$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft File: itYQrIti8qb8qCWJVdXxJJJ7OgA.mft (raw, json) Hash identifier: oilfC7jVgyhu3hfujYhJK70MpP87sXanFrta7ymfnNk= Subject key identifier: 2C:FF:1F:3D:91:F0:1B:FD:F2:55:B9:B7:BC:AC:99:4E:AE:BC:41:82 Authority key identifier: 8A:D6:10:AC:8B:62:F2:A6:FC:A8:25:89:55:D5:F1:24:92:7B:3A:00 Certificate issuer: /CN=A91BEE1D/serialNumber=8AD610AC8B62F2A6FCA8258955D5F124927B3A00 Certificate serial: 96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft Manifest number: 96 Signing time: Sun 19 Oct 2025 09:38:01 +0000 Manifest this update: Sun 19 Oct 2025 09:38:01 +0000 Manifest next update: Sun 26 Oct 2025 09:38:01 +0000 Files and hashes: 1: itYQrIti8qb8qCWJVdXxJJJ7OgA.crl (hash: zf/cfEM6QhzUoOBIxKgPcyZ6xHN3n4HBBXuHuaKf2uo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.crl rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEE1D, serialNumber=8AD610AC8B62F2A6FCA8258955D5F124927B3A00 Validity Not Before: Oct 19 09:38:01 2025 GMT Not After : Oct 26 09:38:01 2025 GMT Subject: CN=68f4b179-6d88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:70:6e:98:96:d5:90:db:4e:15:31:a0:04:de: 7b:f4:21:fb:95:66:9d:86:a0:dc:22:14:71:2c:76: a5:03:fa:36:27:e1:6a:f0:d8:8a:a9:d1:04:38:af: 9d:36:c3:4f:6f:bb:3e:f0:d2:0c:d5:12:80:f5:9b: 2d:2c:6b:e7:17:ec:52:d7:74:43:21:1b:99:16:74: 4d:c9:05:1e:e4:3b:96:77:2c:8d:55:a5:16:c0:ef: 1f:be:12:f2:7d:6f:bf:d2:cb:8b:a8:69:14:2d:2f: a4:7a:c6:1a:29:6c:5f:ef:ee:76:ae:28:36:79:d1: ce:9e:f4:e1:65:9d:4b:e1:a0:89:bc:ce:95:58:63: 2a:4d:4a:e2:c3:5e:0a:22:25:51:e8:72:77:88:df: 00:66:25:b7:bd:98:d7:7a:cf:69:a1:01:41:2b:4f: 34:74:a1:9d:de:e7:a4:2e:a6:8b:3a:23:77:8d:50: 11:b5:86:21:a0:21:be:ac:1d:a8:14:ad:e9:30:4c: 76:ea:23:b3:6f:6d:82:c2:5c:61:06:11:94:54:92: 11:cb:b3:3c:76:ae:5d:6e:1a:ab:8b:b4:bb:85:b2: db:6a:8e:35:44:57:8e:9a:1c:c9:f8:a6:1e:fe:ce: 81:19:84:26:29:a2:06:e0:b8:74:cd:cf:f6:1f:93: e2:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:FF:1F:3D:91:F0:1B:FD:F2:55:B9:B7:BC:AC:99:4E:AE:BC:41:82 X509v3 Authority Key Identifier: keyid:8A:D6:10:AC:8B:62:F2:A6:FC:A8:25:89:55:D5:F1:24:92:7B:3A:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/itYQrIti8qb8qCWJVdXxJJJ7OgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEE1D/9ADADADEC70E11EF8067C466C4F9AE02/itYQrIti8qb8qCWJVdXxJJJ7OgA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:83:2c:25:68:72:d1:36:57:16:7c:be:bf:f7:51:92:ef:39: 