$ rpki-client -vvf rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft File: 10XhyGsYGPfQVj-Q6LoSvosa43g.mft (raw, json) Hash identifier: 7rabIYBJ2Oov79WF2QGZl8aGav5vKN9ZEmMAnu1Tkao= Subject key identifier: 48:13:5D:A5:BB:D8:AC:B9:71:51:90:B1:D4:4D:64:49:35:AD:C6:39 Authority key identifier: D7:45:E1:C8:6B:18:18:F7:D0:56:3F:90:E8:BA:12:BE:8B:1A:E3:78 Certificate issuer: /CN=A91D97C4/serialNumber=D745E1C86B1818F7D0563F90E8BA12BE8B1AE378 Certificate serial: 0191 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft Manifest number: 018D Signing time: Wed 17 Sep 2025 04:05:36 +0000 Manifest this update: Wed 17 Sep 2025 04:05:35 +0000 Manifest next update: Wed 24 Sep 2025 04:05:35 +0000 Files and hashes: 1: 10XhyGsYGPfQVj-Q6LoSvosa43g.crl (hash: tRkE+h+wPwei5jVPfWJqc1YNwSsp1+rvpPyTPXUghVQ=) 2: 12DD779467A211EEA8239268C4F9AE02.roa (hash: tXyHZWiyLccCa4dm7RkGGfRei0ZIky7sg5whsG/aUrg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.crl rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:05:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D97C4, serialNumber=D745E1C86B1818F7D0563F90E8BA12BE8B1AE378 Validity Not Before: Sep 17 04:05:35 2025 GMT Not After : Sep 24 04:05:35 2025 GMT Subject: CN=68ca338f-d4c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:7e:e9:83:d2:d3:b7:96:9e:8b:c8:30:e1:58: 80:c9:1d:2e:4b:3e:7a:90:b4:37:d7:d5:45:ab:8b: 8f:44:e3:17:be:18:f7:73:e9:4b:37:47:ac:0e:4c: a9:37:b8:a2:9c:96:38:03:2b:03:4f:5c:7b:94:e2: 99:e7:f4:c1:d6:c9:9c:e1:a9:8a:1f:c6:ab:45:74: 54:18:68:6c:ea:f0:f3:bb:96:a8:9d:a4:00:41:50: ea:16:69:a3:f2:31:19:da:3d:84:6b:c2:3d:10:cd: 9b:7b:c3:90:0f:29:b4:c9:5c:36:2a:56:4f:1c:cc: ec:94:a9:8e:d2:1a:7a:24:be:3f:a6:ff:81:a0:b7: 58:3a:5b:44:39:00:6e:49:e8:78:e1:96:96:7c:9d: 44:c4:01:91:52:04:9d:e7:af:86:26:26:45:23:e4: 95:ac:75:e3:88:81:bf:2d:0a:c7:88:ae:ea:74:40: a2:b9:13:fd:d4:86:71:60:d7:32:79:1d:17:69:23: 56:84:66:7f:25:b4:02:ee:cd:7d:80:5b:30:fd:00: 39:03:82:e5:ab:e8:6d:41:22:77:d3:94:2e:56:df: d8:9a:29:bc:6d:47:92:e3:10:c1:d2:88:f9:63:5d: f5:a2:eb:9d:5b:40:8a:71:37:c7:4c:d6:4b:8f:fe: 9a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:13:5D:A5:BB:D8:AC:B9:71:51:90:B1:D4:4D:64:49:35:AD:C6:39 X509v3 Authority Key Identifier: keyid:D7:45:E1:C8:6B:18:18:F7:D0:56:3F:90:E8:BA:12:BE:8B:1A:E3:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10XhyGsYGPfQVj-Q6LoSvosa43g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D97C4/C63DF2003C6411EEBCAC5170C4F9AE02/10XhyGsYGPfQVj-Q6LoSvosa43g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:0f:cf:b8:ee:6e:a9:c1:04:fb:ff:0d:6d:ce:85:c6:ee:13: 