$ rpki-client -vvf rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft File: VAR9J873NG9Bde-sc0SUrbsFe1U.mft (raw, json) Hash identifier: gCuEZPWCZXlHuC3/+TWnfr9sTqaWKqL/vYKEBefDQuM= Subject key identifier: 84:FD:B2:85:DA:5E:F0:80:86:08:95:3C:3B:9F:D8:3E:0C:52:C9:A7 Authority key identifier: 54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 Certificate issuer: /CN=A91127C1/serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55 Certificate serial: 0A10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft Manifest number: 0A08 Signing time: Sat 18 Oct 2025 20:51:52 +0000 Manifest this update: Sat 18 Oct 2025 20:51:51 +0000 Manifest next update: Sat 25 Oct 2025 20:51:51 +0000 Files and hashes: 1: VAR9J873NG9Bde-sc0SUrbsFe1U.crl (hash: pH6S1tmvRAqdTMu/jFHxGhVRXSHsQox6Sstu7vgE70M=) 2: 3492D2F083BA11EA8728F076C4F9AE02.roa (hash: OT+54b9b887njSEqmuExUbEj0TJJUhjKtfKkhce9QUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:51:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2576 (0xa10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91127C1, serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55 Validity Not Before: Oct 18 20:51:51 2025 GMT Not After : Oct 25 20:51:51 2025 GMT Subject: CN=68f3fde8-8155 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:14:c1:ee:d9:3e:46:9e:4a:1f:66:d1:40:13: 0f:85:fa:fc:41:6a:88:a9:a3:3c:a4:f4:f5:c3:a8: 38:e3:ea:74:41:1d:b2:3f:28:30:77:b4:dd:c7:d5: e6:8f:17:7a:e8:c6:21:e2:bd:ee:78:cc:85:d8:eb: f7:6b:46:ed:45:65:21:19:70:1d:4c:10:3e:03:76: 90:d4:5f:76:c1:44:1d:43:d8:da:72:d9:49:63:3b: db:4e:0c:22:7c:d8:29:65:00:15:6d:fe:8e:22:11: ce:95:ac:c4:ed:9f:a9:65:ed:a4:a6:5a:e8:43:da: 99:91:c8:62:7f:43:bd:a6:27:f5:80:cb:bf:cf:30: 95:0a:e5:df:8b:55:79:be:45:4d:f2:1e:01:ec:7b: a2:de:71:c6:67:ea:67:bf:29:e2:90:e5:11:16:a5: 38:06:b8:d3:fd:c4:51:9f:27:5f:be:d0:bf:52:c6: 15:80:b7:4e:cc:59:eb:c1:1f:7e:d7:71:e4:6b:f8: bf:8d:39:8b:07:7c:ce:99:a0:54:19:7a:af:d1:6e: 01:64:db:54:c7:70:27:9f:05:31:47:3b:89:9f:c8: fa:08:30:a3:17:7c:c0:12:24:b6:e8:83:44:dd:df: d5:ff:b1:03:a3:91:f1:a6:17:b5:4c:de:6f:67:17: 08:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:FD:B2:85:DA:5E:F0:80:86:08:95:3C:3B:9F:D8:3E:0C:52:C9:A7 X509v3 Authority Key Identifier: keyid:54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:4d:a5:65:e1:5d:f7:cc:e9:71:4d:26:9e:b8:f5:44:04:c6: 