$ rpki-client -vvf rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft File: C9q2CGF_PDGDxHD05hmyeV91w4k.mft (raw, json) Hash identifier: xBpBTY30fIy6fCp82VINzicYV9cuWJlOQjUNwTYzjII= Subject key identifier: 6D:CF:DF:1F:A4:35:9A:77:D4:4F:DA:67:68:31:2A:DC:B6:5B:5E:DB Authority key identifier: 0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 Certificate issuer: /CN=A91326B3/serialNumber=0BDAB608617F3C3183C470F4E619B2795F75C389 Certificate serial: 012F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft Manifest number: 012B Signing time: Sun 19 Oct 2025 07:28:53 +0000 Manifest this update: Sun 19 Oct 2025 07:28:52 +0000 Manifest next update: Sun 26 Oct 2025 07:28:52 +0000 Files and hashes: 1: C9q2CGF_PDGDxHD05hmyeV91w4k.crl (hash: Jq6XHEvwrVdNQj0NSGQLM1r2C4EgOYut2h18fgOPZ78=) 2: E3ABAA7AE69211EEB34D4B6AC4F9AE02.roa (hash: EyKD4I3R8YSy4asXY+8xvf07IP4owJwI772hb1AAhAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:28:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91326B3, serialNumber=0BDAB608617F3C3183C470F4E619B2795F75C389 Validity Not Before: Oct 19 07:28:52 2025 GMT Not After : Oct 26 07:28:52 2025 GMT Subject: CN=68f49334-2036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9a:b4:c0:b0:3f:98:dc:5b:27:71:e4:3e:64: f2:16:b5:8e:ce:8f:27:69:6b:85:03:99:55:a2:e6: 26:6d:77:be:58:06:1c:7f:c5:74:a9:31:04:86:0f: 27:80:1a:8d:f9:b9:41:5e:58:db:77:d4:fd:47:90: d5:b6:89:d8:7d:d2:2e:3f:57:7c:34:ee:6b:bb:16: af:2d:23:a5:98:7e:b9:a6:f6:d5:08:c0:29:65:72: c4:e7:7f:56:8f:bb:38:a9:a9:9f:29:84:b2:20:ab: ce:59:68:30:cc:97:b7:68:5d:59:93:c6:8b:6d:61: ca:03:c7:9a:a7:e7:9e:dd:57:38:12:7c:8c:59:08: 15:04:c9:37:5f:89:3b:e5:59:bf:c7:48:1f:77:4b: d6:c7:7e:9c:90:7f:c0:a7:f9:08:23:63:43:30:91: b3:90:a4:5d:91:70:4f:8f:2d:ea:9a:b0:a6:75:0e: 64:ec:45:64:eb:b6:a6:b5:18:d9:78:f0:c5:c8:b0: 66:42:55:db:40:34:b1:db:35:54:46:45:e1:5d:fa: bf:37:3c:a4:ad:e1:d8:d7:7b:f2:7b:83:c0:e7:30: a8:2a:9d:f8:84:1c:90:cc:04:8f:8c:46:9d:69:3f: 51:56:af:aa:7a:f6:30:29:3e:d2:7e:b5:1c:a0:f3: ae:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:CF:DF:1F:A4:35:9A:77:D4:4F:DA:67:68:31:2A:DC:B6:5B:5E:DB X509v3 Authority Key Identifier: keyid:0B:DA:B6:08:61:7F:3C:31:83:C4:70:F4:E6:19:B2:79:5F:75:C3:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/C9q2CGF_PDGDxHD05hmyeV91w4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91326B3/C55423AAE69111EEBF058932C4F9AE02/C9q2CGF_PDGDxHD05hmyeV91w4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:c6:e2:3c:4a:fe:fb:ad:1c:8f:27:ca:4f:d4:7a:ea:dd:26: 