$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft File: 9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft (raw, json) Hash identifier: b0LYRYDq+mVjMCxeljo317PW+J7I1rhXEmObulGMlQQ= Subject key identifier: 6D:14:C0:22:9E:6B:29:6F:05:62:50:8B:14:90:FF:52:6A:6B:7A:99 Authority key identifier: F6:71:8A:5E:5E:42:D0:8E:25:3A:2F:B3:00:FF:09:C3:F5:35:1D:32 Certificate issuer: /CN=A91F6D91/serialNumber=F6718A5E5E42D08E253A2FB300FF09C3F5351D32 Certificate serial: 0675 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft Manifest number: 065D Signing time: Fri 22 Aug 2025 22:47:38 +0000 Manifest this update: Fri 22 Aug 2025 22:47:37 +0000 Manifest next update: Fri 29 Aug 2025 22:47:37 +0000 Files and hashes: 1: 9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl (hash: oA3C1KHDXs0ubEmnzRUr/SX8Uq0yelQA7FdrVtOabhw=) 2: 105CB01A830711ECB472CA0AC4F9AE02.roa (hash: P0BhZPNBq4fF0iWoLAGwiGCR4fuUazibBS/DViNXhlI=) 3: 0E2711E6830711ECB472CA0AC4F9AE02.roa (hash: 6bWPYL9HlnXbgKm1pf8hjZDzf0KdOhZ+kEEuV8xvMnc=) 4: 0F6980C0830711ECB472CA0AC4F9AE02.roa (hash: GSq2aTh4Ighs8Kd5WfNm9bR33IhLvfkn/9rz4nvZ37o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:47:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1653 (0x675) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D91, serialNumber=F6718A5E5E42D08E253A2FB300FF09C3F5351D32 Validity Not Before: Aug 22 22:47:37 2025 GMT Not After : Aug 29 22:47:37 2025 GMT Subject: CN=68a8f389-1f0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:6f:4f:20:94:e4:03:ef:5a:27:8c:db:b0:f4: e8:f9:c3:c8:cf:db:7d:67:97:52:c1:65:0e:e5:85: 2d:c9:fb:a3:f4:a7:ac:ab:2c:1c:bb:aa:6c:35:dd: 6d:9f:23:2d:10:66:63:84:d1:92:cc:44:d2:85:e3: dd:3b:24:48:36:e5:9f:a3:05:87:df:bd:0a:ef:1a: bd:46:88:37:e2:3b:61:5f:1b:d5:ff:14:d6:69:68: 12:f5:8e:9c:22:6a:1d:0f:72:13:de:30:a1:c9:65: 4a:44:98:5b:83:39:a9:ff:b4:cf:80:a9:c9:ba:0b: 5f:29:96:78:b4:06:dd:ce:2a:dd:f9:da:e4:2b:16: 2f:4a:fa:e2:e8:1f:6a:1f:93:ba:ae:d3:b2:92:0b: 57:8c:f0:12:26:29:2d:8b:ae:ea:bb:30:60:38:e2: 18:45:16:fb:74:ce:90:5d:7c:9c:00:bf:18:36:37: 54:49:a4:a0:8b:ae:88:c4:db:f2:f8:b1:02:4c:39: ac:5c:85:ee:a6:0d:6e:d5:d2:e8:4d:7d:43:22:95: 7a:b7:a3:f0:63:3f:16:00:3a:95:b9:f4:f0:dc:27: 02:47:de:b4:35:98:6e:20:43:de:e3:bd:fc:c5:e9: 4d:bf:ce:02:15:60:b4:8c:cf:e6:79:a7:b9:50:d4: 94:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:14:C0:22:9E:6B:29:6F:05:62:50:8B:14:90:FF:52:6A:6B:7A:99 X509v3 Authority Key Identifier: keyid:F6:71:8A:5E:5E:42:D0:8E:25:3A:2F:B3:00:FF:09:C3:F5:35:1D:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:ad:7b:6c:11:4e:18:58:e1:2e:02:37:89:e1:fb:8e:2f:9e: b7:af:20:77:5c:26:5b:7d:f5:9b:ca:28:59:6a:c8:3d:5b:94: c5:af:d9:91:87:44:82:8e:0d:6f:3b:4b:f9:d6:34:32:e6:82: e7:7c:bb:16:f6:d9:db:66:8c:a4:53:94:a3:2f:1b:54:a8:17: 95:cf:1b:b6:a5:54:e7:5d:39:af:86:e0:a7:fe:9f:68:a6:ae: fc:45:a9:62:40:19:de:70:c1:b2:af:c6:0e:7d:34:62:46:85: 79:f4:12:3b:7f:99:1d:77:a2:73:cc:4b:10:40:c8:af:c5:41: ba:11:cb:b7:ae:0e:e1:e9:47:99:14:48:f0:d6:c0:8e:14:15: 0a:dc:0b:76:d8:1f:d4:4b:3b:a1:e4:05:8f:5a:77:95:a3:c2: 6d:ce:54:9a:d1:a7:21:55:53:48:ab:61:43:3f:c6:fa:8f:b7: a9:83:db:66:08:ee:e6:80:ef:bf:8f:cb:ce:8c:ed:09:af:ac: 70:8d:cd:5b:f8:89:e1:18:6e:03:79:30:7c:e1:9d:9d:eb:bf: 06:2e:a2:bf:f7:d7:33:5a:b7:17:9f:bc:dd:35:82:5d:2d:fe: 76:82:f2:7d:6d:ac:6a:57:7e:dc:c3:53:91:d4:3c:7e:bc:fb: ab:7c:5f:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZEOTExMTAvBgNVBAUTKEY2NzE4QTVFNUU0MkQwOEUyNTNBMkZCMzAwRkYwOUMz RjUzNTFEMzIwHhcNMjUwODIyMjI0NzM3WhcNMjUwODI5MjI0NzM3WjAYMRYwFAYD VQQDEw02OGE4ZjM4OS0xZjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA629PIJTkA+9aJ4zbsPTo+cPIz9t9Z5dSwWUO5YUtyfuj9Kesqywcu6psNd1t nyMtEGZjhNGSzETShePdOyRINuWfowWH370K7xq9Rog34jthXxvV/xTWaWgS9Y6c ImodD3IT3jChyWVKRJhbgzmp/7TPgKnJugtfKZZ4tAbdzird+drkKxYvSvri6B9q H5O6rtOykgtXjPASJikti67quzBgOOIYRRb7dM6QXXycAL8YNjdUSaSgi66IxNvy +LECTDmsXIXupg1u1dLoTX1DIpV6t6PwYz8WADqVufTw3CcCR960NZhuIEPe4738 xelNv84CFWC0jM/meae5UNSUXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG0UwCKe aylvBWJQixSQ/1Jqa3qZMB8GA1UdIwQYMBaAFPZxil5eQtCOJTovswD/CcP1NR0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ5MS9FNTE3RjJCNjlB RTUxMUVCODM3RjEzNUVDNEY5QUUwMi85bkdLWGw1QzBJNGxPaS16QVA4SndfVTFI VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzluR0tYbDVDMEk0bE9pLXpBUDhKd19VMUhUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ5MS9FNTE3RjJCNjlBRTUxMUVCODM3RjEzNUVDNEY5QUUwMi85bkdLWGw1QzBJ NGxPaS16QVA4SndfVTFIVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8rXtsEU4YWOEuAjeJ4fuOL563ryB3XCZbffWbyihZasg9W5TFr9mR h0SCjg1vO0v51jQy5oLnfLsW9tnbZoykU5SjLxtUqBeVzxu2pVTnXTmvhuCn/p9o pq78RaliQBnecMGyr8YOfTRiRoV59BI7f5kdd6JzzEsQQMivxUG6Ecu3rg7h6UeZ FEjw1sCOFBUK3At22B/USzuh5AWPWneVo8JtzlSa0achVVNIq2FDP8b6j7epg9tm CO7mgO+/j8vOjO0Jr6xwjc1b+InhGG4DeTB84Z2d678GLqK/99czWrcXn7zdNYJd Lf52gvJ9baxqV37cw1OR1Dx+vPurfF9w -----END CERTIFICATE-----Generated at Sat Aug 23 10:18:48 2025 by rpki-client