$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft File: o9wYjy1VW0FacV8lkDahpg_8uNk.mft (raw, json) Hash identifier: O5+A82BcsYUvPLF716mHVukdYlyGoFrhoxIMX32fKZg= Subject key identifier: 23:66:88:FE:15:7F:6F:CF:E5:06:B5:D5:78:14:15:63:46:30:63:6C Authority key identifier: A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 Certificate issuer: /CN=A91C8F68/serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Certificate serial: 0255 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft Manifest number: 0250 Signing time: Sun 19 Oct 2025 03:59:41 +0000 Manifest this update: Sun 19 Oct 2025 03:59:40 +0000 Manifest next update: Sun 26 Oct 2025 03:59:40 +0000 Files and hashes: 1: o9wYjy1VW0FacV8lkDahpg_8uNk.crl (hash: PMfFqJ3iHeqsx6GIUCSe1dhevmQEe5jgVazOkN93WwQ=) 2: 2A766EA23A3411EDA1B7D863C4F9AE02.roa (hash: PfkrPDG++/2Nz9EpQDe53DnK5uMvt85T4k9+4QpNzFY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:59:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 597 (0x255) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F68, serialNumber=A3DC188F2D555B415A715F259036A1A60FFCB8D9 Validity Not Before: Oct 19 03:59:40 2025 GMT Not After : Oct 26 03:59:40 2025 GMT Subject: CN=68f4622d-bcdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d0:b2:bf:8c:0c:84:04:77:33:9d:b8:45:87: 9b:50:7b:3d:29:32:40:d2:ce:04:27:4b:6e:fa:b0: 2b:de:95:86:fa:d7:0c:ed:25:32:ef:8b:db:56:29: 46:7f:ab:c6:97:c6:29:4a:7e:d2:3f:cb:ee:a9:94: 25:d7:6b:cb:25:03:a6:89:92:a8:06:3c:dc:f7:f0: 49:4e:72:3c:27:a7:3c:66:bf:e8:a3:90:41:e7:68: be:6d:ac:38:f3:ed:be:05:54:81:ec:2d:23:80:db: 91:c4:03:ed:03:6c:08:e9:03:ea:ae:94:2b:c8:06: 92:89:e4:f2:05:1c:2d:ae:58:94:30:f8:48:9d:57: f2:bc:02:6c:06:1c:fd:4f:40:1f:f5:2e:2e:18:57: f0:e3:a9:6b:1e:28:78:68:84:b9:fc:ae:a2:63:c1: e0:1d:c1:3d:9e:ff:f8:53:7e:d4:9d:5f:66:f3:c6: f4:3e:04:ed:a7:4e:a9:bc:34:5f:4f:70:4b:45:15: db:33:fc:aa:f9:87:4b:82:71:eb:e9:c6:65:02:ed: 60:d5:be:fc:12:1e:f4:d6:b4:58:fa:0b:35:2c:8f: 7d:98:03:42:28:86:ad:3b:91:ca:fe:aa:ab:c2:06: c6:59:be:98:69:b9:b1:1a:61:7e:cb:f6:a9:8d:ce: db:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:66:88:FE:15:7F:6F:CF:E5:06:B5:D5:78:14:15:63:46:30:63:6C X509v3 Authority Key Identifier: keyid:A3:DC:18:8F:2D:55:5B:41:5A:71:5F:25:90:36:A1:A6:0F:FC:B8:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9wYjy1VW0FacV8lkDahpg_8uNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F68/6B60BFBA3A3111EDA10CA761C4F9AE02/o9wYjy1VW0FacV8lkDahpg_8uNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:e9:43:87:a7:c6:67:62:e3:62:1f:b3:50:73:d5:4c:11:33: