$ rpki-client -vvf rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft File: 91XB4Q_ErmiS0krLh4LX5cAEGLA.mft (raw, json) Hash identifier: TvVLuFVah7QQlZG3PsXNto/1oIoJ1fIMyoy9wcgdTgU= Subject key identifier: F2:A5:13:14:00:4A:45:4F:91:96:81:D4:31:D8:C8:E7:BD:26:A7:28 Authority key identifier: F7:55:C1:E1:0F:C4:AE:68:92:D2:4A:CB:87:82:D7:E5:C0:04:18:B0 Certificate issuer: /CN=A9136F59/serialNumber=F755C1E10FC4AE6892D24ACB8782D7E5C00418B0 Certificate serial: 02FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft Manifest number: 02F7 Signing time: Sun 19 Oct 2025 03:18:59 +0000 Manifest this update: Sun 19 Oct 2025 03:18:59 +0000 Manifest next update: Sun 26 Oct 2025 03:18:59 +0000 Files and hashes: 1: 91XB4Q_ErmiS0krLh4LX5cAEGLA.crl (hash: 8PfYqniT5L/d3/UcEsKUAptj7Lm73R1XI9nx5DTBD1E=) 2: ED0C111CF8F611ECB6DF8835C4F9AE02.roa (hash: 4DnB0bL3NG78Ric1Q/fKLIMkj23xQICVd02+1wJapuQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.crl rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:18:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 763 (0x2fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136F59, serialNumber=F755C1E10FC4AE6892D24ACB8782D7E5C00418B0 Validity Not Before: Oct 19 03:18:59 2025 GMT Not After : Oct 26 03:18:59 2025 GMT Subject: CN=68f458a3-a649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f9:32:1a:2c:f1:d7:cf:be:e8:a9:70:66:70: b7:a2:0a:03:a6:09:64:f5:4a:0e:7e:aa:70:40:13: 3e:91:84:47:50:73:85:77:0f:7c:aa:d0:ad:05:b4: 1c:a2:f4:7e:da:7c:c8:47:b7:c3:ac:01:52:4e:90: 68:52:f1:c5:60:4f:60:7a:8a:3e:fd:b3:22:39:03: 40:83:a1:38:1b:ad:08:92:a0:9d:1e:f8:0f:99:af: 4d:29:98:d2:ba:cb:20:0c:08:eb:94:42:08:c0:b8: b3:d4:1a:96:9f:c5:f2:fb:a4:b9:5e:4d:05:7e:0f: 1c:93:58:55:18:55:44:e8:2a:36:71:22:f2:af:0c: ee:b3:ad:18:96:e1:eb:37:cf:6d:9d:d2:7f:b5:b6: c6:dc:4b:52:e1:c8:b7:4a:70:95:d7:06:87:06:6f: b1:02:45:b2:ab:80:67:25:c8:b6:56:aa:20:2f:02: 23:a7:3e:fe:52:c5:88:ac:4f:37:5a:37:bd:52:c9: 54:80:52:66:f3:15:b4:24:96:e7:5e:00:b8:69:9f: 11:40:0c:b8:d6:76:ff:17:76:74:97:23:3c:88:77: b8:7b:4c:a0:0b:02:8c:f7:f5:43:04:4f:ea:ba:de: 8c:ae:66:fa:d6:fb:41:93:62:65:70:58:15:1f:6a: 7a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:A5:13:14:00:4A:45:4F:91:96:81:D4:31:D8:C8:E7:BD:26:A7:28 X509v3 Authority Key Identifier: keyid:F7:55:C1:E1:0F:C4:AE:68:92:D2:4A:CB:87:82:D7:E5:C0:04:18:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/91XB4Q_ErmiS0krLh4LX5cAEGLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136F59/5772AFBEF84F11ECA2923952C4F9AE02/91XB4Q_ErmiS0krLh4LX5cAEGLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:df:f9:2e:c2:ec:47:be:ab:91:de:2c:3e:bb:3d:51:4b:5c: d9:5a:2d:6a:62:44:51:02:d2:e5:ee:09:9d:a5:f3:24:ef:d3: a6:0f:b3:c8:66:ba:cf:70:13:e8:7e:1f:6a:c6:61:a5:d5:34: 50:49:d6:73:fb:e9:06:1c:63:3b:a6:78:9f:b4:02:8c:09:75: 78:85:60:a0:1a:25:ac:c4:49:5e:01:30:e2:f7:9d:3b:6b:0f: 8e:43:ed:38:7d:31:6d:5c:ba:3d:1d:89:1a:4b:82:fd:65:ba: 0f:3f:30:88:d2:74:88:7b:74:3b:54:7c:74:64:c9:64:14:65: c8:c8:73:7a:33:2b:76:87:a3:6d:d8:30:51:99:85:02:4c:fd: 02:6b:60:09:d5:b2:9c:72:95:f1:a3:ce:d9:d4:2a:3a:55:4a: 78:f6:c5:c1:53:29:62:6f:4d:3b:13:4e:57:01:36:dd:2a:36: de:df:17:41:51:24:27:ee:0d:b3:c2:c6:8f:41:87:f7:7a:e1: 28:82:80:3c:a9:3a:a2:0c:b3:20:e8:30:7f:a0:1f:48:fb:90: 65:42:d8:9e:c6:87:8f:20:d8:75:25:cc:41:8f:b0:92:f3:df: 8a:27:dc:ab:ef:7f:c4:ca:30:52:ed:c9:04:50:07:e1:29:8f: 9f:7b:d7:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAvswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZGNTkxMTAvBgNVBAUTKEY3NTVDMUUxMEZDNEFFNjg5MkQyNEFDQjg3ODJEN0U1 QzAwNDE4QjAwHhcNMjUxMDE5MDMxODU5WhcNMjUxMDI2MDMxODU5WjAYMRYwFAYD VQQDEw02OGY0NThhMy1hNjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvkyGizx18++6KlwZnC3ogoDpglk9UoOfqpwQBM+kYRHUHOFdw98qtCtBbQc ovR+2nzIR7fDrAFSTpBoUvHFYE9geoo+/bMiOQNAg6E4G60IkqCdHvgPma9NKZjS ussgDAjrlEIIwLiz1BqWn8Xy+6S5Xk0Ffg8ck1hVGFVE6Co2cSLyrwzus60YluHr N89tndJ/tbbG3EtS4ci3SnCV1waHBm+xAkWyq4BnJci2VqogLwIjpz7+UsWIrE83 Wje9UslUgFJm8xW0JJbnXgC4aZ8RQAy41nb/F3Z0lyM8iHe4e0ygCwKM9/VDBE/q ut6Mrmb61vtBk2JlcFgVH2p67wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPKlExQA SkVPkZaB1DHYyOe9JqcoMB8GA1UdIwQYMBaAFPdVweEPxK5oktJKy4eC1+XABBiw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkY1OS81NzcyQUZCRUY4 NEYxMUVDQTI5MjM5NTJDNEY5QUUwMi85MVhCNFFfRXJtaVMwa3JMaDRMWDVjQUVH TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkxWEI0UV9Fcm1pUzBrckxoNExYNWNBRUdMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NkY1OS81NzcyQUZCRUY4NEYxMUVDQTI5MjM5NTJDNEY5QUUwMi85MVhCNFFfRXJt aVMwa3JMaDRMWDVjQUVHTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR3/kuwuxHvquR3iw+uz1RS1zZWi1qYkRRAtLl7gmdpfMk79OmD7PI ZrrPcBPofh9qxmGl1TRQSdZz++kGHGM7pniftAKMCXV4hWCgGiWsxEleATDi9507 aw+OQ+04fTFtXLo9HYkaS4L9ZboPPzCI0nSIe3Q7VHx0ZMlkFGXIyHN6Myt2h6Nt 2DBRmYUCTP0Ca2AJ1bKccpXxo87Z1Co6VUp49sXBUylib007E05XATbdKjbe3xdB USQn7g2zwsaPQYf3euEogoA8qTqiDLMg6DB/oB9I+5BlQtiexoePINh1JcxBj7CS 89+KJ9yr73/EyjBS7ckEUAfhKY+fe9fv -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:37 2025 by rpki-client