$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft File: 1f9FyAWBJcJy3wRtwLjgb6owT88.mft (raw, json) Hash identifier: QvJUUm9yo5ahI4OT48iGs/belmw0U05Ljn/LhRSUn08= Subject key identifier: CC:F7:97:99:C3:FC:EF:99:68:E0:A5:B7:F2:3D:45:67:02:E6:CD:CF Authority key identifier: D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF Certificate issuer: /CN=A91A7E29/serialNumber=D5FF45C8058125C272DF046DC0B8E06FAA304FCF Certificate serial: 0409 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft Manifest number: 0401 Signing time: Sat 23 Aug 2025 00:42:41 +0000 Manifest this update: Sat 23 Aug 2025 00:42:41 +0000 Manifest next update: Sat 30 Aug 2025 00:42:41 +0000 Files and hashes: 1: 1f9FyAWBJcJy3wRtwLjgb6owT88.crl (hash: 4FMo+4GKfnFNRNFa3FgFXHrtT/pVsmf8oQnSTuSYxmA=) 2: 99F51284A1E911EDAD7CE929C4F9AE02.roa (hash: DgFh0007lZzBIY6/Uazy8v7Lvih8jtP3rAyQ1LouyMA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.crl rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:42:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1033 (0x409) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7E29, serialNumber=D5FF45C8058125C272DF046DC0B8E06FAA304FCF Validity Not Before: Aug 23 00:42:41 2025 GMT Not After : Aug 30 00:42:41 2025 GMT Subject: CN=68a90e81-082e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:9a:cd:30:0c:51:da:68:23:7c:0d:a6:48:5d: 63:e2:1d:c8:f5:18:94:a9:67:ef:f6:b2:73:8e:6d: 00:69:4e:e2:ef:e2:d8:38:9f:01:09:a5:0c:b6:a9: 98:ab:21:24:42:96:af:dd:d1:9d:2a:e0:35:b7:8c: d4:a2:7b:2a:52:75:13:14:ae:e7:ad:70:0d:d3:87: 60:8d:ef:e9:ff:01:88:c3:7b:92:08:a5:41:a0:74: 0b:4c:4f:2b:38:98:c3:50:14:c4:64:f3:f7:79:3c: c4:c7:73:de:08:60:b8:00:73:d4:bc:96:27:5e:d7: 2a:cf:c0:46:0f:81:24:e7:c8:c4:85:eb:37:b9:b1: 07:dc:e6:66:02:75:6d:9a:82:9d:83:05:b6:c2:ae: 30:7f:ea:53:c7:dc:72:60:c0:78:cb:01:dc:22:6e: 72:87:1d:62:7d:24:a8:e9:5e:02:13:e0:00:e7:fc: f5:2d:9e:f0:88:eb:b7:70:a4:f6:28:8a:6c:89:69: 50:49:51:a5:9d:73:2d:bd:ee:e3:ac:b1:a0:30:52: f2:e0:44:a3:ac:99:f0:18:5e:dd:3b:17:a8:86:26: c0:2c:b9:b2:22:08:a8:5c:b0:96:1d:1e:47:8d:dd: 0d:27:44:05:87:c0:e4:97:05:c4:79:33:d2:77:12: e1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:F7:97:99:C3:FC:EF:99:68:E0:A5:B7:F2:3D:45:67:02:E6:CD:CF X509v3 Authority Key Identifier: keyid:D5:FF:45:C8:05:81:25:C2:72:DF:04:6D:C0:B8:E0:6F:AA:30:4F:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1f9FyAWBJcJy3wRtwLjgb6owT88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7E29/56F1C532879011EC86D0441EC4F9AE02/1f9FyAWBJcJy3wRtwLjgb6owT88.