$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft File: 0DacIB93rzjycCn7IkbEOF0njKI.mft (raw, json) Hash identifier: FGdw+J4ZOurgYzFevcxy8/DLh0iv3ACaHtHlJBSkDV4= Subject key identifier: 59:AB:4E:15:5A:0B:C4:19:94:BE:A5:00:E2:46:7D:C2:2A:85:99:0D Authority key identifier: D0:36:9C:20:1F:77:AF:38:F2:70:29:FB:22:46:C4:38:5D:27:8C:A2 Certificate issuer: /CN=A91EBF27/serialNumber=D0369C201F77AF38F27029FB2246C4385D278CA2 Certificate serial: 062B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft Manifest number: 062B Signing time: Thu 18 Sep 2025 23:01:26 +0000 Manifest this update: Thu 18 Sep 2025 23:01:25 +0000 Manifest next update: Thu 25 Sep 2025 23:01:25 +0000 Files and hashes: 1: 0DacIB93rzjycCn7IkbEOF0njKI.crl (hash: BEtHC3AoTXXWb4IyrZJhsVWioA/C1w+PqIO/vu6SPw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.crl rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 23:01:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1579 (0x62b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBF27, serialNumber=D0369C201F77AF38F27029FB2246C4385D278CA2 Validity Not Before: Sep 18 23:01:25 2025 GMT Not After : Sep 25 23:01:25 2025 GMT Subject: CN=68cc8f45-d681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8a:ed:07:a1:0a:79:05:1f:ec:39:5c:83:5e: d9:03:66:ad:04:04:22:e5:92:86:4b:61:63:2a:b4: 58:a3:8b:75:74:b5:8e:f8:69:bf:90:c8:0b:a4:b1: 5d:b8:77:8a:bb:13:ed:2c:6c:be:09:16:0e:c2:a9: 43:cf:3d:0e:eb:7a:99:45:0c:41:95:bc:f5:c5:d1: 35:e2:e8:51:9e:5c:1f:be:0c:2b:2e:f8:fe:d2:b1: b1:ac:72:88:63:95:62:9f:65:69:1f:1f:85:50:24: bf:45:2b:c1:17:ed:7e:9b:5d:54:be:ab:ea:a0:4e: ee:93:54:f8:8f:49:ee:98:bc:49:24:81:0a:e8:7d: f3:b5:75:e8:d5:0e:fb:04:f4:8d:96:d9:40:a7:ee: a1:7d:81:38:15:90:ea:17:17:b5:9b:88:a2:9f:3d: 97:a0:3f:68:8a:18:ba:db:8d:82:93:75:ef:4a:73: 39:d5:b1:45:ff:0e:02:a3:c6:5b:68:63:14:77:36: de:3d:61:b8:0a:62:2b:db:42:90:85:c2:f9:56:af: a5:db:46:ab:64:d4:1e:3f:c2:d2:27:69:26:cd:c0: e9:8c:d5:b5:40:75:06:05:f6:dc:74:28:a1:85:29: 7e:e1:ad:9c:1e:b2:e7:e0:33:a3:4d:b9:46:43:46: 51:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:AB:4E:15:5A:0B:C4:19:94:BE:A5:00:E2:46:7D:C2:2A:85:99:0D X509v3 Authority Key Identifier: keyid:D0:36:9C:20:1F:77:AF:38:F2:70:29:FB:22:46:C4:38:5D:27:8C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DacIB93rzjycCn7IkbEOF0njKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBF27/F1D3E326ABE711EBB85D5147C4F9AE02/0DacIB93rzjycCn7IkbEOF0njKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:13:21:38:af:16:e8:de:f6:35:f7:4a:75:42:a3:0b:78:76: 