$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft File: 09eD7kxpu1Bj-1z1smKLx77DdIo.mft (raw, json) Hash identifier: Fta+SrT3dscNz028+FQDIObYgOiZZqLb+h/fGUhXMo0= Subject key identifier: 46:C2:8E:2E:9D:50:6C:96:85:DB:7A:23:5C:F2:53:AC:D6:E8:CC:A3 Authority key identifier: D3:D7:83:EE:4C:69:BB:50:63:FB:5C:F5:B2:62:8B:C7:BE:C3:74:8A Certificate issuer: /CN=A91B9A77/serialNumber=D3D783EE4C69BB5063FB5CF5B2628BC7BEC3748A Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft Manifest number: C9 Signing time: Sun 19 Oct 2025 03:30:25 +0000 Manifest this update: Sun 19 Oct 2025 03:30:24 +0000 Manifest next update: Sun 26 Oct 2025 03:30:24 +0000 Files and hashes: 1: 09eD7kxpu1Bj-1z1smKLx77DdIo.crl (hash: 0tCgO5hPvmp/1PBex5zQoBth0V6LJrhsmfIpnV95ZrM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.crl rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:30:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9A77, serialNumber=D3D783EE4C69BB5063FB5CF5B2628BC7BEC3748A Validity Not Before: Oct 19 03:30:24 2025 GMT Not After : Oct 26 03:30:24 2025 GMT Subject: CN=68f45b51-94de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1e:60:1b:d2:71:cf:8b:ab:47:5d:4e:30:8a: af:5a:22:7d:8b:12:0b:1f:c9:d5:b9:1c:39:e3:44: 19:cf:db:95:15:f7:29:27:a8:fb:df:a9:ae:b5:09: b3:19:6e:b1:18:d1:1f:8b:13:b7:5e:b5:42:30:c1: c4:0a:2a:cf:8c:44:e7:e1:79:d7:1f:f6:fe:9d:62: bc:53:c1:9e:d6:0e:ed:d0:7a:2c:e2:d7:60:8c:96: 6e:a0:5b:21:3b:48:26:9a:5c:69:ad:d0:09:5f:8a: 63:7c:2f:f4:4f:68:05:6f:61:9e:5d:36:36:c0:37: 26:ab:31:77:aa:3e:60:d7:7b:7d:aa:e9:1f:83:45: aa:32:35:a8:f1:97:e3:c4:fe:18:db:d1:3d:14:b0: 9d:ca:36:61:15:70:a7:e2:5e:14:5e:ca:ba:56:21: aa:d1:35:b2:02:40:9c:b4:27:7e:71:7b:d0:cf:68: 6c:d8:54:c1:1d:3f:7b:78:6e:ac:49:1f:c1:88:1d: 5c:50:6c:bb:1a:48:7a:c1:d5:d2:da:d9:c2:bd:d3: ba:d3:ba:28:9a:d7:38:39:4c:f4:f7:31:d2:6f:17: 91:35:9d:d5:94:a1:c0:49:ff:91:4f:54:99:80:a2: 21:a2:a7:19:cc:d5:77:5a:7c:0a:cb:dd:10:d4:1f: a3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:C2:8E:2E:9D:50:6C:96:85:DB:7A:23:5C:F2:53:AC:D6:E8:CC:A3 X509v3 Authority Key Identifier: keyid:D3:D7:83:EE:4C:69:BB:50:63:FB:5C:F5:B2:62:8B:C7:BE:C3:74:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/09eD7kxpu1Bj-1z1smKLx77DdIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9A77/AB8534407A3F11EFA1C0E016C4F9AE02/09eD7kxpu1Bj-1z1smKLx77DdIo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:0a:a1:be:5d:9d:9e:8f:45:3e:f3:55:3c:b7:46:34:2a:d7: 