33:66:9d:b9:63:13:54:1e:bc:89:e7:12:69:72:97:70:cd:6e: bf:c5:30:19:b0:b8:8f:a7:54:17:ec:32:37:40:43:3c:48:e1: 3b:16:c0:cf:6a:e4:34:3b:07:c1:99:62:b6:0b:cd:8e:8f:e0: 34:71:cc:bc:1b:d1:c9:67:5b:50:62:e4:f3:96:c4:96:81:85: 24:25:d2:e5:ec:96:41:0e:0c:05:64:1c:cf:68:ac:5b:47:fc: 8a:bc:d4:05:a9:a4:a2:bb:eb:77:2e:a6:92:af:3a:9b:39:70: 3c:9f:c1:f1:7c:4e:5a:0c:45:6c:2a:f9:39:bf:3b:35:be:13: 6a:78:2e:fa:20:54:13:52:1a:29:24:67:e8:3c:b5:c4:b8:7b: aa:46:d8:85:f8:93:66:a0:93:f4:07:13:f3:a7:7d:51:3a:04: 69:5c:95:d3:66:5f:55:df:9f:45:87:5c:c5:d7:ae:97:2d:f7: ca:7c:9b:f1:8b:0f:b3:ab:f8:5a:06:e0:fb:fb:d6:45:8a:0b: d8:72:3d:2e:b8:81:79:e4:b2:0a:22:b5:34:ca:f3:aa:4e:89: 86:ff:fe:c7:ac:14:7b:1a:d7:a4:2c:46:7c:37:e0:5f:8c:5d: e6:c9:da:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVFMUQxMTAvBgNVBAUTKDhBRDYxMEFDOEI2MkYyQTZGQ0E4MjU4OTU1RDVGMTI0 OTI3QjNBMDAwHhcNMjUxMDE5MDkzODAxWhcNMjUxMDI2MDkzODAxWjAYMRYwFAYD VQQDEw02OGY0YjE3OS02ZDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3BumJbVkNtOFTGgBN579CH7lWadhqDcIhRxLHalA/o2J+Fq8NiKqdEEOK+d NsNPb7s+8NIM1RKA9ZstLGvnF+xS13RDIRuZFnRNyQUe5DuWdyyNVaUWwO8fvhLy fW+/0suLqGkULS+kesYaKWxf7+52rig2edHOnvThZZ1L4aCJvM6VWGMqTUriw14K IiVR6HJ3iN8AZiW3vZjXes9poQFBK080dKGd3uekLqaLOiN3jVARtYYhoCG+rB2o FK3pMEx26iOzb22CwlxhBhGUVJIRy7M8dq5dbhqri7S7hbLbao41RFeOmhzJ+KYe /s6BGYQmKaIG4Lh0zc/2H5PidQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCz/Hz2R 8Bv98lW5t7ysmU6uvEGCMB8GA1UdIwQYMBaAFIrWEKyLYvKm/KgliVXV8SSSezoA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUUxRC85QURBREFERUM3 MEUxMUVGODA2N0M0NjZDNEY5QUUwMi9pdFlRckl0aThxYjhxQ1dKVmRYeEpKSjdP Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l0WVFySXRpOHFiOHFDV0pWZFh4SkpKN09nQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUUxRC85QURBREFERUM3MEUxMUVGODA2N0M0NjZDNEY5QUUwMi9pdFlRckl0aThx YjhxQ1dKVmRYeEpKSjdPZ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVgywlaHLRNlcWfL6/91GS7zkzZp25YxNUHryJ5xJpcpdwzW6/xTAZ sLiPp1QX7DI3QEM8SOE7FsDPauQ0OwfBmWK2C82Oj+A0ccy8G9HJZ1tQYuTzlsSW gYUkJdLl7JZBDgwFZBzPaKxbR/yKvNQFqaSiu+t3LqaSrzqbOXA8n8HxfE5aDEVs Kvk5vzs1vhNqeC76IFQTUhopJGfoPLXEuHuqRtiF+JNmoJP0BxPzp31ROgRpXJXT Zl9V359Fh1zF166XLffKfJvxiw+zq/haBuD7+9ZFigvYcj0uuIF55LIKIrU0yvOq TomG//7HrBR7GtekLEZ8N+BfjF3mydrc -----END CERTIFICATE-----Generated at Mon Oct 20 08:23:24 2025 by rpki-client