$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft File: g71HreMCJZx1jHTIMLKebzpXc9s.mft (raw, json) Hash identifier: huK9MxtOgsytKw9jcn9PEBukY0vtWnq/OQRMWJ5D0oU= Subject key identifier: 86:2E:31:59:16:4A:83:9F:F0:61:26:4F:60:2F:FB:E6:BB:10:02:67 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 1212 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft Manifest number: 11FA Signing time: Thu 18 Sep 2025 17:18:49 +0000 Manifest this update: Thu 18 Sep 2025 17:18:48 +0000 Manifest next update: Thu 25 Sep 2025 17:18:48 +0000 Files and hashes: 1: g71HreMCJZx1jHTIMLKebzpXc9s.crl (hash: b5gukLCv9R1AQZmEgN0Z3XJ/+ZD9LfEP2ZiQc3k0Fmc=) 2: 9D003F28621711E9B8C69E15C4F9AE02.roa (hash: Cinni1CQdvw9QZ/TfXqeTRH7AM3KM0M/pfCrSaEHDYM=) 3: 09F041C675FB11EAB470A130C4F9AE02.roa (hash: TVhSAgEvsJfuZaOVoxgSaRmJu5V64CD24chcx4Ly8ag=) 4: 9C7048DC621711E9B8C69E15C4F9AE02.roa (hash: ScKShaSanQZL0Fzy7Q3PEdRjE3XVz96AGuDEeuPLE9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:18:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4626 (0x1212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2, serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Sep 18 17:18:48 2025 GMT Not After : Sep 25 17:18:48 2025 GMT Subject: CN=68cc3ef8-61f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:67:e9:56:5f:bb:f3:a6:d2:00:8b:0c:fa:56: b2:23:96:33:ec:53:de:f1:7b:6b:33:39:20:c0:3a: 18:70:f9:0b:0b:e2:a3:cf:8c:24:ca:3c:47:bc:c3: dc:6c:51:82:1b:a6:e3:4a:a5:fe:6f:d5:ee:91:03: a3:86:a4:a4:72:ef:7c:45:e4:07:21:fc:f2:c3:12: 9f:23:35:d9:d7:08:84:74:32:c8:76:1f:60:5c:be: 91:fe:13:ef:1d:4e:4f:85:98:f5:0a:c6:70:cb:44: b3:3c:d8:a5:a1:fd:59:11:42:fc:0a:4c:cc:58:6e: f3:94:c8:40:92:aa:34:c5:fe:dc:b4:9b:a7:da:cb: f6:84:12:f6:63:29:59:77:db:38:5c:57:9e:d8:40: ef:f4:7a:1b:51:cf:d8:03:f6:50:24:ab:60:d4:b3: e8:60:ec:bb:fa:ec:3b:08:92:cb:bd:d9:8a:a4:37: b0:df:7c:4c:59:c7:8e:74:1b:2e:d5:8d:68:a4:b5: 81:db:1a:ae:21:c9:3d:03:a7:d8:e6:e2:88:05:0e: 7f:30:f2:fb:9b:e7:c7:ae:ea:f9:cf:d9:a4:16:aa: f4:7b:cd:7a:cf:4b:26:d6:bd:e1:3e:14:d0:91:d2: 9c:c3:37:de:1d:25:e9:4d:eb:94:27:02:f2:79:cc: 06:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:2E:31:59:16:4A:83:9F:F0:61:26:4F:60:2F:FB:E6:BB:10:02:67 X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:e3:a4:3e:37:81:24:ec:b6:97:fa:9a:91:54:eb:a9:9a:e5: 94:94:cc:8c:8f:90:2c:12:4e:25:dd:8e:84:ea:15:fb:26:5a: 19:0a:00:ae:e7:c1:e3:00:4a:74:36:74:71:47:02:b6:b3:cf: 1c:73:25:1b:2d:0f:62:28:76:81:32:d8:48:c4:b4:33:60:3b: c0:03:47:b6:9e:53:cd:77:dc:87:b8:da:1e:bc:a8:92:a3:1e: 33:14:da:65:93:49:68:ef:b0:c9:49:88:2f:96:e4:ca:55:09: 61:32:b7:b8:28:4b:9e:44:17:b4:2b:6d:21:05:eb:7c:88:5e: 0b:ff:a1:35:00:76:ba:de:e8:13:cc:4e:70:31:0c:db:6b:91: 56:f7:d4:55:82:88:8a:25:e2:f5:0b:1c:e0:0f:83:93:25:56: 1c:eb:1b:a0:2e:f6:9a:7e:37:0f:96:ac:54:3e:fc:2c:18:1f: a5:22:1e:af:05:38:d5:23:26:60:a5:3e:ab:91:d0:75:b0:5e: 7b:31:ad:13:50:b1:cd:f2:e3:43:cf:8e:8b:c2:15:01:2f:df: a0:fc:21:8c:5d:5b:6f:90:38:0b:80:61:a0:3d:49:09:58:64: eb:fe:e5:77:19:9c:a9:f2:b6:a0:fd:ba:99:8c:85:6e:f0:82: f7:e3:31:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjUwOTE4MTcxODQ4WhcNMjUwOTI1MTcxODQ4WjAYMRYwFAYD VQQDEw02OGNjM2VmOC02MWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmfpVl+786bSAIsM+layI5Yz7FPe8XtrMzkgwDoYcPkLC+Kjz4wkyjxHvMPc bFGCG6bjSqX+b9XukQOjhqSkcu98ReQHIfzywxKfIzXZ1wiEdDLIdh9gXL6R/hPv HU5PhZj1CsZwy0SzPNilof1ZEUL8CkzMWG7zlMhAkqo0xf7ctJun2sv2hBL2YylZ d9s4XFee2EDv9HobUc/YA/ZQJKtg1LPoYOy7+uw7CJLLvdmKpDew33xMWceOdBsu 1Y1opLWB2xquIck9A6fY5uKIBQ5/MPL7m+fHrur5z9mkFqr0e816z0sm1r3hPhTQ kdKcwzfeHSXpTeuUJwLyecwGVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIYuMVkW SoOf8GEmT2Av++a7EAJnMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzdGMi80OEVGRDE3Q0YxQTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0pa eDFqSFRJTUxLZWJ6cFhjOXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa46Q+N4Ek7LaX+pqRVOupmuWUlMyMj5AsEk4l3Y6E6hX7JloZCgCu 58HjAEp0NnRxRwK2s88ccyUbLQ9iKHaBMthIxLQzYDvAA0e2nlPNd9yHuNoevKiS ox4zFNplk0lo77DJSYgvluTKVQlhMre4KEueRBe0K20hBet8iF4L/6E1AHa63ugT zE5wMQzba5FW99RVgoiKJeL1CxzgD4OTJVYc6xugLvaafjcPlqxUPvwsGB+lIh6v BTjVIyZgpT6rkdB1sF57Ma0TULHN8uNDz46LwhUBL9+g/CGMXVtvkDgLgGGgPUkJ WGTr/uV3GZyp8rag/bqZjIVu8IL34zFy -----END CERTIFICATE-----Generated at Thu Sep 18 23:28:24 2025 by rpki-client