$ rpki-client -vvf rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft File: -sKy5UFEW1tHxZ2uHeLd6IeauLs.mft (raw, json) Hash identifier: tbcjGLPoQhmVMi2Ysq1GNs3L9tmNfz/LJv6QLU8rJo8= Subject key identifier: 46:37:86:D8:C8:0C:4F:D9:4B:FD:34:E9:C3:6D:8F:DC:AA:F2:98:25 Authority key identifier: FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB Certificate issuer: /CN=A91F11EE/serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft Manifest number: E3 Signing time: Tue 09 Sep 2025 05:36:46 +0000 Manifest this update: Tue 09 Sep 2025 05:36:45 +0000 Manifest next update: Tue 16 Sep 2025 05:36:45 +0000 Files and hashes: 1: -sKy5UFEW1tHxZ2uHeLd6IeauLs.crl (hash: VjAygbmXVaq0Vnf9/a3TXud6Zpps3zUAQZ/d+orRfWI=) 2: 8B0201183E8911EFB2DCA846C4F9AE02.roa (hash: sQR4OxxnRQelaQye41JzM/+/uoADouWx9n3P5u34eoY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 05:36:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F11EE, serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Validity Not Before: Sep 9 05:36:45 2025 GMT Not After : Sep 16 05:36:45 2025 GMT Subject: CN=68bfbced-9e75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9a:c0:38:e9:be:33:91:10:b2:ca:a3:20:46: f1:cb:ec:4f:db:a9:2f:2e:77:82:03:66:47:84:2d: 51:7a:cf:2a:7f:89:97:14:c5:16:fa:5e:51:a6:b3: 76:af:12:ac:91:c6:ab:51:c4:32:2a:db:52:76:26: cf:08:f3:3f:01:17:f3:64:21:53:ac:be:bd:a0:c9: 04:7f:72:f3:a2:f2:ae:bb:b9:cb:db:81:04:a7:9a: 56:bf:2c:f4:eb:15:5c:23:14:4a:1c:b5:08:d6:8d: 93:5f:1e:e9:49:fb:03:30:04:95:f3:9d:35:0e:83: 9c:7c:10:da:f6:9e:c5:e6:a2:ff:b2:1b:59:b4:9b: d1:29:b0:4f:27:d6:07:bf:16:98:27:ff:32:9b:a9: 68:ff:cb:c9:3b:5d:6d:76:a9:b1:28:cc:da:c7:f1: 90:0a:6b:22:28:cf:7a:67:01:d3:d8:d7:1f:c6:5b: 62:da:e9:ff:f0:d8:ae:d7:a9:c6:48:53:80:bf:7f: e9:e1:de:ff:e6:9f:12:db:85:be:03:9b:5e:63:6e: b2:93:c5:0c:58:da:38:3a:5b:bd:79:74:be:8a:7a: a7:6f:3d:93:d1:c8:67:7c:c4:f5:24:b6:6a:15:68: 1e:0d:b7:77:d5:48:17:21:a4:02:a0:76:c0:26:df: 56:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:37:86:D8:C8:0C:4F:D9:4B:FD:34:E9:C3:6D:8F:DC:AA:F2:98:25 X509v3 Authority Key Identifier: keyid:FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d1:61:85:b9:ba:53:13:e0:6e:3e:1d:67:b7:e0:b0:08:14:e0: b6:50:52:90:57:9b:59:dc:ca:db:a7:24:94:52:d8:0f:69:3d: 24:79:95:60:be:04:5d:30:db:c1:38:e0:07:e2:2e:c0:60:6a: 7e:37:00:47:50:b5:80:6e:7d:db:a5:00:53:e8:7b:b8:14:87: 2d:66:7e:73:a5:05:86:94:26:d0:d5:e6:6e:e4:dc:bf:38:bd: 07:4d:99:8f:cb:65:5b:47:10:9f:17:cc:81:17:57:8d:32:de: a9:b0:94:b6:5c:35:ad:2a:f7:68:c4:9a:cd:e6:7f:a5:a8:c7: 2a:35:10:ac:66:57:9e:7d:82:66:6d:71:27:e2:6f:06:01:ca: 55:17:28:51:0f:e7:4b:46:8e:fc:f2:f4:58:d7:cf:1c:86:8e: b6:f6:82:fb:5b:39:f8:35:d9:98:52:b9:b1:f6:d2:ed:2a:41: fc:34:0c:da:df:f1:fb:78:b3:7b:18:a6:fe:52:6e:de:db:4d: c0:3c:6d:6e:46:d8:eb:cf:13:c5:1f:f7:d0:6e:eb:ab:16:20: 82:0c:a6:34:a1:6c:59:eb:d6:95:d1:1b:7b:d5:93:ab:b5:de: a6:f4:70:1f:f8:93:16:cd:63:2c:a3:4d:bb:74:88:f4:d9:43: bf:7b:c0:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjExRUUxMTAvBgNVBAUTKEZBQzJCMkU1NDE0NDVCNUI0N0M1OURBRTFERTJEREU4 ODc5QUI4QkIwHhcNMjUwOTA5MDUzNjQ1WhcNMjUwOTE2MDUzNjQ1WjAYMRYwFAYD VQQDEw02OGJmYmNlZC05ZTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwprAOOm+M5EQssqjIEbxy+xP26kvLneCA2ZHhC1Res8qf4mXFMUW+l5RprN2 rxKskcarUcQyKttSdibPCPM/ARfzZCFTrL69oMkEf3LzovKuu7nL24EEp5pWvyz0 6xVcIxRKHLUI1o2TXx7pSfsDMASV8501DoOcfBDa9p7F5qL/shtZtJvRKbBPJ9YH vxaYJ/8ym6lo/8vJO11tdqmxKMzax/GQCmsiKM96ZwHT2Ncfxlti2un/8Niu16nG SFOAv3/p4d7/5p8S24W+A5teY26yk8UMWNo4Olu9eXS+inqnbz2T0chnfMT1JLZq FWgeDbd31UgXIaQCoHbAJt9WYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEY3htjI DE/ZS/006cNtj9yq8pglMB8GA1UdIwQYMBaAFPrCsuVBRFtbR8Wdrh3i3eiHmri7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTFFRS9FOThBNDY1MjNF ODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcxdEh4WjJ1SGVMZDZJZWF1 THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1zS3k1VUZFVzF0SHhaMnVIZUxkNkllYXVMcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTFFRS9FOThBNDY1MjNFODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcx dEh4WjJ1SGVMZDZJZWF1THMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDRYYW5ulMT4G4+HWe34LAIFOC2UFKQV5tZ3MrbpySUUtgPaT0keZVg vgRdMNvBOOAH4i7AYGp+NwBHULWAbn3bpQBT6Hu4FIctZn5zpQWGlCbQ1eZu5Ny/ OL0HTZmPy2VbRxCfF8yBF1eNMt6psJS2XDWtKvdoxJrN5n+lqMcqNRCsZleefYJm bXEn4m8GAcpVFyhRD+dLRo788vRY188cho629oL7Wzn4NdmYUrmx9tLtKkH8NAza 3/H7eLN7GKb+Um7e203APG1uRtjrzxPFH/fQbuurFiCCDKY0oWxZ69aV0Rt71ZOr td6m9HAf+JMWzWMso027dIj02UO/e8Ah -----END CERTIFICATE-----Generated at Tue Sep 9 19:27:40 2025 by rpki-client