:1A:D5:C0:00:7F:52:55:A7:9D:D0:E4:C7 Certificate issuer: /CN=A91D462A/serialNumber=0DAF4F1AC58198931AD5C0007F5255A79DD0E4C7 Certificate serial: D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft Manifest number: CF Signing time: Thu 04 Sep 2025 16:28:14 +0000 Manifest this update: Thu 04 Sep 2025 16:28:13 +0000 Manifest next update: Thu 11 Sep 2025 16:28:13 +0000 Files and hashes: 1: Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl (hash: 0MFwJyfUmQZ2iijZpBuPOw+MaCx+nk2Nl69zCUTNbko=) 2: D5BFBE9E591811EF80AA9F21C4F9AE02.roa (hash: Be1e/Cdz8VdYcqGFGYCyAGRq8xP47qVzQCL7lbjwbsc=) 3: 626CA672591911EFAF1F1D23C4F9AE02.roa (hash: qW4tv57PdJFsLgd8tlpnpMjIsJF0H5vXkIX6yK4Jq7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 16:28:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D462A, serialNumber=0DAF4F1AC58198931AD5C0007F5255A79DD0E4C7 Validity Not Before: Sep 4 16:28:13 2025 GMT Not After : Sep 11 16:28:13 2025 GMT Subject: CN=68b9be1e-93e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:16:46:fb:3d:9c:fd:4d:a7:b1:db:28:6d:5f: 60:97:ab:a2:6b:7c:74:5b:cc:ca:9b:fd:50:6f:9c: 46:96:82:71:01:87:2e:4d:a3:dc:08:e6:a6:3e:bf: d9:9b:af:38:25:96:94:ec:a6:29:52:ac:5c:37:6c: c3:ae:64:f6:da:73:e6:2d:17:82:23:f1:78:4b:8f: 34:42:39:3e:df:74:0f:43:f9:10:92:9c:22:48:ac: 47:19:a8:a6:ee:61:fb:64:67:17:bd:be:34:ee:c3: be:94:60:28:84:d5:d1:06:f6:cf:e2:3e:3d:1d:97: e3:0a:98:f5:82:ff:b4:bc:6b:40:60:2a:e9:88:2d: f1:39:26:28:70:35:67:f2:78:92:81:bb:6e:d9:11: ab:c5:ef:17:14:b0:c5:c9:8c:e2:80:2a:60:ce:39: cd:ee:27:c7:84:c2:a9:10:89:25:7f:73:23:4e:62: 73:e1:45:1a:43:2c:9a:ea:40:13:89:bb:32:dc:04: f2:30:e6:9c:b8:cf:c7:f0:16:da:01:85:b9:d1:9f: f6:96:68:5e:f0:c0:f9:d6:ff:4a:aa:a9:56:ad:49: 5a:35:cf:8c:c2:90:63:50:1b:77:de:0e:26:d8:58: fb:e9:a7:d1:cd:fc:94:9d:28:ac:79:23:7a:7a:a6: 5a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:52:B9:F0:64:C1:ED:D1:7B:90:5C:5A:A3:6A:47:5D:21:0B:7B:72 X509v3 Authority Key Identifier: keyid:0D:AF:4F:1A:C5:81:98:93:1A:D5:C0:00:7F:52:55:A7:9D:D0:E4:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D462A/4EBA846E585611EF9414455FC4F9AE02/Da9PGsWBmJMa1cAAf1JVp53Q5Mc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:ca:f1:07:da:51:bf:ad:25:a6:59:0e:41:4b:ff:75:f0:09: 3d:f0:3b:28:a0:90:d7:e8:9c:08:84:cc:8c:5f:60:ea:24:4f: 