70:78:b4:1e:03:4d:60:c5:b0:cb:0c:00:d6:7a:64:18:64:6d: 62:28:ba:23:df:13:d3:ae:17:09:46:63:6b:a4:99:24:26:38: c1:75:b4:24:d1:2c:51:c0:82:9d:a0:71:a6:02:a4:e6:a4:84: c3:87:f5:3d:e1:d2:72:b0:e8:a4:f3:bb:ce:4e:52:94:a3:45: 04:0b:17:6b:60:d1:84:8b:3f:5c:41:62:1c:cd:b0:55:5d:63: 8b:8b:b1:c6:d3:c6:8f:fd:38:d7:ae:d7:64:26:4b:b9:3a:4f: 48:60:d9:83:f6:09:c3:48:da:29:a4:6e:ad:67:35:06:ab:7f: 5f:2c:c2:c5:8d:76:84:9a:a3:c4:67:24:a0:ab:35:ca:c5:97: 75:33:84:8a:7d:7a:c4:6b:6e:39:27:c8:b4:f1:28:2b:0f:bf: 26:7a:9e:42:4c:a5:92:f9:f0:9f:76:34:ac:06:cd:5e:48:27: a5:e7:e4:87:f4:0a:9c:84:cf:eb:8f:48:22:14:68:f8:62:7c: 04:ec:05:5f:0a:cb:af:ad:3b:8c:55:c0:c8:87:5c:1b:ee:f0: ac:57:91:97:3b:91:1d:dc:1c:da:74:4f:44:26:c7:d6:44:31: 8d:8f:79:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI2QjMxMTAvBgNVBAUTKDBCREFCNjA4NjE3RjNDMzE4M0M0NzBGNEU2MTlCMjc5 NUY3NUMzODkwHhcNMjUxMDE5MDcyODUyWhcNMjUxMDI2MDcyODUyWjAYMRYwFAYD VQQDEw02OGY0OTMzNC0yMDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZq0wLA/mNxbJ3HkPmTyFrWOzo8naWuFA5lVouYmbXe+WAYcf8V0qTEEhg8n gBqN+blBXljbd9T9R5DVtonYfdIuP1d8NO5ruxavLSOlmH65pvbVCMApZXLE539W j7s4qamfKYSyIKvOWWgwzJe3aF1Zk8aLbWHKA8eap+ee3Vc4EnyMWQgVBMk3X4k7 5Vm/x0gfd0vWx36ckH/Ap/kII2NDMJGzkKRdkXBPjy3qmrCmdQ5k7EVk67amtRjZ ePDFyLBmQlXbQDSx2zVURkXhXfq/NzykreHY13vye4PA5zCoKp34hByQzASPjEad aT9RVq+qevYwKT7SfrUcoPOuCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3P3x+k NZp31E/aZ2gxKty2W17bMB8GA1UdIwQYMBaAFAvatghhfzwxg8Rw9OYZsnlfdcOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjZCMy9DNTU0MjNBQUU2 OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9DOXEyQ0dGX1BER0R4SEQwNWhteWVWOTF3 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0M5cTJDR0ZfUERHRHhIRDA1aG15ZVY5MXc0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjZCMy9DNTU0MjNBQUU2OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9DOXEyQ0dGX1BE R0R4SEQwNWhteWVWOTF3NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzxuI8Sv77rRyPJ8pP1Hrq3SZweLQeA01gxbDLDADWemQYZG1iKLoj 3xPTrhcJRmNrpJkkJjjBdbQk0SxRwIKdoHGmAqTmpITDh/U94dJysOik87vOTlKU o0UECxdrYNGEiz9cQWIczbBVXWOLi7HG08aP/TjXrtdkJku5Ok9IYNmD9gnDSNop pG6tZzUGq39fLMLFjXaEmqPEZySgqzXKxZd1M4SKfXrEa245J8i08SgrD78mep5C TKWS+fCfdjSsBs1eSCel5+SH9AqchM/rj0giFGj4YnwE7AVfCsuvrTuMVcDIh1wb 7vCsV5GXO5Ed3BzadE9EJsfWRDGNj3kO -----END CERTIFICATE-----Generated at Tue Oct 21 02:26:01 2025 by rpki-client