$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft File: 9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft (raw, json) Hash identifier: o3IEllY81INi52v92AELsV1pZLLV71WUYMsztpWSRps= Subject key identifier: 3C:81:1E:EA:D8:D7:20:06:F9:BD:8F:1C:6B:EC:C7:C0:37:E0:DF:A3 Authority key identifier: F5:C9:D3:0E:9D:07:71:CD:07:E5:1B:2E:4A:52:B5:22:53:AB:D0:26 Certificate issuer: /CN=A91F8928/serialNumber=F5C9D30E9D0771CD07E51B2E4A52B52253ABD026 Certificate serial: 0C87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft Manifest number: 0C66 Signing time: Sun 10 Aug 2025 18:33:43 +0000 Manifest this update: Sun 10 Aug 2025 18:33:42 +0000 Manifest next update: Sun 17 Aug 2025 18:33:42 +0000 Files and hashes: 1: 9cnTDp0Hcc0H5RsuSlK1IlOr0CY.crl (hash: 0RYqoeTuiRkAe82ePcl0qQ63HEbaJEH32dbX+EawDIc=) 2: 93840DE204E611ED89D3B27BC4F9AE02.roa (hash: cegor5RnBc3HGGToc+6Lymvpp6wumcl5jw4jwYNABG8=) 3: E6C1F0003C7E11F08A874435C4F9AE02.roa (hash: HGkfh3dEEIqv+3vFhSnMi2VsaDRfK/TUjKt6kaMeksE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.crl rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3207 (0xc87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8928, serialNumber=F5C9D30E9D0771CD07E51B2E4A52B52253ABD026 Validity Not Before: Aug 10 18:33:42 2025 GMT Not After : Aug 17 18:33:42 2025 GMT Subject: CN=6898e606-15ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f8:d0:4e:f0:83:05:19:c8:fc:ab:3e:ec:72: b3:e7:e7:f6:3a:47:e1:f4:69:61:73:99:36:07:60: 6e:d1:bb:6d:a7:8d:cf:80:57:4a:55:0c:73:74:ad: bb:66:d2:42:af:ed:46:ba:aa:c9:cc:75:5e:d8:0c: 95:53:23:fb:9c:e7:ea:77:54:1b:79:55:8a:c4:71: 0b:95:16:63:07:9c:e0:db:5d:31:be:3d:c0:f1:54: 24:61:36:a6:94:4a:39:50:71:41:e6:68:01:40:74: e3:46:e4:3d:60:df:a5:d1:48:11:ca:a2:ae:a7:44: 71:48:ca:e6:0f:74:76:30:b5:d8:b8:20:ff:75:c1: 2e:14:d4:9c:8f:32:03:61:d1:31:fb:d6:9c:72:e2: f2:1a:c8:07:7e:a6:9c:3e:8c:36:aa:66:c6:76:fc: 69:af:ee:f5:74:22:eb:5b:6a:4e:c0:e7:de:40:7b: 19:90:03:dd:8d:65:3c:ce:27:15:e8:fd:5c:59:ad: d9:29:4a:1f:67:27:1f:ef:19:0e:f8:2e:e6:29:a3: cd:9d:9e:4f:12:a1:ed:34:00:57:0a:3b:1e:2d:22: e3:c3:d6:6c:c4:0b:fa:db:74:60:d6:ee:bc:46:46: 77:1b:99:b4:83:bc:92:d1:74:c5:12:c9:99:11:b8: 8a:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:81:1E:EA:D8:D7:20:06:F9:BD:8F:1C:6B:EC:C7:C0:37:E0:DF:A3 X509v3 Authority Key Identifier: