$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft File: D429p9DJoeyhlFxhtykg9aoOlGc.mft (raw, json) Hash identifier: okhtIbicmgC8kED5u5DDGonSOxQvRSPvg4LOfu8Vl9c= Subject key identifier: 36:EC:53:BE:45:AA:92:F8:5D:AE:BC:C9:8D:57:9C:4D:0D:20:3B:52 Authority key identifier: 0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 Certificate issuer: /CN=A91FAF20/serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Certificate serial: 1C21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft Manifest number: 1C10 Signing time: Wed 10 Sep 2025 16:17:12 +0000 Manifest this update: Wed 10 Sep 2025 16:17:12 +0000 Manifest next update: Wed 17 Sep 2025 16:17:12 +0000 Files and hashes: 1: D429p9DJoeyhlFxhtykg9aoOlGc.crl (hash: pi7r0EbFTbYkaumPD/wNbbnKoqkuSKTC9o5/vv2iQ1o=) 2: D59EA6F4F5C611E6A4FFEF0AC4F9AE02.roa (hash: fVTj+Nhy/WhakS8dFaROX7k0zNO3tiUAb5xWLcSpOW0=) 3: C3ACDB568E9311E9AA8A2877C4F9AE02.roa (hash: u6rekZJ0jZc3ISHqsLCTcc0e5DQkPjPm3qL6iQKKzgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Sep 2025 16:17:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7201 (0x1c21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAF20, serialNumber=0F8DBDA7D0C9A1ECA1945C61B72920F5AA0E9467 Validity Not Before: Sep 10 16:17:12 2025 GMT Not After : Sep 17 16:17:12 2025 GMT Subject: CN=68c1a488-0da1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:95:cc:e0:02:3f:18:2d:37:16:83:db:f3:0a: f5:bf:d9:08:d4:ad:ef:7d:49:85:74:9d:75:30:d6: 67:e6:52:b9:1a:2d:f8:f9:19:7a:b8:d9:b2:72:2d: eb:89:8c:fc:1c:0d:d1:65:c4:70:3d:d6:2f:e9:41: 90:c4:e4:26:f8:86:d8:8c:c0:89:1b:c0:6c:35:07: 1c:b6:a3:0d:a0:7f:bc:00:31:c2:6a:12:9b:5e:64: 36:12:d2:42:08:11:35:64:f9:8a:7c:1f:c7:8a:4d: f1:ad:54:6b:26:d9:1d:46:f3:f5:20:89:bd:3b:e9: a9:cf:48:51:0d:46:ba:81:2e:61:48:98:e4:a4:43: b2:c0:a1:1f:50:8f:28:f3:48:6a:30:1c:0a:bf:56: 50:46:27:7a:d6:c9:74:b2:0f:36:28:9f:39:e7:45: 39:c8:b3:36:26:fa:ca:b6:53:7f:5d:b7:b5:f7:d0: 63:7f:27:01:88:2f:d0:b4:e3:46:1a:46:b6:a3:94: 69:bb:fa:db:06:ac:76:3a:0f:ea:e7:84:d1:d2:dd: c4:c7:bb:cb:72:6c:45:9e:03:25:82:5f:eb:95:ed: 11:6e:d0:40:b3:bc:7e:85:e4:31:24:db:c9:c5:cd: bf:9c:f8:f1:f9:7b:02:6e:82:38:ac:57:97:83:9b: 1a:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:EC:53:BE:45:AA:92:F8:5D:AE:BC:C9:8D:57:9C:4D:0D:20:3B:52 X509v3 Authority Key Identifier: keyid:0F:8D:BD:A7:D0:C9:A1:EC:A1:94:5C:61:B7:29:20:F5:AA:0E:94:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D429p9DJoeyhlFxhtykg9aoOlGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAF20/65A9A242F5C411E68AAA0085C4F9AE02/D429p9DJoeyhlFxhtykg9aoOlGc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:74:7d:25:12:e9:a9:bb:d8:be:47:76:fc:16:a7:a9:92:1f: ae:23:6d:ad:74:ff:ae:f1:dc:97:fd:58:19:a8:f6:62:65:47: 35:df:22:9b:67:3d:92:d2:86:1f:8c:db:36:d8:90:0c:df:2b: 57:b5:02:9a:26:fe:34:5f:c5:0b:7b:f3:f7:bd:37:ca:cb:35: 96:c2:05:5a:87:4e:7e:59:f0:0e:1b:5f:11:14:e1:fc:93:c5: ea:5a:b4:0e:08:89:25:bb:08:7d:44:a9:c4:60:d3:cc:c8:01: f3:2c:39:b5:f6:c6:67:b0:a0:1f:ca:d4:dc:a9:73:3d:ca:31: 42:74:6a:cf:ef:1e:1a:70:40:00:21:81:54:91:ea:04:9b:ed: 93:8b:6b:43:be:56:59:0e:e8:5c:74:95:ed:67:9d:06:83:df: e0:47:b5:06:a5:3e:9e:34:14:a2:96:33:dd:06:a3:b2:ff:0b: 6d:12:d0:e0:51:48:55:b1:c9:d8:36:f1:1c:b4:dd:33:3d:3e: e0:af:b2:42:e2:46:3e:bd:24:f4:2b:5b:99:67:c0:54:41:4c: 37:2d:c0:22:60:eb:ae:56:99:12:ee:56:0a:a3:7d:6e:df:60: ae:b3:2b:bc:8a:77:e4:2c:dc:18:83:6b:7b:ff:89:31:14:d4: b3:c4:ca:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFGMjAxMTAvBgNVBAUTKDBGOERCREE3RDBDOUExRUNBMTk0NUM2MUI3MjkyMEY1 QUEwRTk0NjcwHhcNMjUwOTEwMTYxNzEyWhcNMjUwOTE3MTYxNzEyWjAYMRYwFAYD VQQDEw02OGMxYTQ4OC0wZGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJXM4AI/GC03FoPb8wr1v9kI1K3vfUmFdJ11MNZn5lK5Gi34+Rl6uNmyci3r iYz8HA3RZcRwPdYv6UGQxOQm+IbYjMCJG8BsNQcctqMNoH+8ADHCahKbXmQ2EtJC CBE1ZPmKfB/Hik3xrVRrJtkdRvP1IIm9O+mpz0hRDUa6gS5hSJjkpEOywKEfUI8o 80hqMBwKv1ZQRid61sl0sg82KJ8550U5yLM2JvrKtlN/Xbe199BjfycBiC/QtONG Gka2o5Rpu/rbBqx2Og/q54TR0t3Ex7vLcmxFngMlgl/rle0RbtBAs7x+heQxJNvJ xc2/nPjx+XsCboI4rFeXg5sazQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbsU75F qpL4Xa68yY1XnE0NIDtSMB8GA1UdIwQYMBaAFA+NvafQyaHsoZRcYbcpIPWqDpRn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUYyMC82NUE5QTI0MkY1 QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9leWhsRnhodHlrZzlhb09s R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0MjlwOURKb2V5aGxGeGh0eWtnOWFvT2xHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUYyMC82NUE5QTI0MkY1QzQxMUU2OEFBQTAwODVDNEY5QUUwMi9ENDI5cDlESm9l eWhsRnhodHlrZzlhb09sR2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIdH0lEumpu9i+R3b8Fqepkh+uI22tdP+u8dyX/VgZqPZiZUc13yKb Zz2S0oYfjNs22JAM3ytXtQKaJv40X8ULe/P3vTfKyzWWwgVah05+WfAOG18RFOH8 k8XqWrQOCIkluwh9RKnEYNPMyAHzLDm19sZnsKAfytTcqXM9yjFCdGrP7x4acEAA IYFUkeoEm+2Ti2tDvlZZDuhcdJXtZ50Gg9/gR7UGpT6eNBSiljPdBqOy/wttEtDg UUhVscnYNvEctN0zPT7gr7JC4kY+vST0K1uZZ8BUQUw3LcAiYOuuVpkS7lYKo31u 32Cusyu8infkLNwYg2t7/4kxFNSzxMrb -----END CERTIFICATE-----Generated at Thu Sep 11 11:31:40 2025 by rpki-client