$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft File: 0hsNWsWvkZAPUK2WADMT5R7WChA.mft (raw, json) Hash identifier: IEJLPS47C3z6chK6Ov00DMD6Tl4K6mATipfztv2PYAQ= Subject key identifier: C5:7D:71:9B:9D:E5:5D:CE:05:87:37:98:18:C9:E0:36:28:DC:EB:1F Authority key identifier: D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 Certificate issuer: /CN=A91A0E9D/serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft Manifest number: C0 Signing time: Sun 19 Oct 2025 09:10:21 +0000 Manifest this update: Sun 19 Oct 2025 09:10:21 +0000 Manifest next update: Sun 26 Oct 2025 09:10:21 +0000 Files and hashes: 1: 0hsNWsWvkZAPUK2WADMT5R7WChA.crl (hash: UHNWtGr+4JBWGfim5s/CnyGQo/izJhd8/XtMW7Og6fY=) 2: 3996C94896D211EF924C486FC4F9AE02.roa (hash: jPKROmghkPyJWap1Ck0b+pE8AGKhobQAaRNerFhIWOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0E9D, serialNumber=D21B0D5AC5AF91900F50AD96003313E51ED60A10 Validity Not Before: Oct 19 09:10:21 2025 GMT Not After : Oct 26 09:10:21 2025 GMT Subject: CN=68f4aafd-50d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c6:cc:bb:53:8e:72:4d:1d:65:27:4c:3c:eb: ec:0b:64:1d:67:29:21:01:cb:6a:f8:59:db:74:98: 5f:6f:2e:9c:54:7a:11:93:10:77:cb:68:2d:a3:b8: 0b:c7:1b:d6:b7:44:28:67:6f:29:b2:81:bc:bd:82: 93:5a:ba:03:98:c0:ff:d3:7c:70:21:1f:53:d5:d2: 9b:a8:19:83:d3:f3:30:1a:ac:bd:71:f0:9f:d0:c5: cc:d3:c7:ce:e8:43:ac:39:e1:4d:90:c9:2e:0b:f5: 91:c2:68:b4:fb:2d:a9:95:0a:0e:84:e8:ae:91:7e: d0:6f:f4:5c:8a:d7:f9:c0:65:f8:67:65:f0:b0:3d: c9:31:87:c4:f2:5a:8c:09:d0:c4:1b:6d:a8:f3:32: 0f:82:ad:a2:c5:4b:b5:11:97:78:d1:da:88:3d:c3: 74:34:b1:22:fa:bb:1d:0a:fa:37:00:a9:f9:24:8d: a7:88:dc:9b:7c:63:78:fe:18:a0:9c:1a:41:63:0d: 4d:21:cb:64:8d:b3:07:0e:08:d8:73:25:a3:ba:2e: 40:0c:74:e0:19:a4:0d:9b:6e:79:f3:ec:14:87:4a: b1:ad:f4:b4:6a:ea:fe:24:5c:04:2b:1b:a8:cb:d1: 6d:bf:dd:d2:9a:e1:a9:c1:69:2a:da:2f:9f:9b:0e: 02:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:7D:71:9B:9D:E5:5D:CE:05:87:37:98:18:C9:E0:36:28:DC:EB:1F X509v3 Authority Key Identifier: keyid:D2:1B:0D:5A:C5:AF:91:90:0F:50:AD:96:00:33:13:E5:1E:D6:0A:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hsNWsWvkZAPUK2WADMT5R7WChA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0E9D/9569ADB495DB11EFA4E2FB45C4F9AE02/0hsNWsWvkZAPUK2WADMT5R7WChA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:e7:4f:fb:40:0a:ae:cf:1a:fe:b3:ed:cf:7d:d0:8d:5c:6f: 