$ rpki-client -vvf rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft File: aK5b6xu35ELO4KfgFAKf9y49tB8.mft (raw, json) Hash identifier: 7tAjni2893zpy/K2oylL+IpztQjOo3mlpzksgcJb4rE= Subject key identifier: 42:8E:D2:3F:71:39:FD:DA:87:9B:5D:57:EC:89:40:FE:D8:55:CF:6C Authority key identifier: 68:AE:5B:EB:1B:B7:E4:42:CE:E0:A7:E0:14:02:9F:F7:2E:3D:B4:1F Certificate issuer: /CN=A91104C9/serialNumber=68AE5BEB1BB7E442CEE0A7E014029FF72E3DB41F Certificate serial: 0C48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft Manifest number: 0C3D Signing time: Sat 18 Oct 2025 19:26:38 +0000 Manifest this update: Sat 18 Oct 2025 19:26:38 +0000 Manifest next update: Sat 25 Oct 2025 19:26:38 +0000 Files and hashes: 1: aK5b6xu35ELO4KfgFAKf9y49tB8.crl (hash: 2d9URhA7jyt6lUF7TUjm2RrBSiVdVbfdqKXLeZZOgXE=) 2: 4C1F013E5AF511EFBAB1F86CC4F9AE02.roa (hash: 5YnlbFiESO7UmvUP8KNkIgeb7OYcXBskhmx0foLpcp0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.crl rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3144 (0xc48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91104C9, serialNumber=68AE5BEB1BB7E442CEE0A7E014029FF72E3DB41F Validity Not Before: Oct 18 19:26:38 2025 GMT Not After : Oct 25 19:26:38 2025 GMT Subject: CN=68f3e9ee-4e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f5:6e:5a:aa:ae:ce:fb:27:ad:aa:c7:23:b2: 9d:c1:04:e6:ae:7e:a1:14:46:82:2e:e4:d8:26:66: dc:cc:03:b0:68:d7:ee:fb:08:a9:e8:af:fc:b4:cb: 50:90:ee:cf:20:42:be:ca:82:64:5e:5a:1a:63:f8: 6f:2b:0f:d0:fe:61:91:6a:19:30:c9:52:62:bb:96: 4a:90:9a:86:94:7e:6a:df:68:6d:48:00:cf:26:18: 09:a0:bc:80:4b:9a:46:b1:14:0e:5d:bc:14:79:b8: 4f:aa:91:28:d7:ba:f8:58:58:24:c4:c3:c7:96:e1: a9:bc:2c:3b:84:ab:aa:24:06:87:9e:bb:6e:87:d7: ba:35:e2:bf:24:91:e5:b6:8c:3d:55:1d:6d:49:18: 4f:80:82:98:8f:27:76:aa:83:02:02:3e:32:5f:62: f9:84:1d:63:01:0b:29:6a:06:4c:fa:29:d9:73:ca: 5f:92:59:05:cb:59:4d:e4:bb:c0:bc:ab:5b:35:38: 99:ef:ee:ae:0b:df:0b:f1:7a:4f:ee:65:a8:ca:ea: f6:4b:8d:3a:d7:5e:c1:7b:28:b0:e6:2a:5f:d6:f3: dc:4a:74:26:21:1f:84:24:b5:30:67:af:1e:83:ad: e7:62:05:55:c4:23:b2:db:33:4e:17:5f:ea:62:24: 6a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:8E:D2:3F:71:39:FD:DA:87:9B:5D:57:EC:89:40:FE:D8:55:CF:6C X509v3 Authority Key Identifier: keyid:68:AE:5B:EB:1B:B7:E4:42:CE:E0:A7:E0:14:02:9F:F7:2E:3D:B4:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aK5b6xu35ELO4KfgFAKf9y49tB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91104C9/2AA8B38814C811EA87D1516CC4F9AE02/aK5b6xu35ELO4KfgFAKf9y49tB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:e2:ab:2e:38:62:e6:0a:9e:e3:45:37:9c:e5:76:74:f6:8b: 