$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft File: -gfo6rqEcKil_kuhPnXZ5f6jOyc.mft (raw, json) Hash identifier: 1n/wBLCnjF494tMCVSKV0bb6+n6uV8A5qlDSAyRxF1o= Subject key identifier: 1A:4A:B7:73:66:7B:89:66:20:63:0E:95:5E:77:3B:23:30:C5:52:A9 Authority key identifier: FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 Certificate issuer: /CN=A91F9FA2/serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Certificate serial: 09F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft Manifest number: 09EC Signing time: Tue 16 Sep 2025 20:06:30 +0000 Manifest this update: Tue 16 Sep 2025 20:06:29 +0000 Manifest next update: Tue 23 Sep 2025 20:06:29 +0000 Files and hashes: 1: -gfo6rqEcKil_kuhPnXZ5f6jOyc.crl (hash: pQVK8PhyY9uy7g1Ry50RxcjabLPEQV6KQs7B80ZI1eI=) 2: 0893031C846611EA9B99E043C4F9AE02.roa (hash: 3hay+KNg/2l74ymUeo3rJ7DbBbo6k73NfQvBnuqkfBY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 20:06:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2548 (0x9f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9FA2, serialNumber=FA07E8EABA8470A8A5FE4BA13E75D9E5FEA33B27 Validity Not Before: Sep 16 20:06:29 2025 GMT Not After : Sep 23 20:06:29 2025 GMT Subject: CN=68c9c346-e0c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9d:14:59:45:c6:0f:42:03:11:26:f1:e4:4f: 55:f9:e0:d5:f1:a7:f6:ca:e2:66:24:4c:13:00:be: 62:36:f2:aa:0c:89:86:10:20:c9:b9:32:19:fe:35: f6:d2:41:9e:75:74:f7:0f:16:4a:fb:60:75:13:5a: 0a:38:96:02:23:06:f7:42:e4:1c:ef:c9:3f:ff:83: 79:f7:07:5d:05:da:2b:e8:0f:36:09:ff:92:57:30: 4f:7c:de:1c:f3:e6:ca:f4:a4:4b:ba:62:cf:84:60: 87:ec:be:46:0b:ff:dd:bc:78:0a:39:82:05:42:12: cc:12:03:bd:1d:2d:ae:5d:24:6b:d8:07:44:ea:c7: a6:10:dd:99:4d:47:ed:69:f8:ca:70:8c:2a:b2:5f: 07:84:ba:0f:62:8d:09:9b:1a:e0:f9:df:80:d2:57: 14:70:fa:02:e0:07:f7:cd:d1:b2:ba:82:c4:72:26: 36:83:7a:c1:5f:29:68:07:a9:f8:d9:ca:cc:ea:e2: 09:c7:a0:d0:e0:ee:79:bc:b5:d7:1b:e6:f8:b7:35: 80:fc:60:c8:4a:2b:af:2a:66:39:7c:bd:49:70:ea: 2f:b3:71:b3:d6:26:5e:c2:49:d7:cc:f3:3a:e6:10: 51:da:6d:cf:0d:58:27:36:45:b8:50:a7:9a:33:06: a0:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:4A:B7:73:66:7B:89:66:20:63:0E:95:5E:77:3B:23:30:C5:52:A9 X509v3 Authority Key Identifier: keyid:FA:07:E8:EA:BA:84:70:A8:A5:FE:4B:A1:3E:75:D9:E5:FE:A3:3B:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gfo6rqEcKil_kuhPnXZ5f6jOyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9FA2/1C88B03A846411EAA9941540C4F9AE02/-gfo6rqEcKil_kuhPnXZ5f6jOyc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:5c:0d:c1:16:d9:3c:44:da:a2:d2:32:a0:eb:9d:9e:b3:4f: a2:1a:30:d7:a0:8b:f8:ce:f6:da:f0:ab:5b:f3:96:d3:04:16: 0f:dd:fd:15:9d:92:6a:1e:bd:ca:5f:42:d4:f8:a3:00:24:f2: e0:70:6d:85:83:05:0d:58:f9:2c:6b:ca:ae:8e:1a:18:e0:ab: 4d:86:71:35:ea:fd:f0:aa:89:df:f0:4a:9e:30:49:6e:fa:2a: cf:a8:79:85:9d:b9:76:69:33:da:84:0e:8f:30:09:06:3c:aa: c0:c1:cf:aa:00:e3:af:3b:97:d1:cb:4e:94:80:92:24:f0:79: eb:25:f2:0f:32:22:4b:19:d7:95:d9:01:5b:7c:f2:d3:35:4b: 58:90:0a:bf:b5:46:6b:a9:2d:4c:9d:f2:11:ff:9c:43:75:f7: 0b:fd:c9:44:aa:f4:76:50:fe:16:19:b3:f1:1a:35:f5:91:b5: 80:e6:ec:21:e4:10:d7:a3:d7:c7:0d:9a:7e:86:88:35:27:58: b9:af:86:74:52:1c:41:6b:97:eb:6d:44:9d:7e:92:8a:8f:4b: 0d:32:91:4f:d9:38:6b:cd:39:90:12:7e:9a:19:79:63:b7:a3: 91:ac:e9:17:7a:c6:01:20:1c:3e:04:e5:19:3b:4a:d5:65:9f: 62:21:29:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlGQTIxMTAvBgNVBAUTKEZBMDdFOEVBQkE4NDcwQThBNUZFNEJBMTNFNzVEOUU1 RkVBMzNCMjcwHhcNMjUwOTE2MjAwNjI5WhcNMjUwOTIzMjAwNjI5WjAYMRYwFAYD VQQDEw02OGM5YzM0Ni1lMGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJ0UWUXGD0IDESbx5E9V+eDV8af2yuJmJEwTAL5iNvKqDImGECDJuTIZ/jX2 0kGedXT3DxZK+2B1E1oKOJYCIwb3QuQc78k//4N59wddBdor6A82Cf+SVzBPfN4c 8+bK9KRLumLPhGCH7L5GC//dvHgKOYIFQhLMEgO9HS2uXSRr2AdE6semEN2ZTUft afjKcIwqsl8HhLoPYo0Jmxrg+d+A0lcUcPoC4Af3zdGyuoLEciY2g3rBXyloB6n4 2crM6uIJx6DQ4O55vLXXG+b4tzWA/GDISiuvKmY5fL1JcOovs3Gz1iZewknXzPM6 5hBR2m3PDVgnNkW4UKeaMwag7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpKt3Nm e4lmIGMOlV53OyMwxVKpMB8GA1UdIwQYMBaAFPoH6Oq6hHCopf5LoT512eX+ozsn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUZBMi8xQzg4QjAzQTg0 NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNLaWxfa3VoUG5YWjVmNmpP eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nZm82cnFFY0tpbF9rdWhQblhaNWY2ak95Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUZBMi8xQzg4QjAzQTg0NjQxMUVBQTk5NDE1NDBDNEY5QUUwMi8tZ2ZvNnJxRWNL aWxfa3VoUG5YWjVmNmpPeWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6XA3BFtk8RNqi0jKg652es0+iGjDXoIv4zvba8Ktb85bTBBYP3f0V nZJqHr3KX0LU+KMAJPLgcG2FgwUNWPksa8qujhoY4KtNhnE16v3wqonf8EqeMElu +irPqHmFnbl2aTPahA6PMAkGPKrAwc+qAOOvO5fRy06UgJIk8HnrJfIPMiJLGdeV 2QFbfPLTNUtYkAq/tUZrqS1MnfIR/5xDdfcL/clEqvR2UP4WGbPxGjX1kbWA5uwh 5BDXo9fHDZp+hog1J1i5r4Z0UhxBa5frbUSdfpKKj0sNMpFP2ThrzTmQEn6aGXlj t6ORrOkXesYBIBw+BOUZO0rVZZ9iISn5 -----END CERTIFICATE-----Generated at Thu Sep 18 20:36:15 2025 by rpki-client