$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft File: b9CIejkD49bhe7nP2O8mknC6ywc.mft (raw, json) Hash identifier: A3Y5LkTIy8SmPT++y7NTdQK/O7tUovqE6en4c3uQwgg= Subject key identifier: BB:F7:55:DB:02:1B:17:94:AE:92:59:E2:97:78:60:23:96:C0:0B:B5 Authority key identifier: 6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 Certificate issuer: /CN=A91E8BE3/serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft Manifest number: 8B Signing time: Wed 03 Sep 2025 07:17:11 +0000 Manifest this update: Wed 03 Sep 2025 07:17:10 +0000 Manifest next update: Wed 10 Sep 2025 07:17:10 +0000 Files and hashes: 1: b9CIejkD49bhe7nP2O8mknC6ywc.crl (hash: /s/RiwExUQVILx56OMu5OPSlc6HD9crf7Ml5HCMfLLc=) 2: 3139D35EBFA811EFA9B7DC2AC4F9AE02.roa (hash: gL/pv5Q4H259tRW/M/fWgTAynaK4mXLMVK09D4O3Mmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 07:17:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BE3, serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Validity Not Before: Sep 3 07:17:10 2025 GMT Not After : Sep 10 07:17:10 2025 GMT Subject: CN=68b7eb76-0217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:56:ad:be:89:c9:57:4b:05:51:2f:12:ee:4a: 1e:16:0b:79:b4:05:75:26:90:26:53:a1:d3:99:37: e3:da:38:53:85:18:eb:44:09:bc:79:2c:1c:e5:a4: 29:19:02:97:dc:5a:42:f5:d7:ec:14:66:2d:78:ff: 41:5e:2f:c7:f2:e4:9e:8b:7c:08:13:ea:46:f1:61: 86:d5:40:03:cc:1b:04:2d:33:4d:9a:e4:15:06:11: 74:6b:78:b7:59:58:33:66:a1:a5:ce:e0:a4:11:54: 4f:c1:35:5a:dd:ba:9b:67:94:6c:cf:9e:00:9c:58: a5:ab:46:2b:95:aa:7c:61:8b:73:87:05:be:cd:4a: a9:0c:91:e7:59:9a:c4:1a:fd:73:0a:29:77:fc:a4: 7f:37:53:27:2a:6a:98:da:03:d0:75:49:e3:b2:ec: 60:ea:3d:23:83:96:05:fd:48:ef:03:db:04:d6:4c: e0:c3:f3:1d:16:0b:55:89:e3:37:0f:18:9e:db:f3: 94:9f:2d:5a:b9:4d:69:ac:41:4c:aa:2b:a0:6e:43: 1c:3a:00:72:ee:c3:1c:45:82:3d:b8:48:24:d6:22: a6:45:3a:11:6a:7d:40:75:aa:a8:97:6b:21:bb:3e: d2:6b:70:e4:de:50:e4:d6:18:c5:56:d7:fa:13:7b: 55:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:F7:55:DB:02:1B:17:94:AE:92:59:E2:97:78:60:23:96:C0:0B:B5 X509v3 Authority Key Identifier: keyid:6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:22:16:9c:1b:0e:f0:0f:cd:86:ca:f8:cb:0b:15:8f:18:f3: bf:96:72:7a:6a:46:4b:4c:e1:24:37:f3:c7:81:5d:fa:a2:80: 80:c3:be:41:a3:69:86:4a:06:46:41:7b:87:ad:42:7e:d7:0a: ac:af:1f:9c:0a:17:2b:0e:16:d5:b7:8f:ea:59:f8:56:a6:47: 1f:a8:cb:f4:db:a1:fe:01:83:8d:70:ac:45:2c:a1:67:a6:2f: 32:ae:2e:1a:f4:92:24:82:ce:2c:c4:86:2c:72:7c:ae:33:38: 6e:77:47:8e:de:a6:af:62:dd:6b:1f:89:75:90:56:9e:b4:ad: 56:3a:91:1a:97:87:83:51:a4:5d:07:f4:a0:b2:91:b1:88:17: b5:83:64:2f:41:60:81:8c:af:cf:80:fb:35:5e:6d:97:ec:e4: c7:b4:5b:bb:34:1e:58:99:f5:04:dc:5a:d8:69:fd:a5:3e:bd: 27:46:7e:77:0c:27:31:cb:b9:4e:f4:a9:34:01:cb:37:22:95: 2c:b8:39:14:e2:51:8f:eb:38:04:2b:8a:b1:bd:44:0a:6b:a7: 6c:8e:ce:15:c9:17:85:0b:37:5a:0a:ab:f9:51:3d:c7:bc:67: c5:e5:70:69:09:12:19:43:28:f3:99:b0:cf:35:dc:0b:fd:b9: ad:b2:ff:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThCRTMxMTAvBgNVBAUTKDZGRDA4ODdBMzkwM0UzRDZFMTdCQjlDRkQ4RUYyNjky NzBCQUNCMDcwHhcNMjUwOTAzMDcxNzEwWhcNMjUwOTEwMDcxNzEwWjAYMRYwFAYD VQQDEw02OGI3ZWI3Ni0wMjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArlatvonJV0sFUS8S7koeFgt5tAV1JpAmU6HTmTfj2jhThRjrRAm8eSwc5aQp GQKX3FpC9dfsFGYteP9BXi/H8uSei3wIE+pG8WGG1UADzBsELTNNmuQVBhF0a3i3 WVgzZqGlzuCkEVRPwTVa3bqbZ5Rsz54AnFilq0Yrlap8YYtzhwW+zUqpDJHnWZrE Gv1zCil3/KR/N1MnKmqY2gPQdUnjsuxg6j0jg5YF/UjvA9sE1kzgw/MdFgtVieM3 Dxie2/OUny1auU1prEFMqiugbkMcOgBy7sMcRYI9uEgk1iKmRToRan1Adaqol2sh uz7Sa3Dk3lDk1hjFVtf6E3tVwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLv3VdsC GxeUrpJZ4pd4YCOWwAu1MB8GA1UdIwQYMBaAFG/QiHo5A+PW4Xu5z9jvJpJwussH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEJFMy9FNkU2QkU0NEJG OUMxMUVGOURBODgyODJDNEY5QUUwMi9iOUNJZWprRDQ5YmhlN25QMk84bWtuQzZ5 d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2I5Q0llamtENDliaGU3blAyTzhta25DNnl3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEJFMy9FNkU2QkU0NEJGOUMxMUVGOURBODgyODJDNEY5QUUwMi9iOUNJZWprRDQ5 YmhlN25QMk84bWtuQzZ5d2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYIhacGw7wD82GyvjLCxWPGPO/lnJ6akZLTOEkN/PHgV36ooCAw75B o2mGSgZGQXuHrUJ+1wqsrx+cChcrDhbVt4/qWfhWpkcfqMv026H+AYONcKxFLKFn pi8yri4a9JIkgs4sxIYscnyuMzhud0eO3qavYt1rH4l1kFaetK1WOpEal4eDUaRd B/SgspGxiBe1g2QvQWCBjK/PgPs1Xm2X7OTHtFu7NB5YmfUE3FrYaf2lPr0nRn53 DCcxy7lO9Kk0Acs3IpUsuDkU4lGP6zgEK4qxvUQKa6dsjs4VyReFCzdaCqv5UT3H vGfF5XBpCRIZQyjzmbDPNdwL/bmtsv+I -----END CERTIFICATE-----Generated at Thu Sep 4 15:54:25 2025 by rpki-client