$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft File: r_zmN5iBZebFG_v-vRKD1REkAZA.mft (raw, json) Hash identifier: 7rd1Nce6zYuR1YD8c3D5/DcISZYp+EjqAqjSqqV7hAc= Subject key identifier: 32:21:5E:14:CB:4A:10:73:68:B7:09:EF:C4:2D:F2:10:9A:94:B4:9F Authority key identifier: AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 Certificate issuer: /CN=A91E4468/serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft Manifest number: 0159 Signing time: Wed 17 Sep 2025 04:44:28 +0000 Manifest this update: Wed 17 Sep 2025 04:44:27 +0000 Manifest next update: Wed 24 Sep 2025 04:44:27 +0000 Files and hashes: 1: r_zmN5iBZebFG_v-vRKD1REkAZA.crl (hash: hnUtIQMeXxlHSg0xkTj26nbHruohcyYtc4rXALRcFsE=) 2: C531DD12226F11EF8D24AD63C4F9AE02.roa (hash: a2/vehSWDoff6mLTg7VEADcM0ey8iDfcQQZxJYEqkDM=) 3: C608133C226F11EF8D24AD63C4F9AE02.roa (hash: GATUqbNDhKaVb/i1ZjCIO1rgwevFVCyWk8Ts83izVL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:44:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4468, serialNumber=AFFCE637988165E6C51BFBFEBD1283D511240190 Validity Not Before: Sep 17 04:44:27 2025 GMT Not After : Sep 24 04:44:27 2025 GMT Subject: CN=68ca3cac-3f92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:be:d7:2d:23:10:32:2d:b6:90:ca:ad:1c:71: 0e:97:e3:13:36:b3:2c:ab:de:d3:36:a7:3f:de:37: 99:79:c8:f1:fa:25:eb:1f:ff:98:e8:b1:8e:35:57: bd:db:75:a2:65:c1:be:7a:4e:9a:f2:44:b6:1a:67: 87:fa:8a:54:92:10:a5:c4:c6:46:01:67:7b:00:a2: c6:c6:f4:86:e2:2b:24:b1:a3:0b:94:84:84:9f:7d: 31:9c:98:13:66:92:af:c1:b2:13:d8:66:7e:29:2b: 1f:0e:23:37:83:75:63:ac:96:18:a0:d5:6b:90:85: 6d:86:4e:7f:0f:2f:ca:83:3e:c0:98:34:e1:74:3e: 2a:c3:c7:48:5c:94:46:a4:f4:d0:81:a9:84:1a:d6: 12:bb:e6:e8:c8:3c:28:f5:02:79:4a:4a:ef:26:bb: 92:24:f7:71:72:1c:3f:7a:88:35:92:47:06:5c:8a: 9f:6b:97:37:87:3f:1a:a5:1d:66:ae:50:3f:b6:f1: b8:95:26:d7:c1:ac:72:36:7c:24:0b:96:2b:b6:72: cf:eb:57:07:0e:5e:90:f2:98:b1:65:13:62:ad:2f: 09:ea:dd:3f:fc:d8:c0:1d:04:57:97:2a:f6:88:08: 73:10:18:73:05:c8:3b:8a:76:92:14:95:fa:75:6b: a0:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:21:5E:14:CB:4A:10:73:68:B7:09:EF:C4:2D:F2:10:9A:94:B4:9F X509v3 Authority Key Identifier: keyid:AF:FC:E6:37:98:81:65:E6:C5:1B:FB:FE:BD:12:83:D5:11:24:01:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r_zmN5iBZebFG_v-vRKD1REkAZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4468/827524E88EE511EEA2EEDD12C4F9AE02/r_zmN5iBZebFG_v-vRKD1REkAZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:87:10:32:62:63:5c:26:a0:b4:bc:33:94:2a:e9:b1:97:35: 