$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft File: rI34tAewexNnm3HFASus3eJQHnE.mft (raw, json) Hash identifier: 57FAg1GQL6+QqNo/ueWrzYtDK/NPghveZCbKj0cuXaM= Subject key identifier: 9B:24:E3:61:44:AF:72:7C:21:F1:EC:85:3B:90:B0:B0:9B:D7:46:68 Authority key identifier: AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 Certificate issuer: /CN=A91FC43D/serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Certificate serial: 22E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft Manifest number: 22D4 Signing time: Thu 18 Sep 2025 15:56:34 +0000 Manifest this update: Thu 18 Sep 2025 15:56:34 +0000 Manifest next update: Thu 25 Sep 2025 15:56:34 +0000 Files and hashes: 1: rI34tAewexNnm3HFASus3eJQHnE.crl (hash: 07yIKPbfv5irerEs4GoO1bdpnu6WAXqdFVg+FXCIkKQ=) 2: 2D55F42CB0F611E5B464E359C4F9AE02.roa (hash: +yqS5ARpGMGBWr2MyFGiajoFZUJV/KOEs+STzodgJKg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 15:56:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8931 (0x22e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC43D, serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Validity Not Before: Sep 18 15:56:34 2025 GMT Not After : Sep 25 15:56:34 2025 GMT Subject: CN=68cc2bb2-00f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:54:28:f6:0a:79:a9:11:ef:90:4e:98:93:c3: 5e:c4:23:60:84:66:d5:04:b2:ac:ad:87:60:9c:ca: 1f:28:e5:ef:a9:97:6a:bc:85:ce:64:66:ab:f2:ad: 1e:06:ab:a7:ed:30:98:35:e2:16:6a:c4:04:5b:3f: 85:dc:b6:b5:6d:19:5f:cb:e8:c4:34:a4:c0:6d:f0: d2:a7:52:3c:a8:1a:af:75:bc:0b:63:00:f7:ab:af: 79:17:06:9a:63:b2:70:94:17:00:66:9d:4e:c9:3d: 84:80:a4:2a:fb:44:1b:b1:7f:1d:52:28:e4:88:be: 03:de:35:02:ff:f3:19:b0:1f:54:f6:f8:0c:e8:e5: 3c:1e:1c:5d:af:1a:77:9d:5a:35:c7:c3:7c:cc:35: 7c:3b:1f:b3:20:b8:3e:e5:be:0e:2c:22:91:45:00: e7:85:1a:d2:3c:1d:7f:8c:66:fc:fc:d9:94:db:82: 44:7b:76:3b:14:3b:41:c4:1f:1b:d6:f4:14:ce:81: 02:3b:8d:2f:f9:57:02:d5:34:c9:83:89:12:ff:3d: 85:86:70:53:06:0e:f2:52:cf:61:b7:0a:8f:f5:ee: 33:45:52:51:ce:7b:a9:6d:bc:d7:49:64:94:9e:c9: 53:a3:bc:22:00:0d:98:bd:6e:ba:76:13:0c:7d:67: f2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:24:E3:61:44:AF:72:7C:21:F1:EC:85:3B:90:B0:B0:9B:D7:46:68 X509v3 Authority Key Identifier: keyid:AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:80:fc:04:09:44:b2:1e:5e:56:b6:d9:14:f6:85:00:3a:19: 39:ba:65:e2:2b:48:48:32:97:26:85:2b:42:e5:9f:d3:d8:cc: dd:29:eb:22:a5:b7:b8:4e:16:6f:f6:2e:b7:f1:ca:92:ed:b7: c0:7f:c2:f8:c1:22:0f:59:1c:9d:c3:8e:be:f3:37:56:e2:a7: 98:93:74:3f:ef:24:18:ed:d7:01:1d:c6:a3:1d:1c:14:b0:42: 6f:06:9e:12:78:1c:12:62:eb:b6:89:cc:de:e5:d0:a0:ac:0d: a5:a6:cc:62:ef:3f:88:2b:07:f5:b6:d9:d9:6f:3b:af:72:75: f2:96:69:34:94:67:a3:e1:12:e0:49:63:ea:0c:43:25:3d:1f: 63:0b:b0:9f:c8:e0:ee:a4:ec:e0:19:9f:9c:d5:09:ae:fa:cb: a9:82:f3:ed:dc:44:f8:62:7a:f4:33:99:e9:a9:a6:6b:2d:aa: 2a:a7:0b:bd:84:6d:ef:6d:6d:91:e4:74:26:a7:7f:1d:0c:19: 75:78:f9:43:31:44:91:6d:59:b9:bc:c5:ac:a7:15:85:c1:35: 6d:a5:29:f7:62:68:c9:19:90:4f:3a:16:22:ee:47:f7:0d:4a: 8f:dd:64:6e:0d:0a:0f:af:ea:d3:b9:d4:d9:73:51:25:8e:74: 9b:fa:4b:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIuMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM0M0QxMTAvBgNVBAUTKEFDOERGOEI0MDdCMDdCMTM2NzlCNzFDNTAxMkJBQ0RE RTI1MDFFNzEwHhcNMjUwOTE4MTU1NjM0WhcNMjUwOTI1MTU1NjM0WjAYMRYwFAYD VQQDEw02OGNjMmJiMi0wMGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVQo9gp5qRHvkE6Yk8NexCNghGbVBLKsrYdgnMofKOXvqZdqvIXOZGar8q0e Bqun7TCYNeIWasQEWz+F3La1bRlfy+jENKTAbfDSp1I8qBqvdbwLYwD3q695Fwaa Y7JwlBcAZp1OyT2EgKQq+0QbsX8dUijkiL4D3jUC//MZsB9U9vgM6OU8Hhxdrxp3 nVo1x8N8zDV8Ox+zILg+5b4OLCKRRQDnhRrSPB1/jGb8/NmU24JEe3Y7FDtBxB8b 1vQUzoECO40v+VcC1TTJg4kS/z2FhnBTBg7yUs9htwqP9e4zRVJRznupbbzXSWSU nslTo7wiAA2YvW66dhMMfWfyjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJsk42FE r3J8IfHshTuQsLCb10ZoMB8GA1UdIwQYMBaAFKyN+LQHsHsTZ5txxQErrN3iUB5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzQzRC9FREIyOEU3RUE0 ODAxMUU1ODMzNzg4ODZDNEY5QUUwMi9ySTM0dEFld2V4Tm5tM0hGQVN1czNlSlFI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JJMzR0QWV3ZXhObm0zSEZBU3VzM2VKUUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzQzRC9FREIyOEU3RUE0ODAxMUU1ODMzNzg4ODZDNEY5QUUwMi9ySTM0dEFld2V4 Tm5tM0hGQVN1czNlSlFIbkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGgPwECUSyHl5WttkU9oUAOhk5umXiK0hIMpcmhStC5Z/T2MzdKesi pbe4ThZv9i638cqS7bfAf8L4wSIPWRydw46+8zdW4qeYk3Q/7yQY7dcBHcajHRwU sEJvBp4SeBwSYuu2icze5dCgrA2lpsxi7z+IKwf1ttnZbzuvcnXylmk0lGej4RLg SWPqDEMlPR9jC7CfyODupOzgGZ+c1Qmu+supgvPt3ET4Ynr0M5npqaZrLaoqpwu9 hG3vbW2R5HQmp38dDBl1ePlDMUSRbVm5vMWspxWFwTVtpSn3YmjJGZBPOhYi7kf3 DUqP3WRuDQoPr+rTudTZc1EljnSb+ktD -----END CERTIFICATE-----Generated at Thu Sep 18 22:14:35 2025 by rpki-client