$ rpki-client -vvf rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft File: s9eTeQ4RSsj43IK64zwdkr29tes.mft (raw, json) Hash identifier: 4tdTdFI+lR6Bgpycu98kfQ+GLkwNoODEuOlNMMXaP4k= Subject key identifier: DB:1F:7E:AD:E5:3C:C4:72:4F:0B:2A:A9:AC:0B:57:14:DF:CC:21:E5 Authority key identifier: B3:D7:93:79:0E:11:4A:C8:F8:DC:82:BA:E3:3C:1D:92:BD:BD:B5:EB Certificate issuer: /CN=A91F71E8/serialNumber=B3D793790E114AC8F8DC82BAE33C1D92BDBDB5EB Certificate serial: 087C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft Manifest number: 1A63 Signing time: Fri 22 Aug 2025 17:17:22 +0000 Manifest this update: Fri 22 Aug 2025 17:17:21 +0000 Manifest next update: Fri 29 Aug 2025 17:17:21 +0000 Files and hashes: 1: s9eTeQ4RSsj43IK64zwdkr29tes.crl (hash: UBMCrMrEJLPv2av1b3PAZ9wE48+nyKa8WZs9Nt4SqRI=) 2: F87AC94C35BB11EDB0314E29C4F9AE02.roa (hash: QQ2kSpkziq7c/OfdUjW7k6le4ABn54sNBVAUYS+VxSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.crl rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2172 (0x87c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F71E8, serialNumber=B3D793790E114AC8F8DC82BAE33C1D92BDBDB5EB Validity Not Before: Aug 22 17:17:21 2025 GMT Not After : Aug 29 17:17:21 2025 GMT Subject: CN=68a8a621-985f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:03:d1:c3:a3:b5:d0:d5:c4:c4:dd:dd:33:9c: 65:87:2f:5c:ab:8d:b1:95:e7:c3:c1:11:f9:01:47: c0:49:c1:2e:22:2a:f6:40:40:e4:11:32:e7:fb:ac: 71:0d:b7:21:d1:8b:6a:ac:e5:9b:f9:66:66:61:2e: 64:59:75:d9:e0:dd:ab:77:74:8d:b1:e1:fc:95:a2: 7a:16:f5:1f:c1:a9:41:79:3c:8a:50:97:e2:b1:c4: 5f:4b:e3:bd:51:14:a1:e4:8e:24:f5:5a:4d:0d:1f: b6:e7:65:94:db:32:81:ca:47:dd:68:aa:c0:81:4c: ff:3e:41:b4:fb:2d:c7:9b:ba:1c:91:8e:0c:e9:37: ba:ad:27:a9:a0:94:a1:56:a0:b0:9c:02:8a:99:61: 71:3b:53:84:7c:5f:e0:2b:4f:84:71:08:9a:93:30: 46:4b:73:40:24:f3:7e:a3:b0:f5:63:6a:4d:10:33: a5:cf:28:25:db:6e:cf:73:eb:56:e4:29:ff:78:c6: 1f:1c:1b:4a:42:ae:33:15:ba:b4:f0:55:16:5c:d7: 81:a3:74:fa:b2:20:36:ed:14:5f:49:c4:77:d6:59: f6:0d:4b:a4:f3:24:3a:bf:fd:b2:08:6d:5f:d1:46: 29:52:56:0c:4c:10:51:cd:45:95:3a:e3:73:91:a0: 68:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:1F:7E:AD:E5:3C:C4:72:4F:0B:2A:A9:AC:0B:57:14:DF:CC:21:E5 X509v3 Authority Key Identifier: keyid:B3:D7:93:79:0E:11:4A:C8:F8:DC:82:BA:E3:3C:1D:92:BD:BD:B5:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:3d:fc:8c:54:e9:e5:2e:a0:4a:8b:2e:f7:f1:24:db:46:4f: 