4e:d7:e7:d8:3b:e0:7f:be:50:b3:89:f0:38:d6:7a:7e:18:c2: 99:24:df:e7:f8:a8:b8:eb:90:be:b5:c6:34:03:3d:9a:6f:26: 70:f3:ce:2e:a1:ad:b5:0e:bd:a0:1d:73:72:f4:23:06:22:f8: 0f:5a:95:8c:c7:55:f9:42:f1:97:41:b6:cb:38:be:7e:9a:5e: 6d:8f:0b:2d:ba:d6:93:38:12:d8:37:9e:74:ed:29:14:54:83: bb:96:3f:74:b8:b1:ce:5f:cd:f9:81:a9:6f:15:83:b4:43:62: 8e:1a:5a:84:3b:72:34:bb:aa:41:4b:d1:e8:0b:ae:4e:69:f4: 6a:78:84:d3:af:c4:51:24:8e:b9:e1:c2:cf:26:b5:58:23:3e: 07:92:ba:31:f3:8d:00:a9:47:a0:d4:dc:cc:6e:b1:86:ea:22: 4e:7d:c6:eb:01:2e:30:b0:1a:e9:08:0c:04:8c:a6:1d:2b:0c: 34:d9:b8:ba:9c:58:3b:bd:41:69:ed:a0:47:f7:2a:a3:4e:63: d3:32:64:63:3b:cc:30:3e:96:ec:4c:ab:af:e4:df:22:2d:79: 49:47:d6:ba:07:d7:a7:4d:26:a2:40:54:41:31:58:a4:2e:11: 99:05:1b:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBFOUQxMTAvBgNVBAUTKEQyMUIwRDVBQzVBRjkxOTAwRjUwQUQ5NjAwMzMxM0U1 MUVENjBBMTAwHhcNMjUxMDE5MDkxMDIxWhcNMjUxMDI2MDkxMDIxWjAYMRYwFAYD VQQDEw02OGY0YWFmZC01MGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMbMu1OOck0dZSdMPOvsC2QdZykhActq+FnbdJhfby6cVHoRkxB3y2gto7gL xxvWt0QoZ28psoG8vYKTWroDmMD/03xwIR9T1dKbqBmD0/MwGqy9cfCf0MXM08fO 6EOsOeFNkMkuC/WRwmi0+y2plQoOhOiukX7Qb/Rcitf5wGX4Z2XwsD3JMYfE8lqM CdDEG22o8zIPgq2ixUu1EZd40dqIPcN0NLEi+rsdCvo3AKn5JI2niNybfGN4/hig nBpBYw1NIctkjbMHDgjYcyWjui5ADHTgGaQNm2558+wUh0qxrfS0aur+JFwEKxuo y9Ftv93SmuGpwWkq2i+fmw4CPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMV9cZud 5V3OBYc3mBjJ4DYo3OsfMB8GA1UdIwQYMBaAFNIbDVrFr5GQD1CtlgAzE+Ue1goQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEU5RC85NTY5QURCNDk1 REIxMUVGQTRFMkZCNDVDNEY5QUUwMi8waHNOV3NXdmtaQVBVSzJXQURNVDVSN1dD aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoc05Xc1d2a1pBUFVLMldBRE1UNVI3V0NoQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MEU5RC85NTY5QURCNDk1REIxMUVGQTRFMkZCNDVDNEY5QUUwMi8waHNOV3NXdmta QVBVSzJXQURNVDVSN1dDaEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDF50/7QAquzxr+s+3PfdCNXG9O1+fYO+B/vlCzifA41np+GMKZJN/n +Ki465C+tcY0Az2abyZw884uoa21Dr2gHXNy9CMGIvgPWpWMx1X5QvGXQbbLOL5+ ml5tjwstutaTOBLYN5507SkUVIO7lj90uLHOX835galvFYO0Q2KOGlqEO3I0u6pB S9HoC65OafRqeITTr8RRJI654cLPJrVYIz4Hkrox840AqUeg1NzMbrGG6iJOfcbr AS4wsBrpCAwEjKYdKww02bi6nFg7vUFp7aBH9yqjTmPTMmRjO8wwPpbsTKuv5N8i LXlJR9a6B9enTSaiQFRBMVikLhGZBRue -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:57 2025 by rpki-client