$ rpki-client -vvf rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft File: l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft (raw, json) Hash identifier: /FsuuOvcC8BUKF4/eO9QOv0XLfSLYubD26orBbSQJJw= Subject key identifier: 4F:BC:5A:FD:41:59:8E:83:0A:F6:B6:98:6E:58:58:91:62:7A:A1:2E Authority key identifier: 97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 Certificate issuer: /CN=A91E39B4/serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Certificate serial: 0B72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft Manifest number: 0B5E Signing time: Sat 06 Sep 2025 19:17:44 +0000 Manifest this update: Sat 06 Sep 2025 19:17:44 +0000 Manifest next update: Sat 13 Sep 2025 19:17:44 +0000 Files and hashes: 1: l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl (hash: /EUsA6M/vy2YGa0sSO/bnxsqJ6mdtdQUl2khVO71tyw=) 2: 46F57CF8137B11EBA3B47E37C4F9AE02.roa (hash: 2qnnF6MVOAPWKTwVx6xcANvt7+ipRsuxDi1zcVsoM90=) 3: D968823E3DA111EA9A3FD550C4F9AE02.roa (hash: LHN9DyWzlGRcwkpXqFqZ90XaKLujDGwCFAysXhBXguc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 19:17:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2930 (0xb72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E39B4, serialNumber=97B3DD2AB3C89BC8A2BBC1DB803BCE68EAA5AA12 Validity Not Before: Sep 6 19:17:44 2025 GMT Not After : Sep 13 19:17:44 2025 GMT Subject: CN=68bc88d8-c2b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:26:a8:75:42:14:c2:67:3a:46:01:97:58:22: ce:38:15:42:7b:98:df:73:02:2e:f1:26:c9:b8:5a: ea:e1:85:40:56:0a:80:07:7c:e8:51:f2:3f:3d:7a: 72:31:96:fe:4c:fd:0e:ca:9e:f3:7f:b9:0a:c1:ef: 73:41:65:4e:51:b7:b2:ae:26:16:a4:6f:99:c8:6a: bb:a8:65:97:f7:41:85:47:3d:ae:34:13:1c:1d:d4: 9e:8e:37:61:c9:70:b1:1a:af:8f:9c:4c:6f:65:3f: 6e:ad:ea:db:3d:fd:27:de:3f:fc:8f:c9:64:39:f0: 15:50:31:4e:70:47:b9:60:c5:56:57:06:0d:3f:34: c4:cc:9a:56:03:fc:f9:02:2f:bb:c2:29:6b:c2:82: 71:5c:ad:36:5b:15:46:ac:7f:aa:ad:e8:7b:55:de: 71:f3:1b:48:db:c9:57:9c:22:2b:11:e7:b2:82:31: 9f:78:6c:00:74:de:c0:8f:5f:77:d8:ed:cb:65:51: c7:86:a2:a0:fb:c4:da:91:ab:da:5c:1f:4f:9b:10: 88:9c:f1:1a:39:14:bd:d2:80:b2:1e:d7:5c:ad:dd: 91:e0:f8:6d:fc:fc:32:f6:0c:34:f9:f5:da:ed:b8: 94:ae:19:25:00:2c:35:2e:46:53:be:0e:a0:82:50: 85:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:BC:5A:FD:41:59:8E:83:0A:F6:B6:98:6E:58:58:91:62:7A:A1:2E X509v3 Authority Key Identifier: keyid:97:B3:DD:2A:B3:C8:9B:C8:A2:BB:C1:DB:80:3B:CE:68:EA:A5:AA:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7PdKrPIm8iiu8HbgDvOaOqlqhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E39B4/1EE1829E3DA111EA8B67E94FC4F9AE02/l7PdKrPIm8iiu8HbgDvOaOqlqhI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:c3:57:2c:b1:fd:6f:40:15:9b:dc:68:ad:34:dd:6c:a9:89: 94:c9:ee:35:c1:16:b3:1d:f1:85:1f:ad:46:7a:22:2f:ab:5f: 3a:eb:fb:ed:6c:88:16:12:b8:09:8f:5a:6f:f6:c0:d9:3a:c3: cc:06:36:59:84:ab:c0:11:5c:ff:d3:2f:d6:dd:90:de:85:a7: 37:dc:92:21:88:79:a1:5f:bc:4c:29:24:7c:21:79:5e:c0:74: 4e:21:b2:f4:00:8b:4c:0a:e8:13:67:68:07:c2:3e:25:4a:fc: 97:dd:59:5a:1d:a1:c8:85:48:3e:42:41:85:8e:3d:bd:07:5c: ad:98:b9:19:bc:e6:79:2a:05:ec:8c:b6:39:7d:b5:39:5c:63: 0e:87:0f:84:69:ae:e6:81:39:75:d3:e6:b2:f5:73:3f:ff:e2: 56:e9:1f:9f:29:92:15:ae:94:e4:b9:bf:62:3f:1d:5a:bc:6a: bd:e6:58:c9:29:57:6a:dd:07:17:76:0a:b6:ee:b5:b9:d2:c3: 2b:b3:b2:c2:82:eb:44:5b:f8:06:9d:56:36:c5:9e:f4:08:cf: cf:c1:44:9f:27:12:06:87:8b:ff:e5:b9:0d:01:c9:9a:ae:ba: 94:8f:84:ec:ac:e3:7e:91:05:81:ec:76:fb:d1:f8:fd:14:35: a3:7c:d2:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM5QjQxMTAvBgNVBAUTKDk3QjNERDJBQjNDODlCQzhBMkJCQzFEQjgwM0JDRTY4 RUFBNUFBMTIwHhcNMjUwOTA2MTkxNzQ0WhcNMjUwOTEzMTkxNzQ0WjAYMRYwFAYD VQQDEw02OGJjODhkOC1jMmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAniaodUIUwmc6RgGXWCLOOBVCe5jfcwIu8SbJuFrq4YVAVgqAB3zoUfI/PXpy MZb+TP0Oyp7zf7kKwe9zQWVOUbeyriYWpG+ZyGq7qGWX90GFRz2uNBMcHdSejjdh yXCxGq+PnExvZT9urerbPf0n3j/8j8lkOfAVUDFOcEe5YMVWVwYNPzTEzJpWA/z5 Ai+7wilrwoJxXK02WxVGrH+qreh7Vd5x8xtI28lXnCIrEeeygjGfeGwAdN7Aj193 2O3LZVHHhqKg+8TakavaXB9PmxCInPEaORS90oCyHtdcrd2R4Pht/Pwy9gw0+fXa 7biUrhklACw1LkZTvg6gglCFqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE+8Wv1B WY6DCva2mG5YWJFieqEuMB8GA1UdIwQYMBaAFJez3SqzyJvIorvB24A7zmjqpaoS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzlCNC8xRUUxODI5RTNE QTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04aWl1OEhiZ0R2T2FPcWxx aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3UGRLclBJbThpaXU4SGJnRHZPYU9xbHFoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzlCNC8xRUUxODI5RTNEQTExMUVBOEI2N0U5NEZDNEY5QUUwMi9sN1BkS3JQSW04 aWl1OEhiZ0R2T2FPcWxxaEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2w1cssf1vQBWb3GitNN1sqYmUye41wRazHfGFH61GeiIvq1866/vt bIgWErgJj1pv9sDZOsPMBjZZhKvAEVz/0y/W3ZDehac33JIhiHmhX7xMKSR8IXle wHROIbL0AItMCugTZ2gHwj4lSvyX3VlaHaHIhUg+QkGFjj29B1ytmLkZvOZ5KgXs jLY5fbU5XGMOhw+Eaa7mgTl10+ay9XM//+JW6R+fKZIVrpTkub9iPx1avGq95ljJ KVdq3QcXdgq27rW50sMrs7LCgutEW/gGnVY2xZ70CM/PwUSfJxIGh4v/5bkNAcma rrqUj4TsrON+kQWB7Hb70fj9FDWjfNJf -----END CERTIFICATE-----Generated at Mon Sep 8 16:14:07 2025 by rpki-client