$ rpki-client -vvf rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft File: 0nYmctKXWA5IQijBceWokHMMF28.mft (raw, json) Hash identifier: hZywlFGZeI7E8MhHRwKeqeiXDqJ8do8DNCNFvjkhXag= Subject key identifier: 38:05:42:83:46:B8:A1:37:88:A9:66:25:3F:36:E1:16:92:54:7A:29 Authority key identifier: D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F Certificate issuer: /CN=A91724A6/serialNumber=D2762672D297580E484228C171E5A890730C176F Certificate serial: 01ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft Manifest number: 01E9 Signing time: Sun 19 Oct 2025 05:01:35 +0000 Manifest this update: Sun 19 Oct 2025 05:01:34 +0000 Manifest next update: Sun 26 Oct 2025 05:01:34 +0000 Files and hashes: 1: 0nYmctKXWA5IQijBceWokHMMF28.crl (hash: 6N2yzhNJ0Rt1VNbbTTUJ4sRmaYwb581yM9EWk09kICQ=) 2: 950A55CCC3C711ED8419AA64C4F9AE02.roa (hash: GrQm9NlurYpVLIwLedH2/MNa+h8258HeOnrxmNS0v54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:01:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91724A6, serialNumber=D2762672D297580E484228C171E5A890730C176F Validity Not Before: Oct 19 05:01:34 2025 GMT Not After : Oct 26 05:01:34 2025 GMT Subject: CN=68f470af-ef0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c8:65:0e:d7:94:d2:bc:eb:3b:e0:e7:ba:6e: f0:5c:a1:5c:e5:ac:1c:fb:ea:ed:77:15:6c:a1:7d: d4:c9:05:68:61:ad:9e:b5:c2:23:f5:f6:7b:37:e7: 4d:82:88:4f:c5:49:9c:8a:4d:a8:5c:c7:6c:f3:ce: 17:37:10:b0:9a:61:1c:5b:07:ef:6a:f2:eb:b5:cb: 1b:b9:32:8a:23:8b:0f:29:82:2c:55:1f:a2:02:76: 63:50:78:0c:d6:23:83:95:0f:48:5b:b4:57:fe:52: 8d:8e:c7:9a:fb:c6:01:9b:9b:26:84:ad:a7:73:9b: 8e:0c:89:ea:d7:a6:52:56:82:12:6d:17:50:96:54: d6:fc:d0:d6:ac:6f:c4:e3:0f:a2:3f:8d:c2:91:bc: 4a:be:8f:30:d5:50:b6:26:76:ba:36:3d:b2:37:86: 4a:74:43:63:46:7b:a5:69:2f:27:24:93:4e:9e:42: 93:c7:1c:ba:a0:9a:9d:3c:f7:3b:f8:cf:f7:bb:4e: f9:0e:c3:0b:ea:5a:93:fb:cb:3d:c6:e4:96:80:16: af:5b:83:ee:e6:0b:24:8b:b9:74:61:5c:54:22:c9: 6f:fb:28:6a:48:15:c8:26:46:37:4c:d6:59:20:93: a0:19:4a:d1:4f:2d:17:56:7a:32:6a:55:61:5f:16: d6:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:05:42:83:46:B8:A1:37:88:A9:66:25:3F:36:E1:16:92:54:7A:29 X509v3 Authority Key Identifier: keyid:D2:76:26:72:D2:97:58:0E:48:42:28:C1:71:E5:A8:90:73:0C:17:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0nYmctKXWA5IQijBceWokHMMF28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91724A6/18E5D484C3C311EDAA5ACB47C4F9AE02/0nYmctKXWA5IQijBceWokHMMF28.