$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft File: o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft (raw, json) Hash identifier: tVobDmWUZB/ndwqK9QdAo/2JX7cR7oXPL8Qcbv2mBN8= Subject key identifier: E7:41:28:D1:66:DD:D5:F3:49:A8:28:F2:0F:48:B2:29:AC:80:3F:9F Authority key identifier: A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 Certificate issuer: /CN=A91FEF3B/serialNumber=A38D487BD5D9A8A89480274FE6F7C061C624BCC0 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft Manifest number: 71 Signing time: Wed 17 Sep 2025 07:35:46 +0000 Manifest this update: Wed 17 Sep 2025 07:35:45 +0000 Manifest next update: Wed 24 Sep 2025 07:35:45 +0000 Files and hashes: 1: o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl (hash: zepOb6drtTOI2WfcRgGx6rItR11kytRhsq9ipZvZ3Uc=) 2: 10800248E9C711EFA1589312C4F9AE02.roa (hash: NgHWuWasRdq7/Tb6jtbOAPkZk5G59CnEADx3vts0M7Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEF3B, serialNumber=A38D487BD5D9A8A89480274FE6F7C061C624BCC0 Validity Not Before: Sep 17 07:35:45 2025 GMT Not After : Sep 24 07:35:45 2025 GMT Subject: CN=68ca64d2-2d05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:72:f6:54:16:0c:c1:0a:69:20:0d:27:e7:17: c6:dc:db:d5:c1:e2:da:d5:20:8f:a5:8f:1a:91:68: d6:ea:3d:9b:40:2e:1f:18:5b:25:c6:1b:a6:2b:f3: 3e:7e:88:b5:c4:7c:49:c6:fe:1e:14:d8:9f:6c:27: 83:61:5a:51:e0:f5:4a:bd:ba:52:df:37:c1:3f:09: fe:18:37:ab:1d:c8:e6:39:7e:8e:92:a3:42:26:63: a9:2d:c1:a3:44:f1:22:c9:01:f8:72:a4:7d:3f:05: 29:7a:94:f5:15:a6:e5:69:b9:2b:9f:3c:5e:02:24: b1:d0:c2:e3:35:cf:d6:2f:cf:92:19:d3:4a:69:0a: c7:0b:99:0a:64:51:e3:31:85:48:9a:db:21:20:3d: b5:6a:a7:84:a8:a7:7a:6b:fc:21:0e:1a:8f:2c:b6: 41:68:d7:8a:4b:aa:64:38:ee:c0:77:e2:00:de:53: b3:2f:f2:06:33:ab:7d:5f:15:1a:50:e0:af:22:91: cc:48:6d:89:ee:1a:f7:f2:91:37:2e:6a:21:0c:16: 0b:29:5b:64:e9:1c:e7:26:ab:d6:8a:bf:7c:47:97: 26:95:49:99:68:a0:b6:09:ac:76:ae:53:b2:cc:67: 29:2e:39:2a:90:f4:7f:03:c7:a8:a7:0c:c2:97:fc: 0f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:41:28:D1:66:DD:D5:F3:49:A8:28:F2:0F:48:B2:29:AC:80:3F:9F X509v3 Authority Key Identifier: keyid:A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:8d:54:64:d5:e3:9b:b9:52:12:25:a5:80:bf:02:ed:58:c8: cd:e2:9f:0f:86:ea:12:9a:76:b6:58:f5:3f:70:b5:53:5d:ba: e1:c3:6a:67:c7:eb:a0:94:4d:1e:a7:8e:a8:80:8e:4f:9d:57: 66:c0:36:1c:8c:bb:be:86:ba:18:c4:70:16:07:bd:5d:fb:4c: 0b:59:41:9d:17:eb:12:41:51:26:6f:66:db:da:8d:22:1a:09: e5:81:51:7b:f0:1b:b2:cf:07:e3:a3:1f:28:13:5e:d9:9e:f8: 1c:24:99:6b:ad:91:90:a6:f4:ba:ca:c7:87:e1:de:30:c2:32: 49:25:38:03:d1:0d:eb:e4:ee:37:f0:df:06:a5:d0:a6:55:ca: fb:96:57:07:30:2f:7d:9d:7c:67:95:ce:93:ce:42:87:4e:f3: 0e:14:92:31:78:2d:b5:06:16:db:9a:7a:d1:0d:8c:b7:05:7c: 89:01:dd:1c:34:ab:a5:91:51:bd:ad:68:ed:43:66:8e:f6:31: 7c:54:51:92:4d:03:77:52:89:c7:cb:7b:8f:4e:b7:eb:a6:c9: 8b:9d:21:8f:5c:f1:5e:fb:0e:2a:af:43:38:41:be:c4:81:f3: fe:d1:3a:f8:21:07:a6:ca:cb:a0:38:ea:46:59:19:6a:55:6a: 5e:d3:5b:a8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RUYzQjExMC8GA1UEBRMoQTM4RDQ4N0JENUQ5QThBODk0ODAyNzRGRTZGN0MwNjFD NjI0QkNDMDAeFw0yNTA5MTcwNzM1NDVaFw0yNTA5MjQwNzM1NDVaMBgxFjAUBgNV BAMTDTY4Y2E2NGQyLTJkMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0cvZUFgzBCmkgDSfnF8bc29XB4trVII+ljxqRaNbqPZtALh8YWyXGG6Yr8z5+ iLXEfEnG/h4U2J9sJ4NhWlHg9Uq9ulLfN8E/Cf4YN6sdyOY5fo6So0ImY6ktwaNE 8SLJAfhypH0/BSl6lPUVpuVpuSufPF4CJLHQwuM1z9Yvz5IZ00ppCscLmQpkUeMx hUia2yEgPbVqp4Sop3pr/CEOGo8stkFo14pLqmQ47sB34gDeU7Mv8gYzq31fFRpQ 4K8ikcxIbYnuGvfykTcuaiEMFgspW2TpHOcmq9aKv3xHlyaVSZlooLYJrHauU7LM ZykuOSqQ9H8Dx6inDMKX/A+HAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU50Eo0Wbd 1fNJqCjyD0iyKayAP58wHwYDVR0jBBgwFoAUo41Ie9XZqKiUgCdP5vfAYcYkvMAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZFRjNCL0FDNzYyMjAwRTlD NjExRUY5RkExNzcxMUM0RjlBRTAyL280MUllOVhacUtpVWdDZFA1dmZBWWNZa3ZN QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbzQxSWU5WFpxS2lVZ0NkUDV2ZkFZY1lrdk1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZF RjNCL0FDNzYyMjAwRTlDNjExRUY5RkExNzcxMUM0RjlBRTAyL280MUllOVhacUtp VWdDZFA1dmZBWWNZa3ZNQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABGNVGTV45u5UhIlpYC/Au1YyM3inw+G6hKadrZY9T9wtVNduuHDamfH 66CUTR6njqiAjk+dV2bANhyMu76GuhjEcBYHvV37TAtZQZ0X6xJBUSZvZtvajSIa CeWBUXvwG7LPB+OjHygTXtme+BwkmWutkZCm9LrKx4fh3jDCMkklOAPRDevk7jfw 3wal0KZVyvuWVwcwL32dfGeVzpPOQodO8w4UkjF4LbUGFtuaetENjLcFfIkB3Rw0 q6WRUb2taO1DZo72MXxUUZJNA3dSicfLe49Ot+umyYudIY9c8V77DiqvQzhBvsSB 8/7ROvghB6bKy6A46kZZGWpVal7TW6g= -----END CERTIFICATE-----Generated at Thu Sep 18 23:29:25 2025 by rpki-client