$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft File: x8206hgWXlmC0KkZ_0f3JnbgUHM.mft (raw, json) Hash identifier: EQi4adsjV80WLy1WWZrdF4wGhn+uDg1LkUtQ5ykH9GQ= Subject key identifier: 1B:82:76:F8:8E:80:D1:CC:9A:D1:67:D8:99:69:99:E2:C7:6E:D8:0C Authority key identifier: C7:CD:B4:EA:18:16:5E:59:82:D0:A9:19:FF:47:F7:26:76:E0:50:73 Certificate issuer: /CN=A91FBEFA/serialNumber=C7CDB4EA18165E5982D0A919FF47F72676E05073 Certificate serial: 5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8206hgWXlmC0KkZ_0f3JnbgUHM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft Manifest number: 5B Signing time: Wed 17 Sep 2025 07:54:51 +0000 Manifest this update: Wed 17 Sep 2025 07:54:51 +0000 Manifest next update: Wed 24 Sep 2025 07:54:50 +0000 Files and hashes: 1: x8206hgWXlmC0KkZ_0f3JnbgUHM.crl (hash: qC1X4aD8zaFk8cZK3GWh77H44QQeT1/K7GMxUHBK2pM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.crl rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8206hgWXlmC0KkZ_0f3JnbgUHM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:54:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBEFA, serialNumber=C7CDB4EA18165E5982D0A919FF47F72676E05073 Validity Not Before: Sep 17 07:54:51 2025 GMT Not After : Sep 24 07:54:50 2025 GMT Subject: CN=68ca694b-741f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4b:51:ed:16:09:42:31:db:e9:75:8b:38:3f: 3f:05:8b:9f:ec:c7:c5:97:9f:e4:9a:39:cb:ed:d1: b0:09:8a:29:62:07:c6:94:a4:eb:6a:e6:ca:d5:63: ee:ea:b7:10:6d:bd:0b:29:c6:72:f0:de:d0:dd:c4: 8c:5f:10:55:14:ef:b1:18:ae:5a:3f:7c:39:79:c0: 0c:02:16:08:1c:d1:3e:8c:69:79:f4:31:7d:ef:84: 1e:1f:ae:e3:12:0a:c3:18:03:20:93:16:ae:65:c6: 3d:76:c5:5f:18:fa:89:55:ac:d6:e9:43:be:59:5b: ea:ce:bc:e7:ec:e5:38:c0:e4:01:0c:91:64:f6:84: 40:be:50:87:ca:26:1e:2d:52:a1:23:84:f6:ad:e3: 6c:75:fa:4d:4d:79:82:31:03:70:f1:e9:05:13:e4: 70:43:4b:f2:1d:f4:c1:22:62:cf:e7:aa:03:51:28: c3:ac:07:7e:73:76:b1:71:d0:04:66:06:ef:f2:a8: 72:3c:d0:69:ca:d6:3d:af:83:a7:94:94:e6:e1:e6: 3b:e1:51:d7:ec:29:74:d4:86:05:9f:5c:06:88:74: d6:ef:e0:53:19:47:6b:37:96:d3:4e:0d:28:19:c4: 63:3c:bb:88:d0:69:59:6e:79:d6:b1:ce:0e:5d:cb: f0:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:82:76:F8:8E:80:D1:CC:9A:D1:67:D8:99:69:99:E2:C7:6E:D8:0C X509v3 Authority Key Identifier: keyid:C7:CD:B4:EA:18:16:5E:59:82:D0:A9:19:FF:47:F7:26:76:E0:50:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8206hgWXlmC0KkZ_0f3JnbgUHM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBEFA/172546BC0B3711F08C239863C4F9AE02/x8206hgWXlmC0KkZ_0f3JnbgUHM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:68:75:1b:12:15:44:51:aa:f4:97:55:9b:1b:20:04:88:69: 