$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft File: d324l0Vw6bbATiZX5tClA3xxiGs.mft (raw, json) Hash identifier: khJvLmO6vj4GmOhxkkcdNviZ7lpvpBJuimzr+utlwW0= Subject key identifier: 44:79:45:49:7D:44:AC:B5:C5:6C:C9:42:5C:83:15:D1:68:B6:09:7D Authority key identifier: 77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B Certificate issuer: /CN=A91AF207/serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft Manifest number: 99 Signing time: Sun 19 Oct 2025 09:35:56 +0000 Manifest this update: Sun 19 Oct 2025 09:35:56 +0000 Manifest next update: Sun 26 Oct 2025 09:35:56 +0000 Files and hashes: 1: d324l0Vw6bbATiZX5tClA3xxiGs.crl (hash: EwdllsfjXFWZB+UVe4lM/Rvmi6Yvh90NmXXny97aJEE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:35:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF207, serialNumber=777DB8974570E9B6C04E2657E6D0A5037C71886B Validity Not Before: Oct 19 09:35:56 2025 GMT Not After : Oct 26 09:35:56 2025 GMT Subject: CN=68f4b0fc-38b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:33:21:f3:8f:39:d4:ba:1f:1f:df:a6:5b:ae: 92:be:4d:b3:45:c8:18:65:8a:11:2f:12:d2:84:43: 0d:eb:7d:b6:f0:c7:00:04:af:e4:55:bd:6a:92:24: 85:95:44:4e:2d:82:d8:d6:a2:40:56:71:52:48:11: 9d:44:bd:84:5d:a2:28:bd:e0:b6:45:d1:59:92:4b: 98:cb:4c:07:d7:62:22:2a:97:18:4e:5c:3d:67:e9: 34:d4:c7:c1:c6:53:8b:64:9e:fc:6e:c7:d6:33:03: e6:20:18:c4:ef:46:83:c5:b4:1c:38:ff:83:ba:00: 2a:1a:fc:89:08:75:80:a6:ea:3b:dd:57:2c:7e:a6: db:60:43:62:2a:ef:f2:03:2f:71:45:26:73:21:95: 21:95:ab:79:f9:03:36:c0:a8:1b:94:ed:42:5f:5d: de:a2:bb:e3:80:26:c2:c1:48:51:e6:51:a4:e2:22: 4e:85:db:9c:ef:48:dc:fd:93:36:27:9d:42:d4:59: c0:c8:f3:bf:35:cb:f8:75:82:2b:6e:93:cc:c3:0c: 09:fb:69:8b:fc:be:e2:8a:95:51:01:08:68:14:d5: 17:99:9f:b1:2c:57:cb:e0:b0:c1:76:3f:a9:d4:bd: ef:24:b6:67:01:bd:5e:60:3e:94:4e:e8:e9:fa:c1: 2e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:79:45:49:7D:44:AC:B5:C5:6C:C9:42:5C:83:15:D1:68:B6:09:7D X509v3 Authority Key Identifier: keyid:77:7D:B8:97:45:70:E9:B6:C0:4E:26:57:E6:D0:A5:03:7C:71:88:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d324l0Vw6bbATiZX5tClA3xxiGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF207/B48861C6C22811EF86E3484FC4F9AE02/d324l0Vw6bbATiZX5tClA3xxiGs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:29:bc:d2:35:c5:64:04:7d:98:58:bb:b6:ad:11:08:8c:e9: a8:2e:10:24:c7:85:0d:28:87:93:ce:1c:2b:aa:85:c7:20:ed: ed:8c:1b:09:eb:86:50:5e:ec:3b:d4:f9:94:f7:05:6f:90:00: 71:8b:f5:7f:3a:e5:0c:7e:f6:c3:a0:10:4b:f4:dd:e0:4f:27: 27:80:6b:90:0c:f7:f9:42:83:a7:01:43:23:a7:e4:7f:18:23: 52:1b:17:13:14:f6:e4:fa:e9:8a:10:78:04:46:fa:10:ca:db: b8:e0:81:c7:bf:6e:12:54:54:cd:ae:67:77:7b:01:fe:79:85: b7:a1:1c:8e:ad:e2:24:ad:31:27:b6:e4:bf:3b:3d:0e:42:94: 6c:f4:56:be:73:de:ce:3a:af:85:80:15:95:e3:2c:47:d4:60: 3c:9b:d0:cf:63:b0:8d:17:e5:cc:5c:7d:ea:90:4e:08:da:5e: 86:53:87:3d:a9:48:6d:e8:48:dc:1a:67:d5:77:70:03:87:7c: 6d:19:43:70:bd:f1:f1:d9:59:bb:cf:44:17:48:28:92:12:f7: 0a:31:5f:30:da:bf:89:19:59:23:0f:c4:b3:fa:ef:05:28:e9: ec:c3:63:40:64:1f:bd:96:e3:a6:b7:8d:c7:a4:f5:dd:83:98: e5:af:c5:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYyMDcxMTAvBgNVBAUTKDc3N0RCODk3NDU3MEU5QjZDMDRFMjY1N0U2RDBBNTAz N0M3MTg4NkIwHhcNMjUxMDE5MDkzNTU2WhcNMjUxMDI2MDkzNTU2WjAYMRYwFAYD VQQDEw02OGY0YjBmYy0zOGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TMh84851LofH9+mW66Svk2zRcgYZYoRLxLShEMN63228McABK/kVb1qkiSF lUROLYLY1qJAVnFSSBGdRL2EXaIoveC2RdFZkkuYy0wH12IiKpcYTlw9Z+k01MfB xlOLZJ78bsfWMwPmIBjE70aDxbQcOP+DugAqGvyJCHWApuo73VcsfqbbYENiKu/y Ay9xRSZzIZUhlat5+QM2wKgblO1CX13eorvjgCbCwUhR5lGk4iJOhduc70jc/ZM2 J51C1FnAyPO/Ncv4dYIrbpPMwwwJ+2mL/L7iipVRAQhoFNUXmZ+xLFfL4LDBdj+p 1L3vJLZnAb1eYD6UTujp+sEurQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFER5RUl9 RKy1xWzJQlyDFdFotgl9MB8GA1UdIwQYMBaAFHd9uJdFcOm2wE4mV+bQpQN8cYhr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjIwNy9CNDg4NjFDNkMy MjgxMUVGODZFMzQ4NEZDNEY5QUUwMi9kMzI0bDBWdzZiYkFUaVpYNXRDbEEzeHhp R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzMjRsMFZ3NmJiQVRpWlg1dENsQTN4eGlHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjIwNy9CNDg4NjFDNkMyMjgxMUVGODZFMzQ4NEZDNEY5QUUwMi9kMzI0bDBWdzZi YkFUaVpYNXRDbEEzeHhpR3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8KbzSNcVkBH2YWLu2rREIjOmoLhAkx4UNKIeTzhwrqoXHIO3tjBsJ 64ZQXuw71PmU9wVvkABxi/V/OuUMfvbDoBBL9N3gTycngGuQDPf5QoOnAUMjp+R/ GCNSGxcTFPbk+umKEHgERvoQytu44IHHv24SVFTNrmd3ewH+eYW3oRyOreIkrTEn tuS/Oz0OQpRs9Fa+c97OOq+FgBWV4yxH1GA8m9DPY7CNF+XMXH3qkE4I2l6GU4c9 qUht6EjcGmfVd3ADh3xtGUNwvfHx2Vm7z0QXSCiSEvcKMV8w2r+JGVkjD8Sz+u8F KOnsw2NAZB+9luOmt43HpPXdg5jlr8X7 -----END CERTIFICATE-----Generated at Mon Oct 20 09:30:20 2025 by rpki-client