$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft File: wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft (raw, json) Hash identifier: PXOlmRlwh2Nzs0RM+BK79g0tkeiHPuNyoEoRoTmMY4I= Subject key identifier: A8:36:D4:78:E3:A1:39:D2:47:B8:0B:5F:40:6C:D0:58:43:10:39:AC Authority key identifier: C2:7A:E1:D1:64:72:9F:43:D9:E0:FA:64:BE:51:D0:B6:AE:09:EB:99 Certificate issuer: /CN=A91DD1F9/serialNumber=C27AE1D164729F43D9E0FA64BE51D0B6AE09EB99 Certificate serial: D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft Manifest number: D2 Signing time: Fri 05 Sep 2025 06:04:31 +0000 Manifest this update: Fri 05 Sep 2025 06:04:30 +0000 Manifest next update: Fri 12 Sep 2025 06:04:30 +0000 Files and hashes: 1: wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl (hash: nvTa1peAz41ibj4X+EAaE5R1WnErn6UFOnkNbvwIWrc=) 2: 36CFD1EE4AD011EF9B941D17C4F9AE02.roa (hash: R4BuH0z4o97i8tZeyVvIgqOfDLo2IBdC5O5u6V1sdyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD1F9, serialNumber=C27AE1D164729F43D9E0FA64BE51D0B6AE09EB99 Validity Not Before: Sep 5 06:04:30 2025 GMT Not After : Sep 12 06:04:30 2025 GMT Subject: CN=68ba7d6f-5e70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6e:a0:56:fb:09:69:a4:ea:8b:84:0c:d3:f5: a4:16:0a:7e:48:25:2e:2c:af:4f:fd:cb:15:48:aa: 40:61:fd:8d:12:80:ca:a0:91:9e:35:f3:c7:14:08: da:b9:18:66:3a:90:bd:a6:0e:30:b6:1f:fc:ce:3b: 4a:01:bb:5d:b2:ce:0d:b7:ea:0a:df:cc:cb:d8:9c: 95:e8:32:b1:f6:9e:d2:e5:a0:e6:d6:97:95:f1:ac: ab:d6:5b:2b:29:60:a6:75:1d:55:5e:28:83:76:e8: 51:2e:50:19:4f:d2:05:ad:cf:94:3b:0e:75:cf:6a: 1f:58:38:3c:89:6e:4d:76:c2:2a:7a:2c:21:26:cb: cc:f9:0f:9f:24:57:7b:59:24:59:21:79:9b:ea:66: 98:3c:5d:48:d9:af:b0:93:e2:1a:6d:96:96:6e:87: 7a:9a:68:62:b3:00:04:cd:6c:67:7a:1a:57:66:64: 83:24:d7:c8:76:46:b3:4f:16:9b:9d:6e:bb:e6:e6: 6a:94:fd:8d:e8:04:99:25:3d:e6:ca:f1:91:73:70: d2:b7:aa:b8:a1:c2:75:05:de:21:29:73:ec:a8:70: 1f:3c:31:74:99:ee:77:51:40:3c:2e:37:06:ca:c2: 0d:5a:e1:fb:81:f3:45:0f:a2:1e:22:32:2c:b8:6c: 0e:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:36:D4:78:E3:A1:39:D2:47:B8:0B:5F:40:6C:D0:58:43:10:39:AC X509v3 Authority Key Identifier: keyid:C2:7A:E1:D1:64:72:9F:43:D9:E0:FA:64:BE:51:D0:B6:AE:09:EB:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:77:26:52:50:ba:d7:81:8f:1c:6f:85:d4:c6:ef:3b:74:1a: 