$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft File: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft (raw, json) Hash identifier: yanNto64HS1c9jCVazFRqnjKl4/3cVbN1TFJ/b81mrQ= Subject key identifier: 11:D6:0E:57:86:53:67:65:23:C0:91:A1:88:14:FC:8F:70:B3:D8:56 Authority key identifier: 87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 Certificate issuer: /CN=A91FFA15/serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Certificate serial: 0C06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft Manifest number: 0BFA Signing time: Tue 16 Sep 2025 18:59:06 +0000 Manifest this update: Tue 16 Sep 2025 18:59:05 +0000 Manifest next update: Tue 23 Sep 2025 18:59:05 +0000 Files and hashes: 1: hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl (hash: GbKSWL6C3G6RFo1zTIOv/HXBdhnqBh0ttKADVur10Ag=) 2: E5C9B0541B3E11EBBC57067AC4F9AE02.roa (hash: yqFSXrSreAwWsxKHKKypXy96bJWuk7Ta+8Svfir1RMk=) 3: E6D6D72E1B3E11EBBC57067AC4F9AE02.roa (hash: 8S+9u5NejOEqjzyGww6nqkHBEMgMZJI4JwQwHM3xtzk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Sep 2025 18:59:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3078 (0xc06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFA15, serialNumber=87237FF689024D94FDB49EC25C5B120D0BB94297 Validity Not Before: Sep 16 18:59:05 2025 GMT Not After : Sep 23 18:59:05 2025 GMT Subject: CN=68c9b379-5d64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:cf:cb:83:31:a9:59:09:1e:cd:ae:70:1f:24: 54:96:74:44:ea:03:05:61:ef:b2:bd:35:77:70:cc: 66:dd:16:d0:53:5d:34:dd:7d:56:47:6f:f5:72:d2: 55:39:f0:a6:3c:c2:e1:be:25:89:3a:70:81:3b:9e: 2d:b2:1b:9f:ca:a4:ac:b9:36:b0:9e:3d:36:cc:d6: b0:07:02:47:c6:2d:1f:c0:a8:77:6c:2e:6c:7b:12: 65:47:d6:ae:85:50:14:07:5d:c7:24:52:98:65:0a: 78:37:5b:d5:d0:37:18:a8:ae:dc:a9:28:0d:72:75: ed:a8:c6:37:85:72:8c:9d:8e:c9:72:a3:8c:16:38: 04:39:5c:f0:4b:81:b3:2c:bc:9f:12:13:3b:2a:4c: 0e:c8:19:c5:b4:48:bd:b6:5a:90:2d:17:5f:a9:e3: 81:26:e8:f7:02:79:9a:dd:09:b5:a6:6c:f9:bb:c3: d0:cd:07:79:fa:89:12:99:7b:e9:59:80:e8:e3:62: ef:29:91:f3:01:54:4c:d3:ee:8b:32:6d:d1:b3:86: 6a:37:96:91:95:dc:6e:10:70:f7:95:c9:f7:53:e3: 48:cc:a8:ba:97:f5:9c:be:25:3c:ae:33:c4:3e:30: 7e:e0:cf:8e:50:c3:ba:30:34:8f:ab:9b:b2:cb:21: c3:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:D6:0E:57:86:53:67:65:23:C0:91:A1:88:14:FC:8F:70:B3:D8:56 X509v3 Authority Key Identifier: keyid:87:23:7F:F6:89:02:4D:94:FD:B4:9E:C2:5C:5B:12:0D:0B:B9:42:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFA15/701F53D21D8711EAA8169B6CC4F9AE02/hyN_9okCTZT9tJ7CXFsSDQu5Qpc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:ca:41:25:c8:e8:0e:fc:ab:ce:d3:a7:e1:8f:bf:d9:c8:9c: d7:18:ab:c7:87:4a:d5:44:2c:3d:ab:04:34:fb:28:c0:75:0d: 61:d2:53:49:03:73:c3:11:25:ec:d2:a6:c8:b3:01:ff:94:8f: a3:55:0d:b1:61:1c:b2:40:30:07:7d:96:64:22:12:c2:55:77: 22:75:50:9b:86:32:3a:81:08:7b:c1:ef:a7:86:64:6f:e3:b3: 92:c8:ed:a2:39:cf:39:78:f9:e5:72:08:65:d7:fc:01:0f:1b: 6c:ed:58:76:d9:83:0c:94:a7:fc:4c:d0:75:21:20:2a:58:f3: b3:af:36:c3:e2:cf:17:37:5c:bd:98:78:57:fe:73:d3:68:ba: 4a:7c:3d:19:77:3c:e6:c6:98:c0:20:77:34:84:08:0c:1a:39: d4:16:04:dd:fc:b5:0f:84:85:68:24:d7:19:29:47:f7:2f:65: ac:bb:ad:33:17:ae:bb:ed:ea:45:1e:e3:64:41:fb:6e:d7:06: 56:16:f4:3b:c9:67:63:ff:c7:9b:02:25:54:f2:7e:72:af:aa: fa:ce:c5:be:46:9e:98:c1:14:86:13:67:c5:23:77:a1:cb:2f: d9:23:9b:4b:20:3c:5f:77:f4:5a:43:be:b2:2c:e4:2a:fe:cc: 26:f7:1d:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZBMTUxMTAvBgNVBAUTKDg3MjM3RkY2ODkwMjREOTRGREI0OUVDMjVDNUIxMjBE MEJCOTQyOTcwHhcNMjUwOTE2MTg1OTA1WhcNMjUwOTIzMTg1OTA1WjAYMRYwFAYD VQQDEw02OGM5YjM3OS01ZDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuc/LgzGpWQkeza5wHyRUlnRE6gMFYe+yvTV3cMxm3RbQU1003X1WR2/1ctJV OfCmPMLhviWJOnCBO54tshufyqSsuTawnj02zNawBwJHxi0fwKh3bC5sexJlR9au hVAUB13HJFKYZQp4N1vV0DcYqK7cqSgNcnXtqMY3hXKMnY7JcqOMFjgEOVzwS4Gz LLyfEhM7KkwOyBnFtEi9tlqQLRdfqeOBJuj3Anma3Qm1pmz5u8PQzQd5+okSmXvp WYDo42LvKZHzAVRM0+6LMm3Rs4ZqN5aRldxuEHD3lcn3U+NIzKi6l/WcviU8rjPE PjB+4M+OUMO6MDSPq5uyyyHDgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBHWDleG U2dlI8CRoYgU/I9ws9hWMB8GA1UdIwQYMBaAFIcjf/aJAk2U/bSewlxbEg0LuUKX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkExNS83MDFGNTNEMjFE ODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1RaVDl0SjdDWEZzU0RRdTVR cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h5Tl85b2tDVFpUOXRKN0NYRnNTRFF1NVFwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkExNS83MDFGNTNEMjFEODcxMUVBQTgxNjlCNkNDNEY5QUUwMi9oeU5fOW9rQ1Ra VDl0SjdDWEZzU0RRdTVRcGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6ykElyOgO/KvO06fhj7/ZyJzXGKvHh0rVRCw9qwQ0+yjAdQ1h0lNJ A3PDESXs0qbIswH/lI+jVQ2xYRyyQDAHfZZkIhLCVXcidVCbhjI6gQh7we+nhmRv 47OSyO2iOc85ePnlcghl1/wBDxts7Vh22YMMlKf8TNB1ISAqWPOzrzbD4s8XN1y9 mHhX/nPTaLpKfD0ZdzzmxpjAIHc0hAgMGjnUFgTd/LUPhIVoJNcZKUf3L2Wsu60z F6677epFHuNkQftu1wZWFvQ7yWdj/8ebAiVU8n5yr6r6zsW+Rp6YwRSGE2fFI3eh yy/ZI5tLIDxfd/RaQ76yLOQq/swm9x1c -----END CERTIFICATE-----Generated at Thu Sep 18 19:13:17 2025 by rpki-client