58:26:98:36:4b:e4:e3:fb:99:98:27:d2:24:43:b9:96:1d:af: f8:24:f4:14:22:07:68:b8:54:24:ba:ac:13:e8:9d:8e:36:7a: ee:81:0c:0c:0d:ea:2d:d0:b3:f9:7d:87:b0:3c:7b:c0:14:c9: 5e:50:58:49:d9:e2:12:b4:75:ce:97:70:de:bf:ad:8a:b5:25: a5:7a:c2:91:c3:f8:18:ce:7a:0b:1b:4f:05:c6:df:f1:b5:f0: 03:a8:f2:a6:bd:22:7f:7c:c8:6e:f3:87:45:f9:36:e6:1d:84: 28:70:96:be:3c:0b:4b:3f:b1:32:f1:f5:91:18:c3:f8:b4:f4: 82:78:ca:54:e3:87:ec:ab:ab:21:a3:13:40:51:c6:ca:32:f0: 16:26:d2:67:90:68:18:b1:4a:98:55:fb:fa:b5:10:51:47:dd: 60:28:23:67:b7:bc:87:ed:5b:c2:31:22:bb:72:ee:41:66:70: 80:e3:64:b9:dd:58:c1:b6:20:1a:de:28:0c:c9:b1:fb:7c:8a: 9a:23:1d:b3:53:8a:fc:dc:b5:75:23:0b:7e:f2:17:30:48:d4: 5d:4b:77:5b:ec:17:a5:59:47:c0:09:b5:0a:d1:86:56:ad:fc: 59:4b:f2:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjcxRTgxMTAvBgNVBAUTKEIzRDc5Mzc5MEUxMTRBQzhGOERDODJCQUUzM0MxRDky QkRCREI1RUIwHhcNMjUwODIyMTcxNzIxWhcNMjUwODI5MTcxNzIxWjAYMRYwFAYD VQQDEw02OGE4YTYyMS05ODVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtQPRw6O10NXExN3dM5xlhy9cq42xlefDwRH5AUfAScEuIir2QEDkETLn+6xx Dbch0YtqrOWb+WZmYS5kWXXZ4N2rd3SNseH8laJ6FvUfwalBeTyKUJfiscRfS+O9 URSh5I4k9VpNDR+252WU2zKBykfdaKrAgUz/PkG0+y3Hm7ockY4M6Te6rSepoJSh VqCwnAKKmWFxO1OEfF/gK0+EcQiakzBGS3NAJPN+o7D1Y2pNEDOlzygl227Pc+tW 5Cn/eMYfHBtKQq4zFbq08FUWXNeBo3T6siA27RRfScR31ln2DUuk8yQ6v/2yCG1f 0UYpUlYMTBBRzUWVOuNzkaBoTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNsffq3l PMRyTwsqqawLVxTfzCHlMB8GA1UdIwQYMBaAFLPXk3kOEUrI+NyCuuM8HZK9vbXr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzFFOC82MkI3ODdBMEVF RTQxMUU4OUU2NjVENERDNEY5QUUwMi9zOWVUZVE0UlNzajQzSUs2NHp3ZGtyMjl0 ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M5ZVRlUTRSU3NqNDNJSzY0endka3IyOXRlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzFFOC82MkI3ODdBMEVFRTQxMUU4OUU2NjVENERDNEY5QUUwMi9zOWVUZVE0UlNz ajQzSUs2NHp3ZGtyMjl0ZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqPfyMVOnlLqBKiy738STbRk9YJpg2S+Tj+5mYJ9IkQ7mWHa/4JPQU IgdouFQkuqwT6J2ONnrugQwMDeot0LP5fYewPHvAFMleUFhJ2eIStHXOl3Dev62K tSWlesKRw/gYznoLG08Fxt/xtfADqPKmvSJ/fMhu84dF+TbmHYQocJa+PAtLP7Ey 8fWRGMP4tPSCeMpU44fsq6shoxNAUcbKMvAWJtJnkGgYsUqYVfv6tRBRR91gKCNn t7yH7VvCMSK7cu5BZnCA42S53VjBtiAa3igMybH7fIqaIx2zU4r83LV1Iwt+8hcw SNRdS3db7BelWUfACbUK0YZWrfxZS/KQ -----END CERTIFICATE-----Generated at Sun Aug 24 03:13:38 2025 by rpki-client