$ rpki-client -vvf rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.mft File: 7RHrTDSAQZnqd1AO3bvu4Qt1Sas.mft (raw, json) Hash identifier: uNAKmu+HRuj5CVym1armfCO4Ro5KM1qmha9LPDiZq2I= Subject key identifier: BE:9F:9B:21:FF:3B:BF:A1:74:65:DA:99:1D:C3:0B:9D:3E:38:60:88 Authority key identifier: ED:11:EB:4C:34:80:41:99:EA:77:50:0E:DD:BB:EE:E1:0B:75:49:AB Certificate issuer: /CN=A91E96BC/serialNumber=ED11EB4C34804199EA77500EDDBBEEE10B7549AB Certificate serial: 0141 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.mft Manifest number: 0133 Signing time: Wed 17 Sep 2025 13:06:55 +0000 Manifest this update: Wed 17 Sep 2025 13:06:55 +0000 Manifest next update: Wed 24 Sep 2025 13:06:55 +0000 Files and hashes: 1: 7RHrTDSAQZnqd1AO3bvu4Qt1Sas.crl (hash: p/QATIJRes8Ix2XGqOAJhDk/CUfQQBFW9OPB/iV4ASs=) 2: 7E77D4BEB78211EF81A95D76C4F9AE02.roa (hash: IC6M+/u5KfLety+dxGrRg+P8xY1I5/miRXL3+Y22Y3k=) 3: 4257053043A611F0820E8527C4F9AE02.roa (hash: XbT+3cuif/paCabTkMdc9T61fms2dwiji/AHhYWy82A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.crl rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 13:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E96BC, serialNumber=ED11EB4C34804199EA77500EDDBBEEE10B7549AB Validity Not Before: Sep 17 13:06:55 2025 GMT Not After : Sep 24 13:06:55 2025 GMT Subject: CN=68cab26f-9751 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:27:ed:17:45:72:cb:c1:68:65:d8:42:16:a9: 25:3a:38:b4:cd:60:cb:43:65:59:a9:6d:eb:da:e3: a0:6a:7a:3b:c3:6a:bc:6d:d9:5a:aa:2a:15:41:2f: c4:83:e8:f4:30:a7:f5:22:15:b6:8e:fc:40:b8:83: 3f:44:3b:46:f8:d4:80:c3:a5:8e:d9:ea:ff:b3:6e: 21:3f:c2:1d:80:4c:02:f9:98:5e:79:e8:17:54:51: 56:6b:4b:e6:9b:30:e3:40:61:a2:70:f6:f3:67:d5: 59:62:22:c9:60:a1:89:d6:c0:f5:54:ec:7b:18:0f: fd:30:34:f9:45:a0:d4:14:ff:5a:fc:5b:fa:91:28: 6e:03:f2:18:55:a2:51:ab:01:6c:35:9c:bf:ec:06: b0:45:64:29:bf:6b:14:cb:5e:20:a9:62:68:0a:33: fd:29:db:6e:b7:c2:4f:25:c1:7c:1d:a2:38:a5:3e: 74:1f:59:03:d7:6c:33:0a:ef:86:a4:b0:9f:14:82: 71:ae:23:71:5f:26:13:23:ab:c9:43:28:9a:2e:68: b8:7a:89:b4:83:7d:3a:64:57:4a:73:b9:03:c7:5d: eb:e4:9e:00:bf:f2:05:b3:e2:98:3c:06:19:f2:e4: fd:8a:40:16:3b:7d:69:02:b2:de:6d:fd:c6:a8:e5: 1d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:9F:9B:21:FF:3B:BF:A1:74:65:DA:99:1D:C3:0B:9D:3E:38:60:88 X509v3 Authority Key Identifier: keyid:ED:11:EB:4C:34:80:41:99:EA:77:50:0E:DD:BB:EE:E1:0B:75:49:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E96BC/6687EF22D14D11EE9DB4180FC4F9AE02/7RHrTDSAQZnqd1AO3bvu4Qt1Sas.