$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft File: 9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft (raw, json) Hash identifier: l5o6dsb6KHNBZWzYRgL+rWZFkLCqDsNuZSxvi/RdKvA= Subject key identifier: 32:07:95:4B:23:11:1F:09:89:7C:23:86:65:AD:2B:AB:6B:19:E2:A0 Authority key identifier: F7:26:7E:80:BE:81:7F:04:3D:28:FB:7E:73:05:F4:C4:88:A8:39:1A Certificate issuer: /CN=A91C7AA5/serialNumber=F7267E80BE817F043D28FB7E7305F4C488A8391A Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft Manifest number: 86 Signing time: Sun 19 Oct 2025 10:25:54 +0000 Manifest this update: Sun 19 Oct 2025 10:25:53 +0000 Manifest next update: Sun 26 Oct 2025 10:25:53 +0000 Files and hashes: 1: 9yZ-gL6BfwQ9KPt-cwX0xIioORo.crl (hash: PUr60YzNryubcYfgLr+S4FcWcCoqWB5cuQjvnl6GeyU=) 2: 0AC13D943C5711F0BFBB572EC4F9AE02.roa (hash: 61Maf4HdTVjL1p15SmMO0sDKtCDOS9JEKlRjMIwn4Cg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.crl rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7AA5, serialNumber=F7267E80BE817F043D28FB7E7305F4C488A8391A Validity Not Before: Oct 19 10:25:53 2025 GMT Not After : Oct 26 10:25:53 2025 GMT Subject: CN=68f4bcb2-d4f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2b:3d:22:2f:3a:bb:c2:b9:27:7c:c8:b3:b7: 66:d9:47:73:d8:87:db:f0:72:fc:b3:4e:68:a8:c1: 82:c1:e8:3c:6f:ad:34:f0:21:9a:9a:a7:6b:ea:62: 22:e8:de:33:54:73:0a:e8:64:7f:07:99:9e:98:b1: 69:59:2c:2f:d7:e5:33:b8:4c:90:8c:32:3e:6a:7f: 37:41:1d:12:3c:83:d1:d5:33:9e:2f:2b:c2:c3:f4: 4c:6d:86:8b:7e:f0:37:23:5a:27:9a:2b:e7:90:64: 97:c9:78:da:04:ed:ff:c1:0e:62:fd:d5:b6:f2:89: d0:03:d3:6b:c9:bd:8d:5e:ca:bd:7b:73:dd:49:32: f7:7e:c5:a0:87:79:7d:26:35:e7:b5:3b:b8:57:1c: 3f:14:29:13:c7:c0:53:c0:92:4d:9c:c8:4b:d7:57: 58:07:9f:dd:de:a4:d4:27:15:32:6c:91:92:ac:1a: 79:98:00:69:37:6f:ad:08:d9:98:06:bb:e1:b9:3e: 9a:d3:dd:93:d7:47:a8:d1:d6:fa:7e:b3:17:04:f0: 53:15:59:39:1c:0d:1b:03:97:a7:a8:82:ad:91:3f: 52:4d:f3:b6:86:91:49:24:77:d4:4a:a0:ec:7f:f5: fa:18:ef:6e:f6:e9:63:1a:0d:56:73:f4:1d:96:ce: cc:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:07:95:4B:23:11:1F:09:89:7C:23:86:65:AD:2B:AB:6B:19:E2:A0 X509v3 Authority Key Identifier: keyid:F7:26:7E:80:BE:81:7F:04:3D:28:FB:7E:73:05:F4:C4:88:A8:39:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9yZ-gL6BfwQ9KPt-cwX0xIioORo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7AA5/BAFB357415BB11F0BFD54881C4F9AE02/9yZ-gL6BfwQ9KPt-cwX0xIioORo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:ac:ec:4d:b9:09:ed:b3:55:14:a1:16:f0:53:8c:cc:78:8e: 