$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft File: cn1G1OfHecpnYSxgtGVS68IZkPs.mft (raw, json) Hash identifier: bxKHYyyTR/xizymBp26j/vu91Xhw6mLSzA1NSj3Hu54= Subject key identifier: EF:E9:69:68:7E:69:EC:B1:F0:B8:A1:C4:1C:D4:D2:BF:AB:FF:68:D8 Authority key identifier: 72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB Certificate issuer: /CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Certificate serial: 048A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft Manifest number: 0485 Signing time: Fri 19 Sep 2025 00:25:07 +0000 Manifest this update: Fri 19 Sep 2025 00:25:06 +0000 Manifest next update: Fri 26 Sep 2025 00:25:06 +0000 Files and hashes: 1: cn1G1OfHecpnYSxgtGVS68IZkPs.crl (hash: Arqjawb+icHWYLCzqOTtOh1IlAj2UkS9hatKI+UzpI0=) 2: A9E2BE54567B11ECB346816BC4F9AE02.roa (hash: 6npCQGD8mKRcXKLy4jKCYWBhRpmmG05TZblrhBE83zM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 00:25:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1162 (0x48a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4D97, serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Validity Not Before: Sep 19 00:25:06 2025 GMT Not After : Sep 26 00:25:06 2025 GMT Subject: CN=68cca2e2-99ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:45:24:65:0d:a9:e7:a1:ae:7b:3c:80:cd:7e: 7e:66:af:2f:5a:67:ed:67:98:b9:b5:08:0a:a4:2a: 1f:d4:a9:d9:1f:8c:cf:dd:64:37:1d:b8:17:e5:69: c6:c5:6a:b5:91:2a:27:ad:86:88:9d:45:e2:bc:ae: ac:d4:eb:c1:74:e1:cc:b4:a1:14:a8:6f:7d:e4:00: ba:57:4d:49:e3:ef:af:11:82:1e:7d:4d:05:4c:a0: ce:cf:29:6e:1e:78:96:0a:71:01:3c:99:48:93:8b: bc:0a:e3:c2:fb:b8:b7:a6:c1:62:e4:9b:4c:13:9c: c1:5a:1a:f5:d1:11:ac:45:b7:15:86:a3:28:f9:33: 67:6a:6a:b4:38:85:40:a8:c7:ed:65:29:c4:62:97: bb:17:1f:ad:78:f5:30:d1:b7:91:47:b8:83:ff:cc: 83:2f:cf:90:f3:74:c0:85:ff:d6:dd:4c:7b:e6:66: 44:f7:1d:97:95:3b:a8:c4:0b:fd:45:ad:07:eb:8e: d5:be:bd:b2:9f:4c:88:1f:3b:e3:75:0a:54:71:d0: fe:73:45:97:2e:13:70:59:2f:15:52:37:7f:61:7a: 16:f1:a5:1b:8c:1e:3d:5c:97:3d:43:c6:24:45:32: 04:d1:3d:b4:48:62:85:51:23:1c:b6:50:a2:b8:24: 4b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:E9:69:68:7E:69:EC:B1:F0:B8:A1:C4:1C:D4:D2:BF:AB:FF:68:D8 X509v3 Authority Key Identifier: keyid:72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:90:58:30:3b:af:6c:fa:1d:99:a4:01:00:e6:35:26:fa:8b: a3:ef:88:5d:99:5a:00:fa:cd:ac:5c:b0:ae:76:5e:a3:ed:8c: 4b:c1:4b:ef:5b:45:17:05:9c:cc:99:59:9e:cb:77:47:da:a8: bc:02:2b:4e:48:63:3e:50:22:cf:8c:a2:e8:4f:f0:2e:88:a3: f4:f1:5d:fa:e7:9a:ac:c5:90:47:a9:14:56:4e:36:55:3e:35: 58:ef:92:8e:bb:fa:11:45:ff:e8:63:9f:0c:3f:f3:12:2a:e1: d7:e6:7d:f6:f4:15:54:ca:be:44:4d:4b:78:61:64:94:49:a2: b9:fe:a2:9c:a4:23:57:4b:a2:ba:48:ff:cc:19:8d:97:dc:e3: fe:2c:29:4f:1e:46:a0:f6:29:bf:1e:97:9a:68:fd:74:5a:4c: e0:70:cb:c9:29:8f:e4:e7:93:a2:42:b8:91:ee:26:9a:01:d8: 20:56:ce:81:29:95:83:79:e4:94:d4:7a:d1:96:aa:3c:7a:0d: d1:cd:8c:b7:76:af:4a:77:bc:32:a1:13:2f:ab:9a:29:14:1c: 17:7e:41:93:54:da:7b:ea:07:5a:74:e4:66:ff:90:d1:b5:7f: 9b:e8:22:35:ef:f5:12:28:0e:30:74:d9:f8:37:2e:ca:1c:d3: bb:53:c1:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREOTcxMTAvBgNVBAUTKDcyN0Q0NkQ0RTdDNzc5Q0E2NzYxMkM2MEI0NjU1MkVC QzIxOTkwRkIwHhcNMjUwOTE5MDAyNTA2WhcNMjUwOTI2MDAyNTA2WjAYMRYwFAYD VQQDEw02OGNjYTJlMi05OWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0UkZQ2p56GuezyAzX5+Zq8vWmftZ5i5tQgKpCof1KnZH4zP3WQ3HbgX5WnG xWq1kSonrYaInUXivK6s1OvBdOHMtKEUqG995AC6V01J4++vEYIefU0FTKDOzylu HniWCnEBPJlIk4u8CuPC+7i3psFi5JtME5zBWhr10RGsRbcVhqMo+TNnamq0OIVA qMftZSnEYpe7Fx+tePUw0beRR7iD/8yDL8+Q83TAhf/W3Ux75mZE9x2XlTuoxAv9 Ra0H647Vvr2yn0yIHzvjdQpUcdD+c0WXLhNwWS8VUjd/YXoW8aUbjB49XJc9Q8Yk RTIE0T20SGKFUSMctlCiuCRLRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO/paWh+ aeyx8LihxBzU0r+r/2jYMB8GA1UdIwQYMBaAFHJ9RtTnx3nKZ2EsYLRlUuvCGZD7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEQ5Ny8xRjYxNDZFMDU2 NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVjcG5ZU3hndEdWUzY4SVpr UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuMUcxT2ZIZWNwbllTeGd0R1ZTNjhJWmtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEQ5Ny8xRjYxNDZFMDU2NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVj cG5ZU3hndEdWUzY4SVprUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMkFgwO69s+h2ZpAEA5jUm+ouj74hdmVoA+s2sXLCudl6j7YxLwUvv W0UXBZzMmVmey3dH2qi8AitOSGM+UCLPjKLoT/AuiKP08V3655qsxZBHqRRWTjZV PjVY75KOu/oRRf/oY58MP/MSKuHX5n329BVUyr5ETUt4YWSUSaK5/qKcpCNXS6K6 SP/MGY2X3OP+LClPHkag9im/HpeaaP10WkzgcMvJKY/k55OiQriR7iaaAdggVs6B KZWDeeSU1HrRlqo8eg3RzYy3dq9Kd7wyoRMvq5opFBwXfkGTVNp76gdadORm/5DR tX+b6CI17/USKA4wdNn4Ny7KHNO7U8Ge -----END CERTIFICATE-----Generated at Fri Sep 19 09:08:13 2025 by rpki-client