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:a0:b4:07:bf:d3:f5:a0:1f:2d:3c:32:8a:a9:66:67:4c:a5: f6:fd:76:c3:a4:d1:cc:b9:12:94:b1:34:1d:ef:c3:8e:ac:69: 62:66:66:e1:2f:6e:66:2a:e8:d6:9b:cf:f4:d9:89:87:63:d5: dc:cd:5d:27:90:e4:c7:86:48:b6:26:d3:73:b0:4c:96:d7:fd: 4c:9f:74:9b:3a:b3:91:ab:a3:99:19:d9:9e:e1:d5:ad:71:8f: 3f:00:69:d2:72:ba:f2:38:cb:52:5a:d3:43:42:b9:eb:7c:14: 72:bd:6e:42:b6:dd:62:48:2b:31:f7:c4:a0:19:1b:13:2d:7f: ab:32:0b:e9:4b:df:a0:da:8d:35:c6:83:0e:b1:ed:e4:ab:68: cf:2b:70:c6:bb:c9:36:dc:c2:9c:c4:ef:2a:6c:0b:62:5e:e9: 24:9f:18:83:d7:52:4d:88:67:7f:df:4e:7f:19:b4:a5:e3:5c: 9f:d2:2f:b1:cc:8c:b1:df:5f:84:17:72:95:bc:f1:a0:c5:61: d7:69:5d:7b:88:fb:86:94:b2:14:31:8b:73:ee:f3:b2:89:1e: 7c:cb:ab:3f:67:11:8c:3a:f0:a0:47:5b:d9:32:50:fd:a4:9d: 76:98:06:26:6e:f6:2a:91:b4:1d:2d:26:d3:14:73:2d:6b:33: 92:50:54:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2QkMxMTAvBgNVBAUTKEVEMTFFQjRDMzQ4MDQxOTlFQTc3NTAwRUREQkJFRUUx MEI3NTQ5QUIwHhcNMjUwOTE3MTMwNjU1WhcNMjUwOTI0MTMwNjU1WjAYMRYwFAYD VQQDEw02OGNhYjI2Zi05NzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4SftF0Vyy8FoZdhCFqklOji0zWDLQ2VZqW3r2uOgano7w2q8bdlaqioVQS/E g+j0MKf1IhW2jvxAuIM/RDtG+NSAw6WO2er/s24hP8IdgEwC+ZheeegXVFFWa0vm mzDjQGGicPbzZ9VZYiLJYKGJ1sD1VOx7GA/9MDT5RaDUFP9a/Fv6kShuA/IYVaJR qwFsNZy/7AawRWQpv2sUy14gqWJoCjP9Kdtut8JPJcF8HaI4pT50H1kD12wzCu+G pLCfFIJxriNxXyYTI6vJQyiaLmi4eom0g306ZFdKc7kDx13r5J4Av/IFs+KYPAYZ 8uT9ikAWO31pArLebf3GqOUdyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL6fmyH/ O7+hdGXamR3DC50+OGCIMB8GA1UdIwQYMBaAFO0R60w0gEGZ6ndQDt277uELdUmr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTZCQy82Njg3RUYyMkQx NEQxMUVFOURCNDE4MEZDNEY5QUUwMi83UkhyVERTQVFabnFkMUFPM2J2dTRRdDFT YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdSSHJURFNBUVpucWQxQU8zYnZ1NFF0MVNhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTZCQy82Njg3RUYyMkQxNEQxMUVFOURCNDE4MEZDNEY5QUUwMi83UkhyVERTQVFa bnFkMUFPM2J2dTRRdDFTYXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADoLQHv9P1oB8tPDKKqWZnTKX2/XbDpNHMuRKUsTQd78OOrGliZmbh L25mKujWm8/02YmHY9XczV0nkOTHhki2JtNzsEyW1/1Mn3SbOrORq6OZGdme4dWt cY8/AGnScrryOMtSWtNDQrnrfBRyvW5Ctt1iSCsx98SgGRsTLX+rMgvpS9+g2o01 xoMOse3kq2jPK3DGu8k23MKcxO8qbAtiXukknxiD11JNiGd/305/GbSl41yf0i+x zIyx31+EF3KVvPGgxWHXaV17iPuGlLIUMYtz7vOyiR58y6s/ZxGMOvCgR1vZMlD9 pJ12mAYmbvYqkbQdLSbTFHMtazOSUFQ/ -----END CERTIFICATE-----Generated at Thu Sep 18 23:45:27 2025 by rpki-client