5e:bd:f6:a6:82:45:67:24:8a:88:fc:ba:58:fa:72:9f:d4:82: cd:0d:e8:29:91:9d:64:b5:26:89:93:75:05:5b:00:e8:73:93: 7a:b1:86:8c:69:4d:71:47:c6:6a:46:20:9e:9a:ee:17:4a:f0: a5:7a:c6:cd:a8:dc:3b:45:98:c2:67:07:f0:75:88:b7:ad:98: f8:ff:57:0f:a8:60:17:41:6e:df:3a:9d:a4:c5:0c:b3:ac:da: 2e:c7:15:2c:53:ad:ad:13:9e:14:70:cc:8b:55:aa:8b:bb:83: c3:2c:2b:16:f4:ec:d9:ab:36:14:88:bd:59:c7:de:00:3b:e6: 20:78:86:ca:89:dc:ad:41:6d:bc:af:15:5c:bd:20:ee:60:6c: 6e:c0:04:0e:d7:52:e5:a0:c0:0f:66:6e:b8:5f:9f:a3:b1:2e: 75:f9:83:57:ff:f7:31:02:47:75:e8:24:8f:a9:bd:5b:bd:b2: 04:b8:c8:80:81:f0:19:07:18:db:b3:35:3d:14:b4:81:22:4f: dc:c8:a0:14:9e:25:17:cc:e3:e6:ee:48:3a:cb:95:90:d3:6e: 4d:8a:e1:08:44:33:d5:bc:12:bd:fb:22:a3:c0:ce:01:b0:b4: 69:3a:42:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGMjcxMTAvBgNVBAUTKEQwMzY5QzIwMUY3N0FGMzhGMjcwMjlGQjIyNDZDNDM4 NUQyNzhDQTIwHhcNMjUwOTE4MjMwMTI1WhcNMjUwOTI1MjMwMTI1WjAYMRYwFAYD VQQDEw02OGNjOGY0NS1kNjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ortB6EKeQUf7Dlcg17ZA2atBAQi5ZKGS2FjKrRYo4t1dLWO+Gm/kMgLpLFd uHeKuxPtLGy+CRYOwqlDzz0O63qZRQxBlbz1xdE14uhRnlwfvgwrLvj+0rGxrHKI Y5Vin2VpHx+FUCS/RSvBF+1+m11UvqvqoE7uk1T4j0numLxJJIEK6H3ztXXo1Q77 BPSNltlAp+6hfYE4FZDqFxe1m4iinz2XoD9oihi6242Ck3XvSnM51bFF/w4Co8Zb aGMUdzbePWG4CmIr20KQhcL5Vq+l20arZNQeP8LSJ2kmzcDpjNW1QHUGBfbcdCih hSl+4a2cHrLn4DOjTblGQ0ZRDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFmrThVa C8QZlL6lAOJGfcIqhZkNMB8GA1UdIwQYMBaAFNA2nCAfd6848nAp+yJGxDhdJ4yi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkYyNy9GMUQzRTMyNkFC RTcxMUVCQjg1RDUxNDdDNEY5QUUwMi8wRGFjSUI5M3J6anljQ243SWtiRU9GMG5q S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBEYWNJQjkzcnpqeWNDbjdJa2JFT0YwbmpLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkYyNy9GMUQzRTMyNkFCRTcxMUVCQjg1RDUxNDdDNEY5QUUwMi8wRGFjSUI5M3J6 anljQ243SWtiRU9GMG5qS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfEyE4rxbo3vY190p1QqMLeHZevfamgkVnJIqI/LpY+nKf1ILNDegp kZ1ktSaJk3UFWwDoc5N6sYaMaU1xR8ZqRiCemu4XSvClesbNqNw7RZjCZwfwdYi3 rZj4/1cPqGAXQW7fOp2kxQyzrNouxxUsU62tE54UcMyLVaqLu4PDLCsW9OzZqzYU iL1Zx94AO+YgeIbKidytQW28rxVcvSDuYGxuwAQO11LloMAPZm64X5+jsS51+YNX //cxAkd16CSPqb1bvbIEuMiAgfAZBxjbszU9FLSBIk/cyKAUniUXzOPm7kg6y5WQ 025NiuEIRDPVvBK9+yKjwM4BsLRpOkLw -----END CERTIFICATE-----Generated at Fri Sep 19 08:51:42 2025 by rpki-client