d8:ba:c2:42:fb:fd:10:7c:87:02:82:17:0d:d5:10:eb:54:57: e3:02:18:9d:23:c1:20:11:16:32:70:52:f9:ef:1b:d6:83:0a: 7d:02:ae:cd:95:4f:cc:bf:83:31:a9:e4:5c:5b:75:2a:e8:a6: 28:5c:bb:86:ac:be:cd:89:3d:0e:2d:a0:dd:02:31:cf:f9:11: 9b:27:a8:2d:5e:55:b3:ee:c5:37:37:32:94:c2:73:e1:10:00: bd:25:8e:91:90:06:ad:77:08:9f:5b:f9:07:be:f0:9f:ec:c9: 05:2c:00:a2:24:4e:b0:2a:9d:af:ad:c4:90:9b:3e:4f:d5:4f: b8:e0:6d:55:dc:94:4c:90:a2:47:6c:35:4d:81:42:c3:6f:b7: 98:b1:25:a5:fb:1f:bc:b1:a0:dd:ff:32:25:bf:e9:fd:3d:13: 0b:d2:aa:81:c3:f0:af:de:d3:92:78:f9:9e:4f:d8:2a:43:2f: c4:95:b1:34:6e:f7:e7:84:32:01:b4:26:06:0c:7c:78:f7:a7: 16:a7:d5:c7:5d:ad:32:e6:12:97:e5:52:62:bc:3f:8e:0c:10: 48:37:f3:30:e5:59:fe:0b:ba:56:81:6d:07:87:bc:7e:c8:b0: 84:b4:0f:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGNjgxMTAvBgNVBAUTKEEzREMxODhGMkQ1NTVCNDE1QTcxNUYyNTkwMzZBMUE2 MEZGQ0I4RDkwHhcNMjUxMDE5MDM1OTQwWhcNMjUxMDI2MDM1OTQwWjAYMRYwFAYD VQQDEw02OGY0NjIyZC1iY2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudCyv4wMhAR3M524RYebUHs9KTJA0s4EJ0tu+rAr3pWG+tcM7SUy74vbVilG f6vGl8YpSn7SP8vuqZQl12vLJQOmiZKoBjzc9/BJTnI8J6c8Zr/oo5BB52i+baw4 8+2+BVSB7C0jgNuRxAPtA2wI6QPqrpQryAaSieTyBRwtrliUMPhInVfyvAJsBhz9 T0Af9S4uGFfw46lrHih4aIS5/K6iY8HgHcE9nv/4U37UnV9m88b0PgTtp06pvDRf T3BLRRXbM/yq+YdLgnHr6cZlAu1g1b78Eh701rRY+gs1LI99mANCKIatO5HK/qqr wgbGWb6YabmxGmF+y/apjc7bLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNmiP4V f2/P5Qa11XgUFWNGMGNsMB8GA1UdIwQYMBaAFKPcGI8tVVtBWnFfJZA2oaYP/LjZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEY2OC82QjYwQkZCQTNB MzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcwRmFjVjhsa0RhaHBnXzh1 TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285d1lqeTFWVzBGYWNWOGxrRGFocGdfOHVOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEY2OC82QjYwQkZCQTNBMzExMUVEQTEwQ0E3NjFDNEY5QUUwMi9vOXdZankxVlcw RmFjVjhsa0RhaHBnXzh1TmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA26UOHp8ZnYuNiH7NQc9VMETPYusJC+/0QfIcCghcN1RDrVFfjAhid I8EgERYycFL57xvWgwp9Aq7NlU/Mv4MxqeRcW3Uq6KYoXLuGrL7NiT0OLaDdAjHP +RGbJ6gtXlWz7sU3NzKUwnPhEAC9JY6RkAatdwifW/kHvvCf7MkFLACiJE6wKp2v rcSQmz5P1U+44G1V3JRMkKJHbDVNgULDb7eYsSWl+x+8saDd/zIlv+n9PRML0qqB w/Cv3tOSePmeT9gqQy/ElbE0bvfnhDIBtCYGDHx496cWp9XHXa0y5hKX5VJivD+O DBBIN/Mw5Vn+C7pWgW0Hh7x+yLCEtA/p -----END CERTIFICATE-----Generated at Mon Oct 20 00:20:47 2025 by rpki-client