$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft File: aaSG-_IUhPFBL7ioCieKJIzvvrI.mft (raw, json) Hash identifier: RoAZf9jIM4Hp0BoS8pWCR4xPVeNEZWEhHGF6JTtHGgI= Subject key identifier: DC:0F:1D:27:69:EB:C7:E5:62:CE:09:36:8E:5E:CF:3D:33:94:FD:B8 Authority key identifier: 69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 Certificate issuer: /CN=A91B4713/serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Certificate serial: 016E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft Manifest number: 0169 Signing time: Sun 19 Oct 2025 06:38:22 +0000 Manifest this update: Sun 19 Oct 2025 06:38:22 +0000 Manifest next update: Sun 26 Oct 2025 06:38:22 +0000 Files and hashes: 1: aaSG-_IUhPFBL7ioCieKJIzvvrI.crl (hash: zKI3xsfgCbP3sWlTS4GLYVnRtpsSEyMa/g2Tc2M+NzI=) 2: A5656D2E892B11EE94747D6BC4F9AE02.roa (hash: 01zpHNpEXp5bla5wzGX7psaD7zJbZ+wyzWYL5eybWGY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:38:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4713, serialNumber=69A486FBF21484F1412FB8A80A278A248CEFBEB2 Validity Not Before: Oct 19 06:38:22 2025 GMT Not After : Oct 26 06:38:22 2025 GMT Subject: CN=68f4875e-1861 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:dc:c5:36:e1:55:e7:b1:0e:14:1f:26:4f:69: d7:ec:90:5f:70:93:70:23:8f:a6:fc:da:00:1a:8a: 0d:95:20:27:01:9e:7c:13:e2:d8:91:07:68:fc:34: 05:6d:10:43:cb:1c:73:4e:db:53:f6:8f:4c:b1:75: 29:bf:b5:4d:4f:ca:8e:36:60:22:96:64:f7:65:0c: 7f:7f:86:0d:cc:41:c9:44:3e:0c:6e:03:0f:bf:5e: 23:a6:57:ff:58:02:0a:31:c1:ab:67:a2:d3:32:fe: f6:04:dc:3f:6b:4e:60:6b:b6:e3:88:38:27:e4:3a: 28:a3:e4:20:0d:a0:80:05:6d:58:04:67:71:30:e9: ca:a2:26:42:1b:a5:b4:0c:83:ea:54:43:09:ba:06: f0:23:df:27:f9:8c:41:c7:4b:32:31:e9:d4:1c:a5: e1:1f:66:c4:3e:25:c9:f0:69:68:8f:d5:9e:3b:30: ae:50:1d:86:22:9e:c0:66:73:be:a0:55:a1:93:d3: ba:d4:60:4f:bf:3c:5a:03:10:e8:50:0b:df:93:49: 4e:be:4e:00:c8:8a:ac:27:a6:42:53:7f:49:1a:01: 12:41:31:12:51:ca:e6:1e:57:1c:3c:2d:29:54:8c: e1:2d:7f:5a:b2:8a:3d:32:e1:84:43:b5:2b:b1:28: f4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:0F:1D:27:69:EB:C7:E5:62:CE:09:36:8E:5E:CF:3D:33:94:FD:B8 X509v3 Authority Key Identifier: keyid:69:A4:86:FB:F2:14:84:F1:41:2F:B8:A8:0A:27:8A:24:8C:EF:BE:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaSG-_IUhPFBL7ioCieKJIzvvrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4713/FE1BD97C892A11EEB614826AC4F9AE02/aaSG-_IUhPFBL7ioCieKJIzvvrI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:25:a2:d4:2f:7d:8b:b5:1e:52:9d:8b:eb:a4:30:cd:c2:40: 