$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft File: 29u3f7gUXp1EhgdPtz74TVSOpiI.mft (raw, json) Hash identifier: zdYjwFjDv6MfaIFdgZ4jmsblqCHmztEE/IwY6hO318c= Subject key identifier: D4:93:24:31:9F:EA:84:3F:73:E3:FA:0D:26:80:28:83:F3:03:EB:EE Authority key identifier: DB:DB:B7:7F:B8:14:5E:9D:44:86:07:4F:B7:3E:F8:4D:54:8E:A6:22 Certificate issuer: /CN=A91E1511/serialNumber=DBDBB77FB8145E9D4486074FB73EF84D548EA622 Certificate serial: FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29u3f7gUXp1EhgdPtz74TVSOpiI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft Manifest number: FD Signing time: Fri 19 Sep 2025 05:44:11 +0000 Manifest this update: Fri 19 Sep 2025 05:44:10 +0000 Manifest next update: Fri 26 Sep 2025 05:44:10 +0000 Files and hashes: 1: 29u3f7gUXp1EhgdPtz74TVSOpiI.crl (hash: zxmP7KWbab5yjVLMI9aLIl1/EdLwf72BQpM33EtP9fM=) 2: 5741EB0A159311EFA0CC790BC4F9AE02.roa (hash: 6KnYqtU5eDGuSaPKMnhRfcXUWukIQCJpgFhNSz5ECjE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.crl rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29u3f7gUXp1EhgdPtz74TVSOpiI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 05:44:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1511, serialNumber=DBDBB77FB8145E9D4486074FB73EF84D548EA622 Validity Not Before: Sep 19 05:44:10 2025 GMT Not After : Sep 26 05:44:10 2025 GMT Subject: CN=68ccedab-4e16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3d:3d:e3:cd:cc:a2:23:c1:51:54:ae:c3:a0: 85:a1:90:15:d9:7f:88:aa:0e:30:d8:b3:3b:4d:70: a0:22:ed:31:af:fc:69:02:a9:b0:ea:19:88:29:6a: 56:c8:ee:73:43:34:21:5a:73:31:4d:f9:fa:d3:9d: 4c:fb:88:bc:25:f8:ea:05:ce:fa:90:c2:e7:15:25: 68:2f:be:1f:c7:8c:eb:55:50:83:3d:ca:e3:02:28: 22:c1:28:c3:45:f4:3a:0a:0e:1f:5c:3b:df:dd:92: 2f:fb:33:67:da:e8:b6:09:73:61:0b:7c:fa:8f:0d: 2b:7b:9e:28:44:3f:d5:75:a9:80:cb:7c:72:4b:a9: 5d:39:00:15:01:e6:a7:dc:2a:fb:47:77:93:89:3a: ad:0f:d0:94:73:95:a0:41:0f:4e:d8:d0:43:59:47: 79:ad:d9:b4:40:82:70:01:27:3e:64:b2:9d:04:9e: 9c:7c:ad:5e:ad:6d:3d:dd:b7:4c:0e:70:61:ac:15: df:43:53:75:8b:f3:a4:db:ce:37:03:72:c3:42:05: 93:d7:fa:d9:98:f3:b7:8a:61:e9:e6:4c:81:7a:cf: 73:9a:22:82:1e:75:31:e4:f6:60:5e:c8:05:20:72: d9:bb:ec:aa:48:bf:63:d2:ee:35:9c:cf:86:e7:c2: 01:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:93:24:31:9F:EA:84:3F:73:E3:FA:0D:26:80:28:83:F3:03:EB:EE X509v3 Authority Key Identifier: keyid:DB:DB:B7:7F:B8:14:5E:9D:44:86:07:4F:B7:3E:F8:4D:54:8E:A6:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/29u3f7gUXp1EhgdPtz74TVSOpiI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1511/8D34323C13F811EFA384CE23C4F9AE02/29u3f7gUXp1EhgdPtz74TVSOpiI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:49:b9:bb:ac:4e:fd:57:f8:bd:d7:d3:bc:d9:f0:8f:3f:2b: 08:a3:30:b4:31:8f:4c:44:e0:b7:35:fd:d6:ca:19:36:1c:e4: 15:d2:2a:d0:45:bc:40:f6:4c:a0:35:3e:d1:16:81:97:92:21: 0a:ae:21:3b:92:c4:16:bb:1c:78:35:5f:b4:ee:61:ff:7f:38: 28:a1:41:f3:1c:7c:9a:d6:e5:aa:40:9f:f2:09:d6:13:36:9f: 18:36:6d:44:e7:3e:a6:d2:cb:ba:2f:f7:57:e8:51:d4:19:de: 8a:d3:1a:86:b5:b5:53:00:bc:53:58:09:c0:35:51:59:a4:fa: 91:b6:6c:ad:0e:10:93:d1:7e:e1:61:d5:e5:3e:12:d1:fb:90: f9:0a:48:d1:94:87:ca:da:5a:dc:9b:dd:99:a8:01:a3:99:50: 20:85:78:1c:25:e5:f6:2f:39:23:8d:1b:ab:b8:1c:07:22:22: 62:d6:b3:27:67:0a:a5:f7:12:9b:15:0a:36:5c:e5:3b:b0:f3: c4:d7:c6:28:21:97:dc:61:85:68:43:de:67:d4:14:e0:78:e7: c3:e5:c6:ec:7c:8c:c7:5a:83:6b:5e:2a:1d:b7:33:e9:2a:6c: e5:31:ce:92:60:4a:67:8c:67:bd:19:55:a7:76:1c:a3:99:6f: ac:a4:b0:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE1MTExMTAvBgNVBAUTKERCREJCNzdGQjgxNDVFOUQ0NDg2MDc0RkI3M0VGODRE NTQ4RUE2MjIwHhcNMjUwOTE5MDU0NDEwWhcNMjUwOTI2MDU0NDEwWjAYMRYwFAYD VQQDEw02OGNjZWRhYi00ZTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwT09483MoiPBUVSuw6CFoZAV2X+Iqg4w2LM7TXCgIu0xr/xpAqmw6hmIKWpW yO5zQzQhWnMxTfn6051M+4i8JfjqBc76kMLnFSVoL74fx4zrVVCDPcrjAigiwSjD RfQ6Cg4fXDvf3ZIv+zNn2ui2CXNhC3z6jw0re54oRD/VdamAy3xyS6ldOQAVAean 3Cr7R3eTiTqtD9CUc5WgQQ9O2NBDWUd5rdm0QIJwASc+ZLKdBJ6cfK1erW093bdM DnBhrBXfQ1N1i/Ok2843A3LDQgWT1/rZmPO3imHp5kyBes9zmiKCHnUx5PZgXsgF IHLZu+yqSL9j0u41nM+G58IBgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNSTJDGf 6oQ/c+P6DSaAKIPzA+vuMB8GA1UdIwQYMBaAFNvbt3+4FF6dRIYHT7c++E1UjqYi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTUxMS84RDM0MzIzQzEz RjgxMUVGQTM4NENFMjNDNEY5QUUwMi8yOXUzZjdnVVhwMUVoZ2RQdHo3NFRWU09w aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI5dTNmN2dVWHAxRWhnZFB0ejc0VFZTT3BpSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTUxMS84RDM0MzIzQzEzRjgxMUVGQTM4NENFMjNDNEY5QUUwMi8yOXUzZjdnVVhw MUVoZ2RQdHo3NFRWU09waUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5Sbm7rE79V/i919O82fCPPysIozC0MY9MROC3Nf3Wyhk2HOQV0irQ RbxA9kygNT7RFoGXkiEKriE7ksQWuxx4NV+07mH/fzgooUHzHHya1uWqQJ/yCdYT Np8YNm1E5z6m0su6L/dX6FHUGd6K0xqGtbVTALxTWAnANVFZpPqRtmytDhCT0X7h YdXlPhLR+5D5CkjRlIfK2lrcm92ZqAGjmVAghXgcJeX2LzkjjRuruBwHIiJi1rMn Zwql9xKbFQo2XOU7sPPE18YoIZfcYYVoQ95n1BTgeOfD5cbsfIzHWoNrXiodtzPp KmzlMc6SYEpnjGe9GVWndhyjmW+spLB3 -----END CERTIFICATE-----Generated at Fri Sep 19 23:18:19 2025 by rpki-client