$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft File: F11CAiv1C9bCDzCxxa2MlOCFvE4.mft (raw, json) Hash identifier: 0VBEQp+u8OA1XXE8tkBSgCKQqRV0zgNC+81oBL9zJFc= Subject key identifier: 68:94:C0:CB:48:F5:5D:3B:79:25:DB:C4:18:3B:6B:17:77:29:09:4B Authority key identifier: 17:5D:42:02:2B:F5:0B:D6:C2:0F:30:B1:C5:AD:8C:94:E0:85:BC:4E Certificate issuer: /CN=A91F89D9/serialNumber=175D42022BF50BD6C20F30B1C5AD8C94E085BC4E Certificate serial: BE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F11CAiv1C9bCDzCxxa2MlOCFvE4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft Manifest number: BC Signing time: Fri 05 Sep 2025 06:23:38 +0000 Manifest this update: Fri 05 Sep 2025 06:23:38 +0000 Manifest next update: Fri 12 Sep 2025 06:23:37 +0000 Files and hashes: 1: F11CAiv1C9bCDzCxxa2MlOCFvE4.crl (hash: kz9FMa79iEFIUDRJkLG2ZQzsNSeRDcln9GbZEcivdno=) 2: A18C777C6F5F11EFAF849B28C4F9AE02.roa (hash: fujb24eQPYgPwcrZc8i7YcmXNyel+exUWMY7rJXI438=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.crl rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F11CAiv1C9bCDzCxxa2MlOCFvE4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89D9, serialNumber=175D42022BF50BD6C20F30B1C5AD8C94E085BC4E Validity Not Before: Sep 5 06:23:38 2025 GMT Not After : Sep 12 06:23:37 2025 GMT Subject: CN=68ba81ea-273b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a4:7f:e2:96:fe:83:5e:06:2e:e9:82:72:cf: 4f:f2:3f:dc:15:a4:d7:b3:c2:e4:48:0f:bf:8f:bd: d2:5e:7e:00:d4:37:80:6f:c5:65:a1:31:ab:66:8b: ab:d5:d4:2b:57:ae:87:ea:49:99:b2:ca:3f:ee:ee: ee:88:d4:31:60:df:10:5f:6d:e3:65:24:56:0f:5c: 7d:42:d6:48:af:8a:c4:07:5b:00:c8:c1:e2:13:eb: c6:f2:9e:56:f3:62:7c:0d:de:10:49:be:d0:15:3a: 25:f2:f3:8f:44:68:c6:37:25:e1:19:9e:b3:3f:2f: 85:d5:58:7b:26:90:5a:43:3c:7d:a1:7e:6d:4c:5f: 4b:5e:fa:57:eb:75:1a:16:73:8a:e5:f6:9c:eb:94: 21:5e:f3:3f:78:40:ce:75:13:61:10:9e:60:2a:b0: e3:c2:f9:36:d9:d3:f7:99:7c:13:fe:89:4a:a9:6f: 64:62:21:d8:68:4f:11:70:21:d0:36:c2:18:7a:f9: ea:6c:81:f5:ba:20:a6:d7:57:9e:f2:8f:ea:2d:bb: f0:eb:c2:da:c7:32:90:8e:75:a7:dd:ed:70:3b:36: 35:01:87:c0:82:51:e8:8f:cf:fb:d6:3d:8f:1c:fc: 2e:95:a4:c8:60:de:a4:60:54:8c:95:30:8f:15:3e: d1:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:94:C0:CB:48:F5:5D:3B:79:25:DB:C4:18:3B:6B:17:77:29:09:4B X509v3 Authority Key Identifier: keyid:17:5D:42:02:2B:F5:0B:D6:C2:0F:30:B1:C5:AD:8C:94:E0:85:BC:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F11CAiv1C9bCDzCxxa2MlOCFvE4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89D9/EABFEBF26F5C11EF835A7B66C4F9AE02/F11CAiv1C9bCDzCxxa2MlOCFvE4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:c4:2e:99:61:bf:ac:9c:5a:f6:23:b5:f1:1e:1b:48:82:2b: 