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:b5:1e:40:78:cb:bd:74:c1:a1:e4:a7:dc:a2:48:48:c0:e4: 9e:26:1e:6b:e9:46:f9:bb:e4:4d:df:5a:d4:cc:f6:58:ba:56: 2b:54:85:98:2a:e3:72:26:44:46:d7:ed:cb:00:67:2e:83:b0: 0c:c1:51:30:ac:dd:7e:5d:04:dd:8e:14:11:af:f1:00:a4:1a: cd:f5:d0:f6:06:8c:13:0d:72:11:08:1d:3c:0c:37:be:da:c1: 62:5e:26:8f:eb:fa:a9:9b:34:4b:15:04:c1:75:17:dc:dd:d3: 7a:35:ce:e3:35:d3:d4:2b:29:b2:b0:06:0e:b5:5d:34:67:2b: 2a:09:f7:da:29:42:9a:9a:8f:57:ac:a1:dc:87:de:fe:06:dc: ca:da:ef:27:08:94:04:7e:99:fe:ab:b2:5c:35:5e:d8:c4:99: 92:89:ce:fa:6d:02:46:79:f4:4b:98:30:0f:c0:27:85:52:04: 2f:42:a7:8f:5a:bc:36:44:6f:da:fa:6f:df:6c:b6:9c:c6:16: b5:22:1a:cc:85:68:f2:57:79:0c:0b:5f:3b:e5:e1:ad:f8:c9: 45:86:7f:bb:50:a9:72:4d:7b:38:41:ec:ea:17:f0:32:10:ce: d4:b1:29:ad:bd:be:40:45:c1:ee:28:a5:7c:29:6e:8e:c4:d9: 70:9e:e2:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI0QTYxMTAvBgNVBAUTKEQyNzYyNjcyRDI5NzU4MEU0ODQyMjhDMTcxRTVBODkw NzMwQzE3NkYwHhcNMjUxMDE5MDUwMTM0WhcNMjUxMDI2MDUwMTM0WjAYMRYwFAYD VQQDEw02OGY0NzBhZi1lZjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8hlDteU0rzrO+Dnum7wXKFc5awc++rtdxVsoX3UyQVoYa2etcIj9fZ7N+dN gohPxUmcik2oXMds884XNxCwmmEcWwfvavLrtcsbuTKKI4sPKYIsVR+iAnZjUHgM 1iODlQ9IW7RX/lKNjsea+8YBm5smhK2nc5uODInq16ZSVoISbRdQllTW/NDWrG/E 4w+iP43CkbxKvo8w1VC2Jna6Nj2yN4ZKdENjRnulaS8nJJNOnkKTxxy6oJqdPPc7 +M/3u075DsML6lqT+8s9xuSWgBavW4Pu5gski7l0YVxUIslv+yhqSBXIJkY3TNZZ IJOgGUrRTy0XVnoyalVhXxbWJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgFQoNG uKE3iKlmJT824RaSVHopMB8GA1UdIwQYMBaAFNJ2JnLSl1gOSEIowXHlqJBzDBdv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjRBNi8xOEU1RDQ4NEMz QzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdBNUlRaWpCY2VXb2tITU1G MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBuWW1jdEtYV0E1SVFpakJjZVdva0hNTUYyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjRBNi8xOEU1RDQ4NEMzQzMxMUVEQUE1QUNCNDdDNEY5QUUwMi8wblltY3RLWFdB NUlRaWpCY2VXb2tITU1GMjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAstR5AeMu9dMGh5KfcokhIwOSeJh5r6Ub5u+RN31rUzPZYulYrVIWY KuNyJkRG1+3LAGcug7AMwVEwrN1+XQTdjhQRr/EApBrN9dD2BowTDXIRCB08DDe+ 2sFiXiaP6/qpmzRLFQTBdRfc3dN6Nc7jNdPUKymysAYOtV00ZysqCffaKUKamo9X rKHch97+BtzK2u8nCJQEfpn+q7JcNV7YxJmSic76bQJGefRLmDAPwCeFUgQvQqeP Wrw2RG/a+m/fbLacxha1IhrMhWjyV3kMC1875eGt+MlFhn+7UKlyTXs4QezqF/Ay EM7UsSmtvb5ARcHuKKV8KW6OxNlwnuJq -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:09 2025 by rpki-client