$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft File: 30fOzFfqiK65ajhlVgufImC6mQ4.mft (raw, json) Hash identifier: hS4dAcy6KDAGGUS82bS0QXabiOWpbtpI5A/rLGu7SwY= Subject key identifier: 8C:E2:EF:A0:77:2F:01:C3:BE:AA:A5:DF:74:FD:CC:D7:E5:3B:83:99 Authority key identifier: DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E Certificate issuer: /CN=A91DBA5B/serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft Manifest number: BA Signing time: Tue 09 Sep 2025 06:03:27 +0000 Manifest this update: Tue 09 Sep 2025 06:03:26 +0000 Manifest next update: Tue 16 Sep 2025 06:03:26 +0000 Files and hashes: 1: 30fOzFfqiK65ajhlVgufImC6mQ4.crl (hash: rkGWqlq0zTrr2nOAYmf+ljSww6NCEpdCZ/5iaTrHLWU=) 2: 02389B7670E811EFA8DBE571C4F9AE02.roa (hash: AxDsA8rt+K98y/uEnY4JUiHZ0XXqFDNJTlI0IgqxxqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 06:03:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Validity Not Before: Sep 9 06:03:26 2025 GMT Not After : Sep 16 06:03:26 2025 GMT Subject: CN=68bfc32f-3f11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:91:33:e9:66:b3:37:e1:05:b8:3f:88:a3:61: d5:59:20:10:44:4c:12:fd:80:25:96:55:d7:3d:22: c9:0d:ec:ea:49:7b:16:30:ae:9f:81:cd:24:25:de: 12:55:36:1d:82:21:19:02:00:02:32:b7:51:57:1b: 56:fe:bf:e5:ab:b6:7b:a3:4f:ad:d2:14:fc:05:d9: 00:9c:24:19:21:7e:14:9c:df:ba:59:b7:ba:0c:0f: db:2e:88:94:9c:5e:71:f9:fe:2d:19:c2:41:8d:a3: 27:7e:f5:37:a7:1f:4f:be:14:bf:32:de:e7:ea:b5: e2:16:2c:4b:5f:a8:6a:0f:cf:a7:ef:83:b3:cd:a2: 42:b5:e6:4f:3d:48:6e:22:88:c4:c4:12:9f:68:94: a5:cd:37:d0:c0:6f:0c:93:13:fa:c7:88:00:5d:b3: 63:ad:f1:9b:32:96:9a:b2:5b:72:c9:72:a6:74:b3: 2d:9b:93:73:44:b1:fd:ff:64:93:60:57:bc:20:57: 2a:75:7d:14:02:6e:59:d1:41:bd:aa:0e:0d:7c:25: 8d:f2:4e:8b:a8:c7:6a:05:62:89:37:20:4e:c8:e0: 09:3b:11:d6:0c:de:5b:2b:d8:55:78:68:7e:48:74: f8:a4:1a:e8:e3:62:f8:76:df:bd:c1:68:3b:22:bb: 2a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:E2:EF:A0:77:2F:01:C3:BE:AA:A5:DF:74:FD:CC:D7:E5:3B:83:99 X509v3 Authority Key Identifier: keyid:DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:e6:0f:e3:a2:d1:dd:40:d8:43:9c:f9:2d:35:83:12:1c:65: 64:3f:8b:e2:41:1f:71:6c:0b:93:fa:42:94:39:37:40:73:74: f2:58:8f:37:e4:70:3d:cc:60:07:d3:05:90:3b:32:92:b7:23: 25:22:88:57:e4:63:06:8c:cc:31:60:27:9b:b7:ec:d7:ce:c8: a3:60:c9:72:49:22:3c:7b:1f:66:58:24:dd:36:39:ee:34:ea: 89:28:5b:94:3a:b4:7d:7e:57:bb:61:06:33:d5:b8:18:83:89: f7:ce:f5:56:22:2c:6e:9b:92:53:9e:b3:e3:92:d8:28:79:ec: 3b:5e:08:78:4c:dd:36:2d:a3:16:ce:36:8e:c1:a8:52:63:bc: 5d:bd:d6:e1:27:b2:56:33:ce:b0:e3:66:7e:66:38:63:78:ba: e0:33:2b:72:e9:8d:a2:68:0c:7f:b0:b8:64:f5:c8:d1:65:ac: f0:98:4f:3f:15:1b:c5:a5:bd:1a:00:55:37:e5:8e:60:d7:10: 4d:49:bc:c1:4f:e4:dd:e5:c8:cb:79:b2:4c:2f:81:98:98:55: 0a:4c:3c:2e:bb:54:19:95:6d:0e:eb:be:53:63:b3:07:8c:4b: 83:0a:bb:7e:1f:74:ba:a8:06:13:87:7d:64:29:64:41:1d:29: f1:9d:cd:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKERGNDdDRUNDNTdFQTg4QUVCOTZBMzg2NTU2MEI5RjIy NjBCQTk5MEUwHhcNMjUwOTA5MDYwMzI2WhcNMjUwOTE2MDYwMzI2WjAYMRYwFAYD VQQDEw02OGJmYzMyZi0zZjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pEz6WazN+EFuD+Io2HVWSAQREwS/YAlllXXPSLJDezqSXsWMK6fgc0kJd4S VTYdgiEZAgACMrdRVxtW/r/lq7Z7o0+t0hT8BdkAnCQZIX4UnN+6Wbe6DA/bLoiU nF5x+f4tGcJBjaMnfvU3px9PvhS/Mt7n6rXiFixLX6hqD8+n74OzzaJCteZPPUhu IojExBKfaJSlzTfQwG8MkxP6x4gAXbNjrfGbMpaasltyyXKmdLMtm5NzRLH9/2ST YFe8IFcqdX0UAm5Z0UG9qg4NfCWN8k6LqMdqBWKJNyBOyOAJOxHWDN5bK9hVeGh+ SHT4pBro42L4dt+9wWg7IrsqNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIzi76B3 LwHDvqql33T9zNflO4OZMB8GA1UdIwQYMBaAFN9HzsxX6oiuuWo4ZVYLnyJgupkO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi81ODAwNEFBQTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi8zMGZPekZmcWlLNjVhamhsVmd1ZkltQzZt UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMwZk96RmZxaUs2NWFqaGxWZ3VmSW1DNm1RNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi81ODAwNEFBQTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi8zMGZPekZmcWlL NjVhamhsVmd1ZkltQzZtUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA95g/jotHdQNhDnPktNYMSHGVkP4viQR9xbAuT+kKUOTdAc3TyWI83 5HA9zGAH0wWQOzKStyMlIohX5GMGjMwxYCebt+zXzsijYMlySSI8ex9mWCTdNjnu NOqJKFuUOrR9fle7YQYz1bgYg4n3zvVWIixum5JTnrPjktgoeew7Xgh4TN02LaMW zjaOwahSY7xdvdbhJ7JWM86w42Z+ZjhjeLrgMyty6Y2iaAx/sLhk9cjRZazwmE8/ FRvFpb0aAFU35Y5g1xBNSbzBT+Td5cjLebJML4GYmFUKTDwuu1QZlW0O675TY7MH jEuDCrt+H3S6qAYTh31kKWRBHSnxnc28 -----END CERTIFICATE-----Generated at Wed Sep 10 00:02:39 2025 by rpki-client