$ rpki-client -vvf rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft File: 509GTECGWe0lidtmTOjvamxgDEc.mft (raw, json) Hash identifier: NeLw2n6vIjuB+LUZmifVhEdyWE5izsfCaGvGMhxYDl8= Subject key identifier: 1E:6B:97:35:04:A7:DA:20:0C:13:2B:9D:CD:71:E2:26:13:FB:2D:3C Authority key identifier: E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 Certificate issuer: /CN=A91A06F2/serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Certificate serial: 0B74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft Manifest number: 0B67 Signing time: Sat 18 Oct 2025 19:59:16 +0000 Manifest this update: Sat 18 Oct 2025 19:59:16 +0000 Manifest next update: Sat 25 Oct 2025 19:59:16 +0000 Files and hashes: 1: 509GTECGWe0lidtmTOjvamxgDEc.crl (hash: SiQzR7H2mMTlbrzHisK9t9bWT5v1vvSjWYfNjQG7CbE=) 2: 3BFE8CEC3F4911EAA91D9A7FC4F9AE02.roa (hash: PAA4OxtlazOKwYLjk6aLytCy9NItnRL8j4f8o3mJBHg=) 3: 8B37D2C40D2511EFA2E4D985C4F9AE02.roa (hash: a+Zi9iESugqvqoTYb4WkQmUuVNUV8p+uqNbSEtnaZ8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:59:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2932 (0xb74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A06F2, serialNumber=E74F464C408659ED2589DB664CE8EF6A6C600C47 Validity Not Before: Oct 18 19:59:16 2025 GMT Not After : Oct 25 19:59:16 2025 GMT Subject: CN=68f3f194-02ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:07:2f:9b:6c:2e:fe:6b:e7:5b:99:a1:d2:a6: b8:d8:2b:21:6d:ad:99:30:ad:b9:38:41:a4:a4:f3: 29:7d:7b:1c:4c:21:ee:f1:b0:9e:e6:bc:b3:b9:1e: 28:99:8e:0e:94:84:af:57:93:80:d4:24:d0:5c:78: 42:bb:8b:4d:43:c2:a6:aa:5c:04:60:1d:56:fa:02: 1e:44:f7:b3:67:e2:94:7a:55:d4:1d:8a:3a:8f:f5: 60:4d:bb:24:ea:95:8b:57:1a:52:ff:d4:40:8b:8c: 1a:a0:9b:79:6b:7d:87:3b:9a:5d:32:77:4e:a6:11: e2:6c:87:07:30:94:7f:f8:bd:2a:b1:58:a9:a2:31: ca:89:32:ec:00:c5:27:93:5e:dc:41:b5:4b:47:e8: 7f:c3:ab:09:5f:28:1d:67:d1:80:34:5c:46:1d:ac: 09:83:d0:b5:ab:8c:fb:80:2c:ca:d3:dd:35:3c:4d: a6:88:3c:4a:68:b7:0c:19:9b:1a:68:56:1f:8b:e8: 8f:6d:99:5a:b1:09:48:ea:f1:cf:80:68:db:dc:61: ae:73:22:a7:8e:cb:ee:09:ca:2c:6e:5e:e7:94:66: 67:36:b6:e2:17:df:c8:3a:36:1c:fb:b5:79:0c:2e: a2:ea:2b:09:17:af:e1:a9:77:b5:bb:1c:f4:13:08: 7d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:6B:97:35:04:A7:DA:20:0C:13:2B:9D:CD:71:E2:26:13:FB:2D:3C X509v3 Authority Key Identifier: keyid:E7:4F:46:4C:40:86:59:ED:25:89:DB:66:4C:E8:EF:6A:6C:60:0C:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/509GTECGWe0lidtmTOjvamxgDEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A06F2/8B8C4DD23F4711EA8E5DA87CC4F9AE02/509GTECGWe0lidtmTOjvamxgDEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:40:5f:d1:a9:13:b0:13:89:c1:09:49:b2:96:06:e3:2c:f2: 