93:e2:bc:a6:a6:65:53:4b:46:ac:02:3e:80:ba:c4:ce:9e:ec: b3:12:03:a2:35:4b:a0:5a:4c:17:94:1a:9d:9e:77:dd:7f:40: 22:72:c5:bd:81:ef:13:67:b3:40:ff:e4:e3:76:58:5c:8a:30: 4a:e8:65:3f:b4:55:60:b8:14:55:3f:20:0b:f5:a1:ad:25:4e: ee:cb:4d:c1:59:82:60:a5:18:8f:ef:76:64:74:f4:19:fa:2c: 2c:54:4d:a4:87:58:af:93:1f:ff:56:e1:fc:a7:1e:8a:ae:f8: c4:62:3a:10:bb:1c:16:1e:43:b1:95:39:99:c0:b7:7a:65:64: ae:25:ff:d4:99:ab:58:d3:5f:5d:c3:55:12:13:4a:4c:f2:ff: 2e:4b:7d:b6:b6:52:7b:60:33:21:0d:67:e6:61:73:6a:b7:ad: 52:f1:72:0f:d8:91:a8:2c:eb:34:d2:a9:df:9c:aa:67:1e:7e: e1:ed:69:32:06:62:0b:bf:d1:20:b8:e6:bc:51:67:6a:c3:a8: 0d:92:05:ab:4f:01:fe:12:a1:81:3b:ac:cd:33:00:23:c5:e9: dc:e5:64:90:31:70:e4:69:4a:91:84:1b:1d:ea:06:d8:fa:2d: fb:4f:d5:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5RDkxMTAvBgNVBAUTKDE3NUQ0MjAyMkJGNTBCRDZDMjBGMzBCMUM1QUQ4Qzk0 RTA4NUJDNEUwHhcNMjUwOTA1MDYyMzM4WhcNMjUwOTEyMDYyMzM3WjAYMRYwFAYD VQQDEw02OGJhODFlYS0yNzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6R/4pb+g14GLumCcs9P8j/cFaTXs8LkSA+/j73SXn4A1DeAb8VloTGrZour 1dQrV66H6kmZsso/7u7uiNQxYN8QX23jZSRWD1x9QtZIr4rEB1sAyMHiE+vG8p5W 82J8Dd4QSb7QFTol8vOPRGjGNyXhGZ6zPy+F1Vh7JpBaQzx9oX5tTF9LXvpX63Ua FnOK5fac65QhXvM/eEDOdRNhEJ5gKrDjwvk22dP3mXwT/olKqW9kYiHYaE8RcCHQ NsIYevnqbIH1uiCm11ee8o/qLbvw68LaxzKQjnWn3e1wOzY1AYfAglHoj8/71j2P HPwulaTIYN6kYFSMlTCPFT7RCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGiUwMtI 9V07eSXbxBg7axd3KQlLMB8GA1UdIwQYMBaAFBddQgIr9QvWwg8wscWtjJTghbxO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlEOS9FQUJGRUJGMjZG NUMxMUVGODM1QTdCNjZDNEY5QUUwMi9GMTFDQWl2MUM5YkNEekN4eGEyTWxPQ0Z2 RTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0YxMUNBaXYxQzliQ0R6Q3h4YTJNbE9DRnZFNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlEOS9FQUJGRUJGMjZGNUMxMUVGODM1QTdCNjZDNEY5QUUwMi9GMTFDQWl2MUM5 YkNEekN4eGEyTWxPQ0Z2RTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByxC6ZYb+snFr2I7XxHhtIgiuT4rympmVTS0asAj6AusTOnuyzEgOi NUugWkwXlBqdnnfdf0AicsW9ge8TZ7NA/+TjdlhcijBK6GU/tFVguBRVPyAL9aGt JU7uy03BWYJgpRiP73ZkdPQZ+iwsVE2kh1ivkx//VuH8px6KrvjEYjoQuxwWHkOx lTmZwLd6ZWSuJf/UmatY019dw1USE0pM8v8uS322tlJ7YDMhDWfmYXNqt61S8XIP 2JGoLOs00qnfnKpnHn7h7WkyBmILv9EguOa8UWdqw6gNkgWrTwH+EqGBO6zNMwAj xenc5WSQMXDkaUqRhBsd6gbY+i37T9U7 -----END CERTIFICATE-----Generated at Sat Sep 6 21:04:31 2025 by rpki-client