$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft File: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft (raw, json) Hash identifier: 2RhYYzF708/YCQMvoXmqfEwUpN/6z69F6/fEMAC6iW4= Subject key identifier: A8:BF:B4:FE:8D:0C:99:8B:33:2D:AF:A3:EA:21:DD:6F:66:9D:BB:02 Authority key identifier: 37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A Certificate issuer: /CN=A91FDA40/serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft Manifest number: 01E1 Signing time: Wed 17 Sep 2025 03:11:57 +0000 Manifest this update: Wed 17 Sep 2025 03:11:57 +0000 Manifest next update: Wed 24 Sep 2025 03:11:57 +0000 Files and hashes: 1: N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl (hash: lZRLdRRVM85ZcpOHPm5sL+LmgtxiseSLhqtQX0rmZXE=) 2: A24D0F54140C11EFBC640B71C4F9AE02.roa (hash: wRJLakVb4OT38G6t+rRsnOSv4LpQV0AO0Scq5OD6JMU=) 3: 545EDE9C140911EF8520A25BC4F9AE02.roa (hash: Tv8VFI61ht6g4zpgpyoiarorIdL71VBSjtb/bqzuKfo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 03:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDA40, serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Validity Not Before: Sep 17 03:11:57 2025 GMT Not After : Sep 24 03:11:57 2025 GMT Subject: CN=68ca26fd-2868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6c:35:ff:9e:63:6d:f8:89:a0:69:03:6b:dd: d5:b4:f8:71:93:ff:c2:01:a1:26:b2:81:ba:48:85: ce:4e:cd:02:3a:93:9b:b8:06:1e:f7:46:5e:a9:89: 71:b4:33:a3:96:56:04:09:aa:cb:15:6c:b9:b5:e4: ba:99:ca:3f:e5:3b:21:9c:36:9c:e1:19:78:eb:45: 50:30:f4:53:84:9a:85:1c:cf:70:95:4b:67:fa:9b: fd:cc:63:15:92:7d:43:b0:fb:39:44:4e:03:5c:9d: 26:5c:54:aa:0b:be:11:3a:f2:61:24:a5:e3:8d:4f: 21:1d:0c:f0:ad:31:6b:24:d8:6c:44:14:2a:49:27: f4:8b:95:2e:54:5f:ae:dd:35:55:74:40:c7:ba:83: c1:61:80:a8:e3:a3:83:b2:8b:26:db:63:66:40:15: 82:f9:5d:ac:67:3c:c4:c7:d0:09:3c:fc:a1:50:11: 35:cf:58:ae:c6:51:b8:f0:62:80:9d:ca:83:07:c2: 4f:3f:3c:fc:66:2d:3b:93:3c:d8:20:75:75:23:2e: 14:99:d5:2f:09:ae:27:27:06:75:97:36:19:72:bf: 95:ca:84:d8:f0:ec:ec:20:5d:7a:9d:76:f5:d4:da: 99:8f:76:3e:57:4c:ba:31:29:e9:27:e5:a2:29:2a: a3:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:BF:B4:FE:8D:0C:99:8B:33:2D:AF:A3:EA:21:DD:6F:66:9D:BB:02 X509v3 Authority Key Identifier: keyid:37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:65:48:6d:c6:ff:ac:f5:5e:58:8e:60:e2:ea:f8:49:4d:2f: 56:eb:0e:64:9c:b5:28:80:7f:cf:47:0e:7a:cd:e1:98:13:4a: 50:ba:21:c2:b0:1c:c5:44:c7:9d:5d:be:c2:0d:dd:23:a2:66: a2:07:19:7d:70:16:49:c4:b1:44:d9:bb:c1:d6:25:86:3d:62: 60:c8:47:5f:35:44:e8:f0:fe:2d:a7:16:2a:5e:91:f6:d7:c4: a3:85:c6:b5:0d:65:f9:75:8b:1d:8d:1d:5f:09:3c:68:b0:23: da:3e:cf:d6:bc:16:73:3f:50:c3:3c:9f:93:77:0e:fd:92:74: 12:ae:11:e9:39:87:9f:08:eb:47:dc:57:84:89:e5:5a:6c:69: 93:89:f9:ab:ba:54:c2:68:7b:65:7d:54:91:4b:6d:a2:da:de: fc:39:74:a3:c5:73:da:c7:c7:fa:e2:31:3f:f6:8e:0a:64:bb: 87:a0:0f:2e:32:c0:b6:29:f5:a8:cb:47:0e:04:74:d8:0e:67: 52:55:fa:e8:6d:c1:da:88:57:d6:64:a3:ac:fc:19:48:f9:10: a2:f9:c4:72:43:33:fe:01:15:e4:51:fb:a7:22:b5:94:0f:3d: a9:cf:f9:b7:1e:a8:a7:35:7b:1f:6d:42:41:2d:e4:e8:c0:fb: e8:31:b9:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBNDAxMTAvBgNVBAUTKDM3QjYyQTc3MjUxQzUyQTA0QjMzQjgyRDJFRDAyMDRD OTI3QTQyOUEwHhcNMjUwOTE3MDMxMTU3WhcNMjUwOTI0MDMxMTU3WjAYMRYwFAYD VQQDEw02OGNhMjZmZC0yODY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42w1/55jbfiJoGkDa93VtPhxk//CAaEmsoG6SIXOTs0COpObuAYe90ZeqYlx tDOjllYECarLFWy5teS6mco/5TshnDac4Rl460VQMPRThJqFHM9wlUtn+pv9zGMV kn1DsPs5RE4DXJ0mXFSqC74ROvJhJKXjjU8hHQzwrTFrJNhsRBQqSSf0i5UuVF+u 3TVVdEDHuoPBYYCo46ODsosm22NmQBWC+V2sZzzEx9AJPPyhUBE1z1iuxlG48GKA ncqDB8JPPzz8Zi07kzzYIHV1Iy4UmdUvCa4nJwZ1lzYZcr+VyoTY8OzsIF16nXb1 1NqZj3Y+V0y6MSnpJ+WiKSqjewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKi/tP6N DJmLMy2vo+oh3W9mnbsCMB8GA1UdIwQYMBaAFDe2KnclHFKgSzO4LS7QIEySekKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREE0MC85NkYwRDcwQ0JC REExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1VxQkxNN2d0THRBZ1RKSjZR cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL043WXFkeVVjVXFCTE03Z3RMdEFnVEpKNlFwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REE0MC85NkYwRDcwQ0JCREExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1Vx QkxNN2d0THRBZ1RKSjZRcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtZUhtxv+s9V5YjmDi6vhJTS9W6w5knLUogH/PRw56zeGYE0pQuiHC sBzFRMedXb7CDd0jomaiBxl9cBZJxLFE2bvB1iWGPWJgyEdfNUTo8P4tpxYqXpH2 18Sjhca1DWX5dYsdjR1fCTxosCPaPs/WvBZzP1DDPJ+Tdw79knQSrhHpOYefCOtH 3FeEieVabGmTifmrulTCaHtlfVSRS22i2t78OXSjxXPax8f64jE/9o4KZLuHoA8u MsC2KfWoy0cOBHTYDmdSVfrobcHaiFfWZKOs/BlI+RCi+cRyQzP+ARXkUfunIrWU Dz2pz/m3HqinNXsfbUJBLeTowPvoMblA -----END CERTIFICATE-----Generated at Fri Sep 19 03:36:09 2025 by rpki-client