$ rpki-client -vvf rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.mft File: 7unhDCkeVsgtdwcgELDlgAg_5yk.mft (raw, json) Hash identifier: X/QnF/+ApLZxh7XK2c0SGO3vSCpy8c3XY3vSjU4JfI4= Subject key identifier: C0:5B:9A:EE:1E:CD:67:54:E6:8D:0B:87:6B:43:85:7B:50:58:07:DA Authority key identifier: EE:E9:E1:0C:29:1E:56:C8:2D:77:07:20:10:B0:E5:80:08:3F:E7:29 Certificate issuer: /CN=A91E82F0/serialNumber=EEE9E10C291E56C82D77072010B0E580083FE729 Certificate serial: 0158 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7unhDCkeVsgtdwcgELDlgAg_5yk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.mft Manifest number: 0158 Signing time: Wed 17 Sep 2025 04:37:53 +0000 Manifest this update: Wed 17 Sep 2025 04:37:52 +0000 Manifest next update: Wed 24 Sep 2025 04:37:52 +0000 Files and hashes: 1: 7unhDCkeVsgtdwcgELDlgAg_5yk.crl (hash: EkVMT/DVZMkTfTc2/HV/qT2CtZeWWTHQH2+OTrHBIcg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.crl rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7unhDCkeVsgtdwcgELDlgAg_5yk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:37:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E82F0, serialNumber=EEE9E10C291E56C82D77072010B0E580083FE729 Validity Not Before: Sep 17 04:37:52 2025 GMT Not After : Sep 24 04:37:52 2025 GMT Subject: CN=68ca3b21-e9ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:68:a1:5a:43:39:d4:92:e0:79:ae:30:d9:f6: 67:11:fc:2a:8e:d1:83:20:ee:99:c9:28:85:52:3b: 8c:82:32:49:46:c6:fe:12:91:ff:a3:19:94:fd:f3: 98:e6:59:8e:2c:80:e3:3a:b7:71:99:ca:2b:a2:86: 8a:72:ca:25:aa:b4:89:ea:17:8e:1b:07:1f:cd:c4: 3c:81:b1:18:15:dd:3d:e5:f4:4c:c3:96:fd:9c:73: bd:43:a6:07:ff:c3:9a:b8:9f:a2:c9:c7:2c:77:c5: b2:da:ab:cf:00:6e:89:94:4e:29:9e:e0:b4:1d:2c: 54:c6:6f:4c:05:54:8e:da:3f:68:1b:27:e6:c7:7a: 64:38:53:3f:be:c9:7d:c0:de:c5:d3:7c:7b:eb:2b: 78:e6:c0:5c:37:f9:2e:f0:e9:95:93:be:41:a0:8b: ad:4b:87:ab:75:88:70:a7:66:01:2f:b1:6d:8a:14: e3:25:fb:0c:64:bc:35:b7:91:63:71:02:f6:1e:b7: 20:d8:15:15:f1:4b:56:50:fe:d4:af:18:a4:98:5a: 0e:08:8f:ad:08:8d:8c:93:ea:6b:53:39:73:77:26: e7:20:ca:9b:40:d8:72:18:4b:eb:3c:24:3e:a0:44: 6f:3a:0c:91:a3:a1:14:9a:9c:af:65:97:fc:e8:36: 77:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:5B:9A:EE:1E:CD:67:54:E6:8D:0B:87:6B:43:85:7B:50:58:07:DA X509v3 Authority Key Identifier: keyid:EE:E9:E1:0C:29:1E:56:C8:2D:77:07:20:10:B0:E5:80:08:3F:E7:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7unhDCkeVsgtdwcgELDlgAg_5yk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E82F0/5C57E5C0828311EE90C8816AC4F9AE02/7unhDCkeVsgtdwcgELDlgAg_5yk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:a6:38:2b:98:dd:61:60:9f:40:89:e1:db:e8:20:36:10:f8: f0:12:73:67:4c:c3:ce:6a:1c:e0:64:ee:2c:fb:53:10:d1:01: ea:e0:37:9a:ee:43:09:d8:08:a3:b8:3a:14:69:28:3b:f0:c8: e0:97:c1:5a:ea:56:44:79:35:6b:36:62:8c:f5:5c:2a:38:35: d6:00:39:60:15:d5:c3:d4:80:26:3b:e3:5d:42:0c:4b:4e:7b: bf:70:0c:7a:65:84:ba:73:cb:11:86:8e:f3:bf:d8:39:4c:1b: 3d:43:7c:75:71:8b:ba:8d:bc:3f:0b:b0:57:18:99:c5:24:c2: d9:45:08:99:50:23:8d:80:28:f2:ef:f5:44:78:4e:51:ce:80: 83:22:ac:ed:cf:23:12:5a:33:e7:94:29:84:b7:5f:53:10:0c: 0e:1e:fa:8c:a6:3c:53:79:32:b1:be:25:c2:1b:de:1a:d7:bf: 3a:4a:2a:e5:4d:14:f0:5c:51:10:2e:3e:f7:95:37:34:aa:e0: 12:cd:6f:c2:8a:eb:4a:40:1e:e8:fa:ca:bb:56:b1:f0:fb:ec: c3:77:94:1d:09:c8:a2:ed:23:71:38:a8:3b:bf:08:50:df:e1: b3:e8:fd:96:f8:2b:de:be:1c:ea:5f:4f:19:f4:e1:22:ca:87: 0d:b7:36:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTgyRjAxMTAvBgNVBAUTKEVFRTlFMTBDMjkxRTU2QzgyRDc3MDcyMDEwQjBFNTgw MDgzRkU3MjkwHhcNMjUwOTE3MDQzNzUyWhcNMjUwOTI0MDQzNzUyWjAYMRYwFAYD VQQDEw02OGNhM2IyMS1lOWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA52ihWkM51JLgea4w2fZnEfwqjtGDIO6ZySiFUjuMgjJJRsb+EpH/oxmU/fOY 5lmOLIDjOrdxmcorooaKcsolqrSJ6heOGwcfzcQ8gbEYFd095fRMw5b9nHO9Q6YH /8OauJ+iyccsd8Wy2qvPAG6JlE4pnuC0HSxUxm9MBVSO2j9oGyfmx3pkOFM/vsl9 wN7F03x76yt45sBcN/ku8OmVk75BoIutS4erdYhwp2YBL7FtihTjJfsMZLw1t5Fj cQL2Hrcg2BUV8UtWUP7UrxikmFoOCI+tCI2Mk+prUzlzdybnIMqbQNhyGEvrPCQ+ oERvOgyRo6EUmpyvZZf86DZ3ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMBbmu4e zWdU5o0Lh2tDhXtQWAfaMB8GA1UdIwQYMBaAFO7p4QwpHlbILXcHIBCw5YAIP+cp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODJGMC81QzU3RTVDMDgy ODMxMUVFOTBDODgxNkFDNEY5QUUwMi83dW5oRENrZVZzZ3Rkd2NnRUxEbGdBZ181 eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd1bmhEQ2tlVnNndGR3Y2dFTERsZ0FnXzV5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODJGMC81QzU3RTVDMDgyODMxMUVFOTBDODgxNkFDNEY5QUUwMi83dW5oRENrZVZz Z3Rkd2NnRUxEbGdBZ181eWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdpjgrmN1hYJ9AieHb6CA2EPjwEnNnTMPOahzgZO4s+1MQ0QHq4Dea 7kMJ2AijuDoUaSg78Mjgl8Fa6lZEeTVrNmKM9VwqODXWADlgFdXD1IAmO+NdQgxL Tnu/cAx6ZYS6c8sRho7zv9g5TBs9Q3x1cYu6jbw/C7BXGJnFJMLZRQiZUCONgCjy 7/VEeE5RzoCDIqztzyMSWjPnlCmEt19TEAwOHvqMpjxTeTKxviXCG94a1786Sirl TRTwXFEQLj73lTc0quASzW/CiutKQB7o+sq7VrHw++zDd5QdCcii7SNxOKg7vwhQ 3+Gz6P2W+CvevhzqX08Z9OEiyocNtzbG -----END CERTIFICATE-----Generated at Fri Sep 19 02:58:09 2025 by rpki-client