$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft File: a9bIzoghkMgWnoE2ReDt2bdX6xk.mft (raw, json) Hash identifier: ngh86vdHhOUSUiYPK86e9xkOPRaukxP7pSFZ72Tyajs= Subject key identifier: DB:6E:E1:B0:FF:27:AF:5E:D1:ED:D2:41:8A:55:D6:72:C7:A6:C0:67 Authority key identifier: 6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 Certificate issuer: /CN=A91398E5/serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Certificate serial: 1758 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft Manifest number: 20DA Signing time: Sat 18 Oct 2025 17:00:21 +0000 Manifest this update: Sat 18 Oct 2025 17:00:21 +0000 Manifest next update: Sat 25 Oct 2025 17:00:21 +0000 Files and hashes: 1: a9bIzoghkMgWnoE2ReDt2bdX6xk.crl (hash: tJRENBjeaKQFtaYJ3mcpSMWK5kk4N0VSCkS5vikYjKQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5976 (0x1758) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=6BD6C8CE882190C8169E813645E0EDD9B757EB19 Validity Not Before: Oct 18 17:00:21 2025 GMT Not After : Oct 25 17:00:21 2025 GMT Subject: CN=68f3c7a5-b8f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:cb:75:35:e5:71:77:04:63:3b:2f:8d:95:5b: 4b:24:b9:57:4b:07:d7:e5:c3:15:1c:c7:db:18:11: 1b:7e:9b:a5:09:4a:d5:20:f0:15:37:fa:ec:8e:e7: 68:15:b0:c0:b9:db:14:0e:89:53:46:77:aa:f7:a6: 45:14:52:77:07:92:96:17:89:25:fc:f6:4c:aa:e6: dd:86:41:60:c9:8b:1b:df:29:2a:aa:99:67:a9:d9: 4d:e0:03:20:dd:c2:a0:d9:fc:5f:cb:bd:ec:43:ea: bd:4e:e2:4d:11:94:56:ae:76:2d:97:ee:c5:de:e0: 4c:10:5e:96:77:50:24:ca:f6:f6:14:55:df:4d:bf: 44:4b:9b:23:45:9c:68:c8:f3:03:3c:e2:72:9c:a6: 2d:43:1b:9e:50:94:e0:23:39:90:35:35:b9:57:ad: 69:69:0c:96:b5:e8:93:d6:77:82:a2:88:2d:50:18: 2b:18:30:19:ca:d2:9f:58:d6:3b:f9:07:ac:bf:68: c7:d0:c9:f3:ba:d6:ad:a3:e8:2e:d4:4f:3e:80:9b: 96:13:a9:b0:2e:72:09:b9:12:a1:2f:93:39:29:49: 4e:5b:1f:e1:2e:42:37:29:a3:5a:0f:69:cc:ea:9f: ec:1f:ee:de:be:42:4d:4e:d1:8b:b8:b1:aa:db:b7: 80:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:6E:E1:B0:FF:27:AF:5E:D1:ED:D2:41:8A:55:D6:72:C7:A6:C0:67 X509v3 Authority Key Identifier: keyid:6B:D6:C8:CE:88:21:90:C8:16:9E:81:36:45:E0:ED:D9:B7:57:EB:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9bIzoghkMgWnoE2ReDt2bdX6xk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/a9bIzoghkMgWnoE2ReDt2bdX6xk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:3a:7c:f2:8b:3f:a6:04:13:6e:c8:4a:02:d1:1f:5f:fd:fa: a2:7b:48:f7:0c:f2:85:55:ab:e3:e0:d7:d0:cc:b9:de:e9:92: a2:63:cc:5a:8f:69:76:d4:fc:6a:a6:97:ba:d4:63:55:43:1e: d9:81:0b:92:97:1d:31:f9:80:83:d0:95:9d:79:88:4c:61:9f: a9:62:9f:f1:dd:aa:fc:0b:ae:2f:09:88:9e:0e:65:02:d8:cf: e8:9f:6e:7a:96:96:fe:33:9a:b1:30:af:fa:ad:66:e3:79:99: dd:c6:b6:f9:73:2f:48:b9:38:03:52:c0:d8:e6:05:7d:2c:33: 1e:ca:c0:67:4c:32:a8:6d:ef:31:b6:67:9b:71:fc:72:7b:3a: 35:1d:02:fa:37:29:56:0a:08:58:f1:0d:57:3d:3a:11:8b:04: dd:89:09:be:57:8a:0b:34:f8:aa:eb:1b:08:6b:b4:32:97:64: ea:c8:bf:78:57:7a:ef:be:ec:a6:bc:7e:77:f1:07:b9:38:91: 77:c8:79:02:f0:b8:da:fe:13:28:ba:66:64:d8:f4:f9:81:54: 00:97:4a:0e:a5:44:da:45:d2:94:ab:ad:8d:0f:2a:f4:8c:71: d0:c9:9b:19:f4:5e:67:6c:5a:20:88:f2:ed:1d:2e:e0:37:7f: 09:57:c2:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKDZCRDZDOENFODgyMTkwQzgxNjlFODEzNjQ1RTBFREQ5 Qjc1N0VCMTkwHhcNMjUxMDE4MTcwMDIxWhcNMjUxMDI1MTcwMDIxWjAYMRYwFAYD VQQDEw02OGYzYzdhNS1iOGY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyct1NeVxdwRjOy+NlVtLJLlXSwfX5cMVHMfbGBEbfpulCUrVIPAVN/rsjudo FbDAudsUDolTRneq96ZFFFJ3B5KWF4kl/PZMqubdhkFgyYsb3ykqqplnqdlN4AMg 3cKg2fxfy73sQ+q9TuJNEZRWrnYtl+7F3uBMEF6Wd1Akyvb2FFXfTb9ES5sjRZxo yPMDPOJynKYtQxueUJTgIzmQNTW5V61paQyWteiT1neCoogtUBgrGDAZytKfWNY7 +Qesv2jH0Mnzutato+gu1E8+gJuWE6mwLnIJuRKhL5M5KUlOWx/hLkI3KaNaD2nM 6p/sH+7evkJNTtGLuLGq27eAOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtu4bD/ J69e0e3SQYpV1nLHpsBnMB8GA1UdIwQYMBaAFGvWyM6IIZDIFp6BNkXg7dm3V+sZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtNZ1dub0UyUmVEdDJiZFg2 eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5Ykl6b2doa01nV25vRTJSZUR0MmJkWDZ4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9hOWJJem9naGtN Z1dub0UyUmVEdDJiZFg2eGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAOnzyiz+mBBNuyEoC0R9f/fqie0j3DPKFVavj4NfQzLne6ZKiY8xa j2l21Pxqppe61GNVQx7ZgQuSlx0x+YCD0JWdeYhMYZ+pYp/x3ar8C64vCYieDmUC 2M/on256lpb+M5qxMK/6rWbjeZndxrb5cy9IuTgDUsDY5gV9LDMeysBnTDKobe8x tmebcfxyezo1HQL6NylWCghY8Q1XPToRiwTdiQm+V4oLNPiq6xsIa7Qyl2TqyL94 V3rvvuymvH538Qe5OJF3yHkC8Lja/hMoumZk2PT5gVQAl0oOpUTaRdKUq62NDyr0 jHHQyZsZ9F5nbFogiPLtHS7gN38JV8Ki -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:07 2025 by rpki-client