$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft File: 01nlbdoAA8SD861qQMCA6Qy41HI.mft (raw, json) Hash identifier: NwO+Vzd9DfQlC/RtBZqxMaIcQqcR/KOcLfkTuWoknW4= Subject key identifier: 0E:C0:5B:40:41:DA:F2:14:F2:C3:A0:5F:DB:34:4B:BB:83:DD:9B:3D Authority key identifier: D3:59:E5:6D:DA:00:03:C4:83:F3:AD:6A:40:C0:80:E9:0C:B8:D4:72 Certificate issuer: /CN=A91D9B1B/serialNumber=D359E56DDA0003C483F3AD6A40C080E90CB8D472 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft Manifest number: E5 Signing time: Fri 19 Sep 2025 06:03:49 +0000 Manifest this update: Fri 19 Sep 2025 06:03:49 +0000 Manifest next update: Fri 26 Sep 2025 06:03:49 +0000 Files and hashes: 1: 01nlbdoAA8SD861qQMCA6Qy41HI.crl (hash: SQhrB3cCocjwoMDM/ENnJjDlaOViZLl4D/5cNKdnJmU=) 2: 97530E023D0911EFA33E4A38C4F9AE02.roa (hash: pQpO0/PUmsk8Ne8Tm6dn6viR4Yd/Q34ajbz6wbYS9Zc=) 3: 573BE4DE3D0811EF84157B26C4F9AE02.roa (hash: sO/FcuusJDef8Jgb3m4tmdQe6il72ChJ0DAhA0al1Bs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.crl rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 06:03:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9B1B, serialNumber=D359E56DDA0003C483F3AD6A40C080E90CB8D472 Validity Not Before: Sep 19 06:03:49 2025 GMT Not After : Sep 26 06:03:49 2025 GMT Subject: CN=68ccf245-4080 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b3:a6:7e:9a:97:70:d1:a4:65:90:5b:c8:90: 58:b9:02:c1:61:73:9b:c9:4f:f4:6c:c5:ab:c8:07: aa:dd:23:cf:47:0c:52:82:51:12:30:d6:94:1e:8e: a0:52:24:df:7b:a8:25:47:68:3e:41:72:e8:75:b6: 88:4e:df:17:5f:cc:83:7d:d0:4b:fb:05:b7:8f:53: 72:a6:f9:83:db:90:40:09:b5:72:01:f2:4e:3e:50: cf:87:1b:a1:da:a2:49:3b:d3:c5:80:e0:9c:90:c8: 21:17:ae:79:da:08:6c:c8:33:e3:b9:f8:2d:54:e7: 82:07:47:18:3d:8b:d8:74:54:70:86:f6:c2:d4:77: 0f:8d:cb:e2:e6:ab:b1:53:56:f7:16:f3:75:3d:89: 93:08:a4:87:4b:4a:e9:a8:0d:1d:e8:0c:84:ae:6f: db:54:63:79:dc:45:b8:1f:08:59:16:16:12:ea:86: 69:65:21:17:e4:91:e6:d4:ea:d0:0e:b1:a5:01:0c: aa:20:61:96:a3:58:e1:1e:eb:fe:b3:40:4e:90:58: f0:d7:5b:30:5e:c4:ce:99:76:fe:9c:f8:7d:6e:1e: 64:58:c6:6d:d6:ba:ca:e0:48:d9:98:f5:b1:84:60: 5f:fc:8e:3a:1e:2a:d9:57:39:58:4f:65:f7:a5:ad: ce:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:C0:5B:40:41:DA:F2:14:F2:C3:A0:5F:DB:34:4B:BB:83:DD:9B:3D X509v3 Authority Key Identifier: keyid:D3:59:E5:6D:DA:00:03:C4:83:F3:AD:6A:40:C0:80:E9:0C:B8:D4:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/01nlbdoAA8SD861qQMCA6Qy41HI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9B1B/F9FEE0463CF811EFA367C385C4F9AE02/01nlbdoAA8SD861qQMCA6Qy41HI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:52:ca:2c:7c:9d:d5:ad:31:d1:2e:56:11:81:6a:d2:4c:db: 