30:fb:91:df:35:92:d8:2a:75:d7:4e:f2:6e:a3:b3:e8:da:05: 8a:f2:03:8a:95:9b:f1:a9:e7:0b:dc:9f:54:d0:5c:72:42:f6: 12:9f:05:7d:c4:6a:89:d4:3e:bf:b2:e9:ba:4e:f6:7d:20:45: ae:e1:c2:e0:2b:4a:4d:e2:6a:65:97:f1:0a:3e:03:41:6b:b5: b0:f9:98:23:07:56:a2:a0:b6:08:94:9d:0d:9e:ea:a0:a7:59: b1:69:da:b4:a1:d9:9d:06:43:8c:d7:03:ca:1c:67:2e:ba:f0: ea:42:06:49:da:6b:ae:0c:ce:36:c2:b9:a9:72:d6:d2:40:6c: 01:6f:b1:80:48:4e:91:4b:20:56:d7:2a:4e:f3:3e:13:ed:65: f6:8f:87:fe:21:02:90:57:c1:74:24:62:ca:c7:26:57:d1:62: c4:36:59:88:6c:89:18:6c:06:6b:10:56:64:1e:38:1d:de:93: ca:d3:38:32:50:fe:f5:cc:64:3c:2a:14:8d:44:d7:ff:3f:4c: 3c:9c:f6:8b:41:61:fc:01:c6:46:d1:b7:30:ec:f7:0d:4d:f9: 59:2d:4b:c1:73:70:a5:22:2d:ec:ca:cc:18:22:a7:fd:69:29: 6e:21:17:9a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QkVGQTExMC8GA1UEBRMoQzdDREI0RUExODE2NUU1OTgyRDBBOTE5RkY0N0Y3MjY3 NkUwNTA3MzAeFw0yNTA5MTcwNzU0NTFaFw0yNTA5MjQwNzU0NTBaMBgxFjAUBgNV BAMTDTY4Y2E2OTRiLTc0MWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXS1HtFglCMdvpdYs4Pz8Fi5/sx8WXn+SaOcvt0bAJiiliB8aUpOtq5srVY+7q txBtvQspxnLw3tDdxIxfEFUU77EYrlo/fDl5wAwCFggc0T6MaXn0MX3vhB4fruMS CsMYAyCTFq5lxj12xV8Y+olVrNbpQ75ZW+rOvOfs5TjA5AEMkWT2hEC+UIfKJh4t UqEjhPat42x1+k1NeYIxA3Dx6QUT5HBDS/Id9MEiYs/nqgNRKMOsB35zdrFx0ARm Bu/yqHI80GnK1j2vg6eUlObh5jvhUdfsKXTUhgWfXAaIdNbv4FMZR2s3ltNODSgZ xGM8u4jQaVluedaxzg5dy/A9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUG4J2+I6A 0cya0WfYmWmZ4sdu2AwwHwYDVR0jBBgwFoAUx8206hgWXlmC0KkZ/0f3JnbgUHMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCRUZBLzE3MjU0NkJDMEIz NzExRjA4QzIzOTg2M0M0RjlBRTAyL3g4MjA2aGdXWGxtQzBLa1pfMGYzSm5iZ1VI TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveDgyMDZoZ1dYbG1DMEtrWl8wZjNKbmJnVUhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC RUZBLzE3MjU0NkJDMEIzNzExRjA4QzIzOTg2M0M0RjlBRTAyL3g4MjA2aGdXWGxt QzBLa1pfMGYzSm5iZ1VITS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABRodRsSFURRqvSXVZsbIASIaTD7kd81ktgqdddO8m6js+jaBYryA4qV m/Gp5wvcn1TQXHJC9hKfBX3EaonUPr+y6bpO9n0gRa7hwuArSk3iamWX8Qo+A0Fr tbD5mCMHVqKgtgiUnQ2e6qCnWbFp2rSh2Z0GQ4zXA8ocZy668OpCBknaa64MzjbC ualy1tJAbAFvsYBITpFLIFbXKk7zPhPtZfaPh/4hApBXwXQkYsrHJlfRYsQ2WYhs iRhsBmsQVmQeOB3ek8rTODJQ/vXMZDwqFI1E1/8/TDyc9otBYfwBxkbRtzDs9w1N +VktS8FzcKUiLezKzBgip/1pKW4hF5o= -----END CERTIFICATE-----Generated at Thu Sep 18 23:26:43 2025 by rpki-client