$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft File: l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft (raw, json) Hash identifier: UFnQK8x+u7Hltzw9Z8G6rsj12TnUZxiF5F6zhBy6ua8= Subject key identifier: 8C:18:23:0B:D1:1A:86:23:AA:AF:E9:59:BD:D5:30:27:AB:23:31:5B Authority key identifier: 97:D2:9B:0D:32:45:5B:B5:C6:F1:25:78:5F:40:F5:BC:27:09:F7:D4 Certificate issuer: /CN=A91DF8DB/serialNumber=97D29B0D32455BB5C6F125785F40F5BC2709F7D4 Certificate serial: 13B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft Manifest number: 13AC Signing time: Fri 22 Aug 2025 17:04:47 +0000 Manifest this update: Fri 22 Aug 2025 17:04:46 +0000 Manifest next update: Fri 29 Aug 2025 17:04:46 +0000 Files and hashes: 1: l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl (hash: 9CkD5q0Y2JC3lrFnHjjmp7WHRi52zSKi14eIn34O6E0=) 2: A6C9934CA74111E88B3EAB2BC4F9AE02.roa (hash: Ps2kpMcHFW9xZn4cXtCxGzuJfkKA6kvJeaElditES+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:04:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5045 (0x13b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF8DB, serialNumber=97D29B0D32455BB5C6F125785F40F5BC2709F7D4 Validity Not Before: Aug 22 17:04:46 2025 GMT Not After : Aug 29 17:04:46 2025 GMT Subject: CN=68a8a32e-305a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a0:be:1b:e1:11:cf:b8:4f:70:5e:f1:80:ce: 76:8d:0c:6f:ff:43:64:c3:93:35:9f:04:d2:cb:4c: 4f:39:14:e8:ab:27:bd:be:e9:04:01:c5:a6:56:e1: a6:68:ac:f2:7e:c1:eb:74:18:e9:85:f3:d1:c3:03: ae:62:63:91:30:fa:a3:20:de:2a:74:af:c1:95:0b: fd:0d:71:8b:f1:fc:20:19:e4:da:fc:15:a6:86:4f: 84:e4:ef:9b:e8:29:f4:7c:7f:29:62:c4:29:8a:a0: d1:d8:64:06:65:e6:98:6e:b1:0f:cb:e5:af:68:18: 98:b0:00:99:6b:04:38:04:86:9a:5f:1e:92:d3:46: c2:54:99:dc:c5:85:52:11:a2:c3:7a:ac:3b:5d:c7: ea:2f:46:c4:36:ce:89:fd:e0:3b:62:9f:44:02:4f: cb:6f:e8:87:aa:ee:76:fb:0d:d6:e8:f3:22:1e:00: a0:43:99:b4:69:56:b5:cc:f4:c0:a9:13:c8:2a:da: 4d:26:6d:6e:98:d2:ab:3d:68:9f:54:e3:da:6d:2f: 24:91:69:f7:5f:df:2d:82:a7:e9:51:42:c3:c3:fe: 9b:b1:f0:f6:29:4d:f8:f5:54:c5:f0:ba:3e:bc:6e: 92:55:2f:a5:e1:83:b5:03:2d:b8:2a:60:a5:18:70: 6d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:18:23:0B:D1:1A:86:23:AA:AF:E9:59:BD:D5:30:27:AB:23:31:5B X509v3 Authority Key Identifier: keyid:97:D2:9B:0D:32:45:5B:B5:C6:F1:25:78:5F:40:F5:BC:27:09:F7:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:0b:a4:6f:46:c3:9c:6f:df:33:2a:24:2d:17:c7:25:ec:fa: 