$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft File: gYkRn4AeKAprTdViZT7xA2lh0Js.mft (raw, json) Hash identifier: iNAcchp2Lx2/C8UTG0dHRKx28oP/wCD4lP55Z5iGIZw= Subject key identifier: 0A:17:F0:EC:61:DA:21:BE:67:26:6D:1D:0F:38:AD:BA:11:8F:28:44 Authority key identifier: 81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B Certificate issuer: /CN=A91D9CAE/serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Certificate serial: 04BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft Manifest number: 04B7 Signing time: Wed 17 Sep 2025 00:16:55 +0000 Manifest this update: Wed 17 Sep 2025 00:16:55 +0000 Manifest next update: Wed 24 Sep 2025 00:16:55 +0000 Files and hashes: 1: gYkRn4AeKAprTdViZT7xA2lh0Js.crl (hash: s8oTOWDmttCgUTEtiG9KZyzIFMP44x5Jh7K+vmtchHs=) 2: D30098F6413111ECB71E086AC4F9AE02.roa (hash: JzviQWAwGRyvIRx9Vf87scMnMba7gxa9U+rC1fHqC5w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 00:16:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1211 (0x4bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CAE, serialNumber=8189119F801E280A6B4DD562653EF1036961D09B Validity Not Before: Sep 17 00:16:55 2025 GMT Not After : Sep 24 00:16:55 2025 GMT Subject: CN=68c9fdf7-176e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fa:3e:0a:a9:0b:c0:aa:0a:1b:5c:f8:2c:83: 27:32:9f:e9:80:6d:ce:d5:b0:df:e1:92:34:95:e5: 3e:1e:ac:87:a0:f4:02:b8:bc:06:8b:3b:d5:fb:08: f9:b7:b0:83:54:a2:2f:83:80:5b:96:45:f6:68:83: 13:6c:53:39:82:ed:ff:f1:e2:12:97:d9:ee:11:5b: d0:67:53:84:01:2a:d1:fd:c8:e5:3a:b4:8a:1c:db: 91:20:f5:bd:48:a4:50:ff:13:29:1f:90:21:87:97: 15:d9:8f:9a:75:55:5e:01:01:43:a3:84:7b:0e:e6: bd:02:5c:dd:47:43:22:25:40:59:a3:b7:1e:a7:7a: 17:bb:d2:cc:a6:b7:1f:5f:cf:35:98:bf:ca:9b:ab: 2c:19:19:91:39:a5:c3:95:a8:30:46:18:77:2a:1f: ba:54:c6:e5:f2:55:a7:2a:37:31:29:7e:fb:8a:8c: a9:7a:80:bf:72:cb:b7:c1:70:32:06:c6:60:6f:1e: 43:cf:00:07:d2:79:df:c4:de:ce:cd:b0:d4:13:ef: d3:23:19:27:f2:e6:d8:62:bc:62:11:ad:98:61:19: c8:b1:30:51:26:6d:9c:1a:0e:f3:39:5a:6d:7c:aa: 72:98:4b:7c:8b:4c:8e:bc:0b:92:6f:6e:2e:5d:38: 12:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:17:F0:EC:61:DA:21:BE:67:26:6D:1D:0F:38:AD:BA:11:8F:28:44 X509v3 Authority Key Identifier: keyid:81:89:11:9F:80:1E:28:0A:6B:4D:D5:62:65:3E:F1:03:69:61:D0:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYkRn4AeKAprTdViZT7xA2lh0Js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CAE/FED5A2A8412E11ECABF7F566C4F9AE02/gYkRn4AeKAprTdViZT7xA2lh0Js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:56:63:ed:86:a2:b4:76:70:48:8a:c3:ce:85:b1:19:dd:89: f4:97:14:3b:6e:e4:43:5a:c7:bf:73:5e:03:c6:84:2c:86:ff: 43:5e:c6:cb:7c:f6:e0:fb:a3:14:ad:1b:44:10:14:5b:1e:88: 7b:ef:1f:44:c5:4c:44:02:d0:70:0f:b2:9a:4b:d0:bc:b4:55: 99:03:84:11:2f:fe:1b:2b:70:12:04:9e:4f:9b:05:9e:11:d6: 82:97:a8:35:d0:eb:19:08:b9:8b:19:88:cd:26:66:94:02:13: e1:fb:46:d6:62:8e:ec:79:6a:9b:d5:9e:2e:cc:fe:0a:6b:02: ab:2d:c8:f9:aa:df:42:6e:51:c8:a8:59:91:48:fe:59:d0:67: f4:84:02:5d:cc:e8:50:a4:f9:9d:d2:f5:12:e6:82:ba:c4:65: e8:4b:61:38:fb:9c:63:5a:c4:1d:83:fa:35:55:9f:ee:1d:b4: 96:da:a4:ce:1f:7e:85:01:b2:c1:79:b8:2b:f5:93:e3:ed:3b: 9a:c1:76:f9:d1:95:2a:42:4e:84:36:86:e2:45:17:23:37:ca: bd:7a:d2:fe:55:cc:c3:55:e6:4a:dd:8e:d3:5c:0f:96:57:81: bc:00:b0:5e:9e:0b:75:40:3e:90:10:46:e6:25:a2:7c:ad:f5: 5c:7e:ba:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQUUxMTAvBgNVBAUTKDgxODkxMTlGODAxRTI4MEE2QjRERDU2MjY1M0VGMTAz Njk2MUQwOUIwHhcNMjUwOTE3MDAxNjU1WhcNMjUwOTI0MDAxNjU1WjAYMRYwFAYD VQQDEw02OGM5ZmRmNy0xNzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vo+CqkLwKoKG1z4LIMnMp/pgG3O1bDf4ZI0leU+HqyHoPQCuLwGizvV+wj5 t7CDVKIvg4BblkX2aIMTbFM5gu3/8eISl9nuEVvQZ1OEASrR/cjlOrSKHNuRIPW9 SKRQ/xMpH5Ahh5cV2Y+adVVeAQFDo4R7Dua9AlzdR0MiJUBZo7cep3oXu9LMprcf X881mL/Km6ssGRmROaXDlagwRhh3Kh+6VMbl8lWnKjcxKX77ioypeoC/csu3wXAy BsZgbx5DzwAH0nnfxN7OzbDUE+/TIxkn8ubYYrxiEa2YYRnIsTBRJm2cGg7zOVpt fKpymEt8i0yOvAuSb24uXTgSJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAoX8Oxh 2iG+ZyZtHQ84rboRjyhEMB8GA1UdIwQYMBaAFIGJEZ+AHigKa03VYmU+8QNpYdCb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBRS9GRUQ1QTJBODQx MkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtBcHJUZFZpWlQ3eEEybGgw SnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZa1JuNEFlS0FwclRkVmlaVDd4QTJsaDBKcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBRS9GRUQ1QTJBODQxMkUxMUVDQUJGN0Y1NjZDNEY5QUUwMi9nWWtSbjRBZUtB cHJUZFZpWlQ3eEEybGgwSnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUVmPthqK0dnBIisPOhbEZ3Yn0lxQ7buRDWse/c14DxoQshv9DXsbL fPbg+6MUrRtEEBRbHoh77x9ExUxEAtBwD7KaS9C8tFWZA4QRL/4bK3ASBJ5PmwWe EdaCl6g10OsZCLmLGYjNJmaUAhPh+0bWYo7seWqb1Z4uzP4KawKrLcj5qt9CblHI qFmRSP5Z0Gf0hAJdzOhQpPmd0vUS5oK6xGXoS2E4+5xjWsQdg/o1VZ/uHbSW2qTO H36FAbLBebgr9ZPj7TuawXb50ZUqQk6ENobiRRcjN8q9etL+VczDVeZK3Y7TXA+W V4G8ALBengt1QD6QEEbmJaJ8rfVcfrpG -----END CERTIFICATE-----Generated at Fri Sep 19 00:34:33 2025 by rpki-client