52:1d:68:91:c8:46:f8:29:88:91:e8:84:49:2a:79:31:37:5d: 2e:d1:38:1a:c0:27:b7:73:df:28:27:1b:1b:fb:39:69:03:fa: fe:bc:1b:7a:17:79:f3:3d:ad:e8:38:51:9d:4f:0a:e1:0c:69: e1:13:74:85:3f:ff:b2:9d:ff:cc:23:91:64:9e:8a:a1:37:8c: 73:f7:49:0f:2a:0f:32:c6:63:d1:22:e5:aa:68:e1:56:a1:d9: 5d:c3:eb:50:b2:5e:81:cf:fa:8e:06:75:2a:cc:36:3b:2a:31: bf:d6:89:0f:c7:8b:ee:27:80:29:2d:ad:52:d1:7c:ba:d8:93: 3c:18:05:af:4b:3b:c3:ac:a9:05:36:cd:86:e1:3d:65:37:d8: ac:20:c8:d3:e1:05:69:1a:da:87:31:e5:56:d2:f4:b2:ba:cf: a8:03:45:d6:02:6e:f5:a3:15:97:5e:b5:66:a1:19:11:71:6b: 14:4c:55:9d:6a:a2:3b:c4:5f:55:4c:01:16:06:87:ad:bc:d7: f1:b2:8b:0f:9d:7d:12:11:e9:13:7f:47:66:66:9a:2a:a8:38: fa:35:67:c9:07:7a:3a:a8:4a:7d:fb:c2:ad:98:b0:ad:c0:19: 50:89:25:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3MTMxMTAvBgNVBAUTKDY5QTQ4NkZCRjIxNDg0RjE0MTJGQjhBODBBMjc4QTI0 OENFRkJFQjIwHhcNMjUxMDE5MDYzODIyWhcNMjUxMDI2MDYzODIyWjAYMRYwFAYD VQQDEw02OGY0ODc1ZS0xODYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdzFNuFV57EOFB8mT2nX7JBfcJNwI4+m/NoAGooNlSAnAZ58E+LYkQdo/DQF bRBDyxxzTttT9o9MsXUpv7VNT8qONmAilmT3ZQx/f4YNzEHJRD4MbgMPv14jplf/ WAIKMcGrZ6LTMv72BNw/a05ga7bjiDgn5Dooo+QgDaCABW1YBGdxMOnKoiZCG6W0 DIPqVEMJugbwI98n+YxBx0syMenUHKXhH2bEPiXJ8Gloj9WeOzCuUB2GIp7AZnO+ oFWhk9O61GBPvzxaAxDoUAvfk0lOvk4AyIqsJ6ZCU39JGgESQTESUcrmHlccPC0p VIzhLX9asoo9MuGEQ7UrsSj0UQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNwPHSdp 68flYs4JNo5ezz0zlP24MB8GA1UdIwQYMBaAFGmkhvvyFITxQS+4qAoniiSM776y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDcxMy9GRTFCRDk3Qzg5 MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQRkJMN2lvQ2llS0pJenZ2 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhU0ctX0lVaFBGQkw3aW9DaWVLSkl6dnZySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDcxMy9GRTFCRDk3Qzg5MkExMUVFQjYxNDgyNkFDNEY5QUUwMi9hYVNHLV9JVWhQ RkJMN2lvQ2llS0pJenZ2ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIJaLUL32LtR5SnYvrpDDNwkBSHWiRyEb4KYiR6IRJKnkxN10u0Tga wCe3c98oJxsb+zlpA/r+vBt6F3nzPa3oOFGdTwrhDGnhE3SFP/+ynf/MI5Fknoqh N4xz90kPKg8yxmPRIuWqaOFWodldw+tQsl6Bz/qOBnUqzDY7KjG/1okPx4vuJ4Ap La1S0Xy62JM8GAWvSzvDrKkFNs2G4T1lN9isIMjT4QVpGtqHMeVW0vSyus+oA0XW Am71oxWXXrVmoRkRcWsUTFWdaqI7xF9VTAEWBoetvNfxsosPnX0SEekTf0dmZpoq qDj6NWfJB3o6qEp9+8KtmLCtwBlQiSUV -----END CERTIFICATE-----Generated at Mon Oct 20 13:40:21 2025 by rpki-client