12:b3:af:6e:d8:31:c5:7a:2a:3e:5d:21:a7:ee:3f:ac:9b:c6: e2:9f:a2:d5:26:27:d7:1e:b5:8d:c2:7b:7f:80:06:00:ee:d3: e1:30:c7:5c:ec:52:66:63:82:1f:71:19:7f:62:a0:65:4e:fc: 82:5e:e4:5f:a3:89:f9:5d:98:69:ba:c2:43:21:45:f3:0f:1b: 2b:24:57:a5:4b:95:ba:3c:58:f6:b2:8a:cd:46:0e:a7:aa:ce: 54:28:5e:55:32:44:d2:61:f3:19:c9:65:6b:57:9e:a9:10:11: 99:56:23:29:fa:6c:20:11:45:a7:59:94:b6:34:52:b1:c9:02: ac:d3:97:bd:c4:6d:54:29:13:d6:ee:3f:29:e9:31:ee:bb:37: 18:e0:58:85:9b:00:96:94:08:3f:68:84:96:d1:d2:9a:c1:a3: b0:bc:17:d6:a1:b7:2e:c8:a2:22:dd:be:2d:48:05:4a:b5:2c: a2:11:7a:d9:87:c0:9b:36:55:11:6a:91:05:86:4a:0b:fc:8e: 52:1b:f8:3d:08:a1:cc:01:e0:e3:8a:42:8d:51:ca:f2:f7:4c: eb:47:87:ac:32:f9:5c:c4:76:92:cf:35:5f:f4:99:fe:de:ce: 78:cb:12:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQxRjkxMTAvBgNVBAUTKEMyN0FFMUQxNjQ3MjlGNDNEOUUwRkE2NEJFNTFEMEI2 QUUwOUVCOTkwHhcNMjUwOTA1MDYwNDMwWhcNMjUwOTEyMDYwNDMwWjAYMRYwFAYD VQQDEw02OGJhN2Q2Zi01ZTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxW6gVvsJaaTqi4QM0/WkFgp+SCUuLK9P/csVSKpAYf2NEoDKoJGeNfPHFAja uRhmOpC9pg4wth/8zjtKAbtdss4Nt+oK38zL2JyV6DKx9p7S5aDm1peV8ayr1lsr KWCmdR1VXiiDduhRLlAZT9IFrc+UOw51z2ofWDg8iW5NdsIqeiwhJsvM+Q+fJFd7 WSRZIXmb6maYPF1I2a+wk+IabZaWbod6mmhiswAEzWxnehpXZmSDJNfIdkazTxab nW675uZqlP2N6ASZJT3myvGRc3DSt6q4ocJ1Bd4hKXPsqHAfPDF0me53UUA8LjcG ysINWuH7gfNFD6IeIjIsuGwOCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKg21Hjj oTnSR7gLX0Bs0FhDEDmsMB8GA1UdIwQYMBaAFMJ64dFkcp9D2eD6ZL5R0LauCeuZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDFGOS80MDJFRDI3MjRB Q0YxMUVGQjgyMThFMTVDNEY5QUUwMi93bnJoMFdSeW4wUFo0UHBrdmxIUXRxNEo2 NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ducmgwV1J5bjBQWjRQcGt2bEhRdHE0SjY1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDFGOS80MDJFRDI3MjRBQ0YxMUVGQjgyMThFMTVDNEY5QUUwMi93bnJoMFdSeW4w UFo0UHBrdmxIUXRxNEo2NWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCddyZSULrXgY8cb4XUxu87dBoSs69u2DHFeio+XSGn7j+sm8bin6LV JifXHrWNwnt/gAYA7tPhMMdc7FJmY4IfcRl/YqBlTvyCXuRfo4n5XZhpusJDIUXz DxsrJFelS5W6PFj2sorNRg6nqs5UKF5VMkTSYfMZyWVrV56pEBGZViMp+mwgEUWn WZS2NFKxyQKs05e9xG1UKRPW7j8p6THuuzcY4FiFmwCWlAg/aISW0dKawaOwvBfW obcuyKIi3b4tSAVKtSyiEXrZh8CbNlURapEFhkoL/I5SG/g9CKHMAeDjikKNUcry 90zrR4esMvlcxHaSzzVf9Jn+3s54yxIU -----END CERTIFICATE-----Generated at Sat Sep 6 21:07:30 2025 by rpki-client