$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.mft File: ItyTZY3G6XAwereu8eJV3j1D9bc.mft (raw, json) Hash identifier: V4X69qAhjAZp53LndyVvtUTuNa7yRIqIvKVdyvy3gj0= Subject key identifier: DF:3F:57:BB:C9:9F:18:5A:B0:67:AA:4C:0C:32:0F:30:A6:FC:CA:01 Authority key identifier: 22:DC:93:65:8D:C6:E9:70:30:7A:B7:AE:F1:E2:55:DE:3D:43:F5:B7 Certificate issuer: /CN=A91F0C45/serialNumber=22DC93658DC6E970307AB7AEF1E255DE3D43F5B7 Certificate serial: 09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItyTZY3G6XAwereu8eJV3j1D9bc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.mft Manifest number: 09 Signing time: Wed 17 Sep 2025 08:52:24 +0000 Manifest this update: Wed 17 Sep 2025 08:52:24 +0000 Manifest next update: Wed 24 Sep 2025 08:52:24 +0000 Files and hashes: 1: ItyTZY3G6XAwereu8eJV3j1D9bc.crl (hash: DE2Wn6LmtSdMBXzyMrtwME8Y4PQZY5uNUaC21slxZ4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.crl rsync://rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItyTZY3G6XAwereu8eJV3j1D9bc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 08:52:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0C45, serialNumber=22DC93658DC6E970307AB7AEF1E255DE3D43F5B7 Validity Not Before: Sep 17 08:52:24 2025 GMT Not After : Sep 24 08:52:24 2025 GMT Subject: CN=68ca76c8-8e04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cf:69:55:54:c8:d5:22:21:3e:c1:0c:cc:13: 09:fb:27:5d:d3:b9:1a:38:f1:67:91:27:5a:2a:58: cf:38:c6:fe:06:c0:a6:a4:ce:bf:df:de:15:c7:b9: ba:09:d5:d1:65:fa:dd:18:a8:20:47:b7:95:4d:4a: 52:ed:24:0b:d0:9a:81:ba:20:13:31:4a:17:b8:e7: fd:fb:8e:e0:bc:19:76:22:f0:0e:ac:82:e8:12:1d: d5:48:fd:bf:ac:eb:a3:d7:a8:bd:ed:de:98:e7:1c: 51:20:19:c8:c4:58:fd:71:24:19:90:2a:eb:d3:58: cf:3e:42:06:29:60:3c:6b:62:70:fc:14:2d:80:90: 1f:d9:a6:72:80:a4:4f:2c:c5:a0:52:ca:53:81:ce: 9f:ef:cb:4b:96:c4:11:d1:64:e1:7b:46:dc:82:c1: b4:74:a7:d4:35:8e:82:cc:b6:ff:5e:f2:ea:3f:f8: 14:e6:a9:24:43:7d:1c:45:67:03:2b:28:9a:6d:94: e4:b8:5b:b3:46:42:0a:fb:be:2f:95:1f:7e:54:a1: 93:73:30:3c:6e:37:df:37:2d:77:31:e1:65:a1:e0: 01:e6:61:91:ec:74:9d:a2:f4:a3:e9:1e:3a:88:d0: 95:c6:e9:df:e8:54:20:cb:5c:f3:96:99:7c:cc:4b: e3:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:3F:57:BB:C9:9F:18:5A:B0:67:AA:4C:0C:32:0F:30:A6:FC:CA:01 X509v3 Authority Key Identifier: keyid:22:DC:93:65:8D:C6:E9:70:30:7A:B7:AE:F1:E2:55:DE:3D:43:F5:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ItyTZY3G6XAwereu8eJV3j1D9bc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0C45/91A1899E892E11F097AC662FC4F9AE02/ItyTZY3G6XAwereu8eJV3j1D9bc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:52:fa:cc:ce:95:4e:0b:31:9b:24:dc:56:b6:76:4a:77:6e: 