$ rpki-client -vvf rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft File: FKbKvDAuwePc503pi_VYoEK-rFY.mft (raw, json) Hash identifier: XyCJiwxSWR4vuvEhfLVmZ8JanGdD/vRsGgaRuYvn+dM= Subject key identifier: E6:CF:CB:67:F3:EE:49:29:54:6D:82:98:44:99:40:39:3D:39:E5:0C Authority key identifier: 14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 Certificate issuer: /CN=A91409DC/serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Certificate serial: 08AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft Manifest number: 1509 Signing time: Sat 18 Oct 2025 19:13:07 +0000 Manifest this update: Sat 18 Oct 2025 19:13:06 +0000 Manifest next update: Sat 25 Oct 2025 19:13:06 +0000 Files and hashes: 1: FKbKvDAuwePc503pi_VYoEK-rFY.crl (hash: 15W+0HsPmbJzdvCrMEDvmmSMcABSwfcHeQB8CkyKo+Q=) 2: DB78B2684BCD11EE8F976B7EC4F9AE02.roa (hash: LJOeHyhGq5PPmm1YdhMXahy2BlMK+uuqLBs6e3cOua4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:13:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2220 (0x8ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91409DC, serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Validity Not Before: Oct 18 19:13:06 2025 GMT Not After : Oct 25 19:13:06 2025 GMT Subject: CN=68f3e6c3-ec08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:14:f4:8f:d5:e9:1f:e7:9b:13:e6:67:26:20: 35:68:59:78:58:c9:eb:36:83:5a:49:a1:2c:ed:51: 7d:0b:9f:83:95:17:0b:6c:ad:3f:5b:d2:3e:67:96: 4b:d5:7f:b3:2f:35:7c:80:d5:30:39:74:8e:73:5c: e3:db:1c:e1:4f:3f:6f:2d:d3:b9:f9:75:4f:7b:dd: 2b:96:20:99:81:25:75:2f:12:13:21:c1:d7:71:d6: 25:31:b3:1d:d2:6d:d6:65:b0:a8:5d:69:0f:f4:86: 7b:5a:9f:11:49:79:30:50:ca:9e:33:cc:7d:00:3d: ed:77:7d:6a:69:be:45:b2:97:e6:8b:10:f9:c3:3a: 90:69:f0:d8:4c:d3:1e:f8:74:67:0b:3e:49:9b:92: 64:59:37:0c:1d:b0:c8:9d:e1:e3:17:93:71:5c:6c: 46:0a:2b:46:9f:84:be:65:9a:2c:25:19:98:37:1c: c0:84:eb:23:72:63:6e:79:80:c9:f6:8f:9c:9a:72: 8e:6b:b4:c9:54:b7:93:a8:62:7a:96:5e:70:49:a7: 24:6c:4a:9f:45:67:56:75:32:de:ae:c9:75:b2:b0: 62:aa:62:ef:2b:4b:f4:f1:bb:87:50:29:00:13:ea: 0e:07:70:07:fa:16:89:0a:56:fe:bf:fd:e5:cf:9a: 0f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:CF:CB:67:F3:EE:49:29:54:6D:82:98:44:99:40:39:3D:39:E5:0C X509v3 Authority Key Identifier: keyid:14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:66:e8:49:85:f4:e8:ef:ba:cc:b1:6c:4b:07:bf:33:47:81: 5d:6c:ac:53:96:9f:4a:16:00:5e:03:5a:b8:90:0d:c8:7c:6f: 77:5e:16:0a:3f:c8:91:4d:5e:2f:56:cb:31:3f:cc:3d:3e:08: 47:6c:3a:f1:1a:d8:bb:47:32:a1:25:de:96:f7:fd:1e:e5:53: 95:d2:bf:89:e3:2e:8e:45:49:50:74:07:73:88:c7:9d:b8:ef: f4:26:16:d9:b4:23:78:82:3b:68:a9:3f:33:97:1b:70:d7:52: f5:ef:05:a6:01:53:59:10:c7:f2:79:39:8e:bf:2f:65:94:bc: bd:0e:ca:5d:8c:87:4b:bb:d4:e1:76:6f:64:37:79:12:09:59: 37:a8:a8:e6:07:ec:97:ae:8a:35:54:af:b0:cb:f8:53:fb:c2: ef:1c:c5:5e:66:3a:26:8d:b0:ec:b1:32:f4:c5:be:b0:a6:69: 8c:51:95:79:d1:18:03:70:29:06:d5:54:c0:b6:32:2d:1d:3c: 15:1e:62:c9:c9:b5:d5:1a:2b:aa:c8:14:76:6e:fe:49:a4:72: 84:b4:11:42:71:f6:48:d7:4b:21:58:fc:4d:c0:df:bb:0a:08: 35:81:29:34:08:64:44:6e:da:8d:31:e4:10:87:a0:14:ce:22: e0:3a:02:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA5REMxMTAvBgNVBAUTKDE0QTZDQUJDMzAyRUMxRTNEQ0U3NERFOThCRjU1OEEw NDJCRUFDNTYwHhcNMjUxMDE4MTkxMzA2WhcNMjUxMDI1MTkxMzA2WjAYMRYwFAYD VQQDEw02OGYzZTZjMy1lYzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xT0j9XpH+ebE+ZnJiA1aFl4WMnrNoNaSaEs7VF9C5+DlRcLbK0/W9I+Z5ZL 1X+zLzV8gNUwOXSOc1zj2xzhTz9vLdO5+XVPe90rliCZgSV1LxITIcHXcdYlMbMd 0m3WZbCoXWkP9IZ7Wp8RSXkwUMqeM8x9AD3td31qab5FspfmixD5wzqQafDYTNMe +HRnCz5Jm5JkWTcMHbDIneHjF5NxXGxGCitGn4S+ZZosJRmYNxzAhOsjcmNueYDJ 9o+cmnKOa7TJVLeTqGJ6ll5wSackbEqfRWdWdTLersl1srBiqmLvK0v08buHUCkA E+oOB3AH+haJClb+v/3lz5oPIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFObPy2fz 7kkpVG2CmESZQDk9OeUMMB8GA1UdIwQYMBaAFBSmyrwwLsHj3OdN6Yv1WKBCvqxW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDlEQy9BNUJCRkFBNjA5 MzUxMUVBQUIxMEM5MUZDNEY5QUUwMi9GS2JLdkRBdXdlUGM1MDNwaV9WWW9FSy1y RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZLYkt2REF1d2VQYzUwM3BpX1ZZb0VLLXJGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MDlEQy9BNUJCRkFBNjA5MzUxMUVBQUIxMEM5MUZDNEY5QUUwMi9GS2JLdkRBdXdl UGM1MDNwaV9WWW9FSy1yRlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQZuhJhfTo77rMsWxLB78zR4FdbKxTlp9KFgBeA1q4kA3IfG93XhYK P8iRTV4vVssxP8w9PghHbDrxGti7RzKhJd6W9/0e5VOV0r+J4y6ORUlQdAdziMed uO/0JhbZtCN4gjtoqT8zlxtw11L17wWmAVNZEMfyeTmOvy9llLy9DspdjIdLu9Th dm9kN3kSCVk3qKjmB+yXroo1VK+wy/hT+8LvHMVeZjomjbDssTL0xb6wpmmMUZV5 0RgDcCkG1VTAtjItHTwVHmLJybXVGiuqyBR2bv5JpHKEtBFCcfZI10shWPxNwN+7 Cgg1gSk0CGREbtqNMeQQh6AUziLgOgL7 -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:11 2025 by rpki-client