$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft File: mnPxqRn79GyHLjiAWxZQtfiCdtM.mft (raw, json) Hash identifier: SBBLWp4Ob2KGF6zaL/7l2oTCG1gYcp31xAV2Wf3Q6FI= Subject key identifier: 42:97:62:00:6B:61:28:96:FC:14:BD:1E:7E:CA:23:A0:3A:AC:6E:AE Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Certificate serial: 1155 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft Manifest number: 0D03 Signing time: Thu 04 Sep 2025 20:46:11 +0000 Manifest this update: Thu 04 Sep 2025 20:46:10 +0000 Manifest next update: Thu 11 Sep 2025 20:46:10 +0000 Files and hashes: 1: mnPxqRn79GyHLjiAWxZQtfiCdtM.crl (hash: th+rcgz5x2o39C8N7mvJ7YcD27VP4eIHxGxqDm9eAFk=) 2: 3A371ADC6EBE11F085F17D3AC4F9AE02.roa (hash: lBpcvgH1EVPmL9AGa9SmGGk5uCpEQgFCvirH/9iS5nU=) 3: A173B894112711F0845DF16FC4F9AE02.roa (hash: 3CENOgG8lzvvc7h19xhkGA0RtKWssC6nuSD3IRmHv+U=) 4: 24B754BA9B7911EFBA9A2A42C4F9AE02.roa (hash: y4nldf+8SF0UXyvc5ZFdPynmdfFfU94WXlTR6JoprTg=) 5: 396F61FE6EBE11F085F17D3AC4F9AE02.roa (hash: CE23sNAGQ72kvCJUhMKCCjdRdULm9pFJDWl36wscsUk=) 6: 5C2A5AE670FD11F08583BE3AC4F9AE02.roa (hash: NAdbZTtzlwtewbjTfuMORoVz4S6lpr350iCxdpAhbLc=) 7: 8BAE1FFA6D1A11F0A4E9404DC4F9AE02.roa (hash: LcfL6WlPDAVnfVe8FVQ0PTDxHLr1cQFF1C/EotpyU7g=) 8: FA9BC95A548711EF89E24A18C4F9AE02.roa (hash: Lh2x2UhtnOihYNKj9Kn76/xvcicNSKGJ9zs/lJzF/lU=) 9: 6BE346006D1A11F0B1F1074DC4F9AE02.roa (hash: F+kwWb5yikRsOK2zoJFU1MWIPMWRYvJswNdoIKQaUNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 20:46:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4437 (0x1155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Validity Not Before: Sep 4 20:46:10 2025 GMT Not After : Sep 11 20:46:10 2025 GMT Subject: CN=68b9fa92-edcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a8:80:c5:1e:36:b2:99:61:55:5d:77:ad:2e: ef:b4:da:98:c7:82:20:28:c3:b4:6c:56:de:8b:f5: 61:5e:f3:0b:3e:5d:e9:62:14:a5:15:29:9e:0d:99: 66:e6:25:05:43:e8:b4:da:75:c5:a3:3c:69:09:9f: 8a:88:71:e9:ee:2d:a4:33:98:2b:85:f7:e9:e3:85: 30:b7:f0:82:58:38:5a:e4:e6:b1:ae:d7:9a:a3:d2: fa:c2:b7:92:0e:2c:55:33:d5:47:34:11:d8:e4:96: 79:fa:27:4f:4d:c9:c7:ad:09:2b:2f:0b:c7:fb:4e: 31:19:6d:7f:0f:b3:2e:ad:7c:d3:76:fc:23:a3:95: 7c:9e:c2:df:90:b5:df:ac:64:ee:e2:58:ce:a5:bc: 43:60:35:28:27:14:27:7f:11:5a:f2:34:9e:87:c3: 74:0d:45:97:22:c7:a9:5d:9d:5d:60:1b:20:2a:12: b7:93:85:7f:88:19:04:26:85:0f:4e:23:2e:b5:1d: 9d:d2:e6:39:70:cd:21:74:99:0b:1c:0f:ae:00:97: 