$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft File: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft (raw, json) Hash identifier: eBPPa9T4ZWltkS6EfSQgpxcbTyRFgyM8iBGf645NdsI= Subject key identifier: 4A:6D:36:C2:27:12:CB:50:93:03:CF:EE:28:43:4B:12:C0:A4:7B:BA Authority key identifier: D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 Certificate issuer: /CN=A91C8F27/serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Certificate serial: 099F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft Manifest number: 095A Signing time: Sat 18 Oct 2025 21:21:41 +0000 Manifest this update: Sat 18 Oct 2025 21:21:40 +0000 Manifest next update: Sat 25 Oct 2025 21:21:40 +0000 Files and hashes: 1: 0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl (hash: Mx4InMmkxIXlfzAX+Hp3gPKNCJXct5553ItNWTmrxBE=) 2: BDB203466B5D11EF84E04577C4F9AE02.roa (hash: BOBDyoF9n7xbx3TtkofAs1yOLOgU9o92r9+fjg3ExtE=) 3: A02B90EA479311F0BBFADC27C4F9AE02.roa (hash: FSGba/ksTfUcD5c5nTx4WizNyHeIp3OO4bcFqqjagGE=) 4: 2857F2E4111A11EF86332415C4F9AE02.roa (hash: yNiSqyUgGq7X2OqvzLvfoSJUstp1wz+ZN5+bLrhI6IQ=) 5: 51B031C80E8D11EE89A0B128C4F9AE02.roa (hash: 4OgZKWzHSPDUQ7eYlV4agiNuq4N/lgNw19COSO6Bfk8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2463 (0x99f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F27, serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Validity Not Before: Oct 18 21:21:40 2025 GMT Not After : Oct 25 21:21:40 2025 GMT Subject: CN=68f404e5-34f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:94:f8:6e:51:7a:47:08:cc:51:28:58:47:d8: 2d:2b:77:7e:ca:75:09:78:81:75:c5:61:43:01:d8: b2:21:70:f9:07:ec:9f:cb:a2:77:4c:0f:4f:38:3f: 4a:ee:62:5e:90:86:36:f2:de:71:53:f2:9c:3e:af: ab:66:a1:3e:f8:8a:b8:c9:76:8c:af:bb:64:bc:f1: ea:42:d8:ba:77:81:6c:b7:0c:71:7f:13:9b:5e:4b: c3:9e:af:08:b9:7f:7c:87:7a:3b:8a:e0:77:40:cd: 2f:90:95:25:fa:49:42:4f:64:3e:03:60:61:5b:3c: a5:4f:d8:cd:de:d7:27:80:0a:f0:f9:45:9c:88:79: 71:d1:51:79:85:87:64:28:36:6c:22:aa:b6:a6:f3: cf:34:57:bb:2f:f6:a9:00:02:e2:29:01:3e:7e:46: 4a:86:a1:34:0b:ce:75:02:ae:aa:a9:b0:b3:db:06: 3e:fe:9e:c5:7b:cb:e5:82:74:23:80:69:54:09:60: 33:89:41:db:01:33:f6:0e:cd:dc:00:24:35:59:37: 86:7f:44:b8:d6:fe:3b:42:e0:5f:94:07:cd:1d:c5: 7a:cf:35:86:1b:a4:a8:56:87:3e:2f:ec:be:bc:c4: b6:90:96:0f:17:fa:08:c5:6e:9f:c2:35:49:59:f3: 38:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:6D:36:C2:27:12:CB:50:93:03:CF:EE:28:43:4B:12:C0:A4:7B:BA X509v3 Authority Key Identifier: keyid:D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:01:cf:b1:55:d9:4b:46:89:71:00:75:45:f1:3c:4b:c1:3d: 86:5d:6f:37:fb:57:53:77:7c:09:24:86:17:f7:07:ee:be:04: c4:b8:e1:44:d5:57:f5:37:c4:d8:da:3d:06:35:3b:b8:9b:7e: 4b:fd:d5:58:bc:b3:be:d6:a0:52:20:9b:6a:b1:fc:dc:78:e7: 36:61:d4:e9:7a:59:d0:a1:d5:db:6b:f6:03:77:e8:18:31:5a: 1b:42:79:50:46:8c:c5:17:0c:5e:c7:fe:2d:81:60:ff:92:24: 42:bf:ca:4a:dc:5c:83:39:fd:0c:47:2f:76:f2:40:08:cb:cf: a4:a6:c2:5b:87:8d:36:e8:3e:8f:92:79:5b:fd:86:c9:5a:18: 08:86:ac:11:b3:a2:c1:28:1b:77:53:33:d2:7f:02:11:0b:49: 65:b2:5b:35:3e:6a:cc:06:ae:80:79:ba:df:c0:36:02:1b:3c: f7:12:b1:97:d4:a8:dc:26:ed:d6:b6:3d:39:45:4d:08:07:02: f6:e5:36:5c:0b:6a:cb:32:80:ae:38:d6:31:2b:44:47:5e:ed: 02:c2:1e:b4:c0:77:6b:d7:29:1c:50:df:ef:6e:94:2f:2c:d4: fe:12:0c:c5:d9:40:60:33:3a:96:b0:bc:b8:1b:f4:17:67:0b: 58:28:83:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCZ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGMjcxMTAvBgNVBAUTKEQxQTM2Q0Q4RUQyMzU1MDgyNzYxQTNEQjEzRUREMzBE RkRBMkNGRDAwHhcNMjUxMDE4MjEyMTQwWhcNMjUxMDI1MjEyMTQwWjAYMRYwFAYD VQQDEw02OGY0MDRlNS0zNGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pT4blF6RwjMUShYR9gtK3d+ynUJeIF1xWFDAdiyIXD5B+yfy6J3TA9POD9K 7mJekIY28t5xU/KcPq+rZqE++Iq4yXaMr7tkvPHqQti6d4FstwxxfxObXkvDnq8I uX98h3o7iuB3QM0vkJUl+klCT2Q+A2BhWzylT9jN3tcngArw+UWciHlx0VF5hYdk KDZsIqq2pvPPNFe7L/apAALiKQE+fkZKhqE0C851Aq6qqbCz2wY+/p7Fe8vlgnQj gGlUCWAziUHbATP2Ds3cACQ1WTeGf0S41v47QuBflAfNHcV6zzWGG6SoVoc+L+y+ vMS2kJYPF/oIxW6fwjVJWfM4+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEptNsIn EstQkwPP7ihDSxLApHu6MB8GA1UdIwQYMBaAFNGjbNjtI1UIJ2Gj2xPt0w39os/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEYyNy83RjUyMjlBOEIw OTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZRZ25ZYVBiRS0zVERmMml6 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBhTnMyTzBqVlFnbllhUGJFLTNURGYyaXo5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEYyNy83RjUyMjlBOEIwOTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZR Z25ZYVBiRS0zVERmMml6OUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+Ac+xVdlLRolxAHVF8TxLwT2GXW83+1dTd3wJJIYX9wfuvgTEuOFE 1Vf1N8TY2j0GNTu4m35L/dVYvLO+1qBSIJtqsfzceOc2YdTpelnQodXba/YDd+gY MVobQnlQRozFFwxex/4tgWD/kiRCv8pK3FyDOf0MRy928kAIy8+kpsJbh4026D6P knlb/YbJWhgIhqwRs6LBKBt3UzPSfwIRC0llsls1PmrMBq6AebrfwDYCGzz3ErGX 1KjcJu3Wtj05RU0IBwL25TZcC2rLMoCuONYxK0RHXu0Cwh60wHdr1ykcUN/vbpQv LNT+EgzF2UBgMzqWsLy4G/QXZwtYKIPR -----END CERTIFICATE-----Generated at Sun Oct 19 17:31:35 2025 by rpki-client