$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft File: cM9awmFE6NdDsVID4mwiBG-iQHo.mft (raw, json) Hash identifier: RfTNqR1QpxSG+PuwS7rW02Na1g+/MudpeCCE5o6Ih3I= Subject key identifier: 2E:2A:DA:BF:96:33:1D:AA:8D:C1:9A:20:05:26:74:15:CE:54:DC:06 Authority key identifier: 70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A Certificate issuer: /CN=A91DB128/serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft Manifest number: 01C9 Signing time: Wed 17 Sep 2025 03:27:07 +0000 Manifest this update: Wed 17 Sep 2025 03:27:07 +0000 Manifest next update: Wed 24 Sep 2025 03:27:07 +0000 Files and hashes: 1: cM9awmFE6NdDsVID4mwiBG-iQHo.crl (hash: tvXngfGUJc42ensZvEfsvenc7p85FcyCwsutFDI6fgw=) 2: ABD7D9FCDDEC11EDB14EDA32C4F9AE02.roa (hash: ViKM5e5iyaoZ2fwSNhoyHsddKA5yuwX0C7qKIyKJX7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 03:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB128, serialNumber=70CF5AC26144E8D743B15203E26C22046FA2407A Validity Not Before: Sep 17 03:27:07 2025 GMT Not After : Sep 24 03:27:07 2025 GMT Subject: CN=68ca2a8b-71c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e6:c2:75:b5:ed:ea:d6:05:00:67:05:5e:e2: d0:d2:64:81:7e:c6:9d:c1:89:4b:fb:0d:72:22:f4: 3e:81:bf:65:a7:e1:8e:f0:c5:42:58:3d:9f:44:27: 91:4f:29:0d:15:98:85:00:53:d2:84:de:8d:8a:c3: a2:ba:74:54:49:8c:c3:86:4c:d9:56:64:51:02:77: b7:8f:f0:21:06:5e:81:40:c7:5a:7b:b9:49:2f:72: 15:34:20:58:f8:23:28:a6:06:22:d7:65:48:b5:a0: fe:1c:42:b0:e5:0d:ad:ec:e5:80:57:41:ff:72:b3: ae:4c:50:8b:d3:2f:1d:0b:43:94:bf:5e:31:38:d0: 2a:ac:b6:4b:e2:0c:81:c1:f2:01:36:b9:a4:30:88: de:1f:74:f6:38:29:62:69:89:1e:a1:3c:46:22:6a: 0e:d6:15:24:e7:e2:55:3e:9f:de:84:19:3a:90:89: 56:0f:f0:32:ef:12:89:21:b2:bf:2f:1f:62:d9:4d: ec:ea:c2:9e:34:62:fd:47:ed:48:c7:6d:ed:41:4a: 58:1b:d5:25:e6:ec:17:47:eb:60:32:63:2a:23:05: 40:12:e9:20:62:19:86:1b:05:d7:a3:eb:f0:23:13: 8e:b4:4c:94:19:b9:69:35:18:e0:cc:44:2b:82:57: 29:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:2A:DA:BF:96:33:1D:AA:8D:C1:9A:20:05:26:74:15:CE:54:DC:06 X509v3 Authority Key Identifier: keyid:70:CF:5A:C2:61:44:E8:D7:43:B1:52:03:E2:6C:22:04:6F:A2:40:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cM9awmFE6NdDsVID4mwiBG-iQHo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB128/7BF23AC4DDE811EDBF8C973AC4F9AE02/cM9awmFE6NdDsVID4mwiBG-iQHo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:74:2c:2d:41:1d:d0:53:7e:f4:d2:fe:ec:91:42:27:5e:57: f6:c9:84:e9:30:c6:1d:93:0a:93:bd:a8:bc:9a:f6:5e:12:5e: 1b:43:f4:02:90:55:25:ce:69:8c:9a:1f:26:a9:5c:3d:f3:c2: 0f:6e:39:af:71:4b:40:f9:be:f6:1d:b4:ec:5b:7e:72:96:9b: 3e:0c:88:59:ff:70:e2:28:a7:73:95:d6:d9:9b:28:5a:9e:68: 6b:b2:b1:5d:dc:61:e2:7f:c6:e1:30:7a:1b:b1:12:2f:e0:ad: da:ec:af:ce:df:9c:8f:b2:16:36:c6:59:be:0c:40:4c:66:dc: 9b:a7:94:6b:63:3b:61:fd:58:25:3b:e8:c1:a4:a5:6d:63:bb: c2:c8:ff:dd:cd:d4:e3:ed:cd:02:2a:66:0a:37:45:67:f4:ab: f1:b5:61:ce:79:6d:fc:3c:a8:59:82:85:14:33:00:8c:fe:d4: 4e:c7:85:cc:dd:9b:a3:3b:09:2a:6e:9a:ed:7c:e0:6c:38:25: 2e:8a:8d:3b:63:9a:8f:a6:15:3f:b8:3a:31:fc:09:64:ad:14: e0:25:86:54:06:d8:12:64:17:18:bd:7d:93:82:4e:f1:88:84: 45:58:26:91:9d:6e:95:1b:11:64:03:49:73:05:a5:00:80:68: 8f:e0:78:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REIxMjgxMTAvBgNVBAUTKDcwQ0Y1QUMyNjE0NEU4RDc0M0IxNTIwM0UyNkMyMjA0 NkZBMjQwN0EwHhcNMjUwOTE3MDMyNzA3WhcNMjUwOTI0MDMyNzA3WjAYMRYwFAYD VQQDEw02OGNhMmE4Yi03MWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ObCdbXt6tYFAGcFXuLQ0mSBfsadwYlL+w1yIvQ+gb9lp+GO8MVCWD2fRCeR TykNFZiFAFPShN6NisOiunRUSYzDhkzZVmRRAne3j/AhBl6BQMdae7lJL3IVNCBY +CMopgYi12VItaD+HEKw5Q2t7OWAV0H/crOuTFCL0y8dC0OUv14xONAqrLZL4gyB wfIBNrmkMIjeH3T2OCliaYkeoTxGImoO1hUk5+JVPp/ehBk6kIlWD/Ay7xKJIbK/ Lx9i2U3s6sKeNGL9R+1Ix23tQUpYG9Ul5uwXR+tgMmMqIwVAEukgYhmGGwXXo+vw IxOOtEyUGblpNRjgzEQrglcp6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4q2r+W Mx2qjcGaIAUmdBXOVNwGMB8GA1UdIwQYMBaAFHDPWsJhROjXQ7FSA+JsIgRvokB6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjEyOC83QkYyM0FDNERE RTgxMUVEQkY4Qzk3M0FDNEY5QUUwMi9jTTlhd21GRTZOZERzVklENG13aUJHLWlR SG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NNOWF3bUZFNk5kRHNWSUQ0bXdpQkctaVFIby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjEyOC83QkYyM0FDNERERTgxMUVEQkY4Qzk3M0FDNEY5QUUwMi9jTTlhd21GRTZO ZERzVklENG13aUJHLWlRSG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAidCwtQR3QU3700v7skUInXlf2yYTpMMYdkwqTvai8mvZeEl4bQ/QC kFUlzmmMmh8mqVw988IPbjmvcUtA+b72HbTsW35ylps+DIhZ/3DiKKdzldbZmyha nmhrsrFd3GHif8bhMHobsRIv4K3a7K/O35yPshY2xlm+DEBMZtybp5RrYzth/Vgl O+jBpKVtY7vCyP/dzdTj7c0CKmYKN0Vn9KvxtWHOeW38PKhZgoUUMwCM/tROx4XM 3ZujOwkqbprtfOBsOCUuio07Y5qPphU/uDox/AlkrRTgJYZUBtgSZBcYvX2Tgk7x iIRFWCaRnW6VGxFkA0lzBaUAgGiP4Hh9 -----END CERTIFICATE-----Generated at Fri Sep 19 00:34:37 2025 by rpki-client