$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft File: 4deDfrzHqaTRdRZXhgR2OivQQnI.mft (raw, json) Hash identifier: nFjH2bLl+GragW6VrNNzpQmovpGEWIIsZ+b7shZk+aA= Subject key identifier: 68:46:60:41:3E:59:CC:64:E0:4C:AC:88:95:CC:26:FA:59:50:A6:B7 Authority key identifier: E1:D7:83:7E:BC:C7:A9:A4:D1:75:16:57:86:04:76:3A:2B:D0:42:72 Certificate issuer: /CN=A91EE92F/serialNumber=E1D7837EBCC7A9A4D17516578604763A2BD04272 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft Manifest number: BE Signing time: Wed 17 Sep 2025 06:34:41 +0000 Manifest this update: Wed 17 Sep 2025 06:34:40 +0000 Manifest next update: Wed 24 Sep 2025 06:34:40 +0000 Files and hashes: 1: 4deDfrzHqaTRdRZXhgR2OivQQnI.crl (hash: /aml4jAb3GcU+BQZoGTobjdM615vaTpmrQ9sACcT2oY=) 2: 2EC0897A740C11EFB881CE37C4F9AE02.roa (hash: jK7WeiMtYEjncK+3WbHQbUVCOX5jz02RAdo98TCxxKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.crl rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:34:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE92F, serialNumber=E1D7837EBCC7A9A4D17516578604763A2BD04272 Validity Not Before: Sep 17 06:34:40 2025 GMT Not After : Sep 24 06:34:40 2025 GMT Subject: CN=68ca5680-8dbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7c:eb:c6:6e:13:ef:35:cd:7d:20:c3:f2:03: 0f:e0:64:2e:58:b7:b2:bb:13:64:fe:7c:a0:6e:36: d6:fc:7b:dd:7f:d8:53:30:3a:03:36:a3:54:f7:6e: 97:c8:b2:dc:5c:b6:e6:70:f8:b9:27:55:e8:27:97: 38:17:e2:8a:44:a3:aa:43:05:7f:72:a5:fc:3d:ea: 99:10:59:7c:0f:7e:81:98:b0:d8:50:bc:dc:5b:83: 0f:bf:05:d4:16:28:dd:89:5c:9d:49:f5:1a:b7:21: 6c:41:d1:77:27:38:92:ca:cc:01:d8:95:b9:ce:97: c4:fa:a3:42:78:bf:e7:53:5c:fe:d9:c8:f4:9a:06: 58:98:b8:36:76:10:0d:95:5a:f4:d8:80:6f:7b:91: c5:2d:85:96:07:3d:80:42:ea:3d:80:fb:ce:3c:65: a7:13:5d:14:10:74:23:05:59:07:a7:25:2b:d4:d5: 75:f2:86:03:85:22:7b:d5:12:b6:7e:f9:b5:dc:24: 40:11:4b:2e:ac:4d:86:e5:19:b5:66:95:5f:17:81: 13:7d:04:ce:41:c6:2f:a0:49:70:8e:d7:84:31:7b: 8c:7f:9a:2d:34:38:25:0e:5e:51:22:96:29:5a:52: 6c:bc:4b:05:c1:d7:0d:93:93:60:84:e3:9a:65:a4: 07:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:46:60:41:3E:59:CC:64:E0:4C:AC:88:95:CC:26:FA:59:50:A6:B7 X509v3 Authority Key Identifier: keyid:E1:D7:83:7E:BC:C7:A9:A4:D1:75:16:57:86:04:76:3A:2B:D0:42:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:31:db:ae:71:92:9e:a0:0f:71:79:a9:42:f2:58:08:6d:a4: 