$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft File: p_mvKNJKQySTtLK6m1Vym8CXfMg.mft (raw, json) Hash identifier: mw2kV+xtnFoCn+TmJDevyKhe9DW+IEQYem8exigznXA= Subject key identifier: BF:88:EA:6A:6E:93:7F:DF:95:23:67:3D:56:63:02:E9:DE:05:E8:29 Authority key identifier: A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 Certificate issuer: /CN=A91AF9A1/serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Certificate serial: 0D9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft Manifest number: 0D91 Signing time: Sat 18 Oct 2025 18:36:28 +0000 Manifest this update: Sat 18 Oct 2025 18:36:27 +0000 Manifest next update: Sat 25 Oct 2025 18:36:27 +0000 Files and hashes: 1: p_mvKNJKQySTtLK6m1Vym8CXfMg.crl (hash: 0MZ6xABD3sn2bhVBGa6TOuc32whd9mwkZkKFBrHef3Y=) 2: 6DDABFB26CD511ED9EC9CF83C4F9AE02.roa (hash: SkBXJ2Cg15YTINlEK8cWxPkVEnzJM9DWZ0n7aJtqwN0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:36:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3486 (0xd9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF9A1, serialNumber=A7F9AF28D24A432493B4B2BA9B55729BC0977CC8 Validity Not Before: Oct 18 18:36:27 2025 GMT Not After : Oct 25 18:36:27 2025 GMT Subject: CN=68f3de2b-cd3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0c:3a:d4:66:69:09:40:da:be:c2:98:35:1e: c5:e7:d8:19:47:86:34:1a:a6:30:09:1a:6f:91:c8: 3c:54:85:a8:a2:26:56:67:af:7c:3e:c5:b3:e8:53: 3d:15:fd:cc:80:f8:ad:c1:f9:54:55:5d:23:08:46: be:77:84:3e:e1:02:e3:de:29:b5:79:a1:17:44:23: fd:9c:70:de:28:d2:0e:20:30:4d:5c:b7:51:7e:5d: ed:e2:96:73:77:b2:4f:fa:4c:6e:19:96:a6:af:d7: f6:b2:66:0a:2e:0f:dc:70:7d:40:b6:7f:2c:e4:29: cd:f1:33:db:9b:4c:d8:4d:ac:a9:4b:06:17:14:e0: 7c:a9:63:c5:38:d1:5f:0d:58:87:bf:c7:31:2a:2a: 13:84:df:90:43:f6:87:2a:54:87:45:4d:c2:45:29: 25:d2:c7:ec:74:fe:f1:37:f1:2b:3d:89:af:6f:29: 27:94:2f:b1:20:34:ea:1f:b8:89:23:b6:7f:71:8b: 33:06:30:72:49:90:8b:3f:d0:bf:ee:4e:6d:05:e2: 6d:f7:12:d6:93:15:66:3c:0c:d5:02:cf:6f:7d:6a: ea:e4:ed:82:0d:03:89:08:9d:b6:af:7a:a2:02:ff: 8c:c4:0c:d0:81:08:13:01:76:65:89:dc:04:66:b0: f2:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:88:EA:6A:6E:93:7F:DF:95:23:67:3D:56:63:02:E9:DE:05:E8:29 X509v3 Authority Key Identifier: keyid:A7:F9:AF:28:D2:4A:43:24:93:B4:B2:BA:9B:55:72:9B:C0:97:7C:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_mvKNJKQySTtLK6m1Vym8CXfMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF9A1/D26015CAD37E11E98A196B67C4F9AE02/p_mvKNJKQySTtLK6m1Vym8CXfMg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:90:ac:ec:64:25:ea:07:de:de:95:81:a9:7d:3d:55:d0:c1: 