$ rpki-client -vvf rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft File: md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft (raw, json) Hash identifier: fcyWSWv4XbxiHlxmA17jWR0KMCFkzTnvIQCMUhjx4z4= Subject key identifier: 34:B0:73:D9:B7:62:25:7D:DB:DB:81:11:33:23:7D:34:63:64:04:9B Authority key identifier: 99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D Certificate issuer: /CN=A91B08F7/serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Certificate serial: 17B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft Manifest number: 1BFF Signing time: Sat 18 Oct 2025 16:57:58 +0000 Manifest this update: Sat 18 Oct 2025 16:57:57 +0000 Manifest next update: Sat 25 Oct 2025 16:57:57 +0000 Files and hashes: 1: md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl (hash: RoMu0gcjKpHpbmVNRbyGIptxstSfjLoPb5njCe0gTSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:57:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6068 (0x17b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B08F7, serialNumber=99DE2C37D1A62BA8B97B5A1CFD2CD2940B0D4D0D Validity Not Before: Oct 18 16:57:57 2025 GMT Not After : Oct 25 16:57:57 2025 GMT Subject: CN=68f3c715-4959 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:67:2e:a2:74:09:e1:91:bc:60:c4:7e:54:06: 51:84:a4:7c:c9:67:b4:88:c5:ad:22:8a:26:f1:11: 89:6a:80:45:53:93:3d:e4:9d:82:bf:1c:c4:e6:c5: 85:4b:07:f2:10:cd:8e:f5:22:97:81:79:b2:eb:ba: 14:f4:ba:56:73:f3:fe:5c:f7:ef:00:3f:59:68:ca: 4d:ef:71:00:03:98:56:7d:9d:1e:bd:24:ac:06:36: 97:ad:d0:2a:9a:51:fe:21:be:c7:ca:df:d9:6d:1b: a9:59:ae:98:25:4d:2f:e6:a6:0f:34:95:75:5c:e6: cf:ed:fe:48:fa:5e:d7:96:46:ff:21:7f:c0:48:4b: d3:43:0b:10:72:cb:e6:3c:0a:87:22:a1:f2:df:ef: 72:ec:de:ae:d1:7c:66:cd:71:2a:be:92:d1:4f:38: 56:20:6d:dc:76:6f:e4:42:33:5e:73:ec:c7:a0:27: eb:55:92:be:41:d8:83:8a:e0:47:ae:1b:bf:f0:86: 0f:a3:bb:d6:dc:dd:aa:c1:b6:bd:4d:23:54:a4:36: f2:4d:15:3a:f8:e7:c6:cb:d3:24:b8:40:1d:6c:f0: d0:18:8f:49:3c:5c:01:9f:15:0e:e4:40:cd:04:41: 43:01:aa:f8:54:8a:85:26:bb:82:f6:5e:68:68:95: f8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:B0:73:D9:B7:62:25:7D:DB:DB:81:11:33:23:7D:34:63:64:04:9B X509v3 Authority Key Identifier: keyid:99:DE:2C:37:D1:A6:2B:A8:B9:7B:5A:1C:FD:2C:D2:94:0B:0D:4D:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md4sN9GmK6i5e1oc_SzSlAsNTQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B08F7/4714380AD59411E78E7C9143C4F9AE02/md4sN9GmK6i5e1oc_SzSlAsNTQ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:2d:19:94:61:99:45:43:e5:25:5c:7c:9d:0f:af:3b:14:f4: 46:ec:20:c8:73:f6:21:59:28:45:46:1d:06:63:ec:82:2d:e7: 04:a4:39:e4:50:99:f2:90:25:76:55:20:b2:0c:f3:8f:f0:33: 50:74:a1:d7:1a:83:f5:5a:e3:c1:da:6c:e6:f6:cf:84:48:90: 33:c2:fc:bf:8e:95:a8:db:5a:2d:73:27:03:4a:56:1a:d3:63: 28:94:bd:74:12:03:ff:70:53:f8:8f:13:53:df:cf:23:0b:66: 03:e6:27:cd:59:6d:7d:4f:9e:e5:db:25:9c:49:1a:6b:df:62: f6:2c:99:2a:a3:b3:d2:32:0f:62:70:15:5d:fc:d2:e5:5e:ce: e6:d5:e3:c1:41:8b:16:6f:70:00:8d:12:9f:8a:3e:80:d1:6e: a2:02:3b:e9:57:ea:90:64:b4:0a:2b:24:4b:a1:54:31:8b:ed: 0b:ee:9c:49:83:24:40:64:02:a0:8b:a3:45:be:14:64:11:ca: a6:d6:91:ff:c6:ef:0a:ba:d4:e3:42:23:04:8e:cd:8d:ee:65: c8:75:2f:4b:4c:b9:e4:05:6a:60:e1:92:b6:54:9b:5c:37:5c: 77:ef:fc:a6:ee:44:42:b0:c7:29:5a:66:47:96:4e:e8:17:be: cd:2d:ab:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICF7QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA4RjcxMTAvBgNVBAUTKDk5REUyQzM3RDFBNjJCQThCOTdCNUExQ0ZEMkNEMjk0 MEIwRDREMEQwHhcNMjUxMDE4MTY1NzU3WhcNMjUxMDI1MTY1NzU3WjAYMRYwFAYD VQQDEw02OGYzYzcxNS00OTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumcuonQJ4ZG8YMR+VAZRhKR8yWe0iMWtIoom8RGJaoBFU5M95J2CvxzE5sWF SwfyEM2O9SKXgXmy67oU9LpWc/P+XPfvAD9ZaMpN73EAA5hWfZ0evSSsBjaXrdAq mlH+Ib7Hyt/ZbRupWa6YJU0v5qYPNJV1XObP7f5I+l7Xlkb/IX/ASEvTQwsQcsvm PAqHIqHy3+9y7N6u0XxmzXEqvpLRTzhWIG3cdm/kQjNec+zHoCfrVZK+QdiDiuBH rhu/8IYPo7vW3N2qwba9TSNUpDbyTRU6+OfGy9MkuEAdbPDQGI9JPFwBnxUO5EDN BEFDAar4VIqFJruC9l5oaJX4HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDSwc9m3 YiV929uBETMjfTRjZASbMB8GA1UdIwQYMBaAFJneLDfRpiuouXtaHP0s0pQLDU0N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDhGNy80NzE0MzgwQUQ1 OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2aTVlMW9jX1N6U2xBc05U UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kNHNOOUdtSzZpNWUxb2NfU3pTbEFzTlRRMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDhGNy80NzE0MzgwQUQ1OTQxMUU3OEU3QzkxNDNDNEY5QUUwMi9tZDRzTjlHbUs2 aTVlMW9jX1N6U2xBc05UUTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWLRmUYZlFQ+UlXHydD687FPRG7CDIc/YhWShFRh0GY+yCLecEpDnk UJnykCV2VSCyDPOP8DNQdKHXGoP1WuPB2mzm9s+ESJAzwvy/jpWo21otcycDSlYa 02MolL10EgP/cFP4jxNT388jC2YD5ifNWW19T57l2yWcSRpr32L2LJkqo7PSMg9i cBVd/NLlXs7m1ePBQYsWb3AAjRKfij6A0W6iAjvpV+qQZLQKKyRLoVQxi+0L7pxJ gyRAZAKgi6NFvhRkEcqm1pH/xu8KutTjQiMEjs2N7mXIdS9LTLnkBWpg4ZK2VJtc N1x37/ym7kRCsMcpWmZHlk7oF77NLasV -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:24 2025 by rpki-client