keyid:F5:C9:D3:0E:9D:07:71:CD:07:E5:1B:2E:4A:52:B5:22:53:AB:D0:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8928/4DA7BB200B5B11EAA3EBC650C4F9AE02/9cnTDp0Hcc0H5RsuSlK1IlOr0CY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:13:da:c2:81:0c:e4:64:64:56:0a:39:35:26:c9:6b:2c:f3: ec:cd:3e:b5:f9:b6:21:a5:69:f5:3b:9d:93:aa:19:61:7c:1c: 67:0e:61:b7:43:70:08:95:95:6d:b6:3b:e1:ff:37:cd:fe:a7: ea:4d:c1:0c:8b:6f:7f:1c:ba:b0:a2:bc:3d:f6:e9:21:71:89: 0d:7d:07:7f:c4:37:fc:6e:7d:c6:42:40:cb:fe:79:f7:90:5a: e3:70:8e:ae:a8:0d:c3:8d:5c:6b:ff:c9:05:ca:e8:37:cf:70: 88:be:f7:77:8f:f1:7a:6e:f5:7b:1d:96:08:75:01:ce:c4:a0: 92:2e:54:b9:b2:81:90:cd:21:e6:fa:f4:84:e2:7c:d3:48:98: c0:7a:7c:20:81:83:a4:8e:3b:33:fe:0f:86:e2:c9:1b:02:13: b2:5d:69:6f:b8:a0:15:63:6d:f8:ed:63:7a:31:cd:24:2e:ad: 60:8a:7a:46:3e:bb:9d:f4:c0:73:0b:f4:03:27:a6:46:03:16: b9:37:22:4c:df:0b:98:00:c5:73:d4:db:df:2d:a3:d9:0e:2f: 20:c6:8a:1f:b6:47:30:6d:43:21:cf:30:3b:05:64:21:81:ac: 23:5f:01:37:b3:8a:5e:01:4d:77:1e:85:b3:67:e8:f0:2a:17: 5f:06:af:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5MjgxMTAvBgNVBAUTKEY1QzlEMzBFOUQwNzcxQ0QwN0U1MUIyRTRBNTJCNTIy NTNBQkQwMjYwHhcNMjUwODEwMTgzMzQyWhcNMjUwODE3MTgzMzQyWjAYMRYwFAYD VQQDEw02ODk4ZTYwNi0xNWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAofjQTvCDBRnI/Ks+7HKz5+f2Okfh9Glhc5k2B2Bu0bttp43PgFdKVQxzdK27 ZtJCr+1GuqrJzHVe2AyVUyP7nOfqd1QbeVWKxHELlRZjB5zg210xvj3A8VQkYTam lEo5UHFB5mgBQHTjRuQ9YN+l0UgRyqKup0RxSMrmD3R2MLXYuCD/dcEuFNScjzID YdEx+9accuLyGsgHfqacPow2qmbGdvxpr+71dCLrW2pOwOfeQHsZkAPdjWU8zicV 6P1cWa3ZKUofZycf7xkO+C7mKaPNnZ5PEqHtNABXCjseLSLjw9ZsxAv623Rg1u68 RkZ3G5m0g7yS0XTFEsmZEbiK3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDyBHurY 1yAG+b2PHGvsx8A34N+jMB8GA1UdIwQYMBaAFPXJ0w6dB3HNB+UbLkpStSJTq9Am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODkyOC80REE3QkIyMDBC NUIxMUVBQTNFQkM2NTBDNEY5QUUwMi85Y25URHAwSGNjMEg1UnN1U2xLMUlsT3Iw Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzljblREcDBIY2MwSDVSc3VTbEsxSWxPcjBDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODkyOC80REE3QkIyMDBCNUIxMUVBQTNFQkM2NTBDNEY5QUUwMi85Y25URHAwSGNj MEg1UnN1U2xLMUlsT3IwQ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/E9rCgQzkZGRWCjk1JslrLPPszT61+bYhpWn1O52TqhlhfBxnDmG3 Q3AIlZVttjvh/zfN/qfqTcEMi29/HLqworw99ukhcYkNfQd/xDf8bn3GQkDL/nn3 kFrjcI6uqA3DjVxr/8kFyug3z3CIvvd3j/F6bvV7HZYIdQHOxKCSLlS5soGQzSHm +vSE4nzTSJjAenwggYOkjjsz/g+G4skbAhOyXWlvuKAVY2347WN6Mc0kLq1ginpG Prud9MBzC/QDJ6ZGAxa5NyJM3wuYAMVz1NvfLaPZDi8gxooftkcwbUMhzzA7BWQh gawjXwE3s4peAU13HoWzZ+jwKhdfBq93 -----END CERTIFICATE-----Generated at Mon Aug 11 07:26:42 2025 by rpki-client