$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft File: sXSj1LqbR24rMeR8cqKY0ETZh4U.mft (raw, json) Hash identifier: kmfG2pc5633lcNtiKvdZ1jEtOjAbGu2c8AvWIIglRLg= Subject key identifier: 43:85:78:F9:AF:06:97:0E:91:6B:C2:39:10:30:A1:33:24:E0:EA:E0 Authority key identifier: B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 Certificate issuer: /CN=A91FBC89/serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft Manifest number: 80 Signing time: Fri 19 Sep 2025 07:39:22 +0000 Manifest this update: Fri 19 Sep 2025 07:39:22 +0000 Manifest next update: Fri 26 Sep 2025 07:39:22 +0000 Files and hashes: 1: sXSj1LqbR24rMeR8cqKY0ETZh4U.crl (hash: qHyk+KqhjdAXv1P3DxcMj8xvY+wvOJgeGovp/PbH+ds=) 2: 000A7CE25A5911F0948C6D20C4F9AE02.roa (hash: GWfp52D5q+ZWDIE0kYIw+TpLPvEGwRDdK6mh7QUL+8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 07:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBC89, serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Validity Not Before: Sep 19 07:39:22 2025 GMT Not After : Sep 26 07:39:22 2025 GMT Subject: CN=68cd08aa-16e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3b:d5:83:ae:4e:ab:f7:d5:ee:eb:0e:54:60: 12:4c:c1:94:45:f2:92:e7:4d:fa:96:04:65:7d:73: a0:2f:fd:dc:ca:d2:b3:bf:91:f5:a7:49:8f:67:36: fe:43:a9:92:1f:47:d2:9f:2c:f4:66:f3:10:9a:cc: a9:8c:34:80:0e:de:a3:8f:58:80:e0:90:c9:c0:17: 26:b8:bf:28:14:a0:96:38:d9:f3:af:24:4a:1f:b2: c9:50:02:3b:97:95:74:53:6f:6a:af:fc:cd:06:ae: c6:1e:38:7f:05:81:65:ca:9c:ea:3b:e3:c5:87:e0: bf:f2:9d:62:85:f0:f6:32:db:bf:04:26:6a:f6:c2: b5:ba:c5:90:21:65:75:c4:e5:32:cc:62:3c:cc:8c: aa:3c:d5:96:08:00:7a:39:84:75:33:86:bd:9b:99: 61:5d:f5:9d:9c:d4:d2:9d:79:28:36:7b:bd:74:81: 72:bf:29:f7:48:cf:91:ff:5b:81:9f:af:68:17:a1: fb:59:73:93:46:c2:84:76:0d:be:e4:6e:59:38:87: ce:ab:16:2a:61:9f:0c:11:c3:15:b9:98:41:31:d0: 4e:46:35:d2:88:64:b5:a8:97:33:45:47:77:ec:9f: f7:77:eb:61:a8:6a:dc:d4:24:ad:e8:f5:dc:5e:8b: 29:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:85:78:F9:AF:06:97:0E:91:6B:C2:39:10:30:A1:33:24:E0:EA:E0 X509v3 Authority Key Identifier: keyid:B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:0a:54:a7:9f:5a:8e:2f:9b:5c:76:11:51:82:f5:ec:be:88: 2a:31:9b:77:85:db:b7:76:0f:74:fe:9a:30:30:20:4c:79:86: 73:02:20:17:85:49:06:3a:fd:97:24:76:64:6c:6d:09:a7:37: e2:bd:d2:ce:91:b1:bd:7a:21:d8:55:8b:37:45:fc:cf:ac:8a: 4d:b7:2c:8c:80:8f:d9:3c:24:d9:6e:a9:24:1c:13:34:34:a4: ec:1b:a7:96:84:e1:df:54:45:fa:8b:4c:9a:bc:f4:43:20:15: 07:47:bc:08:e1:f1:10:af:0f:87:62:a9:e4:e7:b4:9c:a0:c8: 6d:ea:73:df:83:3e:32:41:b2:b4:8c:1f:6e:82:3b:bb:7f:f9: 4c:dd:e3:bb:5c:b2:31:fb:08:c7:40:0e:ac:52:59:65:af:13: e8:bf:11:1c:33:6f:e7:a2:ff:a8:37:a1:e6:d6:2b:34:1e:88: be:9a:31:74:5a:6e:9c:02:1f:2c:41:f0:d3:23:e1:7a:02:1d: 49:42:2b:0c:10:0b:ea:9d:42:d1:2f:be:ca:21:1f:c9:5e:21: f9:05:51:df:ca:e0:b0:d5:a7:48:db:11:e3:5b:f9:59:76:0d: 4f:f7:3d:ce:ed:02:f1:56:bd:f6:c9:3d:f8:52:fe:cb:8b:3d: 99:b1:2a:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJDODkxMTAvBgNVBAUTKEIxNzRBM0Q0QkE5QjQ3NkUyQjMxRTQ3QzcyQTI5OEQw NDREOTg3ODUwHhcNMjUwOTE5MDczOTIyWhcNMjUwOTI2MDczOTIyWjAYMRYwFAYD VQQDEw02OGNkMDhhYS0xNmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzvVg65Oq/fV7usOVGASTMGURfKS5036lgRlfXOgL/3cytKzv5H1p0mPZzb+ Q6mSH0fSnyz0ZvMQmsypjDSADt6jj1iA4JDJwBcmuL8oFKCWONnzryRKH7LJUAI7 l5V0U29qr/zNBq7GHjh/BYFlypzqO+PFh+C/8p1ihfD2Mtu/BCZq9sK1usWQIWV1 xOUyzGI8zIyqPNWWCAB6OYR1M4a9m5lhXfWdnNTSnXkoNnu9dIFyvyn3SM+R/1uB n69oF6H7WXOTRsKEdg2+5G5ZOIfOqxYqYZ8MEcMVuZhBMdBORjXSiGS1qJczRUd3 7J/3d+thqGrc1CSt6PXcXospCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEOFePmv BpcOkWvCORAwoTMk4OrgMB8GA1UdIwQYMBaAFLF0o9S6m0duKzHkfHKimNBE2YeF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkM4OS85RTcyNjJCRUVG Q0UxMUVGODkzRkY3MEVDNEY5QUUwMi9zWFNqMUxxYlIyNHJNZVI4Y3FLWTBFVFpo NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NYU2oxTHFiUjI0ck1lUjhjcUtZMEVUWmg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkM4OS85RTcyNjJCRUVGQ0UxMUVGODkzRkY3MEVDNEY5QUUwMi9zWFNqMUxxYlIy NHJNZVI4Y3FLWTBFVFpoNFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAClSnn1qOL5tcdhFRgvXsvogqMZt3hdu3dg90/powMCBMeYZzAiAX hUkGOv2XJHZkbG0JpzfivdLOkbG9eiHYVYs3RfzPrIpNtyyMgI/ZPCTZbqkkHBM0 NKTsG6eWhOHfVEX6i0yavPRDIBUHR7wI4fEQrw+HYqnk57ScoMht6nPfgz4yQbK0 jB9ugju7f/lM3eO7XLIx+wjHQA6sUlllrxPovxEcM2/nov+oN6Hm1is0Hoi+mjF0 Wm6cAh8sQfDTI+F6Ah1JQisMEAvqnULRL77KIR/JXiH5BVHfyuCw1adI2xHjW/lZ dg1P9z3O7QLxVr32yT34Uv7Liz2ZsSrt -----END CERTIFICATE-----Generated at Fri Sep 19 14:00:09 2025 by rpki-client