15:e5:2c:29:77:1c:40:b3:66:17:85:ae:b3:b1:a8:c2:01:17: 44:fe:6a:85:8a:90:f0:72:46:e6:47:58:41:d2:1a:7e:f8:2a: 08:48:be:e2:d9:05:13:af:87:09:36:e0:8c:d0:25:b1:64:bf: e6:a0:c4:5a:c1:8e:55:cf:22:bf:d5:e7:08:6b:a5:7e:d5:69: bc:3d:bd:7a:da:05:2f:2b:b1:12:4e:d1:f0:08:44:cb:a4:c0: 64:4e:f4:a2:70:8a:91:7e:99:16:b6:51:57:ce:fc:81:ec:5c: 6f:69:17:cc:24:0b:6f:3c:a9:89:d9:3d:73:aa:e2:3b:78:3c: 1b:6e:b4:c5:c4:e2:24:13:23:64:4c:7e:22:9a:3a:e8:09:54: 83:e3:52:83:f6:91:e9:bf:e4:b9:5e:6f:19:b1:64:44:32:35: 04:a6:a2:ee:b2:d6:23:79:ae:f0:af:13:17:2c:45:80:a4:80: 21:7b:0d:76:a9:ea:99:71:7a:57:93:db:eb:1d:c3:d3:bd:33: 5e:73:68:e3:b3:27:2f:4a:bf:c5:07:57:f1:a4:a6:8f:48:22: a3:70:8a:33:30:22:80:5f:b5:6f:a2:0e:37:5e:a4:7f:2c:7c: 05:e9:25:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4REIxMTAvBgNVBAUTKDk3RDI5QjBEMzI0NTVCQjVDNkYxMjU3ODVGNDBGNUJD MjcwOUY3RDQwHhcNMjUwODIyMTcwNDQ2WhcNMjUwODI5MTcwNDQ2WjAYMRYwFAYD VQQDEw02OGE4YTMyZS0zMDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn6C+G+ERz7hPcF7xgM52jQxv/0Nkw5M1nwTSy0xPORToqye9vukEAcWmVuGm aKzyfsHrdBjphfPRwwOuYmORMPqjIN4qdK/BlQv9DXGL8fwgGeTa/BWmhk+E5O+b 6Cn0fH8pYsQpiqDR2GQGZeaYbrEPy+WvaBiYsACZawQ4BIaaXx6S00bCVJncxYVS EaLDeqw7XcfqL0bENs6J/eA7Yp9EAk/Lb+iHqu52+w3W6PMiHgCgQ5m0aVa1zPTA qRPIKtpNJm1umNKrPWifVOPabS8kkWn3X98tgqfpUULDw/6bsfD2KU349VTF8Lo+ vG6SVS+l4YO1Ay24KmClGHBtNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIwYIwvR GoYjqq/pWb3VMCerIzFbMB8GA1UdIwQYMBaAFJfSmw0yRVu1xvEleF9A9bwnCffU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjhEQi82NTc5Mzc4Qzk5 MzQxMUU4QTAzNzM3MjRDNEY5QUUwMi9sOUtiRFRKRlc3WEc4U1Y0WDBEMXZDY0o5 OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w5S2JEVEpGVzdYRzhTVjRYMEQxdkNjSjk5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjhEQi82NTc5Mzc4Qzk5MzQxMUU4QTAzNzM3MjRDNEY5QUUwMi9sOUtiRFRKRlc3 WEc4U1Y0WDBEMXZDY0o5OVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5C6RvRsOcb98zKiQtF8cl7PoV5SwpdxxAs2YXha6zsajCARdE/mqF ipDwckbmR1hB0hp++CoISL7i2QUTr4cJNuCM0CWxZL/moMRawY5VzyK/1ecIa6V+ 1Wm8Pb162gUvK7ESTtHwCETLpMBkTvSicIqRfpkWtlFXzvyB7FxvaRfMJAtvPKmJ 2T1zquI7eDwbbrTFxOIkEyNkTH4imjroCVSD41KD9pHpv+S5Xm8ZsWREMjUEpqLu stYjea7wrxMXLEWApIAhew12qeqZcXpXk9vrHcPTvTNec2jjsycvSr/FB1fxpKaP SCKjcIozMCKAX7Vvog43XqR/LHwF6SV7 -----END CERTIFICATE-----Generated at Sat Aug 23 16:38:29 2025 by rpki-client