$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft File: saGMIGd1j-jJIZgeixH6MI5iaTs.mft (raw, json) Hash identifier: qT+WXdJ5Ea68M4X8j82Nj/8GVxCyyxUt6DSqqkayXMg= Subject key identifier: 42:E4:EC:46:C1:06:17:8C:7A:C3:33:D9:FA:54:D3:78:14:48:EE:16 Authority key identifier: B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B Certificate issuer: /CN=A91AAAF2/serialNumber=B1A18C2067758FE8C921981E8B11FA308E62693B Certificate serial: 0810 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft Manifest number: 080A Signing time: Sat 18 Oct 2025 22:08:33 +0000 Manifest this update: Sat 18 Oct 2025 22:08:33 +0000 Manifest next update: Sat 25 Oct 2025 22:08:33 +0000 Files and hashes: 1: saGMIGd1j-jJIZgeixH6MI5iaTs.crl (hash: XI3WvAJZSITVF0MtA10QGeLWWjgX/44bQTHwLnFgeYo=) 2: 73D3A6E0F72011EA8776EC28C4F9AE02.roa (hash: ovhGH8lbo83g5o7m/4TlTtd4Z3eC4nvxtcRanzpccvU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:08:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2064 (0x810) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAAF2, serialNumber=B1A18C2067758FE8C921981E8B11FA308E62693B Validity Not Before: Oct 18 22:08:33 2025 GMT Not After : Oct 25 22:08:33 2025 GMT Subject: CN=68f40fe1-0903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:29:4b:f7:c0:f8:bb:ea:5d:e4:a7:d3:8b:5e: 98:56:6f:3b:b8:ab:d8:78:63:d3:2a:36:25:7f:50: 55:e8:2f:04:cb:a8:58:f5:1e:ca:76:b1:76:60:e6: d0:13:c3:2f:59:cd:d8:6c:c6:d1:0b:e6:9c:ef:fc: f0:72:1c:8a:83:bd:43:18:17:f4:6a:3c:6e:17:20: cb:15:22:57:e7:70:59:c4:6f:b4:31:99:2a:27:25: 55:f9:19:9f:d3:f5:b4:1d:9a:46:02:d0:8f:88:7d: aa:7f:d2:54:47:ba:ba:cf:bc:e3:df:e0:a7:39:5d: c2:70:bc:3f:81:d8:df:df:a0:d7:8f:8a:b3:5e:63: 68:6d:fc:bf:a0:bc:b0:e0:9a:c8:58:61:e7:4a:90: a0:fc:6d:bc:c0:e6:3c:a6:0d:2b:f2:8a:e9:08:e0: 3f:47:b6:b7:8f:09:96:61:5d:d2:c0:13:a8:92:72: db:03:7a:1d:b2:12:d3:b6:fb:ee:f9:d1:6a:8b:2f: b1:0a:a1:2f:ee:48:69:68:9a:e4:a9:0f:85:3b:dc: f4:bd:87:73:e1:07:2e:c8:23:79:85:ca:01:18:a4: 48:b0:43:c7:e5:4a:1b:c0:6e:41:60:f8:b5:d3:21: 91:0a:7e:c4:fc:1a:cf:77:6a:1a:19:f4:43:eb:7b: 5e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:E4:EC:46:C1:06:17:8C:7A:C3:33:D9:FA:54:D3:78:14:48:EE:16 X509v3 Authority Key Identifier: keyid:B1:A1:8C:20:67:75:8F:E8:C9:21:98:1E:8B:11:FA:30:8E:62:69:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saGMIGd1j-jJIZgeixH6MI5iaTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAAF2/8226AB72F71E11EAB6994123C4F9AE02/saGMIGd1j-jJIZgeixH6MI5iaTs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:e8:16:3d:c7:9e:16:26:f0:c2:ca:e6:2c:2f:15:aa:37:66: 