$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft File: 1bScAI9ih18VJth200lAoJsOnW0.mft (raw, json) Hash identifier: KNLy2VWsFkvNffEj6dPveTSmuyQSqYZsfBgu/Vlnq/0= Subject key identifier: 78:B4:AC:4E:3C:A8:67:BA:B6:63:A9:E0:A1:89:BB:E8:8E:DF:86:9F Authority key identifier: D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D Certificate issuer: /CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Certificate serial: 1584 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft Manifest number: 1570 Signing time: Mon 08 Sep 2025 16:47:40 +0000 Manifest this update: Mon 08 Sep 2025 16:47:39 +0000 Manifest next update: Mon 15 Sep 2025 16:47:39 +0000 Files and hashes: 1: 1bScAI9ih18VJth200lAoJsOnW0.crl (hash: mPL4vfjGx0vBPlj/YkTzq3BkDRVgv3UPAid4xZGHUHE=) 2: EC796D6C42D411E88EC29742C4F9AE02.roa (hash: 4omxKGchAtANINcKNMUv81DprGm9m6mhlkl3cRG7vXI=) 3: EB843B92329A11EE89CD8544C4F9AE02.roa (hash: b5yX1QAOSGwKLnK6fw3PZvYuW4+NY2un1A6EM1jEmyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 16:47:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5508 (0x1584) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB434, serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Validity Not Before: Sep 8 16:47:39 2025 GMT Not After : Sep 15 16:47:39 2025 GMT Subject: CN=68bf08ab-fe13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f8:86:6f:8b:b5:bd:e9:c9:7e:7f:92:43:61: e5:2b:2d:77:13:7b:9e:3c:a4:65:b7:7a:dc:5b:75: a5:0e:7a:20:29:87:d9:d0:34:ef:77:7b:eb:d2:29: 7b:fb:8c:ea:ed:e9:03:11:cf:a3:64:3e:56:a3:02: 69:02:78:a1:26:a2:03:11:48:ef:a6:9e:22:17:91: 55:4c:38:ab:7f:13:75:f5:69:25:80:bc:b2:ec:b0: d3:5c:6d:a0:60:59:4b:70:ee:25:0a:d7:c3:b2:d6: 80:5a:27:37:4c:cc:4d:fb:b3:38:36:45:dd:91:da: c3:cd:c4:86:8f:3e:b8:e2:10:d6:ab:d2:1c:e5:e9: ce:ba:79:4c:b7:c2:2e:5a:9d:00:0c:7f:19:34:6c: 85:b5:e6:4b:37:0f:4b:d3:93:c1:e7:3d:c1:ee:7d: 5c:d3:b6:d6:be:3b:88:5e:07:68:4b:4d:30:36:94: 86:10:7b:50:46:0a:56:16:1a:1f:5f:a1:ab:43:e1: 07:39:db:ed:42:49:fb:0c:fe:85:09:46:a8:fc:d5: 74:cc:2e:19:86:ab:6f:bb:38:40:68:99:75:83:34: 57:a9:da:67:40:f8:0f:2c:12:db:8a:10:b3:13:77: e9:e5:0f:b8:d5:95:d4:21:26:97:35:5e:cc:7d:a7: 50:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:B4:AC:4E:3C:A8:67:BA:B6:63:A9:E0:A1:89:BB:E8:8E:DF:86:9F X509v3 Authority Key Identifier: keyid:D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:82:92:7e:a9:77:b6:eb:ba:36:0f:5a:1a:39:cf:bd:5d:d2: 25:cb:46:80:dd:ba:53:5f:fd:22:7b:c6:44:5a:95:d8:e2:17: c5:ac:82:10:6b:ee:ad:51:41:b4:8f:d3:31:77:85:9a:bb:a0: 8b:11:eb:33:02:b1:5e:f7:cc:c7:13:2c:a5:ff:69:15:69:69: 42:93:51:23:cb:53:7f:d9:cb:d7:d3:e5:b8:b4:31:5d:ab:03: ed:82:24:45:a8:55:85:fc:dc:ee:29:bb:fb:03:57:10:1f:04: fd:1d:62:4a:40:d9:aa:a8:42:89:ee:d2:20:26:23:dc:95:2d: 5e:e4:92:d8:e0:6a:16:c9:36:a7:d1:55:eb:ec:70:f8:99:11: 5e:4c:6f:a0:8c:0b:1a:58:a1:5f:fe:15:91:6a:25:19:41:e0: 3f:3e:c4:25:ea:b7:4f:ae:e9:65:f5:68:c4:8a:e3:12:da:e8: 8b:fc:b7:76:ab:ea:64:86:66:0e:1f:62:18:38:b2:fd:d6:8b: e7:3b:1a:b0:4f:bb:df:b7:35:af:0d:73:c0:02:d3:c8:65:c5: bc:a3:20:8f:e7:42:ea:e1:78:d4:72:9c:80:5a:31:04:4c:19: 43:25:6c:f0:cd:24:7b:b1:9d:a8:e5:b1:87:6c:8f:45:02:9d: 5a:64:1c:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI0MzQxMTAvBgNVBAUTKEQ1QjQ5QzAwOEY2Mjg3NUYxNTI2RDg3NkQzNDk0MEEw OUIwRTlENkQwHhcNMjUwOTA4MTY0NzM5WhcNMjUwOTE1MTY0NzM5WjAYMRYwFAYD VQQDEw02OGJmMDhhYi1mZTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfiGb4u1venJfn+SQ2HlKy13E3uePKRlt3rcW3WlDnogKYfZ0DTvd3vr0il7 +4zq7ekDEc+jZD5WowJpAnihJqIDEUjvpp4iF5FVTDirfxN19WklgLyy7LDTXG2g YFlLcO4lCtfDstaAWic3TMxN+7M4NkXdkdrDzcSGjz644hDWq9Ic5enOunlMt8Iu Wp0ADH8ZNGyFteZLNw9L05PB5z3B7n1c07bWvjuIXgdoS00wNpSGEHtQRgpWFhof X6GrQ+EHOdvtQkn7DP6FCUao/NV0zC4ZhqtvuzhAaJl1gzRXqdpnQPgPLBLbihCz E3fp5Q+41ZXUISaXNV7MfadQFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHi0rE48 qGe6tmOp4KGJu+iO34afMB8GA1UdIwQYMBaAFNW0nACPYodfFSbYdtNJQKCbDp1t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjQzNC9FMkM2MjY3NjQy RDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgxOFZKdGgyMDBsQW9Kc09u VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFiU2NBSTlpaDE4Vkp0aDIwMGxBb0pzT25XMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjQzNC9FMkM2MjY3NjQyRDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgx OFZKdGgyMDBsQW9Kc09uVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVgpJ+qXe267o2D1oaOc+9XdIly0aA3bpTX/0ie8ZEWpXY4hfFrIIQ a+6tUUG0j9Mxd4Wau6CLEeszArFe98zHEyyl/2kVaWlCk1Ejy1N/2cvX0+W4tDFd qwPtgiRFqFWF/NzuKbv7A1cQHwT9HWJKQNmqqEKJ7tIgJiPclS1e5JLY4GoWyTan 0VXr7HD4mRFeTG+gjAsaWKFf/hWRaiUZQeA/PsQl6rdPrull9WjEiuMS2uiL/Ld2 q+pkhmYOH2IYOLL91ovnOxqwT7vftzWvDXPAAtPIZcW8oyCP50Lq4XjUcpyAWjEE TBlDJWzwzSR7sZ2o5bGHbI9FAp1aZBwE -----END CERTIFICATE-----Generated at Mon Sep 8 22:00:15 2025 by rpki-client