54:59:75:df:23:03:f8:83:22:14:de:ec:fc:f0:50:b5:c8:df: 07:4c:db:f4:19:a6:1d:0d:e8:a8:f2:53:1e:2b:de:aa:a1:c7: 2a:4d:ed:c8:e7:2a:46:9b:e4:f9:ff:e7:54:11:43:3c:5a:ab: 2b:49:9e:f1:97:96:45:b1:90:86:bd:98:3d:68:1d:08:15:b4: d9:9c:29:47:7b:ad:53:63:1f:9c:2e:64:c2:a0:85:96:8a:1d: 2c:ff:2c:2d:5e:e0:2f:28:f7:3f:30:52:59:44:e1:2e:b7:11: 40:f8:53:41:cb:ac:fb:ca:60:28:84:17:f2:a7:46:d9:97:95: 6e:97:fb:bd:b0:ad:b0:d5:0d:f0:0f:9a:d6:d7:63:ae:97:c8: 0a:bd:17:80:e5:15:88:d1:6e:77:72:9e:73:a1:b0:b0:6c:9e: f1:a1:41:14:59:0c:e5:57:07:b8:72:01:db:b8:c1:5b:5a:4a: 92:11:5d:bf:f4:7c:df:98:4e:82:1d:91:4e:8c:2b:9c:df:f5: 97:6f:35:d9:95:57:e2:b6:7d:ec:cd:73:8f:38:e4:bf:41:1c: e8:57:8a:bb:9b:ca:72:92:da:76:ca:b3:63:e8:bd:75:11:e4: be:5f:65:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA2RjIxMTAvBgNVBAUTKEU3NEY0NjRDNDA4NjU5RUQyNTg5REI2NjRDRThFRjZB NkM2MDBDNDcwHhcNMjUxMDE4MTk1OTE2WhcNMjUxMDI1MTk1OTE2WjAYMRYwFAYD VQQDEw02OGYzZjE5NC0wMmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Qcvm2wu/mvnW5mh0qa42Cshba2ZMK25OEGkpPMpfXscTCHu8bCe5ryzuR4o mY4OlISvV5OA1CTQXHhCu4tNQ8KmqlwEYB1W+gIeRPezZ+KUelXUHYo6j/VgTbsk 6pWLVxpS/9RAi4waoJt5a32HO5pdMndOphHibIcHMJR/+L0qsVipojHKiTLsAMUn k17cQbVLR+h/w6sJXygdZ9GANFxGHawJg9C1q4z7gCzK0901PE2miDxKaLcMGZsa aFYfi+iPbZlasQlI6vHPgGjb3GGucyKnjsvuCcosbl7nlGZnNrbiF9/IOjYc+7V5 DC6i6isJF6/hqXe1uxz0Ewh98wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5rlzUE p9ogDBMrnc1x4iYT+y08MB8GA1UdIwQYMBaAFOdPRkxAhlntJYnbZkzo72psYAxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDZGMi84QjhDNEREMjNG NDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dlMGxpZHRtVE9qdmFteGdE RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUwOUdURUNHV2UwbGlkdG1UT2p2YW14Z0RFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDZGMi84QjhDNEREMjNGNDcxMUVBOEU1REE4N0NDNEY5QUUwMi81MDlHVEVDR1dl MGxpZHRtVE9qdmFteGdERWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUQF/RqROwE4nBCUmylgbjLPJUWXXfIwP4gyIU3uz88FC1yN8HTNv0 GaYdDeio8lMeK96qoccqTe3I5ypGm+T5/+dUEUM8WqsrSZ7xl5ZFsZCGvZg9aB0I FbTZnClHe61TYx+cLmTCoIWWih0s/ywtXuAvKPc/MFJZROEutxFA+FNBy6z7ymAo hBfyp0bZl5Vul/u9sK2w1Q3wD5rW12Oul8gKvReA5RWI0W53cp5zobCwbJ7xoUEU WQzlVwe4cgHbuMFbWkqSEV2/9HzfmE6CHZFOjCuc3/WXbzXZlVfitn3szXOPOOS/ QRzoV4q7m8pyktp2yrNj6L11EeS+X2Wp -----END CERTIFICATE-----Generated at Mon Oct 20 13:07:41 2025 by rpki-client