35:d0:f9:f6:c9:9c:a5:ff:9c:5f:97:92:55:4c:b1:84:58:81: 71:63:19:f9:67:95:38:b3:7f:02:80:71:b4:67:f5:25:89:3f: ca:50:4c:3d:16:de:56:d1:cf:7d:7f:7b:16:28:7f:89:b7:cc: ca:6d:e6:1d:de:b8:5e:fa:77:7d:f1:bc:40:6f:21:ea:6b:d9: d6:eb:82:2e:53:ab:ae:f7:0c:5b:d7:3d:62:6e:40:ef:7d:3a: de:85:0a:88:36:46:af:48:0a:46:33:63:09:24:ba:4a:5c:bc: 2e:44:df:e3:09:7a:1e:66:fa:49:6e:80:7d:4c:2d:2a:87:98: ad:3c:30:2b:25:29:6c:3a:1a:55:20:d5:9a:f1:30:12:f4:bf: c6:d9:c5:ac:4a:90:48:db:17:24:85:69:eb:e4:98:1f:e4:0c: 17:3a:18:7d:58:fa:86:63:bf:99:93:65:c2:16:4e:f1:32:3a: 08:ee:c7:d5:d9:a1:0d:c3:00:e0:53:46:19:92:b4:61:6a:4f: 2f:98:95:cd:a0:6e:36:6b:33:f8:2f:b3:23:7c:1e:3b:e7:19: 1e:da:68:c6:dc:02:1d:c8:0c:78:36:09:c8:97:b1:42:6b:b7: f5:89:fc:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk3QzQxMTAvBgNVBAUTKEQ3NDVFMUM4NkIxODE4RjdEMDU2M0Y5MEU4QkExMkJF OEIxQUUzNzgwHhcNMjUwOTE3MDQwNTM1WhcNMjUwOTI0MDQwNTM1WjAYMRYwFAYD VQQDEw02OGNhMzM4Zi1kNGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA337pg9LTt5aei8gw4ViAyR0uSz56kLQ319VFq4uPROMXvhj3c+lLN0esDkyp N7iinJY4AysDT1x7lOKZ5/TB1smc4amKH8arRXRUGGhs6vDzu5aonaQAQVDqFmmj 8jEZ2j2Ea8I9EM2be8OQDym0yVw2KlZPHMzslKmO0hp6JL4/pv+BoLdYOltEOQBu Seh44ZaWfJ1ExAGRUgSd56+GJiZFI+SVrHXjiIG/LQrHiK7qdECiuRP91IZxYNcy eR0XaSNWhGZ/JbQC7s19gFsw/QA5A4Llq+htQSJ305QuVt/Ymim8bUeS4xDB0oj5 Y131ouudW0CKcTfHTNZLj/6aIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgTXaW7 2Ky5cVGQsdRNZEk1rcY5MB8GA1UdIwQYMBaAFNdF4chrGBj30FY/kOi6Er6LGuN4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTdDNC9DNjNERjIwMDND NjQxMUVFQkNBQzUxNzBDNEY5QUUwMi8xMFhoeUdzWUdQZlFWai1RNkxvU3Zvc2E0 M2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEwWGh5R3NZR1BmUVZqLVE2TG9Tdm9zYTQzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTdDNC9DNjNERjIwMDNDNjQxMUVFQkNBQzUxNzBDNEY5QUUwMi8xMFhoeUdzWUdQ ZlFWai1RNkxvU3Zvc2E0M2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcD8+47m6pwQT7/w1tzoXG7hM10Pn2yZyl/5xfl5JVTLGEWIFxYxn5 Z5U4s38CgHG0Z/UliT/KUEw9Ft5W0c99f3sWKH+Jt8zKbeYd3rhe+nd98bxAbyHq a9nW64IuU6uu9wxb1z1ibkDvfTrehQqINkavSApGM2MJJLpKXLwuRN/jCXoeZvpJ boB9TC0qh5itPDArJSlsOhpVINWa8TAS9L/G2cWsSpBI2xckhWnr5Jgf5AwXOhh9 WPqGY7+Zk2XCFk7xMjoI7sfV2aENwwDgU0YZkrRhak8vmJXNoG42azP4L7MjfB47 5xke2mjG3AIdyAx4NgnIl7FCa7f1ifxv -----END CERTIFICATE-----Generated at Fri Sep 19 03:39:32 2025 by rpki-client