$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft File: -c2wYYjVT9E3MDC5IMjkRdstPVc.mft (raw, json) Hash identifier: HAeH98MJeAzhHYtLYEvWr2Rjq9H5pF6D1MsLhsVHdJc= Subject key identifier: 4E:84:77:E9:8D:98:26:56:AA:61:D9:68:15:D0:15:2C:48:93:93:EC Authority key identifier: F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 Certificate issuer: /CN=A91A99F8/serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft Manifest number: 77 Signing time: Sun 19 Oct 2025 14:20:35 +0000 Manifest this update: Sun 19 Oct 2025 14:20:35 +0000 Manifest next update: Sun 26 Oct 2025 14:20:35 +0000 Files and hashes: 1: -c2wYYjVT9E3MDC5IMjkRdstPVc.crl (hash: elkFJWPiR8ethUOnqoYNaCMXgQF8TRnNHDEuDb3zVZA=) 2: C4D0CEECACF611F0AC34117FC4F9AE02.roa (hash: 7ucYBUaCLmqgDRuv79Vd3l7kVK2Q22cJEETdC+Ms3yg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 14:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99F8, serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Validity Not Before: Oct 19 14:20:35 2025 GMT Not After : Oct 26 14:20:35 2025 GMT Subject: CN=68f4f3b3-f4cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b9:4d:79:f6:f0:2a:13:05:53:57:15:fc:d2: 3d:96:bd:93:8f:0a:4d:5b:01:5a:af:ef:34:9e:03: 9d:fc:a0:1f:5a:0a:fc:6b:74:9a:e4:15:97:9f:f4: 17:ad:5b:81:f2:a8:e1:c5:9a:61:6a:d6:dc:27:2d: 1a:09:4a:e3:d8:1a:04:d0:39:f0:45:f2:5a:c1:00: be:14:6e:3c:99:69:7a:53:b3:08:65:26:44:bb:1a: 7b:0e:85:b3:5f:52:27:97:3a:76:63:a9:f6:68:28: c3:7b:c8:40:9c:c4:e4:e4:79:08:b4:cd:fa:31:82: 42:cd:ae:b6:34:d9:de:cb:a6:03:39:04:28:db:a9: 0c:e5:75:19:f5:14:1a:f9:79:17:47:ca:ff:1e:3e: b9:b9:fb:27:a8:0c:8b:00:ce:76:df:dc:ef:67:b1: c9:6c:9a:83:8e:af:58:41:2e:a0:44:fb:9f:98:bb: 01:5b:62:b5:6d:28:77:49:f5:3e:61:54:78:5b:a4: a3:1a:54:59:4d:38:07:33:01:85:23:ca:ca:69:17: c4:48:9b:e1:88:b9:62:44:5f:a5:7b:e3:ea:6c:14: 1d:41:4a:33:57:dd:02:c5:6a:56:f9:bc:78:6f:2f: 23:6d:e4:d7:c8:92:ca:28:a8:20:99:6e:6c:38:f1: 12:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:84:77:E9:8D:98:26:56:AA:61:D9:68:15:D0:15:2C:48:93:93:EC X509v3 Authority Key Identifier: keyid:F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:a4:86:61:9c:19:5a:45:42:e5:b4:ae:8a:8d:5c:53:15:15: 5c:5d:27:d8:2c:ff:4d:59:96:26:dd:1a:85:c1:3f:de:4c:dd: 14:4b:97:8b:ed:b9:82:67:46:0d:b1:61:7e:3b:a7:dc:2e:f4: 02:a3:b4:3a:71:35:51:55:cf:a6:22:cb:b9:a1:0d:cf:b1:11: 9c:09:eb:98:3c:12:9a:df:ad:e3:60:54:a9:ce:38:13:56:35: ac:1a:51:bf:3d:2c:a3:ae:18:16:3d:73:b1:b4:26:53:14:9c: 74:4a:bd:c7:3a:1f:82:c1:56:02:96:fc:36:32:71:3e:41:da: 29:66:9e:46:b7:8f:f4:46:fe:d8:de:a6:56:43:40:d7:0d:12: 65:c4:6d:5e:e2:46:86:5c:36:d8:cb:15:ed:f2:aa:a0:b7:15: 1a:f6:66:3f:d4:7c:18:8d:37:52:ba:f9:e2:a7:c1:29:98:e6: bb:66:26:01:88:30:13:4d:c5:59:4b:da:a4:85:c2:67:4c:2f: 29:2d:d3:4a:22:67:0e:1e:80:50:8a:b0:26:e9:7e:58:e2:89: 64:2f:8d:18:df:83:9a:82:bd:da:a5:08:f7:61:9d:12:65:21: bb:fe:5f:9b:6b:9f:21:8f:16:aa:a7:ef:7d:66:f8:14:b0:3f: c4:9a:93:50 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTlGODExMC8GA1UEBRMoRjlDREIwNjE4OEQ1NEZEMTM3MzAzMEI5MjBDOEU0NDVE QjJEM0Q1NzAeFw0yNTEwMTkxNDIwMzVaFw0yNTEwMjYxNDIwMzVaMBgxFjAUBgNV BAMTDTY4ZjRmM2IzLWY0Y2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcuU159vAqEwVTVxX80j2WvZOPCk1bAVqv7zSeA538oB9aCvxrdJrkFZef9Bet W4HyqOHFmmFq1twnLRoJSuPYGgTQOfBF8lrBAL4UbjyZaXpTswhlJkS7GnsOhbNf UieXOnZjqfZoKMN7yECcxOTkeQi0zfoxgkLNrrY02d7LpgM5BCjbqQzldRn1FBr5 eRdHyv8ePrm5+yeoDIsAznbf3O9nsclsmoOOr1hBLqBE+5+YuwFbYrVtKHdJ9T5h VHhbpKMaVFlNOAczAYUjysppF8RIm+GIuWJEX6V74+psFB1BSjNX3QLFalb5vHhv LyNt5NfIksooqCCZbmw48RIlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUToR36Y2Y JlaqYdloFdAVLEiTk+wwHwYDVR0jBBgwFoAU+c2wYYjVT9E3MDC5IMjkRdstPVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5OUY4LzdBNEQ3Qjg4MDRB NzExRjBCNEQ3Mzk4MkM0RjlBRTAyLy1jMndZWWpWVDlFM01EQzVJTWprUmRzdFBW Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLWMyd1lZalZUOUUzTURDNUlNamtSZHN0UFZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 OUY4LzdBNEQ3Qjg4MDRBNzExRjBCNEQ3Mzk4MkM0RjlBRTAyLy1jMndZWWpWVDlF M01EQzVJTWprUmRzdFBWYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAWkhmGcGVpFQuW0roqNXFMVFVxdJ9gs/01ZlibdGoXBP95M3RRLl4vt uYJnRg2xYX47p9wu9AKjtDpxNVFVz6Yiy7mhDc+xEZwJ65g8EprfreNgVKnOOBNW NawaUb89LKOuGBY9c7G0JlMUnHRKvcc6H4LBVgKW/DYycT5B2ilmnka3j/RG/tje plZDQNcNEmXEbV7iRoZcNtjLFe3yqqC3FRr2Zj/UfBiNN1K6+eKnwSmY5rtmJgGI MBNNxVlL2qSFwmdMLykt00oiZw4egFCKsCbpfljiiWQvjRjfg5qCvdqlCPdhnRJl Ibv+X5trnyGPFqqn731m+BSwP8Sak1A= -----END CERTIFICATE-----Generated at Mon Oct 20 21:24:59 2025 by rpki-client