75:76:58:b9:a7:4d:93:c6:4e:fb:6f:67:0c:29:41:79:a7:f5: 8b:e0:39:fb:e0:ae:6a:91:6a:f1:f3:43:2e:37:83:1d:1a:a0: 41:0b:20:f1:8d:59:e0:c6:ad:e9:e4:66:07:d7:89:77:55:1b: 11:77:5e:a2:30:21:dd:b1:c5:86:f8:27:c9:a8:b6:9c:70:2f: 83:3f:70:02:32:04:3f:22:39:0e:df:79:36:d5:ff:f9:df:a6: 53:48:c9:f0:bf:81:12:80:6c:e6:35:c4:a4:aa:cf:d3:6e:2e: 83:c8:5f:b7:ab:44:53:23:8f:1f:86:48:3d:b6:21:e9:7b:d6: 0f:02:90:27:f1:8e:43:ef:4d:43:79:2b:5d:71:d5:a5:c9:ef: 57:a1:a3:cd:11:ec:f0:f8:79:71:fa:08:83:00:06:98:a0:8d: aa:2f:a8:3f:90:42:69:11:52:02:69:18:4f:3a:b4:0e:34:57: f9:c6:02:d9:cb:4d:b2:36:f1:30:ea:7a:0b:3d:d9:48:84:bd: d0:bd:4e:d2:04:21:71:e9:60:f8:90:3e:44:27:27:4f:e1:ab: f0:5c:ac:f1:f5:46:44:95:e4:83:04:fa:ce:2d:cc:e1:b5:be: 9d:a0:a5:24 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MEM0NTExMC8GA1UEBRMoMjJEQzkzNjU4REM2RTk3MDMwN0FCN0FFRjFFMjU1REUz RDQzRjVCNzAeFw0yNTA5MTcwODUyMjRaFw0yNTA5MjQwODUyMjRaMBgxFjAUBgNV BAMTDTY4Y2E3NmM4LThlMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvz2lVVMjVIiE+wQzMEwn7J13TuRo48WeRJ1oqWM84xv4GwKakzr/f3hXHuboJ 1dFl+t0YqCBHt5VNSlLtJAvQmoG6IBMxShe45/37juC8GXYi8A6sgugSHdVI/b+s 66PXqL3t3pjnHFEgGcjEWP1xJBmQKuvTWM8+QgYpYDxrYnD8FC2AkB/ZpnKApE8s xaBSylOBzp/vy0uWxBHRZOF7RtyCwbR0p9Q1joLMtv9e8uo/+BTmqSRDfRxFZwMr KJptlOS4W7NGQgr7vi+VH35UoZNzMDxuN983LXcx4WWh4AHmYZHsdJ2i9KPpHjqI 0JXG6d/oVCDLXPOWmXzMS+MlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3z9Xu8mf GFqwZ6pMDDIPMKb8ygEwHwYDVR0jBBgwFoAUItyTZY3G6XAwereu8eJV3j1D9bcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwQzQ1LzkxQTE4OTlFODky RTExRjA5N0FDNjYyRkM0RjlBRTAyL0l0eVRaWTNHNlhBd2VyZXU4ZUpWM2oxRDli Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSXR5VFpZM0c2WEF3ZXJldThlSlYzajFEOWJjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYw QzQ1LzkxQTE4OTlFODkyRTExRjA5N0FDNjYyRkM0RjlBRTAyL0l0eVRaWTNHNlhB d2VyZXU4ZUpWM2oxRDliYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB1S+szOlU4LMZsk3Fa2dkp3bnV2WLmnTZPGTvtvZwwpQXmn9YvgOfvg rmqRavHzQy43gx0aoEELIPGNWeDGrenkZgfXiXdVGxF3XqIwId2xxYb4J8motpxw L4M/cAIyBD8iOQ7feTbV//nfplNIyfC/gRKAbOY1xKSqz9NuLoPIX7erRFMjjx+G SD22Iel71g8CkCfxjkPvTUN5K11x1aXJ71eho80R7PD4eXH6CIMABpigjaovqD+Q QmkRUgJpGE86tA40V/nGAtnLTbI28TDqegs92UiEvdC9TtIEIXHpYPiQPkQnJ0/h q/BcrPH1RkSV5IME+s4tzOG1vp2gpSQ= -----END CERTIFICATE-----Generated at Fri Sep 19 00:40:55 2025 by rpki-client