$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft File: g86FOnpm6rnh8jNGcR09yX1XWXg.mft (raw, json) Hash identifier: 8ZXOvYWfBB/OcV08H9DWuaxrHhgYNa8+KJk77hx3pIY= Subject key identifier: C0:5B:83:23:97:C3:EA:1B:86:82:49:67:BC:84:97:9B:AB:30:63:47 Authority key identifier: 83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 Certificate issuer: /CN=A91E9BC4/serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Certificate serial: 0E6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft Manifest number: 0E65 Signing time: Thu 18 Sep 2025 17:54:57 +0000 Manifest this update: Thu 18 Sep 2025 17:54:57 +0000 Manifest next update: Thu 25 Sep 2025 17:54:57 +0000 Files and hashes: 1: g86FOnpm6rnh8jNGcR09yX1XWXg.crl (hash: RyFMtY8pyjaT1/9dJ6Kn4JrpRlC8P6Dd0pNfOsxshso=) 2: 3B495FFCA46211E9B730310FC4F9AE02.roa (hash: pWiGa9e3CsBZCkEfjYxSv/AY6FwzKhNWqEBfC5Rt5as=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:54:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3695 (0xe6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9BC4, serialNumber=83CE853A7A66EAB9E1F23346711D3DC97D575978 Validity Not Before: Sep 18 17:54:57 2025 GMT Not After : Sep 25 17:54:57 2025 GMT Subject: CN=68cc4771-2d56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:66:2e:06:f5:1b:f5:8f:a5:56:bd:d9:24:bd: eb:cf:dc:7c:c2:af:79:bc:8e:53:b9:6e:94:f4:10: 4c:33:c1:7d:6e:13:87:9c:d8:25:b6:6c:cb:1b:f9: a0:f5:5d:74:06:5d:af:bb:d1:ea:34:32:66:1b:76: 47:b2:56:59:ba:20:32:ac:7f:fd:24:a4:72:08:20: f8:99:21:3b:ce:6e:8c:0c:0b:e4:d0:15:f3:d2:05: 61:ea:cc:45:2a:c9:eb:43:b7:f2:cc:97:d7:b0:81: 17:61:c3:61:86:87:fb:79:84:a5:b5:78:6c:31:ff: 72:43:cd:5c:bb:47:71:d0:9b:8f:18:a4:da:8e:4f: 40:16:a5:bb:02:84:cf:b2:19:4f:37:44:51:8a:89: 14:33:50:e4:ad:af:2d:81:00:14:ad:b9:ab:25:35: 66:cf:0d:0c:6a:f9:ae:70:f2:46:4f:1b:4c:57:07: 38:77:94:e4:7c:a8:f8:46:18:22:9d:b6:ac:36:22: 65:86:cd:2f:b1:5b:6f:91:10:fb:4f:bd:64:f5:a2: cb:f4:bb:99:4a:a9:ab:7d:dc:51:1d:08:1d:77:fc: 25:95:88:ad:89:02:09:d0:99:fd:2f:d2:fe:be:4f: 40:50:68:7a:91:de:33:61:74:f6:22:ad:3a:fb:fb: 54:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:5B:83:23:97:C3:EA:1B:86:82:49:67:BC:84:97:9B:AB:30:63:47 X509v3 Authority Key Identifier: keyid:83:CE:85:3A:7A:66:EA:B9:E1:F2:33:46:71:1D:3D:C9:7D:57:59:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g86FOnpm6rnh8jNGcR09yX1XWXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9BC4/92E821F0A46011E9810A5C0BC4F9AE02/g86FOnpm6rnh8jNGcR09yX1XWXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:f2:6c:b8:06:af:37:50:c1:66:d9:f9:71:08:d8:83:ef:71: 