3c:d1:da:6e:14:eb:52:53:0d:60:36:58:fd:23:95:fc:f6:a5: 83:45:26:65:8d:ad:21:c9:c7:ec:64:0a:a8:97:fb:28:f3:6a: 67:04:9a:e3:02:27:f1:97:c8:fb:92:88:e6:e4:70:dd:72:e9: cf:21:61:5e:23:69:31:16:6a:6c:8e:3c:22:e7:fd:ed:f9:e7: e8:f4:0b:bf:ca:4b:0f:66:94:e3:6e:a4:b9:1a:67:34:ae:92: ad:3d:37:1e:cc:1c:ec:18:df:f8:20:4f:78:1d:5a:1f:d9:7d: 05:7d:7a:10:db:22:5a:d1:00:1b:9b:95:69:b0:ee:70:92:58: a1:a3:d7:7b:61:a4:98:36:a2:6e:f2:33:64:51:2f:5f:61:2e: 92:9e:17:d8:fe:fd:22:e6:0c:14:0d:c0:91:4c:53:d0:da:0e: 02:b6:05:78:74:ce:9c:ed:1f:2e:ab:66:39:d6:f7:48:f7:3c: dc:0e:b5:87:c9:a6:05:5c:30:7e:a0:54:c7:07:8f:47:7e:6f: 3c:ec:c6:c1:47:51:a0:5d:97:ed:89:85:db:73:a1:37:73:f1: d1:a6:8c:c8:8f:86:4c:8d:41:cf:e8:0f:1f:63:4b:15:4c:6d: d3:4d:ec:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICChAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3QzExMTAvBgNVBAUTKDU0MDQ3RDI3Q0VGNzM0NkY0MTc1RUZBQzczNDQ5NEFE QkIwNTdCNTUwHhcNMjUxMDE4MjA1MTUxWhcNMjUxMDI1MjA1MTUxWjAYMRYwFAYD VQQDEw02OGYzZmRlOC04MTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBTB7tk+Rp5KH2bRQBMPhfr8QWqIqaM8pPT1w6g44+p0QR2yPygwd7Tdx9Xm jxd66MYh4r3ueMyF2Ov3a0btRWUhGXAdTBA+A3aQ1F92wUQdQ9jactlJYzvbTgwi fNgpZQAVbf6OIhHOlazE7Z+pZe2kplroQ9qZkchif0O9pif1gMu/zzCVCuXfi1V5 vkVN8h4B7Hui3nHGZ+pnvynikOURFqU4BrjT/cRRnydfvtC/UsYVgLdOzFnrwR9+ 13Hka/i/jTmLB3zOmaBUGXqv0W4BZNtUx3AnnwUxRzuJn8j6CDCjF3zAEiS26INE 3d/V/7EDo5Hxphe1TN5vZxcIswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIT9soXa XvCAhgiVPDuf2D4MUsmnMB8GA1UdIwQYMBaAFFQEfSfO9zRvQXXvrHNElK27BXtV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjdDMS81MzQ0NzJDQzgz QjkxMUVBODUyQTE1NzZDNEY5QUUwMi9WQVI5Sjg3M05HOUJkZS1zYzBTVXJic0Zl MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZBUjlKODczTkc5QmRlLXNjMFNVcmJzRmUxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjdDMS81MzQ0NzJDQzgzQjkxMUVBODUyQTE1NzZDNEY5QUUwMi9WQVI5Sjg3M05H OUJkZS1zYzBTVXJic0ZlMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfTaVl4V33zOlxTSaeuPVEBMY80dpuFOtSUw1gNlj9I5X89qWDRSZl ja0hycfsZAqol/so82pnBJrjAifxl8j7kojm5HDdcunPIWFeI2kxFmpsjjwi5/3t +efo9Au/yksPZpTjbqS5Gmc0rpKtPTcezBzsGN/4IE94HVof2X0FfXoQ2yJa0QAb m5VpsO5wkliho9d7YaSYNqJu8jNkUS9fYS6SnhfY/v0i5gwUDcCRTFPQ2g4CtgV4 dM6c7R8uq2Y51vdI9zzcDrWHyaYFXDB+oFTHB49Hfm887MbBR1GgXZftiYXbc6E3 c/HRpozIj4ZMjUHP6A8fY0sVTG3TTexp -----END CERTIFICATE-----Generated at Mon Oct 20 21:43:56 2025 by rpki-client