4f:fd:90:ee:0b:56:1b:bc:11:5b:fb:a1:87:c6:8f:9a:12:a9: e5:b7:55:a0:31:c6:d6:11:61:f5:9b:37:5f:24:3b:58:0b:a3: b0:fd:2f:4f:01:5c:a9:2c:4d:4e:70:f8:12:96:b2:c6:bd:cf: 07:df:ef:c8:bc:99:da:8a:20:52:4c:d3:62:2e:47:ed:3f:73: 4b:7c:08:43:04:97:b5:41:5d:a7:40:4e:b0:41:61:02:ea:a4: 28:2e:36:e7:6d:80:1d:62:d7:b6:25:47:e9:60:08:ce:db:54: e8:65:b7:66:96:c9:ad:bd:6f:eb:28:51:f9:8f:02:03:ed:05: bc:3c:47:b4:fb:ae:1a:b2:b7:9d:07:23:04:75:6b:88:aa:24: ad:6a:c7:f7:ca:13:b1:5e:c2:1b:b3:56:96:78:1e:9c:6c:48: 42:f5:ba:b3:2e:64:16:82:a9:d8:71:03:6e:6c:bb:e7:de:6a: 67:b9:a4:bc:88:d7:85:42:e5:04:26:95:92:62:3f:c3:8b:62: 44:3b:d6:b4:6b:42:e9:0a:43:1f:17:ae:e3:38:9e:ef:4d:66: 04:c9:e8:67:7e:cf:d5:d5:11:3e:60:4b:d2:cb:df:f6:7a:2e: d1:27:4d:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdBQTUxMTAvBgNVBAUTKEY3MjY3RTgwQkU4MTdGMDQzRDI4RkI3RTczMDVGNEM0 ODhBODM5MUEwHhcNMjUxMDE5MTAyNTUzWhcNMjUxMDI2MTAyNTUzWjAYMRYwFAYD VQQDEw02OGY0YmNiMi1kNGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1is9Ii86u8K5J3zIs7dm2Udz2Ifb8HL8s05oqMGCweg8b6008CGamqdr6mIi 6N4zVHMK6GR/B5memLFpWSwv1+UzuEyQjDI+an83QR0SPIPR1TOeLyvCw/RMbYaL fvA3I1onmivnkGSXyXjaBO3/wQ5i/dW28onQA9Nryb2NXsq9e3PdSTL3fsWgh3l9 JjXntTu4Vxw/FCkTx8BTwJJNnMhL11dYB5/d3qTUJxUybJGSrBp5mABpN2+tCNmY BrvhuT6a092T10eo0db6frMXBPBTFVk5HA0bA5enqIKtkT9STfO2hpFJJHfUSqDs f/X6GO9u9uljGg1Wc/Qdls7M0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIHlUsj ER8JiXwjhmWtK6trGeKgMB8GA1UdIwQYMBaAFPcmfoC+gX8EPSj7fnMF9MSIqDka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0FBNS9CQUZCMzU3NDE1 QkIxMUYwQkZENTQ4ODFDNEY5QUUwMi85eVotZ0w2QmZ3UTlLUHQtY3dYMHhJaW9P Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5Wi1nTDZCZndROUtQdC1jd1gweElpb09Sby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0FBNS9CQUZCMzU3NDE1QkIxMUYwQkZENTQ4ODFDNEY5QUUwMi85eVotZ0w2QmZ3 UTlLUHQtY3dYMHhJaW9PUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnrOxNuQnts1UUoRbwU4zMeI5P/ZDuC1YbvBFb+6GHxo+aEqnlt1Wg McbWEWH1mzdfJDtYC6Ow/S9PAVypLE1OcPgSlrLGvc8H3+/IvJnaiiBSTNNiLkft P3NLfAhDBJe1QV2nQE6wQWEC6qQoLjbnbYAdYte2JUfpYAjO21ToZbdmlsmtvW/r KFH5jwID7QW8PEe0+64asredByMEdWuIqiStasf3yhOxXsIbs1aWeB6cbEhC9bqz LmQWgqnYcQNubLvn3mpnuaS8iNeFQuUEJpWSYj/Di2JEO9a0a0LpCkMfF67jOJ7v TWYEyehnfs/V1RE+YEvSy9/2ei7RJ022 -----END CERTIFICATE-----Generated at Sun Oct 19 23:22:29 2025 by rpki-client