18:d5:9b:8f:29:45:fb:bc:c0:c2:2c:f7:8e:1c:7c:02:2b:b0: 5c:02:ec:0f:b5:01:91:36:00:9f:3e:e0:01:ec:a1:db:1a:52: 35:35:65:90:65:26:f2:ca:22:cb:21:37:4a:da:c7:da:d9:8d: cb:08:41:ac:64:5d:0e:10:4c:a4:30:59:38:c3:0d:7c:35:c2: 99:80:f7:12:70:70:04:37:bf:94:32:d8:6f:30:e4:68:88:e8: eb:59:cd:0d:53:ed:5e:04:ad:37:b8:d9:df:2f:a1:fa:ef:40: 5c:8c:34:cd:8d:a2:3e:5c:49:77:8a:05:54:2d:3b:a2:27:e3: 95:e6:0c:06:1e:86:a9:10:8e:d9:e4:30:98:52:a8:e8:5d:76: 1d:5f:62:93:41:55:f6:8f:37:77:04:17:20:ce:cd:38:4d:ca: 5c:25:41:a5:0e:a9:ed:bb:ea:59:22:30:08:60:cc:3a:db:9b: 1f:fd:34:39:fe:d9:51:d7:ac:65:f4:58:7f:c9:dd:d2:1f:f6: 1c:80:49:72:4f:48:3f:51:d2:9e:05:ae:5c:48:5b:79:0a:43: 9f:db:d1:93:bd:40:33:72:1d:44:37:16:9b:44:89:0e:cf:33: 88:f1:fb:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBNzcxMTAvBgNVBAUTKEQzRDc4M0VFNEM2OUJCNTA2M0ZCNUNGNUIyNjI4QkM3 QkVDMzc0OEEwHhcNMjUxMDE5MDMzMDI0WhcNMjUxMDI2MDMzMDI0WjAYMRYwFAYD VQQDEw02OGY0NWI1MS05NGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2B5gG9Jxz4urR11OMIqvWiJ9ixILH8nVuRw540QZz9uVFfcpJ6j736mutQmz GW6xGNEfixO3XrVCMMHECirPjETn4XnXH/b+nWK8U8Ge1g7t0Hos4tdgjJZuoFsh O0gmmlxprdAJX4pjfC/0T2gFb2GeXTY2wDcmqzF3qj5g13t9qukfg0WqMjWo8Zfj xP4Y29E9FLCdyjZhFXCn4l4UXsq6ViGq0TWyAkCctCd+cXvQz2hs2FTBHT97eG6s SR/BiB1cUGy7Gkh6wdXS2tnCvdO607oomtc4OUz09zHSbxeRNZ3VlKHASf+RT1SZ gKIhoqcZzNV3WnwKy90Q1B+jZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEbCji6d UGyWhdt6I1zyU6zW6MyjMB8GA1UdIwQYMBaAFNPXg+5MabtQY/tc9bJii8e+w3SK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUE3Ny9BQjg1MzQ0MDdB M0YxMUVGQTFDMEUwMTZDNEY5QUUwMi8wOWVEN2t4cHUxQmotMXoxc21LTHg3N0Rk SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA5ZUQ3a3hwdTFCai0xejFzbUtMeDc3RGRJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUE3Ny9BQjg1MzQ0MDdBM0YxMUVGQTFDMEUwMTZDNEY5QUUwMi8wOWVEN2t4cHUx QmotMXoxc21LTHg3N0RkSW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfCqG+XZ2ej0U+81U8t0Y0KtcY1ZuPKUX7vMDCLPeOHHwCK7BcAuwP tQGRNgCfPuAB7KHbGlI1NWWQZSbyyiLLITdK2sfa2Y3LCEGsZF0OEEykMFk4ww18 NcKZgPcScHAEN7+UMthvMORoiOjrWc0NU+1eBK03uNnfL6H670BcjDTNjaI+XEl3 igVULTuiJ+OV5gwGHoapEI7Z5DCYUqjoXXYdX2KTQVX2jzd3BBcgzs04TcpcJUGl Dqntu+pZIjAIYMw625sf/TQ5/tlR16xl9Fh/yd3SH/YcgElyT0g/UdKeBa5cSFt5 CkOf29GTvUAzch1ENxabRIkOzzOI8fs9 -----END CERTIFICATE-----Generated at Tue Oct 21 00:03:33 2025 by rpki-client