0d:ab:5e:89:f5:18:b5:72:50:5b:9a:cd:9b:f9:9f:53:08:4a: 10:bc:1e:39:60:73:4d:68:1a:ad:aa:6a:76:a0:62:d0:a5:ab: da:00:98:af:1c:c1:b3:67:dc:33:59:60:92:e1:a8:21:62:5c: 74:fe:a4:22:b4:14:a5:54:97:20:9a:55:ef:3f:8b:4b:bd:2d: 41:30:a0:0a:45:cb:0a:28:95:8e:1a:48:e0:ce:20:27:4e:29: 30:b4:7a:8a:b0:62:26:c0:1f:bb:1b:27:53:b4:a9:63:33:a2: 4d:28:0f:21:c2:cc:97:b2:e8:ec:cc:fe:97:8a:25:1f:f0:ec: 5d:01:fd:0f:ba:ef:64:71:79:56:04:c4:a1:5e:e7:4c:d9:f6: 3e:c1:fb:20:c2:71:73:e3:67:fe:55:b5:52:5c:db:e2:d2:20: c4:66:a4:97:a2:25:ca:90:76:41:a2:92:7a:f6:25:68:0a:68: 6f:9d:87:ca:19:f6:9e:d7:65:62:d2:ff:e0:63:72:32:d5:1f: 2b:2c:cb:2b:43:a2:b1:3f:fd:0f:8d:af:ea:28:cb:c7:e2:01: 14:cf:d6:15:95:7a:64:53:cc:40:bb:00:d7:90:4c:bb:7d:a5: e5:37:df:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY5QTExMTAvBgNVBAUTKEE3RjlBRjI4RDI0QTQzMjQ5M0I0QjJCQTlCNTU3MjlC QzA5NzdDQzgwHhcNMjUxMDE4MTgzNjI3WhcNMjUxMDI1MTgzNjI3WjAYMRYwFAYD VQQDEw02OGYzZGUyYi1jZDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0gw61GZpCUDavsKYNR7F59gZR4Y0GqYwCRpvkcg8VIWooiZWZ698PsWz6FM9 Ff3MgPitwflUVV0jCEa+d4Q+4QLj3im1eaEXRCP9nHDeKNIOIDBNXLdRfl3t4pZz d7JP+kxuGZamr9f2smYKLg/ccH1Atn8s5CnN8TPbm0zYTaypSwYXFOB8qWPFONFf DViHv8cxKioThN+QQ/aHKlSHRU3CRSkl0sfsdP7xN/ErPYmvbyknlC+xIDTqH7iJ I7Z/cYszBjBySZCLP9C/7k5tBeJt9xLWkxVmPAzVAs9vfWrq5O2CDQOJCJ22r3qi Av+MxAzQgQgTAXZlidwEZrDyDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+I6mpu k3/flSNnPVZjAuneBegpMB8GA1UdIwQYMBaAFKf5ryjSSkMkk7SyuptVcpvAl3zI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjlBMS9EMjYwMTVDQUQz N0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5U1R0TEs2bTFWeW04Q1hm TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfbXZLTkpLUXlTVHRMSzZtMVZ5bThDWGZNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjlBMS9EMjYwMTVDQUQzN0UxMUU5OEExOTZCNjdDNEY5QUUwMi9wX212S05KS1F5 U1R0TEs2bTFWeW04Q1hmTWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8kKzsZCXqB97elYGpfT1V0MENq16J9Ri1clBbms2b+Z9TCEoQvB45 YHNNaBqtqmp2oGLQpavaAJivHMGzZ9wzWWCS4aghYlx0/qQitBSlVJcgmlXvP4tL vS1BMKAKRcsKKJWOGkjgziAnTikwtHqKsGImwB+7GydTtKljM6JNKA8hwsyXsujs zP6XiiUf8OxdAf0Puu9kcXlWBMShXudM2fY+wfsgwnFz42f+VbVSXNvi0iDEZqSX oiXKkHZBopJ69iVoCmhvnYfKGfae12Vi0v/gY3Iy1R8rLMsrQ6KxP/0Pja/qKMvH 4gEUz9YVlXpkU8xAuwDXkEy7faXlN9+p -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:51 2025 by rpki-client