$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft File: b2WgySJgsa2iMYeym6w76trAVmE.mft (raw, json) Hash identifier: 8SDjst0iC77yKRoLPkb7hZnpD+WPI1cjkQo3K6gJpos= Subject key identifier: D7:18:ED:E6:B7:44:8C:EC:75:AC:B6:D9:56:7F:15:60:F7:FB:CE:7B Authority key identifier: 6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 Certificate issuer: /CN=A91EA449/serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft Manifest number: 0109 Signing time: Sun 07 Sep 2025 05:33:48 +0000 Manifest this update: Sun 07 Sep 2025 05:33:48 +0000 Manifest next update: Sun 14 Sep 2025 05:33:48 +0000 Files and hashes: 1: b2WgySJgsa2iMYeym6w76trAVmE.crl (hash: L51OZhAdbd3CV2TsxNIXBW3X4VXb27wlhr19cSzg10A=) 2: 9DE187FA2A8211F08575E277C4F9AE02.roa (hash: 4s3NtIvsEComlAClIWN0C/pBpA6ARQs8HzKhlcubCoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 05:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA449, serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Validity Not Before: Sep 7 05:33:48 2025 GMT Not After : Sep 14 05:33:48 2025 GMT Subject: CN=68bd193c-5f27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:da:02:dd:8f:bc:ce:45:bb:4a:9f:10:0e:c2: 59:1e:88:4c:39:a4:68:27:1e:2f:68:e7:8e:2e:c9: 08:2c:c5:f8:ef:d8:66:0d:d6:e2:df:fd:7c:cc:1d: 4b:c7:b2:94:30:f6:36:c0:c1:a0:d8:95:31:a3:d3: 74:8e:3a:41:6e:40:ed:fb:c8:83:bb:ab:25:28:b7: 94:bf:bd:ab:3b:21:fd:e5:be:4f:e3:43:d6:0e:c3: 5e:9e:3c:57:5b:96:fb:9f:4d:c4:61:30:bd:e8:70: 4b:47:00:50:b0:61:13:69:a9:7a:af:f5:47:5d:89: 06:a0:e0:db:a9:42:bb:e4:7d:ce:3a:f1:64:d6:83: 0e:fa:51:9e:e3:c4:26:a8:10:7e:52:be:19:55:74: 3e:29:e8:43:37:82:cc:04:f7:62:7b:a8:36:ed:25: 57:df:75:cc:3f:6d:1e:4e:72:6d:1e:73:1d:46:9e: c9:c9:f3:13:0d:b3:6e:2f:6b:52:da:14:ae:ba:59: a8:9f:29:05:1f:4a:72:b0:b5:c9:a6:f2:2d:c0:f9: 02:37:58:bf:c3:97:a0:25:30:b7:47:e4:74:1e:55: 59:ae:b7:ba:d7:05:35:75:cb:5d:39:03:8f:0b:83: 65:b7:7e:dc:e6:fa:f7:9d:bf:3c:35:d0:cc:e8:a6: 8d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:18:ED:E6:B7:44:8C:EC:75:AC:B6:D9:56:7F:15:60:F7:FB:CE:7B X509v3 Authority Key Identifier: keyid:6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:e6:84:73:15:da:cd:74:42:e3:c8:a1:e1:39:b2:7f:30:c9: 80:f5:17:29:0f:f4:34:ef:d3:bc:5a:fa:4a:b3:22:db:06:16: 8c:a4:cb:f4:af:c4:6c:5d:82:52:4c:a1:6d:8f:cf:1d:7d:fd: 00:7e:3b:3e:e0:53:91:54:bf:8f:a7:7d:c6:dd:dd:fd:16:75: 6f:9a:32:79:f4:77:36:69:fb:55:37:56:0d:d1:0d:e9:ef:8a: e2:8d:52:16:74:51:46:e8:58:eb:b1:93:c3:26:fb:59:f8:d9: dc:21:bc:bd:7b:2e:7c:2b:7a:75:c5:49:ba:d3:f7:0b:d3:bd: 61:8f:f8:36:10:2d:b4:53:41:dd:6e:9b:a2:fb:88:a8:9b:a6: fd:3f:09:b6:87:a0:86:23:46:3c:e8:1a:33:51:4f:f4:1a:33: 13:4b:53:93:61:ae:bf:c7:2c:52:08:e2:8b:76:a7:8e:be:a3: c5:04:08:51:84:f5:66:39:be:d8:4b:65:e7:63:32:31:9c:a7: 39:1c:68:ce:de:94:4f:bd:b1:18:ed:f7:fe:ac:8a:9d:3a:c4: f8:4d:ff:dc:af:d8:3f:ad:e4:4d:38:f7:30:ac:a9:e0:4e:84: 7f:41:b6:ff:1f:9f:04:22:0e:c3:fd:ae:f0:43:4e:39:5f:81: f3:55:58:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0NDkxMTAvBgNVBAUTKDZGNjVBMEM5MjI2MEIxQURBMjMxODdCMjlCQUMzQkVB REFDMDU2NjEwHhcNMjUwOTA3MDUzMzQ4WhcNMjUwOTE0MDUzMzQ4WjAYMRYwFAYD VQQDEw02OGJkMTkzYy01ZjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NoC3Y+8zkW7Sp8QDsJZHohMOaRoJx4vaOeOLskILMX479hmDdbi3/18zB1L x7KUMPY2wMGg2JUxo9N0jjpBbkDt+8iDu6slKLeUv72rOyH95b5P40PWDsNenjxX W5b7n03EYTC96HBLRwBQsGETaal6r/VHXYkGoODbqUK75H3OOvFk1oMO+lGe48Qm qBB+Ur4ZVXQ+KehDN4LMBPdie6g27SVX33XMP20eTnJtHnMdRp7JyfMTDbNuL2tS 2hSuulmonykFH0pysLXJpvItwPkCN1i/w5egJTC3R+R0HlVZrre61wU1dctdOQOP C4Nlt37c5vr3nb88NdDM6KaNOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcY7ea3 RIzsday22VZ/FWD3+857MB8GA1UdIwQYMBaAFG9loMkiYLGtojGHspusO+rawFZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ0OS80MDE3OTBGQzA3 M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3NhMmlNWWV5bTZ3NzZ0ckFW bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyV2d5U0pnc2EyaU1ZZXltNnc3NnRyQVZtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ0OS80MDE3OTBGQzA3M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3Nh MmlNWWV5bTZ3NzZ0ckFWbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAH5oRzFdrNdELjyKHhObJ/MMmA9RcpD/Q079O8WvpKsyLbBhaMpMv0 r8RsXYJSTKFtj88dff0Afjs+4FORVL+Pp33G3d39FnVvmjJ59Hc2aftVN1YN0Q3p 74rijVIWdFFG6FjrsZPDJvtZ+NncIby9ey58K3p1xUm60/cL071hj/g2EC20U0Hd bpui+4iom6b9Pwm2h6CGI0Y86BozUU/0GjMTS1OTYa6/xyxSCOKLdqeOvqPFBAhR hPVmOb7YS2XnYzIxnKc5HGjO3pRPvbEY7ff+rIqdOsT4Tf/cr9g/reRNOPcwrKng ToR/Qbb/H58EIg7D/a7wQ045X4HzVVhb -----END CERTIFICATE-----Generated at Sun Sep 7 11:49:46 2025 by rpki-client