57:02:fd:ec:d3:e7:4a:c7:68:89:be:15:a7:97:b4:28:f5:26: d4:b5:56:f5:7f:94:64:05:96:96:7c:59:47:65:f1:94:44:bd: 3b:21:90:f7:84:fb:df:c1:5b:a8:b4:24:37:38:03:65:85:2f: cb:a6:a3:c6:23:bc:f4:a0:a0:b5:37:5f:b2:a9:59:73:e6:b5: 4d:18:e0:0b:ec:ba:dd:8c:e1:c6:79:27:89:f6:ca:cd:5e:bb: 55:53:99:fd:8a:bd:47:a2:15:e1:5f:d0:72:71:b0:9d:1a:40: 58:2e:0c:89:f8:c7:6f:b2:8f:96:3b:c1:17:81:ce:0b:04:2f: c9:6b:63:fb:05:f8:ac:53:0e:93:0d:95:31:c5:2e:48:6e:1b: 9a:48:1d:3c:e9:87:8a:b2:cc:62:5a:34:9f:b3:0d:75:be:8e: 06:44:c1:ff:69:f1:76:3a:19:11:89:b8:71:85:86:1c:68:73: 40:5d:a6:99:f6:7d:4b:49:4f:82:b5:74:be:85:dd:70:02:2d: 4e:24:a8:41:e3:29:db:4d:3a:a6:40:ab:33:26:8a:f7:fd:34: 91:23:67:23:85:63:60:d7:41:9e:9e:f2:50:7f:cc:65:60:41: 42:5b:88:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCQzQxMTAvBgNVBAUTKDgzQ0U4NTNBN0E2NkVBQjlFMUYyMzM0NjcxMUQzREM5 N0Q1NzU5NzgwHhcNMjUwOTE4MTc1NDU3WhcNMjUwOTI1MTc1NDU3WjAYMRYwFAYD VQQDEw02OGNjNDc3MS0yZDU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo2YuBvUb9Y+lVr3ZJL3rz9x8wq95vI5TuW6U9BBMM8F9bhOHnNgltmzLG/mg 9V10Bl2vu9HqNDJmG3ZHslZZuiAyrH/9JKRyCCD4mSE7zm6MDAvk0BXz0gVh6sxF KsnrQ7fyzJfXsIEXYcNhhof7eYSltXhsMf9yQ81cu0dx0JuPGKTajk9AFqW7AoTP shlPN0RRiokUM1Dkra8tgQAUrbmrJTVmzw0MavmucPJGTxtMVwc4d5TkfKj4Rhgi nbasNiJlhs0vsVtvkRD7T71k9aLL9LuZSqmrfdxRHQgdd/wllYitiQIJ0Jn9L9L+ vk9AUGh6kd4zYXT2Iq06+/tUnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMBbgyOX w+obhoJJZ7yEl5urMGNHMB8GA1UdIwQYMBaAFIPOhTp6Zuq54fIzRnEdPcl9V1l4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUJDNC85MkU4MjFGMEE0 NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZybmg4ak5HY1IwOXlYMVhX WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4NkZPbnBtNnJuaDhqTkdjUjA5eVgxWFdYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUJDNC85MkU4MjFGMEE0NjAxMUU5ODEwQTVDMEJDNEY5QUUwMi9nODZGT25wbTZy bmg4ak5HY1IwOXlYMVhXWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX8my4Bq83UMFm2flxCNiD73FXAv3s0+dKx2iJvhWnl7Qo9SbUtVb1 f5RkBZaWfFlHZfGURL07IZD3hPvfwVuotCQ3OANlhS/LpqPGI7z0oKC1N1+yqVlz 5rVNGOAL7LrdjOHGeSeJ9srNXrtVU5n9ir1HohXhX9BycbCdGkBYLgyJ+Mdvso+W O8EXgc4LBC/Ja2P7BfisUw6TDZUxxS5IbhuaSB086YeKssxiWjSfsw11vo4GRMH/ afF2OhkRibhxhYYcaHNAXaaZ9n1LSU+CtXS+hd1wAi1OJKhB4ynbTTqmQKszJor3 /TSRI2cjhWNg10GenvJQf8xlYEFCW4jh -----END CERTIFICATE-----Generated at Thu Sep 18 20:53:03 2025 by rpki-client