$ rpki-client -vvf rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.mft File: S0fJxk08IyF6Fd2rh0fDncMBhPI.mft (raw, json) Hash identifier: 3r/KZ28LV6WLVsImHxQTs7WFBT1HSUBXD5+BEKMjHmU= Subject key identifier: 87:A8:0D:B8:C2:5F:DD:E2:19:DF:F7:95:24:F8:34:83:15:93:C1:E0 Authority key identifier: 4B:47:C9:C6:4D:3C:23:21:7A:15:DD:AB:87:47:C3:9D:C3:01:84:F2 Certificate issuer: /CN=A91B31CE/serialNumber=4B47C9C64D3C23217A15DDAB8747C39DC30184F2 Certificate serial: 06D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0fJxk08IyF6Fd2rh0fDncMBhPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.mft Manifest number: 06C9 Signing time: Sat 18 Oct 2025 23:36:19 +0000 Manifest this update: Sat 18 Oct 2025 23:36:18 +0000 Manifest next update: Sat 25 Oct 2025 23:36:18 +0000 Files and hashes: 1: S0fJxk08IyF6Fd2rh0fDncMBhPI.crl (hash: M1uuig0R7SM9+mtJBIYk3fg++H8xL3m045aKTNp9bMc=) 2: AA51390A822B11EE8B95E475C4F9AE02.roa (hash: iVoQ4DzarwOJUrSELiNWak+s+ohZp/LfOai+uGXnZZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.crl rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0fJxk08IyF6Fd2rh0fDncMBhPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1746 (0x6d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B31CE, serialNumber=4B47C9C64D3C23217A15DDAB8747C39DC30184F2 Validity Not Before: Oct 18 23:36:18 2025 GMT Not After : Oct 25 23:36:18 2025 GMT Subject: CN=68f42473-9f7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d9:00:3e:50:d1:92:9a:8c:0a:c7:bd:c8:b9: 5b:f7:5e:70:42:be:61:2e:e3:3e:a9:eb:cc:34:e2: e3:af:ec:7c:5d:66:cf:b6:d7:aa:88:e9:9c:32:59: ee:48:f8:00:79:2d:c9:d3:87:53:9e:fd:7a:66:5b: 1c:00:bc:ac:9e:44:da:73:48:82:e8:76:0c:d8:65: 4b:83:19:ce:fd:41:7a:92:87:1c:73:bc:75:93:9c: 13:d1:d7:5e:ba:e4:da:14:8b:87:8e:86:07:29:37: 03:01:bc:09:06:6d:ca:72:d6:39:53:30:8f:7c:0d: 7f:98:de:5c:ff:d2:91:01:a9:66:de:87:57:a9:5e: 9e:a9:a7:89:18:9c:8b:a0:85:19:c8:cb:9c:8f:8a: c3:52:26:6b:53:78:65:92:9e:2a:46:61:19:06:94: 36:1a:19:88:90:9e:9d:c1:0a:a3:02:6b:d2:e8:b3: 1e:89:3d:d4:4b:d6:13:72:a3:e9:a8:2a:cf:52:30: 7b:37:9a:aa:74:1c:ba:4f:51:99:64:df:73:19:9c: 41:8f:54:16:25:b2:0b:5c:c8:97:49:44:d8:10:81: 11:44:67:e2:60:1a:07:13:f4:29:26:59:b5:5d:ea: 21:aa:d5:8e:0c:2d:7a:56:a5:5b:f3:d5:99:10:d8: 05:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:A8:0D:B8:C2:5F:DD:E2:19:DF:F7:95:24:F8:34:83:15:93:C1:E0 X509v3 Authority Key Identifier: keyid:4B:47:C9:C6:4D:3C:23:21:7A:15:DD:AB:87:47:C3:9D:C3:01:84:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0fJxk08IyF6Fd2rh0fDncMBhPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B31CE/6B05607A7CCD11EBAEC6A974C4F9AE02/S0fJxk08IyF6Fd2rh0fDncMBhPI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:b6:b4:e0:56:19:15:d4:34:44:a5:47:ba:4a:30:78:dc:6e: c6:bb:f1:14:fd:f2:d6:ff:0e:dd:39:51:43:7a:b8:e5:ca:af: c4:97:0e:61:ae:f8:09:8a:9d:70:0c:4b:05:fe:22:46:f3:66: fb:3b:70:29:6e:ee:8e:b0:75:2b:1c:10:bc:e7:35:2a:9b:41: 12:99:54:49:b3:ed:05:bc:e5:42:18:42:69:18:5a:a3:d2:1a: e8:48:97:13:9d:9c:be:0c:f5:e9:24:28:18:b5:9e:d3:51:86: d4:55:b3:8f:de:1b:c0:62:9b:de:3f:08:2e:ed:d9:4f:8f:a4: f8:cf:53:9e:ac:f1:4c:29:45:de:d8:24:37:eb:9e:46:07:a1: 7e:51:56:5d:9d:2f:e9:7e:4f:ce:0d:ed:0e:00:bb:a5:5d:6f: 69:5e:ef:66:22:12:82:96:b7:4e:d8:21:6a:ec:41:70:91:e4: 8e:c0:6c:22:50:39:2d:f5:5c:85:68:07:70:43:9e:99:eb:3a: 79:f5:06:c3:8d:32:e2:71:06:d1:e3:8f:ac:e0:57:30:f9:db: ee:df:5b:7c:55:7f:60:66:e1:76:d4:47:5b:c7:91:e6:1b:b3: 59:2c:cb:b8:a5:bd:13:b1:cd:15:bb:5f:b7:98:82:77:89:12: 20:46:0d:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjMxQ0UxMTAvBgNVBAUTKDRCNDdDOUM2NEQzQzIzMjE3QTE1RERBQjg3NDdDMzlE QzMwMTg0RjIwHhcNMjUxMDE4MjMzNjE4WhcNMjUxMDI1MjMzNjE4WjAYMRYwFAYD VQQDEw02OGY0MjQ3My05ZjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9kAPlDRkpqMCse9yLlb915wQr5hLuM+qevMNOLjr+x8XWbPtteqiOmcMlnu SPgAeS3J04dTnv16ZlscALysnkTac0iC6HYM2GVLgxnO/UF6koccc7x1k5wT0dde uuTaFIuHjoYHKTcDAbwJBm3KctY5UzCPfA1/mN5c/9KRAalm3odXqV6eqaeJGJyL oIUZyMucj4rDUiZrU3hlkp4qRmEZBpQ2GhmIkJ6dwQqjAmvS6LMeiT3US9YTcqPp qCrPUjB7N5qqdBy6T1GZZN9zGZxBj1QWJbILXMiXSUTYEIERRGfiYBoHE/QpJlm1 XeohqtWODC16VqVb89WZENgFNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIeoDbjC X93iGd/3lST4NIMVk8HgMB8GA1UdIwQYMBaAFEtHycZNPCMhehXdq4dHw53DAYTy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzFDRS82QjA1NjA3QTdD Q0QxMUVCQUVDNkE5NzRDNEY5QUUwMi9TMGZKeGswOEl5RjZGZDJyaDBmRG5jTUJo UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwZkp4azA4SXlGNkZkMnJoMGZEbmNNQmhQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzFDRS82QjA1NjA3QTdDQ0QxMUVCQUVDNkE5NzRDNEY5QUUwMi9TMGZKeGswOEl5 RjZGZDJyaDBmRG5jTUJoUEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxtrTgVhkV1DREpUe6SjB43G7Gu/EU/fLW/w7dOVFDerjlyq/Elw5h rvgJip1wDEsF/iJG82b7O3Apbu6OsHUrHBC85zUqm0ESmVRJs+0FvOVCGEJpGFqj 0hroSJcTnZy+DPXpJCgYtZ7TUYbUVbOP3hvAYpvePwgu7dlPj6T4z1OerPFMKUXe 2CQ3655GB6F+UVZdnS/pfk/ODe0OALulXW9pXu9mIhKClrdO2CFq7EFwkeSOwGwi UDkt9VyFaAdwQ56Z6zp59QbDjTLicQbR44+s4Fcw+dvu31t8VX9gZuF21Edbx5Hm G7NZLMu4pb0Tsc0Vu1+3mIJ3iRIgRg0M -----END CERTIFICATE-----Generated at Mon Oct 20 00:18:52 2025 by rpki-client