$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft File: Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft (raw, json) Hash identifier: YKMu6szGGnKrVck5YFVssRBgPk+MLlO03h1K/pqMRk4= Subject key identifier: D3:69:FC:96:3E:0C:57:D9:9B:A4:F1:15:6B:68:97:6D:24:46:AD:D7 Authority key identifier: 29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 Certificate issuer: /CN=A91FC985/serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Certificate serial: 6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft Manifest number: 6A Signing time: Wed 17 Sep 2025 07:42:21 +0000 Manifest this update: Wed 17 Sep 2025 07:42:21 +0000 Manifest next update: Wed 24 Sep 2025 07:42:21 +0000 Files and hashes: 1: Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl (hash: vnC3MvTmXatXmfOqdqLf+k7eiwqbynpzBs0lNJ7z/n0=) 2: DA3E289CF5B811EFA1046714C4F9AE02.roa (hash: ghtYYnHvBHOXjjafNw/o3b7nWMJznKoJtYacsPdc8uY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:42:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 108 (0x6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC985, serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Validity Not Before: Sep 17 07:42:21 2025 GMT Not After : Sep 24 07:42:21 2025 GMT Subject: CN=68ca665d-5f3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f8:de:05:47:88:52:d7:21:f8:af:83:bd:ce: 91:67:b3:55:ab:92:a5:24:1d:25:52:94:e7:9d:38: d2:59:9d:9d:5e:12:a6:46:59:33:f8:02:47:8b:a8: 0e:81:18:2c:d7:77:a9:b0:1b:71:21:c6:aa:19:97: 2f:8f:63:57:4d:7f:27:e0:a7:5a:9f:19:d5:22:f7: 3e:b1:7e:c8:c9:ae:33:79:45:b5:33:b0:5d:bc:d2: 40:90:7a:3e:c3:df:c8:fc:d2:e9:64:ad:1d:cb:48: ad:7a:8c:31:1c:84:f0:4c:2d:b3:2a:e4:83:41:4f: 5f:8d:ab:ba:96:a7:94:a5:c8:58:6f:b3:3b:d6:31: 9c:7a:55:a8:97:30:59:1f:b7:c9:aa:a2:95:03:14: fb:62:4f:ba:80:c4:79:a6:70:b2:f5:bc:6a:05:27: 9e:32:57:e1:50:17:d1:94:c6:ce:d4:8d:f8:12:b5: 29:7b:7a:60:02:a4:17:3e:23:1a:c3:51:8c:70:24: 56:02:9b:78:ff:a9:b8:29:cd:93:f2:8c:24:6b:fb: fe:b0:6e:7c:92:0d:6c:5a:5e:77:01:27:20:d9:26: cf:5e:c2:1b:9a:a3:c0:8b:79:8b:a3:06:4d:57:47: a9:0a:49:a7:92:fd:33:c0:7b:46:5a:3f:b6:79:c9: ac:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:69:FC:96:3E:0C:57:D9:9B:A4:F1:15:6B:68:97:6D:24:46:AD:D7 X509v3 Authority Key Identifier: keyid:29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:6e:77:9e:71:e9:a1:0c:68:e4:2e:c2:0c:9a:55:54:2d:5c: 7d:93:ef:89:0b:bd:af:f5:55:f1:42:61:c9:9f:1b:24:55:17: 8e:6b:cb:68:af:60:ff:0e:e2:f7:12:b6:01:94:f9:0b:a1:4b: a3:06:9c:46:7e:4c:af:31:70:f7:1f:c7:52:aa:d4:05:1b:13: 37:f5:c9:31:bd:0b:4d:48:46:cb:96:58:13:65:03:46:45:a4: 01:a3:3c:bb:23:d3:0a:8c:ef:4e:ac:bb:7d:95:b8:ef:16:ee: 6a:1f:23:2b:1b:fe:6c:93:0f:1f:d9:cd:c8:1b:eb:ad:69:76: 10:fa:44:80:13:d3:df:87:1d:bb:db:d3:05:a6:39:81:3e:24: 11:db:5f:13:e4:42:62:8c:6d:63:ba:7a:90:a0:6d:f7:c1:47: 10:f2:7e:73:97:f9:cb:c6:5f:dd:3d:6d:fe:2a:0f:94:e1:45: 7c:93:3f:eb:fe:e3:a0:0f:3f:40:3b:f8:42:b2:65:60:ae:2f: 5d:2e:b5:23:b6:96:9f:d7:84:83:8d:88:ad:15:59:24:f9:68: ae:7d:96:43:c2:35:22:ae:18:c6:da:8f:8f:5c:49:3f:2e:ab: 43:ff:49:74:50:04:c8:b2:42:f2:b3:ca:0f:9b:d0:eb:b9:be: 8e:48:e4:21 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG Qzk4NTExMC8GA1UEBRMoMjlBREIzOUI2MjBFQUUzQ0I4QUZDQTJDQTE4NUY1QzQ4 NzZGRDA0MzAeFw0yNTA5MTcwNzQyMjFaFw0yNTA5MjQwNzQyMjFaMBgxFjAUBgNV BAMTDTY4Y2E2NjVkLTVmM2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCn+N4FR4hS1yH4r4O9zpFns1WrkqUkHSVSlOedONJZnZ1eEqZGWTP4AkeLqA6B GCzXd6mwG3EhxqoZly+PY1dNfyfgp1qfGdUi9z6xfsjJrjN5RbUzsF280kCQej7D 38j80ulkrR3LSK16jDEchPBMLbMq5INBT1+Nq7qWp5SlyFhvszvWMZx6VaiXMFkf t8mqopUDFPtiT7qAxHmmcLL1vGoFJ54yV+FQF9GUxs7UjfgStSl7emACpBc+IxrD UYxwJFYCm3j/qbgpzZPyjCRr+/6wbnySDWxaXncBJyDZJs9ewhuao8CLeYujBk1X R6kKSaeS/TPAe0ZaP7Z5yawPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU02n8lj4M V9mbpPEVa2iXbSRGrdcwHwYDVR0jBBgwFoAUKa2zm2IOrjy4r8osoYX1xIdv0EMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZDOTg1LzY3M0FBMkY0RjVC NzExRUY4QzFGRjYxMUM0RjlBRTAyL0thMnptMklPcmp5NHI4b3NvWVgxeElkdjBF TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2Eyem0ySU9yank0cjhvc29ZWDF4SWR2MEVNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZD OTg1LzY3M0FBMkY0RjVCNzExRUY4QzFGRjYxMUM0RjlBRTAyL0thMnptMklPcmp5 NHI4b3NvWVgxeElkdjBFTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAZud55x6aEMaOQuwgyaVVQtXH2T74kLva/1VfFCYcmfGyRVF45ry2iv YP8O4vcStgGU+QuhS6MGnEZ+TK8xcPcfx1Kq1AUbEzf1yTG9C01IRsuWWBNlA0ZF pAGjPLsj0wqM706su32VuO8W7mofIysb/myTDx/Zzcgb661pdhD6RIAT09+HHbvb 0wWmOYE+JBHbXxPkQmKMbWO6epCgbffBRxDyfnOX+cvGX909bf4qD5ThRXyTP+v+ 46APP0A7+EKyZWCuL10utSO2lp/XhIONiK0VWST5aK59lkPCNSKuGMbaj49cST8u q0P/SXRQBMiyQvKzyg+b0Ou5vo5I5CE= -----END CERTIFICATE-----Generated at Fri Sep 19 01:20:33 2025 by rpki-client