$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: bs5Pk3sgiIXjH64yd2xx0KpFY0ppXEQ0hSm9qMKJRHM= Subject key identifier: ED:2A:CF:47:A7:C6:89:D9:33:96:94:DF:9C:6B:B7:3C:B2:92:A1:07 Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: 0100 Signing time: Sun 19 Oct 2025 08:02:50 +0000 Manifest this update: Sun 19 Oct 2025 08:02:49 +0000 Manifest next update: Sun 26 Oct 2025 08:02:49 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: v8Ac9RbUgmTt0VgfENwjbId5gsRVLZcwm/eP6hdWSyY=) 2: 879152E62E4811EF929FE162C4F9AE02.roa (hash: cr46hMBXMjVoUuUCIeS55LaT84JtFcqvVMAfnbq95f8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:02:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Oct 19 08:02:49 2025 GMT Not After : Oct 26 08:02:49 2025 GMT Subject: CN=68f49b29-3d70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8a:b4:74:50:00:31:71:55:d3:2c:c2:9b:12: b1:20:6c:2e:d9:45:4b:70:87:33:33:f7:a0:51:73: 5b:2c:d9:4d:1d:e8:c8:d3:8e:af:e1:b1:25:98:a9: b0:08:72:7a:1d:7e:ad:b9:f6:12:2f:5d:a0:b2:01: 94:14:1f:aa:af:48:f2:ac:b3:3c:5d:e5:31:a5:68: 3d:0d:4b:f9:ff:a3:ae:47:c1:d8:f2:40:31:f6:a7: 77:79:47:f0:ea:13:59:8b:03:21:df:75:95:93:17: 58:bb:74:1e:d6:e1:10:4a:36:d1:7d:28:b1:e8:92: 8b:26:79:80:b9:84:13:6b:01:07:ef:16:fa:00:17: 8b:4d:8a:92:9b:cd:e6:05:aa:67:ed:8a:32:20:67: 50:e3:4c:c5:e6:d2:1f:82:8d:69:db:a3:b9:4c:bb: f8:c2:11:ee:eb:8b:cd:fa:30:a9:ae:69:a8:b2:dc: d1:cf:4a:dc:6a:20:a6:52:e1:64:72:c8:4c:6c:ce: 69:04:d9:ce:47:ef:ce:11:c9:0d:50:17:f2:ca:64: a7:30:1b:7b:64:f8:b9:83:33:c4:19:0b:46:e3:ae: c5:f4:f9:30:95:01:1b:03:e0:5f:b7:b9:2f:5b:9c: 4a:12:e0:e0:70:54:6c:eb:ce:c9:c8:35:f2:b8:44: 33:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:2A:CF:47:A7:C6:89:D9:33:96:94:DF:9C:6B:B7:3C:B2:92:A1:07 X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:14:5c:7b:a4:25:d5:4a:48:51:ed:77:c1:f4:c6:fe:55:c5: 72:0f:32:20:29:7c:6d:17:76:f7:a8:e4:83:a0:09:98:97:30: 7b:eb:c4:7d:a0:dd:53:e0:c0:78:ca:c6:4a:91:22:b5:c0:ce: f3:21:15:e0:c8:e6:00:6b:6e:fc:c8:83:d9:02:31:a3:41:d2: b7:6b:46:be:43:92:28:0e:9b:80:71:67:2c:d7:95:d8:e2:b1: 15:99:40:27:e0:37:a6:b3:fd:7f:84:62:38:41:69:bc:c3:b7: c8:96:ec:e7:d6:04:af:6d:da:92:f8:a1:cd:02:f6:29:49:15: e9:91:f1:63:e7:51:0a:c3:21:98:34:f3:b1:d6:e7:1b:81:d8: 7c:4e:03:38:6d:e0:8f:e6:64:2d:aa:92:07:3d:11:a9:ce:95: ca:9f:63:02:45:aa:02:1d:3a:46:3b:78:da:8b:1f:2a:a4:37: e7:84:94:c7:9a:03:57:3e:23:65:72:7c:dc:71:b0:42:15:3d: 73:7a:da:e9:21:55:25:f1:d5:71:41:e5:a7:7a:5a:7c:dd:fd: 19:06:7f:6a:5f:8a:f3:44:33:c8:dd:c5:2b:88:6b:49:7e:f5: 7d:5d:37:7f:eb:07:2c:99:55:c8:ff:63:28:aa:e5:2a:f3:47: 9e:bf:f1:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKDkwOERCM0Y5Qjc0NkY1MjBCQkI5QTg0Qzg1M0Y2OTI2 QzE1RUI5QkQwHhcNMjUxMDE5MDgwMjQ5WhcNMjUxMDI2MDgwMjQ5WjAYMRYwFAYD VQQDEw02OGY0OWIyOS0zZDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuIq0dFAAMXFV0yzCmxKxIGwu2UVLcIczM/egUXNbLNlNHejI046v4bElmKmw CHJ6HX6tufYSL12gsgGUFB+qr0jyrLM8XeUxpWg9DUv5/6OuR8HY8kAx9qd3eUfw 6hNZiwMh33WVkxdYu3Qe1uEQSjbRfSix6JKLJnmAuYQTawEH7xb6ABeLTYqSm83m Bapn7YoyIGdQ40zF5tIfgo1p26O5TLv4whHu64vN+jCprmmostzRz0rcaiCmUuFk cshMbM5pBNnOR+/OEckNUBfyymSnMBt7ZPi5gzPEGQtG467F9PkwlQEbA+Bft7kv W5xKEuDgcFRs687JyDXyuEQzPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO0qz0en xonZM5aU35xrtzyykqEHMB8GA1UdIwQYMBaAFJCNs/m3RvUgu7moTIU/aSbBXrm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8yMDlFRERDRTJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlTQzd1YWhNaFQ5cEpzRmV1 YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXViMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTkwOS8yMDlFRERDRTJBMzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlT Qzd1YWhNaFQ5cEpzRmV1YjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/FFx7pCXVSkhR7XfB9Mb+VcVyDzIgKXxtF3b3qOSDoAmYlzB768R9 oN1T4MB4ysZKkSK1wM7zIRXgyOYAa278yIPZAjGjQdK3a0a+Q5IoDpuAcWcs15XY 4rEVmUAn4Dems/1/hGI4QWm8w7fIluzn1gSvbdqS+KHNAvYpSRXpkfFj51EKwyGY NPOx1ucbgdh8TgM4beCP5mQtqpIHPRGpzpXKn2MCRaoCHTpGO3jaix8qpDfnhJTH mgNXPiNlcnzccbBCFT1zetrpIVUl8dVxQeWnelp83f0ZBn9qX4rzRDPI3cUriGtJ fvV9XTd/6wcsmVXI/2MoquUq80eev/EZ -----END CERTIFICATE-----Generated at Mon Oct 20 16:14:30 2025 by rpki-client