$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft File: Sr2iSte9no2c77NZONCoeIBMYuQ.mft (raw, json) Hash identifier: c6taiiGqQwdpkLfkD1ZBBg98t6zux5TuKHOj5zYe2jE= Subject key identifier: 96:3B:28:3D:8C:8D:5F:15:6B:EC:B1:BF:99:8E:24:CA:E4:63:73:D4 Authority key identifier: 4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 Certificate issuer: /CN=A91BE096/serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Certificate serial: 10E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft Manifest number: 10CA Signing time: Sat 18 Oct 2025 17:51:56 +0000 Manifest this update: Sat 18 Oct 2025 17:51:55 +0000 Manifest next update: Sat 25 Oct 2025 17:51:55 +0000 Files and hashes: 1: Sr2iSte9no2c77NZONCoeIBMYuQ.crl (hash: vBSe7RHoXJnx3V7XSjvSOH24OgmPL/woerG1bvY3JOg=) 2: 60E695B6C52A11EE80D54071C4F9AE02.roa (hash: Ur8W3C7QgJQkw3BnGAD55weFMOItsdqD/26WShAlLaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:51:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4323 (0x10e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE096, serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Validity Not Before: Oct 18 17:51:55 2025 GMT Not After : Oct 25 17:51:55 2025 GMT Subject: CN=68f3d3bc-6ee9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e3:9f:4d:c9:de:5d:cf:71:46:22:9b:60:d2: e0:c9:8b:dd:cd:5b:1a:fe:b2:ea:ee:6a:63:06:d8: c2:e2:14:e5:8b:5a:24:75:4f:2a:a1:22:df:f9:b3: c1:f8:76:99:62:a9:58:e4:af:da:2a:72:70:01:56: af:3b:b1:31:e8:bc:bc:28:c0:52:5a:b2:9d:79:71: 12:e0:3b:a5:d1:22:88:08:e2:52:6a:3a:2f:c9:05: 0e:15:4e:ef:46:1c:79:13:f4:a6:a8:3a:18:fc:bc: 2d:57:1e:8d:6e:66:60:e1:7a:4a:f3:59:7b:40:72: c0:8f:23:bd:8e:23:a5:f9:a4:66:7d:d6:0c:c4:02: 00:95:56:b3:27:af:d3:ba:d1:38:c4:68:f1:c2:d9: da:de:2a:1d:e0:74:6d:64:e0:0f:08:fc:2a:bc:25: 54:f9:d2:fb:0f:3d:c5:dd:51:50:cf:92:41:03:71: 9c:49:b4:de:77:e0:12:a1:59:bd:47:64:fc:c6:28: dd:64:ce:da:ba:cf:52:2c:ee:0c:81:d5:16:b2:41: 08:a2:88:d1:c2:35:b6:53:97:b6:79:f1:4e:94:ea: 90:22:9f:ba:95:1b:b8:21:69:22:5b:28:69:dd:6c: a3:b0:88:6b:10:ce:dc:55:3d:c0:25:cd:b6:0a:f6: 86:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:3B:28:3D:8C:8D:5F:15:6B:EC:B1:BF:99:8E:24:CA:E4:63:73:D4 X509v3 Authority Key Identifier: keyid:4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:5c:3e:f7:96:65:9a:e2:70:3a:67:4f:52:35:d7:b3:e6:b9: d8:a9:5e:66:7a:51:8a:cc:7e:6c:07:c3:aa:bd:06:24:3c:4c: 21:5e:66:19:cd:41:85:09:73:37:47:92:14:87:52:5a:f1:c1: 02:e0:5b:8b:18:64:3b:e9:41:74:27:8f:fb:e3:e3:b6:05:2c: e9:e6:d3:19:f1:08:60:5f:36:89:50:49:1b:04:5a:b4:0f:e0: 9f:7d:b5:b0:d7:c1:b8:59:69:71:76:4d:39:1a:f0:e3:59:db: c7:fd:0c:ad:b8:ff:c3:38:aa:9d:ec:b2:25:7c:f1:a5:06:53: 82:93:4d:87:ce:d2:96:a0:54:57:7b:af:06:62:15:c0:fa:0c: 32:8d:89:ac:11:4a:1f:53:e3:7c:0e:b5:5f:81:69:91:2c:cb: 3f:e1:a8:13:46:a1:fa:0d:fa:c4:95:a7:de:83:bd:2a:dc:51: ce:c0:00:a5:ba:91:9f:79:f4:ca:77:dc:04:8c:db:21:4c:1e: 83:67:23:5b:c7:0c:e2:0a:7e:83:bb:db:84:94:22:79:d8:44: 37:43:a9:7c:32:b3:1b:86:33:a0:09:14:2c:f9:c1:4c:20:2e: 52:15:01:3b:44:0c:5d:94:98:37:d4:25:dd:45:83:70:4b:df: b9:60:82:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUwOTYxMTAvBgNVBAUTKDRBQkRBMjRBRDdCRDlFOEQ5Q0VGQjM1OTM4RDBBODc4 ODA0QzYyRTQwHhcNMjUxMDE4MTc1MTU1WhcNMjUxMDI1MTc1MTU1WjAYMRYwFAYD VQQDEw02OGYzZDNiYy02ZWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uOfTcneXc9xRiKbYNLgyYvdzVsa/rLq7mpjBtjC4hTli1okdU8qoSLf+bPB +HaZYqlY5K/aKnJwAVavO7Ex6Ly8KMBSWrKdeXES4Dul0SKICOJSajovyQUOFU7v Rhx5E/SmqDoY/LwtVx6NbmZg4XpK81l7QHLAjyO9jiOl+aRmfdYMxAIAlVazJ6/T utE4xGjxwtna3iod4HRtZOAPCPwqvCVU+dL7Dz3F3VFQz5JBA3GcSbTed+ASoVm9 R2T8xijdZM7aus9SLO4MgdUWskEIoojRwjW2U5e2efFOlOqQIp+6lRu4IWkiWyhp 3WyjsIhrEM7cVT3AJc22CvaG1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJY7KD2M jV8Va+yxv5mOJMrkY3PUMB8GA1UdIwQYMBaAFEq9okrXvZ6NnO+zWTjQqHiATGLk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTA5Ni8yRkJCNDQwRTMz NDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5vMmM3N05aT05Db2VJQk1Z dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NyMmlTdGU5bm8yYzc3TlpPTkNvZUlCTVl1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTA5Ni8yRkJCNDQwRTMzNDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5v MmM3N05aT05Db2VJQk1ZdVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcXD73lmWa4nA6Z09SNdez5rnYqV5melGKzH5sB8OqvQYkPEwhXmYZ zUGFCXM3R5IUh1Ja8cEC4FuLGGQ76UF0J4/74+O2BSzp5tMZ8QhgXzaJUEkbBFq0 D+CffbWw18G4WWlxdk05GvDjWdvH/QytuP/DOKqd7LIlfPGlBlOCk02HztKWoFRX e68GYhXA+gwyjYmsEUofU+N8DrVfgWmRLMs/4agTRqH6DfrElafeg70q3FHOwACl upGfefTKd9wEjNshTB6DZyNbxwziCn6Du9uElCJ52EQ3Q6l8MrMbhjOgCRQs+cFM IC5SFQE7RAxdlJg31CXdRYNwS9+5YIKC -----END CERTIFICATE-----Generated at Mon Oct 20 04:49:04 2025 by rpki-client