4e:13:02:a5:fb:c6:69:a3:04:9e:bb:e4:33:a2:5c:79:d1:38: 18:49:cf:40:69:ad:ef:e9:c7:32:97:d4:60:7b:eb:6b:fd:54: bc:b3:a2:da:52:7f:de:c7:8f:37:b7:c8:00:c5:0c:52:ea:65: 3f:95:5d:54:d5:ec:25:f7:ec:fe:f1:74:4b:3c:c4:4e:de:68: 17:5f:85:33:25:c3:40:0d:ad:4d:d4:36:aa:ca:4b:94:1e:e2: 16:96:0d:61:dc:d1:69:fd:db:b8:b6:9c:ba:74:49:fa:f5:bd: 51:1c:4e:4d:73:c0:80:b3:ee:d0:4c:51:be:57:eb:a3:5b:43: 45:ce:a8:18:23:17:22:af:db:96:3d:7b:9b:2e:20:c5:bc:1b: 7c:35:d2:cf:e5:db:19:17:0e:82:e5:65:8e:07:97:3d:74:55: 48:7a:d7:56:fd:28:3f:8a:92:32:5b:de:0c:73:9f:be:7f:1b: 4e:91:26:77:96:8c:cc:57:8b:e1:34:5e:3b:23:29:2d:66:2a: 12:4e:a3:67:d4:25:d2:d7:cf:79:fb:9f:51:2d:21:28:cf:df: b8:39:ce:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2MkExMTAvBgNVBAUTKDBEQUY0RjFBQzU4MTk4OTMxQUQ1QzAwMDdGNTI1NUE3 OUREMEU0QzcwHhcNMjUwOTA0MTYyODEzWhcNMjUwOTExMTYyODEzWjAYMRYwFAYD VQQDEw02OGI5YmUxZS05M2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxZG+z2c/U2nsdsobV9gl6uia3x0W8zKm/1Qb5xGloJxAYcuTaPcCOamPr/Z m684JZaU7KYpUqxcN2zDrmT22nPmLReCI/F4S480Qjk+33QPQ/kQkpwiSKxHGaim 7mH7ZGcXvb407sO+lGAohNXRBvbP4j49HZfjCpj1gv+0vGtAYCrpiC3xOSYocDVn 8niSgbtu2RGrxe8XFLDFyYzigCpgzjnN7ifHhMKpEIklf3MjTmJz4UUaQyya6kAT ibsy3ATyMOacuM/H8BbaAYW50Z/2lmhe8MD51v9KqqlWrUlaNc+MwpBjUBt33g4m 2Fj76afRzfyUnSiseSN6eqZaBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1SufBk we3Re5BcWqNqR10hC3tyMB8GA1UdIwQYMBaAFA2vTxrFgZiTGtXAAH9SVaed0OTH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDYyQS80RUJBODQ2RTU4 NTYxMUVGOTQxNDQ1NUZDNEY5QUUwMi9EYTlQR3NXQm1KTWExY0FBZjFKVnA1M1E1 TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0RhOVBHc1dCbUpNYTFjQUFmMUpWcDUzUTVNYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDYyQS80RUJBODQ2RTU4NTYxMUVGOTQxNDQ1NUZDNEY5QUUwMi9EYTlQR3NXQm1K TWExY0FBZjFKVnA1M1E1TWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqyvEH2lG/rSWmWQ5BS/918Ak98DsooJDX6JwIhMyMX2DqJE9OEwKl +8ZpowSeu+Qzolx50TgYSc9Aaa3v6ccyl9Rge+tr/VS8s6LaUn/ex483t8gAxQxS 6mU/lV1U1ewl9+z+8XRLPMRO3mgXX4UzJcNADa1N1DaqykuUHuIWlg1h3NFp/du4 tpy6dEn69b1RHE5Nc8CAs+7QTFG+V+ujW0NFzqgYIxcir9uWPXubLiDFvBt8NdLP 5dsZFw6C5WWOB5c9dFVIetdW/Sg/ipIyW94Mc5++fxtOkSZ3lozMV4vhNF47Iykt ZioSTqNn1CXS1895+59RLSEoz9+4Oc6H -----END CERTIFICATE-----Generated at Sat Sep 6 16:59:57 2025 by rpki-client