$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft File: 8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft (raw, json) Hash identifier: 70DwOfDLMcmLFIlPJoG8gpsoiXnDIK6AUflT9/B1Gtc= Subject key identifier: 17:5C:23:1B:D5:8D:5B:CB:BD:F7:D0:6B:28:ED:24:D8:37:44:0D:52 Authority key identifier: F2:E4:65:7F:B0:B1:51:42:73:C5:0E:EB:F9:0F:44:16:FD:A5:4B:07 Certificate issuer: /CN=A91C9916/serialNumber=F2E4657FB0B1514273C50EEBF90F4416FDA54B07 Certificate serial: 0221 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft Manifest number: 0221 Signing time: Sun 19 Oct 2025 04:14:45 +0000 Manifest this update: Sun 19 Oct 2025 04:14:44 +0000 Manifest next update: Sun 26 Oct 2025 04:14:44 +0000 Files and hashes: 1: 8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.crl (hash: fOhaht6dBfwrP6R+tnYD8odzOXbFWI2V6iY0/pOGSRk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.crl rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:14:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 545 (0x221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9916, serialNumber=F2E4657FB0B1514273C50EEBF90F4416FDA54B07 Validity Not Before: Oct 19 04:14:44 2025 GMT Not After : Oct 26 04:14:44 2025 GMT Subject: CN=68f465b4-58db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:53:d2:cf:59:97:53:b3:08:ba:55:35:39:1d: cf:55:c3:61:f8:87:04:5d:7d:c7:e2:a0:b2:fe:72: 0d:39:eb:68:49:87:ef:0c:94:3c:ba:f5:bc:06:3f: ff:89:3f:45:30:17:8e:92:d8:88:dd:41:7b:fe:13: 18:7f:0a:47:e9:ab:bc:97:08:01:44:ec:ba:48:11: a1:41:02:d2:b4:cc:c8:40:47:71:57:8a:06:f3:66: 7a:46:14:ff:43:86:20:ab:22:05:7d:81:67:4b:e5: 11:dc:48:fc:bd:67:a9:eb:be:6b:00:76:20:da:4d: 52:49:23:6e:fd:9d:e7:56:a0:86:b8:b3:8e:fe:9c: 64:23:78:1b:04:ee:40:f5:3b:61:c2:d9:64:d9:43: ae:e0:32:35:4c:a0:1a:bf:8e:92:e4:d8:28:ac:ab: 19:84:9d:76:0f:04:b1:e3:9b:06:00:c1:e6:80:78: ee:28:cb:2f:da:d4:b3:f1:73:8f:54:71:ea:60:43: 68:99:e4:43:ab:57:3b:ff:bf:49:37:55:8a:7e:f7: 38:87:d1:9a:f8:65:3d:a3:66:12:d9:f7:9f:85:66: ae:ac:d5:4e:4a:a2:76:37:20:d5:94:b7:b2:2f:7b: 1a:98:09:63:ca:d9:01:cd:30:ff:49:5c:8d:f3:ca: de:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:5C:23:1B:D5:8D:5B:CB:BD:F7:D0:6B:28:ED:24:D8:37:44:0D:52 X509v3 Authority Key Identifier: keyid:F2:E4:65:7F:B0:B1:51:42:73:C5:0E:EB:F9:0F:44:16:FD:A5:4B:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9916/239DC426618B11ED88ABBC22C4F9AE02/8uRlf7CxUUJzxQ7r-Q9EFv2lSwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:68:60:d6:18:86:97:b2:f1:56:15:2b:94:69:f2:13:1d:9e: 