$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft File: PN9D1xf8WEnyOpTimncrKKXXAeM.mft (raw, json) Hash identifier: l7qdVBNQnj6keyu3iYiPiohpQ5hxO9xslw3Z7a+xTr4= Subject key identifier: 69:8F:82:5D:ED:ED:72:68:55:F4:CB:E0:60:8E:E1:E5:52:2C:1A:62 Authority key identifier: 3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 Certificate issuer: /CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Certificate serial: 088A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft Manifest number: 0881 Signing time: Thu 18 Sep 2025 20:51:13 +0000 Manifest this update: Thu 18 Sep 2025 20:51:13 +0000 Manifest next update: Thu 25 Sep 2025 20:51:13 +0000 Files and hashes: 1: PN9D1xf8WEnyOpTimncrKKXXAeM.crl (hash: uAzv1rnoj5g7fmyYTLKS1la42nqi0eTizmZypko67LE=) 2: D0CF108ED85111EF9DC0826CC4F9AE02.roa (hash: YDlJJK3r3QY2jge7AOb3CYnCW+wC8nrMDrmyeODCDi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:51:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2186 (0x88a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BB3, serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Validity Not Before: Sep 18 20:51:13 2025 GMT Not After : Sep 25 20:51:13 2025 GMT Subject: CN=68cc70c1-2504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:57:c7:0f:54:cb:e5:5a:76:c0:f4:76:4a:6d: 4c:df:e8:dc:fa:f3:71:f8:25:cb:a1:9a:db:f4:c8: 92:3b:d8:65:ce:b8:c5:3e:d5:01:aa:d8:a4:07:3e: 95:c7:7f:48:87:29:f5:11:03:6f:c0:1c:77:6b:84: ca:b0:75:ac:11:33:29:79:10:69:47:8c:fc:74:6c: 71:49:48:72:ea:0a:51:72:ff:dd:da:14:e6:e5:9f: 14:6e:2d:4d:a2:8c:a6:03:e6:04:b8:78:13:c6:fc: 09:64:87:32:17:9c:04:e2:70:27:f0:1e:b3:63:bd: ac:24:65:21:f1:34:ea:e5:eb:70:86:1b:05:07:91: 19:a0:b9:f0:5d:67:53:94:a6:5a:5f:68:3f:aa:74: e4:eb:8a:11:a3:7e:50:24:c3:36:af:e9:10:cf:3c: 30:79:77:94:a9:3b:73:64:d3:da:a1:f1:20:ad:5b: b8:ba:ab:4a:db:a2:d7:a8:74:4f:eb:c8:bf:25:8b: 01:a9:a9:4f:76:4d:57:69:6b:e3:05:82:c5:74:d4: 74:88:5d:33:ff:a0:bc:d9:38:69:87:52:06:c0:67: aa:cc:47:52:21:1f:66:62:1c:23:b9:08:ff:b7:05: 1d:91:54:ec:89:ac:a1:86:16:17:14:12:47:9b:fa: 50:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:8F:82:5D:ED:ED:72:68:55:F4:CB:E0:60:8E:E1:E5:52:2C:1A:62 X509v3 Authority Key Identifier: keyid:3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:7d:ce:13:a6:e4:24:59:b4:35:bd:9e:30:d7:39:23:af:1d: 26:21:e9:96:fc:c5:70:e4:12:7e:9e:ab:66:4e:95:74:3a:cf: 79:de:41:0f:9f:32:da:6a:19:df:53:30:48:9b:a0:82:f2:5b: 5b:2b:eb:36:29:79:c9:6e:0f:d7:b0:69:bd:ce:70:82:78:fa: 12:ea:f3:76:ed:85:bb:ce:e9:53:e8:cd:1b:01:de:a2:c6:16: 7d:10:0d:a4:f8:26:86:08:7c:ab:4f:9c:f2:3a:54:af:da:5a: c7:5a:6e:ce:f1:38:68:fc:68:9b:08:84:06:a7:12:3d:5d:e6: 6c:09:2e:0b:7f:6f:ae:c4:00:25:f1:6d:9b:a7:ad:ac:2c:49: 58:52:05:f4:ba:88:76:9a:ed:e9:d7:8f:0f:b8:67:01:e7:dd: 4b:da:84:21:0b:cb:2b:66:8f:1d:c1:c6:67:31:19:d5:00:28: 19:73:bc:77:f2:36:6c:30:19:d4:0a:51:b6:29:ec:49:17:f7: 46:81:c8:26:e1:9b:40:ed:fb:e0:0b:1c:9a:08:ab:06:18:95: c4:04:57:da:4c:9c:80:7d:ef:d3:73:1a:22:df:18:bf:9d:7e: 79:39:d5:d3:89:e4:cb:f0:05:21:e7:d4:79:3e:10:0d:62:ea: 97:89:63:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCQjMxMTAvBgNVBAUTKDNDREY0M0Q3MTdGQzU4NDlGMjNBOTRFMjlBNzcyQjI4 QTVENzAxRTMwHhcNMjUwOTE4MjA1MTEzWhcNMjUwOTI1MjA1MTEzWjAYMRYwFAYD VQQDEw02OGNjNzBjMS0yNTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1fHD1TL5Vp2wPR2Sm1M3+jc+vNx+CXLoZrb9MiSO9hlzrjFPtUBqtikBz6V x39Ihyn1EQNvwBx3a4TKsHWsETMpeRBpR4z8dGxxSUhy6gpRcv/d2hTm5Z8Ubi1N ooymA+YEuHgTxvwJZIcyF5wE4nAn8B6zY72sJGUh8TTq5etwhhsFB5EZoLnwXWdT lKZaX2g/qnTk64oRo35QJMM2r+kQzzwweXeUqTtzZNPaofEgrVu4uqtK26LXqHRP 68i/JYsBqalPdk1XaWvjBYLFdNR0iF0z/6C82Thph1IGwGeqzEdSIR9mYhwjuQj/ twUdkVTsiayhhhYXFBJHm/pQDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGmPgl3t 7XJoVfTL4GCO4eVSLBpiMB8GA1UdIwQYMBaAFDzfQ9cX/FhJ8jqU4pp3Kyil1wHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JCMy85NUFFQTlFOENC RTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdFbnlPcFRpbW5jcktLWFhB ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOOUQxeGY4V0VueU9wVGltbmNyS0tYWEFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JCMy85NUFFQTlFOENCRTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdF bnlPcFRpbW5jcktLWFhBZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXfc4TpuQkWbQ1vZ4w1zkjrx0mIemW/MVw5BJ+nqtmTpV0Os953kEP nzLaahnfUzBIm6CC8ltbK+s2KXnJbg/XsGm9znCCePoS6vN27YW7zulT6M0bAd6i xhZ9EA2k+CaGCHyrT5zyOlSv2lrHWm7O8Tho/GibCIQGpxI9XeZsCS4Lf2+uxAAl 8W2bp62sLElYUgX0uoh2mu3p148PuGcB591L2oQhC8srZo8dwcZnMRnVACgZc7x3 8jZsMBnUClG2KexJF/dGgcgm4ZtA7fvgCxyaCKsGGJXEBFfaTJyAfe/Tcxoi3xi/ nX55OdXTieTL8AUh59R5PhANYuqXiWNh -----END CERTIFICATE-----Generated at Thu Sep 18 23:50:53 2025 by rpki-client