2f:20:2a:60:b3:38:d4:33:f6:df:8b:1a:4e:4f:ce: 87:69:0e:1c:10:dc:ec:5a:2e:fd:b3:9d:93:e5:33: 79:ee:29:af:c2:d9:d2:9a:c4:24:07:8b:c8:d5:40: d2:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:97:62:00:6B:61:28:96:FC:14:BD:1E:7E:CA:23:A0:3A:AC:6E:AE X509v3 Authority Key Identifier: keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:02:31:8a:6b:34:ef:ea:ec:aa:17:1b:96:7e:36:59:b7:10: ac:f8:7c:c8:4b:aa:53:62:56:8e:85:98:0c:d5:c3:ff:45:c9: 92:79:e8:59:51:02:c5:d9:c9:e9:45:40:1e:84:80:91:e5:3d: aa:21:ad:2d:58:d8:30:52:25:91:c1:03:4c:d5:f4:6c:14:d3: 2f:58:75:fb:fe:02:7a:5b:e3:39:c3:74:b1:af:33:c3:90:3b: 3a:e7:10:ab:d3:1d:67:01:b2:09:6b:33:49:93:6d:1c:5a:07: 68:9e:af:ac:57:e1:01:5a:d2:53:89:d2:a3:f6:e2:0f:a1:3a: be:46:f6:96:40:8a:28:16:ef:91:a1:9f:55:f5:8d:3b:ed:77: 2a:24:cc:d4:a2:04:96:e1:5d:7b:d2:ab:55:43:93:cb:7a:e3: f0:ab:83:7a:92:2d:a1:52:e6:cb:37:92:28:d9:92:fb:0e:9e: b6:5a:32:95:4b:a0:a2:62:53:3b:c5:24:b5:47:c6:f7:75:6b: 3f:41:0f:dc:ca:ff:d4:ef:da:e4:b1:de:cd:16:23:21:35:5c: 1c:fc:df:4e:ca:e2:64:d6:08:e7:30:a8:c6:77:0e:62:0f:0a: 27:01:62:71:6e:65:4f:e2:43:4e:5b:c8:66:1c:ca:00:e6:8e: c1:89:9c:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1 Rjg4Mjc2RDMwHhcNMjUwOTA0MjA0NjEwWhcNMjUwOTExMjA0NjEwWjAYMRYwFAYD VQQDEw02OGI5ZmE5Mi1lZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAraiAxR42splhVV13rS7vtNqYx4IgKMO0bFbei/VhXvMLPl3pYhSlFSmeDZlm 5iUFQ+i02nXFozxpCZ+KiHHp7i2kM5grhffp44Uwt/CCWDha5Oaxrteao9L6wreS DixVM9VHNBHY5JZ5+idPTcnHrQkrLwvH+04xGW1/D7MurXzTdvwjo5V8nsLfkLXf rGTu4ljOpbxDYDUoJxQnfxFa8jSeh8N0DUWXIsepXZ1dYBsgKhK3k4V/iBkEJoUP TiMutR2d0uY5cM0hdJkLHA+uAJcvICpgszjUM/bfixpOT86HaQ4cENzsWi79s52T 5TN57imvwtnSmsQkB4vI1UDShQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKXYgBr YSiW/BS9Hn7KI6A6rG6uMB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjEzNC81N0IzRTBCQ0MyQTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlH eUhMamlBV3haUXRmaUNkdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDbAjGKazTv6uyqFxuWfjZZtxCs+HzIS6pTYlaOhZgM1cP/RcmSeehZ UQLF2cnpRUAehICR5T2qIa0tWNgwUiWRwQNM1fRsFNMvWHX7/gJ6W+M5w3SxrzPD kDs65xCr0x1nAbIJazNJk20cWgdonq+sV+EBWtJTidKj9uIPoTq+RvaWQIooFu+R oZ9V9Y077XcqJMzUogSW4V170qtVQ5PLeuPwq4N6ki2hUubLN5Io2ZL7Dp62WjKV S6CiYlM7xSS1R8b3dWs/QQ/cyv/U79rksd7NFiMhNVwc/N9OyuJk1gjnMKjGdw5i DwonAWJxbmVP4kNOW8hmHMoA5o7BiZzD -----END CERTIFICATE-----Generated at Sat Sep 6 11:49:02 2025 by rpki-client