$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft File: zFfgNkMaXqPBcqpyg0Aa88StXFk.mft (raw, json) Hash identifier: uf5r2MhoS+zFBX3LPHxut8bdoFAUoeii/dyN3E2RUQE= Subject key identifier: C7:00:46:FD:84:B6:F0:7D:CB:CE:9F:04:36:90:0D:D7:3C:CE:95:B2 Authority key identifier: CC:57:E0:36:43:1A:5E:A3:C1:72:AA:72:83:40:1A:F3:C4:AD:5C:59 Certificate issuer: /CN=A91FDC78/serialNumber=CC57E036431A5EA3C172AA7283401AF3C4AD5C59 Certificate serial: 093C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft Manifest number: 092A Signing time: Thu 18 Sep 2025 20:31:59 +0000 Manifest this update: Thu 18 Sep 2025 20:31:58 +0000 Manifest next update: Thu 25 Sep 2025 20:31:58 +0000 Files and hashes: 1: zFfgNkMaXqPBcqpyg0Aa88StXFk.crl (hash: EIYC2GebTtTQgUplHMMT0LaXWS8kufp+1m6ThAe5kds=) 2: DA0B639E89E711F08DD17A55C4F9AE02.roa (hash: 92JEuDCm1e9WQ8I7GIzUujJiphmCChYv7JlAxtt8zqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.crl rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:31:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2364 (0x93c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDC78, serialNumber=CC57E036431A5EA3C172AA7283401AF3C4AD5C59 Validity Not Before: Sep 18 20:31:58 2025 GMT Not After : Sep 25 20:31:58 2025 GMT Subject: CN=68cc6c3e-655c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2f:02:ed:be:05:4d:c8:7e:09:e4:eb:b8:1a: c3:f9:ff:cb:30:0a:70:36:3c:58:7f:b1:b1:c5:23: 41:da:79:1b:13:b0:f8:d6:83:a4:b1:65:8b:d6:58: fb:69:f0:49:61:58:48:b6:35:48:d3:a6:cf:ec:a9: c6:7c:04:4b:75:df:61:37:08:71:ed:78:98:71:c0: cd:98:d4:d3:7f:b5:f8:15:dd:78:af:d0:3a:7c:79: 91:28:09:d6:a6:46:00:d6:8b:e0:b4:fd:e7:41:54: 53:36:07:f9:ca:d3:ee:3f:4f:7f:bc:ea:51:3f:12: 2d:98:d4:79:4a:99:34:d3:b9:d8:ac:1c:2e:49:1b: 94:c4:be:60:06:40:17:df:71:05:6c:78:16:fb:8f: 44:45:46:0a:73:55:c3:19:5a:3d:07:d1:f8:f0:c1: a4:bc:25:e1:9c:cc:31:57:8f:7a:f3:c9:12:3a:e2: dd:6a:a1:04:4f:9b:8d:23:34:3d:13:3d:1a:6c:e0: 7b:8a:84:40:d2:e8:f5:be:f3:0f:0e:76:e7:84:9f: d7:74:0e:41:e1:98:d0:b1:0d:3c:a3:ec:1f:ed:d5: 9a:c9:7d:ab:a8:51:a3:66:1c:29:8d:8f:f7:ef:5d: df:bb:e1:ee:d3:fa:3b:1a:cd:52:a8:3b:29:ee:34: f1:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:00:46:FD:84:B6:F0:7D:CB:CE:9F:04:36:90:0D:D7:3C:CE:95:B2 X509v3 Authority Key Identifier: keyid:CC:57:E0:36:43:1A:5E:A3:C1:72:AA:72:83:40:1A:F3:C4:AD:5C:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zFfgNkMaXqPBcqpyg0Aa88StXFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDC78/15474008AEAC11EAA6C1D761C4F9AE02/zFfgNkMaXqPBcqpyg0Aa88StXFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:47:f8:18:56:72:55:5c:7e:7a:1f:60:ee:41:27:3e:15:ee: 