9c:5b:9a:03:dc:fd:b8:3f:26:24:8d:09:9d:00:41:fd:20:11: c6:55:19:01:d2:3d:37:2e:1c:95:e2:bc:8f:e9:fe:bb:4b:49: 0a:7d:c0:88:84:77:5b:2f:9b:c7:a5:c3:04:78:3a:96:6f:b7: c8:f2:89:fc:a3:9b:fd:08:b3:29:e7:9d:32:80:50:b0:3e:40: 44:b8:72:17:4a:a0:8c:71:4a:39:cc:fb:77:5a:f7:86:0c:b9: 48:99:34:25:db:c1:3f:1f:8f:88:bf:76:d6:48:30:40:34:56: ab:31:bd:1e:72:e2:47:96:dc:d3:0b:43:24:63:6b:22:f6:5f: 94:c7:70:47:b0:b1:96:3d:1c:d7:72:cc:e0:5d:72:66:50:75: fa:7a:91:6f:d4:e7:70:79:40:b1:58:59:d7:17:89:1f:dc:76: f3:89:51:ba:3f:44:97:08:d3:97:0f:e1:8d:7d:c4:d6:32:36: fd:f0:7d:ac:31:32:09:b0:d5:7f:84:69:99:b8:11:42:2f:ed: 94:ae:1f:90:ea:77:81:a0:3d:0b:29:7a:86:b5:3a:45:07:ec: 08:d3:23:d1:c5:13:45:67:74:2f:ea:0a:ef:87:a2:db:11:7d: 38:03:5d:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5MTYxMTAvBgNVBAUTKEYyRTQ2NTdGQjBCMTUxNDI3M0M1MEVFQkY5MEY0NDE2 RkRBNTRCMDcwHhcNMjUxMDE5MDQxNDQ0WhcNMjUxMDI2MDQxNDQ0WjAYMRYwFAYD VQQDEw02OGY0NjViNC01OGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVPSz1mXU7MIulU1OR3PVcNh+IcEXX3H4qCy/nINOetoSYfvDJQ8uvW8Bj// iT9FMBeOktiI3UF7/hMYfwpH6au8lwgBROy6SBGhQQLStMzIQEdxV4oG82Z6RhT/ Q4YgqyIFfYFnS+UR3Ej8vWep675rAHYg2k1SSSNu/Z3nVqCGuLOO/pxkI3gbBO5A 9Tthwtlk2UOu4DI1TKAav46S5NgorKsZhJ12DwSx45sGAMHmgHjuKMsv2tSz8XOP VHHqYENomeRDq1c7/79JN1WKfvc4h9Ga+GU9o2YS2fefhWaurNVOSqJ2NyDVlLey L3samAljytkBzTD/SVyN88reOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdcIxvV jVvLvffQayjtJNg3RA1SMB8GA1UdIwQYMBaAFPLkZX+wsVFCc8UO6/kPRBb9pUsH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTkxNi8yMzlEQzQyNjYx OEIxMUVEODhBQkJDMjJDNEY5QUUwMi84dVJsZjdDeFVVSnp4UTdyLVE5RUZ2MmxT d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh1UmxmN0N4VVVKenhRN3ItUTlFRnYybFN3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OTkxNi8yMzlEQzQyNjYxOEIxMUVEODhBQkJDMjJDNEY5QUUwMi84dVJsZjdDeFVV Snp4UTdyLVE5RUZ2MmxTd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWaGDWGIaXsvFWFSuUafITHZ6cW5oD3P24PyYkjQmdAEH9IBHGVRkB 0j03LhyV4ryP6f67S0kKfcCIhHdbL5vHpcMEeDqWb7fI8on8o5v9CLMp550ygFCw PkBEuHIXSqCMcUo5zPt3WveGDLlImTQl28E/H4+Iv3bWSDBANFarMb0ecuJHltzT C0MkY2si9l+Ux3BHsLGWPRzXcszgXXJmUHX6epFv1OdweUCxWFnXF4kf3HbziVG6 P0SXCNOXD+GNfcTWMjb98H2sMTIJsNV/hGmZuBFCL+2Urh+Q6neBoD0LKXqGtTpF B+wI0yPRxRNFZ3Qv6grvh6LbEX04A12z -----END CERTIFICATE-----Generated at Mon Oct 20 13:51:05 2025 by rpki-client