64:67:a9:5f:2f:b6:ee:74:ae:97:f3:bb:c2:f3:08:12:1d:43: 71:76:d7:61:df:1a:93:49:f0:e3:0f:25:97:4b:f0:76:82:96: f6:e6:0f:57:b2:a5:9c:54:87:b7:a2:47:bc:5f:8c:f5:6f:ce: 30:5f:b8:00:7d:42:a6:fe:2f:f5:b8:63:f1:db:64:59:d9:56: b8:fc:28:e3:c9:40:66:95:22:82:53:26:06:b5:3b:8f:d9:9e: a4:2f:60:66:d3:20:62:3e:ed:aa:07:e7:9d:33:8a:f7:85:9d: 51:16:61:dc:60:3b:3a:7a:4d:0d:a9:68:1c:8b:52:49:b3:7e: c5:3b:0d:3b:2c:db:09:80:73:e1:03:74:7e:9f:84:e9:98:e3: ab:70:6b:1c:f0:b7:41:10:a3:1d:2b:e4:6c:0b:11:06:c3:cd: c1:43:ce:30:b1:d4:7d:8a:97:1c:87:55:e8:04:56:75:fe:13: 96:ad:b2:d1:9a:85:be:26:0f:d7:49:77:44:0b:5e:be:04:45: 83:cd:a2:f5:91:76:d0:f1:8a:e4:c4:1a:b0:2a:fd:86:bb:a6: 34:de:82:ed:3c:78:dd:12:87:75:71:5f:85:fc:a8:ba:97:a6: bc:8d:1a:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlCMUIxMTAvBgNVBAUTKEQzNTlFNTZEREEwMDAzQzQ4M0YzQUQ2QTQwQzA4MEU5 MENCOEQ0NzIwHhcNMjUwOTE5MDYwMzQ5WhcNMjUwOTI2MDYwMzQ5WjAYMRYwFAYD VQQDEw02OGNjZjI0NS00MDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLOmfpqXcNGkZZBbyJBYuQLBYXObyU/0bMWryAeq3SPPRwxSglESMNaUHo6g UiTfe6glR2g+QXLodbaITt8XX8yDfdBL+wW3j1NypvmD25BACbVyAfJOPlDPhxuh 2qJJO9PFgOCckMghF6552ghsyDPjufgtVOeCB0cYPYvYdFRwhvbC1HcPjcvi5qux U1b3FvN1PYmTCKSHS0rpqA0d6AyErm/bVGN53EW4HwhZFhYS6oZpZSEX5JHm1OrQ DrGlAQyqIGGWo1jhHuv+s0BOkFjw11swXsTOmXb+nPh9bh5kWMZt1rrK4EjZmPWx hGBf/I46HirZVzlYT2X3pa3OAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7AW0BB 2vIU8sOgX9s0S7uD3Zs9MB8GA1UdIwQYMBaAFNNZ5W3aAAPEg/OtakDAgOkMuNRy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUIxQi9GOUZFRTA0NjND RjgxMUVGQTM2N0MzODVDNEY5QUUwMi8wMW5sYmRvQUE4U0Q4NjFxUU1DQTZReTQx SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAxbmxiZG9BQThTRDg2MXFRTUNBNlF5NDFISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUIxQi9GOUZFRTA0NjNDRjgxMUVGQTM2N0MzODVDNEY5QUUwMi8wMW5sYmRvQUE4 U0Q4NjFxUU1DQTZReTQxSEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7UsosfJ3VrTHRLlYRgWrSTNtkZ6lfL7budK6X87vC8wgSHUNxdtdh 3xqTSfDjDyWXS/B2gpb25g9XsqWcVIe3oke8X4z1b84wX7gAfUKm/i/1uGPx22RZ 2Va4/CjjyUBmlSKCUyYGtTuP2Z6kL2Bm0yBiPu2qB+edM4r3hZ1RFmHcYDs6ek0N qWgci1JJs37FOw07LNsJgHPhA3R+n4TpmOOrcGsc8LdBEKMdK+RsCxEGw83BQ84w sdR9ipcch1XoBFZ1/hOWrbLRmoW+Jg/XSXdEC16+BEWDzaL1kXbQ8YrkxBqwKv2G u6Y03oLtPHjdEod1cV+F/Ki6l6a8jRq3 -----END CERTIFICATE-----Generated at Fri Sep 19 10:16:43 2025 by rpki-client