$ rpki-client -vvf rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft File: s40rj01btqU-m0GSYQSBpdiBZUY.mft (raw, json) Hash identifier: DNmwtPwpOt7Hgstmk8VUfHXdn95UJmg7wY3hjl2FTI4= Subject key identifier: 30:47:A5:3E:43:D5:FE:9D:70:38:EC:71:B8:35:F7:92:24:70:18:9F Authority key identifier: B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 Certificate issuer: /CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Certificate serial: 0B1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft Manifest number: 0B13 Signing time: Thu 18 Sep 2025 19:32:07 +0000 Manifest this update: Thu 18 Sep 2025 19:32:07 +0000 Manifest next update: Thu 25 Sep 2025 19:32:07 +0000 Files and hashes: 1: s40rj01btqU-m0GSYQSBpdiBZUY.crl (hash: 0DjSFk1V03XZ7OZHXcxH7zfCm0Mdyq1sxNJkm/1kXf4=) 2: 1E1E9122565411EBA14ED510C4F9AE02.roa (hash: 7dou7EZJS0k+10u39gMW4DiImFVNtTINLLrPstsJeHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 19:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2843 (0xb1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E12AD, serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Validity Not Before: Sep 18 19:32:07 2025 GMT Not After : Sep 25 19:32:07 2025 GMT Subject: CN=68cc5e37-e108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8d:09:64:25:1e:92:fd:f5:ef:4d:3b:40:53: 7f:95:ae:c8:75:94:d4:f4:cf:31:c9:97:01:24:bf: 46:51:eb:f8:6c:bc:dd:fb:ee:30:11:82:d4:95:ae: f0:b2:4d:6a:80:e6:8e:3a:9c:23:50:dd:83:0c:92: 14:bc:76:41:48:bb:6e:dc:25:1c:01:f0:8f:d3:45: 73:2e:b3:d8:0f:a7:54:d0:82:1a:9b:81:52:67:36: 1f:a2:bd:1d:21:37:2f:7b:06:c3:2d:47:cb:bc:4e: 1d:94:55:35:d6:e9:c4:48:d6:f2:2d:ec:3a:e5:c2: cb:5f:85:ad:f2:73:ef:e9:ab:33:b1:49:1d:3e:b2: 9a:40:02:a4:11:68:42:8b:b2:0f:0a:32:c3:86:c8: 30:3d:f4:d5:cf:cc:ea:21:db:07:e6:ba:e4:d9:63: 03:d2:c7:5a:18:d0:58:a3:d0:0b:bd:5f:81:a4:f3: b5:08:e2:3e:d6:31:d0:c4:05:b8:49:b4:ec:8a:16: 8e:0d:48:7b:1e:c9:6b:4b:29:70:f9:79:a5:b8:c9: 8f:94:9a:52:03:b8:46:e0:e1:44:4b:97:d8:09:c8: a0:cf:c9:e1:56:81:7d:f2:05:1f:83:7c:01:77:2c: ef:ba:1c:99:ed:fa:01:93:bc:15:95:c5:38:f5:0d: 3f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:47:A5:3E:43:D5:FE:9D:70:38:EC:71:B8:35:F7:92:24:70:18:9F X509v3 Authority Key Identifier: keyid:B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:79:64:59:fe:51:d0:de:a3:90:73:9d:3c:0f:25:89:f1:26: f3:da:f1:8b:b4:f9:ac:0e:b3:a1:35:56:c5:74:53:42:2a:d1: 2c:90:91:dd:7a:bd:34:6f:e2:69:1a:76:52:2f:db:01:a1:f6: 32:cc:e0:16:d2:51:1c:24:6d:03:71:33:8f:1f:5b:0e:21:1b: e6:67:4f:3d:f8:00:9d:d2:5e:b1:52:1c:55:df:3c:1e:68:15: 70:10:53:f3:ed:a7:ca:4a:ee:77:41:0e:a0:c3:11:e5:15:78: 56:88:c9:ad:91:d6:f6:7e:91:e5:ce:8e:5d:da:38:e3:1b:9b: 58:7e:30:95:21:e0:3b:00:8d:5d:d7:3b:f4:2a:6c:49:2c:8d: e1:3d:fd:0f:52:61:f6:c9:ac:61:e1:d0:39:ea:07:7b:95:c0: 84:82:66:fc:9a:6f:a5:56:ca:b1:ff:2d:bc:10:36:1a:9b:df: a5:46:20:08:d2:d3:79:f8:75:3d:0d:aa:4f:df:88:5e:d9:44: 62:5b:72:25:7e:02:5e:3d:af:a8:9a:c2:d7:c4:4f:e8:0c:07: f8:f1:b8:df:9a:c1:4f:5c:78:32:4f:24:b3:26:20:f2:78:de: 3a:7d:bc:ec:74:24:34:cc:c3:50:9b:da:77:25:4c:a0:e6:c6: 16:57:aa:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyQUQxMTAvBgNVBAUTKEIzOEQyQjhGNEQ1QkI2QTUzRTlCNDE5MjYxMDQ4MUE1 RDg4MTY1NDYwHhcNMjUwOTE4MTkzMjA3WhcNMjUwOTI1MTkzMjA3WjAYMRYwFAYD VQQDEw02OGNjNWUzNy1lMTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzY0JZCUekv317007QFN/la7IdZTU9M8xyZcBJL9GUev4bLzd++4wEYLUla7w sk1qgOaOOpwjUN2DDJIUvHZBSLtu3CUcAfCP00VzLrPYD6dU0IIam4FSZzYfor0d ITcvewbDLUfLvE4dlFU11unESNbyLew65cLLX4Wt8nPv6aszsUkdPrKaQAKkEWhC i7IPCjLDhsgwPfTVz8zqIdsH5rrk2WMD0sdaGNBYo9ALvV+BpPO1COI+1jHQxAW4 SbTsihaODUh7HslrSylw+XmluMmPlJpSA7hG4OFES5fYCcigz8nhVoF98gUfg3wB dyzvuhyZ7foBk7wVlcU49Q0/uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDBHpT5D 1f6dcDjscbg195IkcBifMB8GA1UdIwQYMBaAFLONK49NW7alPptBkmEEgaXYgWVG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTJBRC8zOERBQTA2QzRC MjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRxVS1tMEdTWVFTQnBkaUJa VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M0MHJqMDFidHFVLW0wR1NZUVNCcGRpQlpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTJBRC8zOERBQTA2QzRCMjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRx VS1tMEdTWVFTQnBkaUJaVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEeWRZ/lHQ3qOQc508DyWJ8Sbz2vGLtPmsDrOhNVbFdFNCKtEskJHd er00b+JpGnZSL9sBofYyzOAW0lEcJG0DcTOPH1sOIRvmZ089+ACd0l6xUhxV3zwe aBVwEFPz7afKSu53QQ6gwxHlFXhWiMmtkdb2fpHlzo5d2jjjG5tYfjCVIeA7AI1d 1zv0KmxJLI3hPf0PUmH2yaxh4dA56gd7lcCEgmb8mm+lVsqx/y28EDYam9+lRiAI 0tN5+HU9DapP34he2URiW3IlfgJePa+omsLXxE/oDAf48bjfmsFPXHgyTySzJiDy eN46fbzsdCQ0zMNQm9p3JUyg5sYWV6qX -----END CERTIFICATE-----Generated at Fri Sep 19 00:58:58 2025 by rpki-client