62:c0:d1:90:a0:a4:dd:d0:10:f8:24:a2:48:d2:e8:57:ec:a9: d0:4b:e1:e8:16:c7:da:79:96:98:69:85:a8:32:69:5d:a6:2b: 27:51:e7:3f:b7:3e:90:19:80:b3:9a:f1:dc:bf:71:28:3b:90: 88:e5:76:06:92:12:9d:e4:2f:e1:2b:ea:40:85:9b:de:0f:8c: eb:ff:57:28:aa:e6:c5:2c:26:31:1b:12:8e:11:f2:cd:0a:8b: 6a:43:e6:c1:82:5d:e6:85:3d:50:28:25:90:13:ff:a0:b5:c9: 5e:7f:5c:fa:63:86:7c:8c:ff:fd:a6:8c:ff:9e:12:ff:c3:a3: 7a:5d:04:14:0c:3e:43:74:ad:89:2e:67:6b:77:7c:27:5d:b1: 7c:a9:87:f6:d3:96:ed:00:cd:a8:20:9d:a2:1c:33:5f:07:d5: c1:fa:17:d8:11:a2:8b:ec:e6:4b:fe:60:14:03:98:c7:98:07: 81:0f:24:4c:97:bc:b1:00:3c:24:c9:6d:b1:50:72:b7:b5:b7: 28:a0:cd:61:ce:8a:48:07:a8:76:b8:83:93:91:0b:c6:bf:e0: 7a:2f:b4:3b:0b:5c:6c:f4:cf:22:f0:7c:6e:43:88:18:ac:10: b5:eb:3b:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA0QzkxMTAvBgNVBAUTKDY4QUU1QkVCMUJCN0U0NDJDRUUwQTdFMDE0MDI5RkY3 MkUzREI0MUYwHhcNMjUxMDE4MTkyNjM4WhcNMjUxMDI1MTkyNjM4WjAYMRYwFAYD VQQDEw02OGYzZTllZS00ZTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvVuWqquzvsnrarHI7KdwQTmrn6hFEaCLuTYJmbczAOwaNfu+wip6K/8tMtQ kO7PIEK+yoJkXloaY/hvKw/Q/mGRahkwyVJiu5ZKkJqGlH5q32htSADPJhgJoLyA S5pGsRQOXbwUebhPqpEo17r4WFgkxMPHluGpvCw7hKuqJAaHnrtuh9e6NeK/JJHl tow9VR1tSRhPgIKYjyd2qoMCAj4yX2L5hB1jAQspagZM+inZc8pfklkFy1lN5LvA vKtbNTiZ7+6uC98L8XpP7mWoyur2S406117Beyiw5ipf1vPcSnQmIR+EJLUwZ68e g63nYgVVxCOy2zNOF1/qYiRq/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEKO0j9x Of3ah5tdV+yJQP7YVc9sMB8GA1UdIwQYMBaAFGiuW+sbt+RCzuCn4BQCn/cuPbQf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDRDOS8yQUE4QjM4ODE0 QzgxMUVBODdEMTUxNkNDNEY5QUUwMi9hSzViNnh1MzVFTE80S2ZnRkFLZjl5NDl0 QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLNWI2eHUzNUVMTzRLZmdGQUtmOXk0OXRCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MDRDOS8yQUE4QjM4ODE0QzgxMUVBODdEMTUxNkNDNEY5QUUwMi9hSzViNnh1MzVF TE80S2ZnRkFLZjl5NDl0QjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCO4qsuOGLmCp7jRTec5XZ09otiwNGQoKTd0BD4JKJI0uhX7KnQS+Ho FsfaeZaYaYWoMmldpisnUec/tz6QGYCzmvHcv3EoO5CI5XYGkhKd5C/hK+pAhZve D4zr/1coqubFLCYxGxKOEfLNCotqQ+bBgl3mhT1QKCWQE/+gtclef1z6Y4Z8jP/9 poz/nhL/w6N6XQQUDD5DdK2JLmdrd3wnXbF8qYf205btAM2oIJ2iHDNfB9XB+hfY EaKL7OZL/mAUA5jHmAeBDyRMl7yxADwkyW2xUHK3tbcooM1hzopIB6h2uIOTkQvG v+B6L7Q7C1xs9M8i8HxuQ4gYrBC16zv7 -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:33 2025 by rpki-client