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:9b:7e:28:17:d2:b6:50:f2:db:94:80:0d:a9:16:c1:42:39: b0:a8:4d:4f:2d:11:10:99:ca:53:37:61:6c:73:02:a4:1d:ed: ac:dc:dd:5a:49:6f:e5:4b:fd:74:59:39:d1:11:d8:0a:5a:2e: 97:6c:6a:14:5b:37:1a:ad:ac:e0:5f:47:ba:1b:01:37:96:2f: 90:eb:35:b5:a2:a4:5a:bf:45:1d:64:11:c8:e8:58:2f:f5:f3: 25:ac:42:74:a0:88:f9:b8:28:74:f3:17:1b:12:dc:f3:18:8a: 02:23:da:c6:ac:b7:92:c7:e0:fd:c3:a9:25:ce:e7:5d:ef:9e: 3e:8f:d2:09:e6:66:fb:96:97:56:9c:52:4c:69:9d:dd:2a:a7: 73:75:63:a7:05:88:f0:18:06:b4:ae:91:63:0d:51:88:27:a1: fd:f9:ac:11:38:54:bb:e7:ea:e7:c6:e9:55:80:df:ff:22:6a: 0b:72:c5:c2:88:73:40:fe:3c:38:22:02:06:2c:84:5d:17:85: 15:90:40:8e:79:84:04:8c:96:db:11:17:e0:3e:8a:7b:51:5c: 50:aa:eb:91:26:0f:73:95:3e:10:82:b2:39:54:be:e1:f9:7a: e5:2e:34:d5:ba:79:fa:18:fc:83:03:f5:f4:08:11:aa:72:31: 2e:ad:9c:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdFMjkxMTAvBgNVBAUTKEQ1RkY0NUM4MDU4MTI1QzI3MkRGMDQ2REMwQjhFMDZG QUEzMDRGQ0YwHhcNMjUwODIzMDA0MjQxWhcNMjUwODMwMDA0MjQxWjAYMRYwFAYD VQQDEw02OGE5MGU4MS0wODJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnprNMAxR2mgjfA2mSF1j4h3I9RiUqWfv9rJzjm0AaU7i7+LYOJ8BCaUMtqmY qyEkQpav3dGdKuA1t4zUonsqUnUTFK7nrXAN04dgje/p/wGIw3uSCKVBoHQLTE8r OJjDUBTEZPP3eTzEx3PeCGC4AHPUvJYnXtcqz8BGD4Ek58jEhes3ubEH3OZmAnVt moKdgwW2wq4wf+pTx9xyYMB4ywHcIm5yhx1ifSSo6V4CE+AA5/z1LZ7wiOu3cKT2 KIpsiWlQSVGlnXMtve7jrLGgMFLy4ESjrJnwGF7dOxeohibALLmyIgioXLCWHR5H jd0NJ0QFh8DklwXEeTPSdxLhwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMz3l5nD /O+ZaOClt/I9RWcC5s3PMB8GA1UdIwQYMBaAFNX/RcgFgSXCct8EbcC44G+qME/P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0UyOS81NkYxQzUzMjg3 OTAxMUVDODZEMDQ0MUVDNEY5QUUwMi8xZjlGeUFXQkpjSnkzd1J0d0xqZ2I2b3dU ODguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmOUZ5QVdCSmNKeTN3UnR3TGpnYjZvd1Q4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0UyOS81NkYxQzUzMjg3OTAxMUVDODZEMDQ0MUVDNEY5QUUwMi8xZjlGeUFXQkpj Snkzd1J0d0xqZ2I2b3dUODgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTm34oF9K2UPLblIANqRbBQjmwqE1PLREQmcpTN2FscwKkHe2s3N1a SW/lS/10WTnREdgKWi6XbGoUWzcarazgX0e6GwE3li+Q6zW1oqRav0UdZBHI6Fgv 9fMlrEJ0oIj5uCh08xcbEtzzGIoCI9rGrLeSx+D9w6klzudd754+j9IJ5mb7lpdW nFJMaZ3dKqdzdWOnBYjwGAa0rpFjDVGIJ6H9+awROFS75+rnxulVgN//ImoLcsXC iHNA/jw4IgIGLIRdF4UVkECOeYQEjJbbERfgPop7UVxQquuRJg9zlT4QgrI5VL7h +XrlLjTVunn6GPyDA/X0CBGqcjEurZw2 -----END CERTIFICATE-----Generated at Sat Aug 23 17:19:16 2025 by rpki-client