$ rpki-client -vvf rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft File: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft (raw, json) Hash identifier: 3oFKpAOr26xjJtU7hAkDDozTYCF803Yy3I4z60HKjpI= Subject key identifier: 64:86:3F:65:1F:0B:42:0E:E8:24:C6:3F:53:62:1E:81:B2:E0:E0:06 Authority key identifier: 57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 Certificate issuer: /CN=A91E331D/serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Certificate serial: 0471 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft Manifest number: 046D Signing time: Fri 19 Sep 2025 00:31:45 +0000 Manifest this update: Fri 19 Sep 2025 00:31:44 +0000 Manifest next update: Fri 26 Sep 2025 00:31:44 +0000 Files and hashes: 1: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl (hash: 6FV8BaZfbpmUYaNLRAyiq50rUbAFcuALZQUnIAJwwhM=) 2: DBE8B4205F0F11ECA6315D2AC4F9AE02.roa (hash: jwlLH9aehVTXk9pUZLFV4it1GAP8lE1rTRj2qtnhA8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 00:31:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1137 (0x471) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E331D, serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Validity Not Before: Sep 19 00:31:44 2025 GMT Not After : Sep 26 00:31:44 2025 GMT Subject: CN=68cca471-cb32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7f:6b:3f:1a:9d:d4:8b:6b:f7:4c:b6:19:25: b9:50:1a:f8:27:c3:4b:14:2d:3e:db:78:fe:fa:46: c1:c1:f9:3c:27:77:cd:54:99:8c:e0:f0:81:be:b9: 77:d0:c5:b3:15:50:a0:27:cf:e4:93:ad:61:11:f4: 96:ff:c4:4d:d1:96:cd:3a:c0:5c:da:39:1e:02:96: 71:ea:ff:a0:6c:b2:d1:5a:c9:f1:ad:b6:53:32:45: 75:db:48:d1:7b:ca:f6:5a:cf:b7:b9:ac:73:9c:6a: 66:e5:9e:43:67:84:a0:4c:e2:ae:23:f1:a6:a3:1d: 5e:31:9d:7f:1d:48:4c:67:d8:5c:f3:1f:1a:48:df: 8b:18:c9:8f:c9:92:9a:61:8c:07:d9:5e:3d:8d:6d: f8:40:1e:9b:52:3f:50:a2:ce:f6:80:5d:56:b8:7a: 11:d5:4f:5d:67:8f:e4:2d:a1:4f:09:01:d4:c9:f8: b0:90:9f:c8:60:1f:c9:9a:98:e8:2e:13:c4:b9:64: ae:70:b4:83:89:1a:51:95:92:d5:96:9a:e8:4e:cb: 55:e9:0d:27:14:9c:d5:b4:99:c2:a2:53:40:e3:68: 2d:17:6e:71:c7:a0:f9:19:26:84:3a:5d:1f:d6:ef: 94:3d:71:5d:42:c2:8d:ca:84:64:ca:97:72:22:cb: ff:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:86:3F:65:1F:0B:42:0E:E8:24:C6:3F:53:62:1E:81:B2:E0:E0:06 X509v3 Authority Key Identifier: keyid:57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:bf:38:a3:33:20:ce:89:e1:fd:ed:37:78:cd:09:3b:82:d7: d8:21:8e:ce:b4:c2:fd:2f:2d:84:f7:47:68:b0:19:31:0a:ab: 7c:10:d4:96:e4:e1:11:aa:f9:f5:da:88:ca:14:04:a5:d8:14: bc:ba:37:17:7e:4e:14:60:b3:ea:f8:82:0f:1c:68:2d:ff:bb: 5d:9b:3c:90:74:b2:3a:f0:7f:8e:67:1c:9b:7b:16:dd:66:86: d0:f2:16:d0:db:b7:00:66:16:11:12:bd:85:b8:14:a2:d4:9a: 03:4b:ab:3d:5e:6e:18:70:ae:3d:27:47:a6:f7:67:c2:79:d7: 10:27:91:29:64:df:03:84:40:02:9f:f6:8f:ed:ed:dc:22:63: 6b:b7:55:c2:56:7c:fb:1a:e8:20:13:a0:7d:e8:ff:ca:a9:8e: 22:10:f3:ac:99:16:b3:62:58:c0:56:04:df:0d:13:58:ef:05: f1:8f:95:1c:14:c9:d0:37:ad:d6:be:d4:44:20:47:fd:c7:93: 27:b9:39:6b:f0:ed:f4:cf:65:1f:24:98:ac:24:5f:74:6d:7e: f7:78:fc:22:86:bb:7e:e9:a4:5b:7d:17:43:6e:0a:ea:f8:8e: 44:f0:4d:eb:7e:d2:05:09:b0:3b:6d:6e:21:28:85:ad:35:7a: ef:0a:7b:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzMUQxMTAvBgNVBAUTKDU3MkU3NjBEQkNFNkQ2NTU1MzA5OEIwMTdFRkMzMkVD QjFDRUNBRTEwHhcNMjUwOTE5MDAzMTQ0WhcNMjUwOTI2MDAzMTQ0WjAYMRYwFAYD VQQDEw02OGNjYTQ3MS1jYjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAun9rPxqd1Itr90y2GSW5UBr4J8NLFC0+23j++kbBwfk8J3fNVJmM4PCBvrl3 0MWzFVCgJ8/kk61hEfSW/8RN0ZbNOsBc2jkeApZx6v+gbLLRWsnxrbZTMkV120jR e8r2Ws+3uaxznGpm5Z5DZ4SgTOKuI/Gmox1eMZ1/HUhMZ9hc8x8aSN+LGMmPyZKa YYwH2V49jW34QB6bUj9Qos72gF1WuHoR1U9dZ4/kLaFPCQHUyfiwkJ/IYB/Jmpjo LhPEuWSucLSDiRpRlZLVlproTstV6Q0nFJzVtJnColNA42gtF25xx6D5GSaEOl0f 1u+UPXFdQsKNyoRkypdyIsv/mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGSGP2Uf C0IO6CTGP1NiHoGy4OAGMB8GA1UdIwQYMBaAFFcudg285tZVUwmLAX78Muyxzsrh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzMxRC9FNzYxMENDRTVG MEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFsVlRDWXNCZnZ3eTdMSE95 dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z5NTJEYnptMWxWVENZc0Jmdnd5N0xIT3l1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzMxRC9FNzYxMENDRTVGMEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFs VlRDWXNCZnZ3eTdMSE95dUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJvzijMyDOieH97Td4zQk7gtfYIY7OtML9Ly2E90dosBkxCqt8ENSW 5OERqvn12ojKFASl2BS8ujcXfk4UYLPq+IIPHGgt/7tdmzyQdLI68H+OZxybexbd ZobQ8hbQ27cAZhYREr2FuBSi1JoDS6s9Xm4YcK49J0em92fCedcQJ5EpZN8DhEAC n/aP7e3cImNrt1XCVnz7GuggE6B96P/KqY4iEPOsmRazYljAVgTfDRNY7wXxj5Uc FMnQN63WvtREIEf9x5MnuTlr8O30z2UfJJisJF90bX73ePwihrt+6aRbfRdDbgrq +I5E8E3rftIFCbA7bW4hKIWtNXrvCnsh -----END CERTIFICATE-----Generated at Fri Sep 19 05:26:04 2025 by rpki-client