$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft File: rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft (raw, json) Hash identifier: iztiyqCqSnJ8FmodJDAchA4oQtFFegLFAKDEIPnmJ64= Subject key identifier: 78:94:7F:A4:C0:BA:CA:2B:47:22:3A:4E:9A:84:D9:18:10:3F:C8:6B Authority key identifier: AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 Certificate issuer: /CN=A91E1498/serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Certificate serial: 012A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft Manifest number: 0125 Signing time: Wed 17 Sep 2025 05:22:14 +0000 Manifest this update: Wed 17 Sep 2025 05:22:13 +0000 Manifest next update: Wed 24 Sep 2025 05:22:13 +0000 Files and hashes: 1: rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl (hash: 3RBhCPXwagp3AWEFhO+dklia4SopmSJM4IDsle09bjw=) 2: 6C523164E03F11EE87838439C4F9AE02.roa (hash: SK6ZvVianDlVw+18irRafax8Eg6g34dqTzqJORJNKeQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 05:22:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 298 (0x12a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1498, serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Validity Not Before: Sep 17 05:22:13 2025 GMT Not After : Sep 24 05:22:13 2025 GMT Subject: CN=68ca4586-4596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7c:ac:a8:68:cc:e1:36:94:29:0f:96:63:8f: 62:56:dc:59:44:cf:2b:3c:6d:70:64:6c:4a:17:5b: 0c:5d:df:6f:0c:cb:36:6f:9a:e7:37:ce:08:12:18: a7:1c:bd:3d:10:54:b9:43:88:ec:69:57:2b:34:e7: ea:74:02:b4:52:d7:86:4a:59:6b:43:9a:8b:f1:99: 34:d2:5c:4f:89:5e:3f:42:55:46:56:67:95:57:07: 3c:62:36:88:e4:3d:67:9a:4f:f8:f7:a3:5f:19:57: 87:43:df:1e:59:61:23:5c:81:97:ac:35:a1:27:00: b6:55:8e:10:52:8d:3d:96:98:bf:b3:f1:3d:f2:3f: e7:19:61:03:8b:47:43:15:ef:31:11:2d:52:b6:44: 39:9f:4b:31:f1:f8:45:eb:3b:ef:54:3d:cb:d2:12: 79:86:bc:66:ea:68:66:96:72:99:8a:e6:81:54:3b: 1c:ac:46:5c:7f:a0:60:97:92:12:43:31:29:2f:f7: 16:15:2f:0f:2e:8b:34:7c:d2:bf:3d:cb:72:5d:9e: 31:32:74:23:2d:94:7c:94:e7:b2:fd:e5:4e:16:10: 44:a2:76:99:6d:4a:b5:eb:4f:e3:ab:da:e0:f9:50: 29:0a:e5:ee:23:a3:86:93:ab:d4:51:18:7d:97:7b: 3b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:94:7F:A4:C0:BA:CA:2B:47:22:3A:4E:9A:84:D9:18:10:3F:C8:6B X509v3 Authority Key Identifier: keyid:AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:a6:3e:e3:93:eb:79:b5:cc:04:de:92:a4:3a:40:32:6d:d1: 07:89:b6:37:20:13:82:37:62:a7:be:ab:4b:27:0b:11:d6:69: 5d:0e:8e:cd:4f:cd:89:7c:f0:2d:f1:13:39:47:f3:f1:58:e4: cf:df:99:4c:86:65:9b:05:b2:3d:3d:76:07:13:cb:12:b5:27: 7e:fb:5b:6e:22:21:0c:ac:28:46:3a:68:2d:5e:01:a4:66:c9: ad:78:0a:cc:df:ea:3e:70:93:2c:74:e8:39:56:90:59:91:8c: d7:87:76:68:42:de:5c:77:9f:15:56:90:62:4b:cd:99:ab:d1: db:f4:20:ca:65:2a:bd:f3:97:00:3d:00:54:bd:ea:31:e5:13: 30:98:b6:9a:f6:0e:b7:24:a9:68:2a:66:4f:e6:05:e2:e6:37: b3:4d:af:44:64:d5:0a:95:94:29:9e:81:97:b7:93:c8:eb:25: 8b:a2:fe:85:e9:ab:40:40:a9:bb:d1:e6:09:8d:36:63:6e:dc: d2:38:a7:d1:e2:7f:7d:a0:ed:9b:e7:cc:0a:59:7f:1f:05:1c: e4:ea:13:63:0e:8b:3f:e3:bf:b4:70:40:ff:2c:4e:7c:d3:90: a5:97:e1:7c:b6:90:49:cf:e5:23:26:6a:ea:23:2b:d4:b7:33: de:ef:40:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE0OTgxMTAvBgNVBAUTKEFEQ0Q1QTREQjU5OUM3MUFFRDkzRDA5NkFCMTRDQUZB MDgxNUU2MTcwHhcNMjUwOTE3MDUyMjEzWhcNMjUwOTI0MDUyMjEzWjAYMRYwFAYD VQQDEw02OGNhNDU4Ni00NTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHysqGjM4TaUKQ+WY49iVtxZRM8rPG1wZGxKF1sMXd9vDMs2b5rnN84IEhin HL09EFS5Q4jsaVcrNOfqdAK0UteGSllrQ5qL8Zk00lxPiV4/QlVGVmeVVwc8YjaI 5D1nmk/496NfGVeHQ98eWWEjXIGXrDWhJwC2VY4QUo09lpi/s/E98j/nGWEDi0dD Fe8xES1StkQ5n0sx8fhF6zvvVD3L0hJ5hrxm6mhmlnKZiuaBVDscrEZcf6Bgl5IS QzEpL/cWFS8PLos0fNK/PctyXZ4xMnQjLZR8lOey/eVOFhBEonaZbUq160/jq9rg +VApCuXuI6OGk6vUURh9l3s7VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHiUf6TA usorRyI6TpqE2RgQP8hrMB8GA1UdIwQYMBaAFK3NWk21mcca7ZPQlqsUyvoIFeYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTQ5OC9CM0M4QTk3Q0RG QjUxMUVFQjdBRDhGMkVDNEY5QUUwMi9yYzFhVGJXWnh4cnRrOUNXcXhUSy1nZ1Y1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JjMWFUYldaeHhydGs5Q1dxeFRLLWdnVjVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTQ5OC9CM0M4QTk3Q0RGQjUxMUVFQjdBRDhGMkVDNEY5QUUwMi9yYzFhVGJXWnh4 cnRrOUNXcXhUSy1nZ1Y1aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABpj7jk+t5tcwE3pKkOkAybdEHibY3IBOCN2KnvqtLJwsR1mldDo7N T82JfPAt8RM5R/PxWOTP35lMhmWbBbI9PXYHE8sStSd++1tuIiEMrChGOmgtXgGk ZsmteArM3+o+cJMsdOg5VpBZkYzXh3ZoQt5cd58VVpBiS82Zq9Hb9CDKZSq985cA PQBUveox5RMwmLaa9g63JKloKmZP5gXi5jezTa9EZNUKlZQpnoGXt5PI6yWLov6F 6atAQKm70eYJjTZjbtzSOKfR4n99oO2b58wKWX8fBRzk6hNjDos/47+0cED/LE58 05Cll+F8tpBJz+UjJmrqIyvUtzPe70Dw -----END CERTIFICATE-----Generated at Fri Sep 19 03:29:17 2025 by rpki-client