$ rpki-client -vvf rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft File: aq89m8Pfo6ElCCll2P8zuBKPKR8.mft (raw, json) Hash identifier: vnRdwAEVk59aqMMK3PQZlECuqoPYU27syz6eLySMcSk= Subject key identifier: FC:FE:24:B0:0C:8E:9C:A5:D3:68:C5:76:11:5F:67:C2:D9:9D:AD:E8 Authority key identifier: 6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F Certificate issuer: /CN=A91476E2/serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Certificate serial: 9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft Manifest number: 99 Signing time: Sun 19 Oct 2025 09:39:49 +0000 Manifest this update: Sun 19 Oct 2025 09:39:48 +0000 Manifest next update: Sun 26 Oct 2025 09:39:48 +0000 Files and hashes: 1: aq89m8Pfo6ElCCll2P8zuBKPKR8.crl (hash: FcYjNTHc007HGGng8wzU2HKScayxfL5E5XQR4eD+WO8=) 2: 79E40530CB5A11EFA1C64B62C4F9AE02.roa (hash: mbcELb6wZjeLG0BTxotv3DMO41EhI/vPgN4q1POwi8s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:39:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476E2, serialNumber=6AAF3D9BC3DFA3A125082965D8FF33B8128F291F Validity Not Before: Oct 19 09:39:48 2025 GMT Not After : Oct 26 09:39:48 2025 GMT Subject: CN=68f4b1e4-d10a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:52:c6:5f:9f:30:71:46:ee:51:a0:3b:ca:0f: 03:64:00:e6:2a:3b:87:ec:c0:df:94:e7:5a:aa:b1: 5b:c4:35:55:60:2b:a1:bf:1b:a3:cd:1d:36:13:d8: 56:de:13:8b:55:bf:7d:53:8c:ac:a8:44:c6:9c:9d: 0f:67:60:64:94:f3:29:e5:7a:77:70:f0:8d:2b:12: 87:a3:b1:d2:b1:c6:1f:fd:3b:64:56:b1:b6:6f:c6: eb:28:13:7a:ab:01:09:a9:62:4c:35:30:35:37:ea: 8b:cf:0e:11:4b:11:1a:e1:de:f9:61:4f:14:f8:fb: 63:c9:45:68:43:f3:29:ba:6e:c1:97:71:a9:fa:09: 4d:b6:60:d2:78:0f:33:ec:5d:15:2d:ae:b0:59:4b: 77:ed:2d:e0:3a:c6:89:c4:6d:23:00:22:9f:53:31: b3:eb:38:e4:aa:cb:1a:20:0d:41:da:7f:89:f4:91: 49:1c:62:ef:77:41:b2:c5:0e:42:8d:e2:56:b0:1d: 96:d6:1f:19:42:44:3c:fa:db:7a:86:e9:b4:27:32: a3:bb:fe:4a:60:2f:49:f8:ca:0f:95:d3:f4:da:a8: 25:a2:ec:9f:21:98:0a:7d:37:6d:16:93:2d:e0:03: c0:33:1d:72:f4:c3:21:c8:6d:eb:5b:45:6b:03:60: 6a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:FE:24:B0:0C:8E:9C:A5:D3:68:C5:76:11:5F:67:C2:D9:9D:AD:E8 X509v3 Authority Key Identifier: keyid:6A:AF:3D:9B:C3:DF:A3:A1:25:08:29:65:D8:FF:33:B8:12:8F:29:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aq89m8Pfo6ElCCll2P8zuBKPKR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476E2/3B541F20CB3D11EF8703F75AC4F9AE02/aq89m8Pfo6ElCCll2P8zuBKPKR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:6c:a8:66:48:78:f8:e7:9d:0a:96:3e:5d:0c:71:33:f1:c2: e8:c2:5d:74:aa:17:17:1b:86:6c:02:ed:31:7e:94:0e:47:3f: 5e:b8:2f:75:3a:ae:30:53:f8:9e:2d:d9:09:a7:b1:e5:46:ad: 55:2e:6a:9c:1e:60:3c:7b:19:ab:98:b2:c1:e5:68:34:cc:ad: 69:75:65:8c:b7:50:50:2b:c8:8b:3d:6c:a3:52:8c:5f:a5:e1: ac:37:2a:31:c4:cc:dc:8c:48:63:02:b2:65:5e:84:85:2c:2e: 4f:0d:3b:d8:fa:33:20:f9:26:ea:a5:2c:7d:c5:81:52:c1:e5: 32:e0:a6:86:f5:27:06:3f:de:a7:c5:27:31:23:22:ef:39:0c: 0d:79:ad:9f:b9:af:43:db:59:b5:34:82:cc:6e:ae:14:4d:18: 9e:62:e0:73:e4:5b:e3:4a:c9:cf:e8:c9:f8:c9:20:f3:96:ca: a4:cb:03:44:3b:21:d9:55:5d:f9:fd:11:6b:cc:1c:7d:54:08: 3e:09:f0:4b:09:9c:f7:61:ad:db:2b:8f:33:23:d3:77:37:56: 86:2d:0b:74:55:43:cb:b2:7d:ed:6b:b9:c9:c0:ea:60:a1:ad: 7f:14:f0:3d:6e:34:8c:af:68:d5:17:b9:82:ad:be:cc:52:a3: c1:73:a5:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc2RTIxMTAvBgNVBAUTKDZBQUYzRDlCQzNERkEzQTEyNTA4Mjk2NUQ4RkYzM0I4 MTI4RjI5MUYwHhcNMjUxMDE5MDkzOTQ4WhcNMjUxMDI2MDkzOTQ4WjAYMRYwFAYD VQQDEw02OGY0YjFlNC1kMTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulLGX58wcUbuUaA7yg8DZADmKjuH7MDflOdaqrFbxDVVYCuhvxujzR02E9hW 3hOLVb99U4ysqETGnJ0PZ2BklPMp5Xp3cPCNKxKHo7HSscYf/TtkVrG2b8brKBN6 qwEJqWJMNTA1N+qLzw4RSxEa4d75YU8U+PtjyUVoQ/Mpum7Bl3Gp+glNtmDSeA8z 7F0VLa6wWUt37S3gOsaJxG0jACKfUzGz6zjkqssaIA1B2n+J9JFJHGLvd0GyxQ5C jeJWsB2W1h8ZQkQ8+tt6hum0JzKju/5KYC9J+MoPldP02qglouyfIZgKfTdtFpMt 4APAMx1y9MMhyG3rW0VrA2Bq1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPz+JLAM jpyl02jFdhFfZ8LZna3oMB8GA1UdIwQYMBaAFGqvPZvD36OhJQgpZdj/M7gSjykf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzZFMi8zQjU0MUYyMENC M0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9hcTg5bThQZm82RWxDQ2xsMlA4enVCS1BL UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FxODltOFBmbzZFbENDbGwyUDh6dUJLUEtSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzZFMi8zQjU0MUYyMENCM0QxMUVGODcwM0Y3NUFDNEY5QUUwMi9hcTg5bThQZm82 RWxDQ2xsMlA4enVCS1BLUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsbKhmSHj4550Klj5dDHEz8cLowl10qhcXG4ZsAu0xfpQORz9euC91 Oq4wU/ieLdkJp7HlRq1VLmqcHmA8exmrmLLB5Wg0zK1pdWWMt1BQK8iLPWyjUoxf peGsNyoxxMzcjEhjArJlXoSFLC5PDTvY+jMg+SbqpSx9xYFSweUy4KaG9ScGP96n xScxIyLvOQwNea2fua9D21m1NILMbq4UTRieYuBz5FvjSsnP6Mn4ySDzlsqkywNE OyHZVV35/RFrzBx9VAg+CfBLCZz3Ya3bK48zI9N3N1aGLQt0VUPLsn3ta7nJwOpg oa1/FPA9bjSMr2jVF7mCrb7MUqPBc6Ux -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:56 2025 by rpki-client