0f:74:72:b0:1e:78:5d:b2:96:08:2a:ba:01:02:f4:7a:e5:42: e2:c2:85:eb:23:65:96:34:cb:14:41:2e:2b:10:6b:7f:2e:45: d3:5f:ef:c2:7a:7c:4f:60:d9:fd:89:d6:1a:23:95:63:bb:04: 08:fa:1a:14:14:ba:46:77:10:43:7d:1c:f2:72:eb:03:29:ff: 8a:7e:28:86:51:8d:18:89:d5:c7:31:16:23:20:fc:24:eb:f0: 72:53:8d:77:ac:37:af:78:10:af:a1:b4:42:72:d7:c1:fa:bb: c8:50:3a:cd:f1:e4:8d:5d:3d:2e:b9:95:c0:92:c8:05:b9:cf: 4e:82:06:b3:10:d2:ba:1d:9a:eb:4e:55:8f:55:23:55:02:85: c4:26:e2:eb:2e:78:fc:e2:dd:af:7c:49:80:85:6b:1c:da:57: 7c:dc:ec:a6:92:03:98:f8:cd:ba:31:01:51:80:f3:e1:f2:99: c7:c1:8b:ae:5d:f8:0a:b5:39:4f:19:fe:9e:58:ad:b6:79:a7: 92:f3:ba:fa:ad:e6:7e:0f:24:d0:a7:2d:f0:18:77:7c:a1:58: d7:0b:62:00:15:e0:db:83:53:04:0b:a5:bb:ca:46:88:09:95: cf:a4:74:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ0NjgxMTAvBgNVBAUTKEFGRkNFNjM3OTg4MTY1RTZDNTFCRkJGRUJEMTI4M0Q1 MTEyNDAxOTAwHhcNMjUwOTE3MDQ0NDI3WhcNMjUwOTI0MDQ0NDI3WjAYMRYwFAYD VQQDEw02OGNhM2NhYy0zZjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoL7XLSMQMi22kMqtHHEOl+MTNrMsq97TNqc/3jeZecjx+iXrH/+Y6LGONVe9 23WiZcG+ek6a8kS2GmeH+opUkhClxMZGAWd7AKLGxvSG4isksaMLlISEn30xnJgT ZpKvwbIT2GZ+KSsfDiM3g3VjrJYYoNVrkIVthk5/Dy/Kgz7AmDThdD4qw8dIXJRG pPTQgamEGtYSu+boyDwo9QJ5SkrvJruSJPdxchw/eog1kkcGXIqfa5c3hz8apR1m rlA/tvG4lSbXwaxyNnwkC5YrtnLP61cHDl6Q8pixZRNirS8J6t0//NjAHQRXlyr2 iAhzEBhzBcg7inaSFJX6dWugOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIhXhTL ShBzaLcJ78Qt8hCalLSfMB8GA1UdIwQYMBaAFK/85jeYgWXmxRv7/r0Sg9URJAGQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDQ2OC84Mjc1MjRFODhF RTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlplYkZHX3YtdlJLRDFSRWtB WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jfem1ONWlCWmViRkdfdi12UktEMVJFa0FaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NDQ2OC84Mjc1MjRFODhFRTUxMUVFQTJFRUREMTJDNEY5QUUwMi9yX3ptTjVpQlpl YkZHX3YtdlJLRDFSRWtBWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrhxAyYmNcJqC0vDOUKumxlzUPdHKwHnhdspYIKroBAvR65ULiwoXr I2WWNMsUQS4rEGt/LkXTX+/CenxPYNn9idYaI5VjuwQI+hoUFLpGdxBDfRzycusD Kf+KfiiGUY0YidXHMRYjIPwk6/ByU413rDeveBCvobRCctfB+rvIUDrN8eSNXT0u uZXAksgFuc9OggazENK6HZrrTlWPVSNVAoXEJuLrLnj84t2vfEmAhWsc2ld83Oym kgOY+M26MQFRgPPh8pnHwYuuXfgKtTlPGf6eWK22eaeS87r6reZ+DyTQpy3wGHd8 oVjXC2IAFeDbg1MEC6W7ykaICZXPpHQW -----END CERTIFICATE-----Generated at Fri Sep 19 02:32:24 2025 by rpki-client