9d:81:76:ea:80:96:02:d7:ea:22:9c:5e:5a:a9:76:3d:1f:e0: 14:9b:7a:0a:3f:7b:71:76:9f:69:7a:70:54:06:0e:bb:b5:b6: 05:3b:d7:8d:f7:79:2d:4c:e7:d0:45:98:2f:47:bf:e0:4a:74: 34:05:a7:9a:b7:c9:35:8b:f5:f6:f0:bf:0c:fd:94:55:1b:b8: 24:f5:96:39:2c:d2:b6:8d:38:f3:94:13:34:a8:86:f3:24:07: ce:5e:cc:af:79:fd:94:3b:a2:d3:b2:3d:5e:56:6b:60:c7:0f: ce:3c:58:b5:d6:29:71:df:2e:05:dd:e5:d3:61:50:28:ee:9f: ab:25:cd:e1:48:46:ba:28:53:6d:06:a0:0a:51:fd:3a:ec:92: fa:d0:db:83:d0:3d:8f:21:23:43:cf:a2:62:7c:28:7f:81:a6: c3:de:02:7e:79:2d:e4:78:d8:9d:01:8d:0a:5e:5a:b6:6d:62: 9a:27:ec:dc:ca:f2:59:1b:44:9c:86:de:0c:78:8d:2a:a0:b7: 7f:ca:df:4c:0b:bc:9c:ae:18:f4:5e:89:91:fa:2f:98:59:44: 04:43:43:e0:29:d8:8b:b3:02:a1:2e:81:8c:f7:f3:01:11:68: 3d:c7:21:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU5MkYxMTAvBgNVBAUTKEUxRDc4MzdFQkNDN0E5QTREMTc1MTY1Nzg2MDQ3NjNB MkJEMDQyNzIwHhcNMjUwOTE3MDYzNDQwWhcNMjUwOTI0MDYzNDQwWjAYMRYwFAYD VQQDEw02OGNhNTY4MC04ZGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3zrxm4T7zXNfSDD8gMP4GQuWLeyuxNk/nygbjbW/Hvdf9hTMDoDNqNU926X yLLcXLbmcPi5J1XoJ5c4F+KKRKOqQwV/cqX8PeqZEFl8D36BmLDYULzcW4MPvwXU FijdiVydSfUatyFsQdF3JziSyswB2JW5zpfE+qNCeL/nU1z+2cj0mgZYmLg2dhAN lVr02IBve5HFLYWWBz2AQuo9gPvOPGWnE10UEHQjBVkHpyUr1NV18oYDhSJ71RK2 fvm13CRAEUsurE2G5Rm1ZpVfF4ETfQTOQcYvoElwjteEMXuMf5otNDglDl5RIpYp WlJsvEsFwdcNk5NghOOaZaQH9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGhGYEE+ Wcxk4EysiJXMJvpZUKa3MB8GA1UdIwQYMBaAFOHXg368x6mk0XUWV4YEdjor0EJy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTkyRi8xQjI5MEI1RTc0 MEIxMUVGOUU5QzAzMzZDNEY5QUUwMi80ZGVEZnJ6SHFhVFJkUlpYaGdSMk9pdlFR bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkZURmcnpIcWFUUmRSWlhoZ1IyT2l2UVFuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTkyRi8xQjI5MEI1RTc0MEIxMUVGOUU5QzAzMzZDNEY5QUUwMi80ZGVEZnJ6SHFh VFJkUlpYaGdSMk9pdlFRbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClMduucZKeoA9xealC8lgIbaSdgXbqgJYC1+oinF5aqXY9H+AUm3oK P3txdp9penBUBg67tbYFO9eN93ktTOfQRZgvR7/gSnQ0Baeat8k1i/X28L8M/ZRV G7gk9ZY5LNK2jTjzlBM0qIbzJAfOXsyvef2UO6LTsj1eVmtgxw/OPFi11ilx3y4F 3eXTYVAo7p+rJc3hSEa6KFNtBqAKUf067JL60NuD0D2PISNDz6JifCh/gabD3gJ+ eS3keNidAY0KXlq2bWKaJ+zcyvJZG0Scht4MeI0qoLd/yt9MC7ycrhj0XomR+i+Y WUQEQ0PgKdiLswKhLoGM9/MBEWg9xyFC -----END CERTIFICATE-----Generated at Fri Sep 19 05:25:29 2025 by rpki-client