6f:59:91:7e:b8:46:06:ee:e9:7b:12:6d:02:b5:18:2e:6f:8a: fb:f1:68:f4:b8:63:7c:52:33:3c:39:60:5d:c6:d8:1b:71:96: fe:07:d1:54:f5:1b:38:ca:11:97:5f:c2:c9:49:70:9e:6d:d7: 49:cc:96:31:fa:4e:c2:19:e9:dd:6c:9c:f7:f3:68:c0:05:26: 8a:e6:1a:66:18:6c:fb:a6:09:31:bd:88:f1:ec:fa:9f:b7:bf: f1:bb:e8:32:0a:18:47:9a:ec:68:26:1c:a4:3e:2b:6a:bf:5d: c6:32:8d:55:18:19:a1:68:eb:7c:74:60:95:38:5c:76:85:48: e5:a6:f3:08:9e:5d:0b:d0:21:e0:e8:43:98:2e:6d:33:29:ec: ea:41:f9:d9:35:34:c5:bf:40:dc:45:7f:fd:ad:79:69:d8:b4: 9e:ba:b2:70:45:f0:94:74:fd:0b:4d:67:e0:41:f1:1f:1b:6d: dc:33:7f:64:fc:b2:1e:98:71:e1:cc:b0:eb:e9:c4:45:6b:15: 65:fb:f2:00:6b:c2:49:c3:48:a7:f0:03:af:b9:e7:54:5e:04: dd:92:fe:37:36:fb:99:26:17:e4:a6:c9:bb:38:c0:a8:cb:e8: 82:01:75:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFBRjIxMTAvBgNVBAUTKEIxQTE4QzIwNjc3NThGRThDOTIxOTgxRThCMTFGQTMw OEU2MjY5M0IwHhcNMjUxMDE4MjIwODMzWhcNMjUxMDI1MjIwODMzWjAYMRYwFAYD VQQDEw02OGY0MGZlMS0wOTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsClL98D4u+pd5KfTi16YVm87uKvYeGPTKjYlf1BV6C8Ey6hY9R7KdrF2YObQ E8MvWc3YbMbRC+ac7/zwchyKg71DGBf0ajxuFyDLFSJX53BZxG+0MZkqJyVV+Rmf 0/W0HZpGAtCPiH2qf9JUR7q6z7zj3+CnOV3CcLw/gdjf36DXj4qzXmNobfy/oLyw 4JrIWGHnSpCg/G28wOY8pg0r8orpCOA/R7a3jwmWYV3SwBOoknLbA3odshLTtvvu +dFqiy+xCqEv7khpaJrkqQ+FO9z0vYdz4QcuyCN5hcoBGKRIsEPH5UobwG5BYPi1 0yGRCn7E/BrPd2oaGfRD63tegwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELk7EbB BheMesMz2fpU03gUSO4WMB8GA1UdIwQYMBaAFLGhjCBndY/oySGYHosR+jCOYmk7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUFGMi84MjI2QUI3MkY3 MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWotakpJWmdlaXhINk1JNWlh VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NhR01JR2Qxai1qSklaZ2VpeEg2TUk1aWFUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUFGMi84MjI2QUI3MkY3MUUxMUVBQjY5OTQxMjNDNEY5QUUwMi9zYUdNSUdkMWot akpJWmdlaXhINk1JNWlhVHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCG6BY9x54WJvDCyuYsLxWqN2ZvWZF+uEYG7ul7Em0CtRgub4r78Wj0 uGN8UjM8OWBdxtgbcZb+B9FU9Rs4yhGXX8LJSXCebddJzJYx+k7CGendbJz382jA BSaK5hpmGGz7pgkxvYjx7Pqft7/xu+gyChhHmuxoJhykPitqv13GMo1VGBmhaOt8 dGCVOFx2hUjlpvMInl0L0CHg6EOYLm0zKezqQfnZNTTFv0DcRX/9rXlp2LSeurJw RfCUdP0LTWfgQfEfG23cM39k/LIemHHhzLDr6cRFaxVl+/IAa8JJw0in8AOvuedU XgTdkv43NvuZJhfkpsm7OMCoy+iCAXUi -----END CERTIFICATE-----Generated at Sun Oct 19 23:29:01 2025 by rpki-client