74:b4:b7:26:95:ad:d7:3c:3f:40:ec:31:47:72:cf:c4:a1:24: 0e:f7:e9:ae:f4:3e:f8:6d:9a:a6:0b:46:ea:3d:c8:87:4f:7e: 01:c2:97:1f:b6:32:86:f5:f9:3e:a4:37:44:27:4a:31:d9:77: 90:84:60:49:d7:21:34:2f:61:dc:c1:91:81:37:81:25:7e:1b: 1b:fd:c7:ae:53:b1:9b:c3:71:f7:7c:bf:73:75:7d:d2:e1:bb: 97:70:86:7a:81:22:48:cb:c7:fb:47:b0:f9:cb:dc:dd:89:c3: 8f:c2:c5:a4:5c:2f:33:48:c3:cd:d6:89:69:7e:eb:e3:c0:3e: 2c:e8:54:27:7a:cd:41:f1:89:60:09:3f:d0:51:03:68:24:28: 34:07:aa:30:e8:6a:e1:93:52:4a:38:2f:ff:27:2e:9e:07:1c: e3:fe:52:7e:ae:99:10:40:72:04:5e:7f:c7:4d:0e:4e:30:54: ea:30:52:e9:b2:e3:0d:36:79:12:74:78:f8:1c:45:98:cc:4f: 50:85:a7:6e:7f:3b:7d:92:40:3b:1c:e9:82:3d:45:21:32:25: 56:27:9f:7e:5a:ff:37:69:19:7c:2c:c8:01:23:38:af:4c:09: c0:05:7c:32 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCTwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRDNzgxMTAvBgNVBAUTKENDNTdFMDM2NDMxQTVFQTNDMTcyQUE3MjgzNDAxQUYz QzRBRDVDNTkwHhcNMjUwOTE4MjAzMTU4WhcNMjUwOTI1MjAzMTU4WjAYMRYwFAYD VQQDEw02OGNjNmMzZS02NTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAui8C7b4FTch+CeTruBrD+f/LMApwNjxYf7GxxSNB2nkbE7D41oOksWWL1lj7 afBJYVhItjVI06bP7KnGfARLdd9hNwhx7XiYccDNmNTTf7X4Fd14r9A6fHmRKAnW pkYA1ovgtP3nQVRTNgf5ytPuP09/vOpRPxItmNR5Spk007nYrBwuSRuUxL5gBkAX 33EFbHgW+49ERUYKc1XDGVo9B9H48MGkvCXhnMwxV49688kSOuLdaqEET5uNIzQ9 Ez0abOB7ioRA0uj1vvMPDnbnhJ/XdA5B4ZjQsQ08o+wf7dWayX2rqFGjZhwpjY/3 713fu+Hu0/o7Gs1SqDsp7jTxPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMcARv2E tvB9y86fBDaQDdc8zpWyMB8GA1UdIwQYMBaAFMxX4DZDGl6jwXKqcoNAGvPErVxZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREM3OC8xNTQ3NDAwOEFF QUMxMUVBQTZDMUQ3NjFDNEY5QUUwMi96RmZnTmtNYVhxUEJjcXB5ZzBBYTg4U3RY RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pGZmdOa01hWHFQQmNxcHlnMEFhODhTdFhGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REM3OC8xNTQ3NDAwOEFFQUMxMUVBQTZDMUQ3NjFDNEY5QUUwMi96RmZnTmtNYVhx UEJjcXB5ZzBBYTg4U3RYRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5R/gYVnJVXH56H2DuQSc+Fe50tLcmla3XPD9A7DFHcs/EoSQO9+mu 9D74bZqmC0bqPciHT34BwpcftjKG9fk+pDdEJ0ox2XeQhGBJ1yE0L2HcwZGBN4El fhsb/ceuU7Gbw3H3fL9zdX3S4buXcIZ6gSJIy8f7R7D5y9zdicOPwsWkXC8zSMPN 1olpfuvjwD4s6FQnes1B8YlgCT/QUQNoJCg0B6ow6Grhk1JKOC//Jy6eBxzj/lJ+ rpkQQHIEXn/HTQ5OMFTqMFLpsuMNNnkSdHj4HEWYzE9Qhadufzt9kkA7HOmCPUUh MiVWJ59+Wv83aRl8LMgBIzivTAnABXwy -----END CERTIFICATE-----Generated at Thu Sep 18 23:48:56 2025 by rpki-client