$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft File: sgd9XTkKxy472IWxHzrm0qUmqe0.mft (raw, json) Hash identifier: nkjh4VlrodKmsh/ALVL6JST8je7uybvG5QoH1AmDWLA= Subject key identifier: A7:3C:11:CC:B0:0D:A8:7D:57:9C:EA:E6:AE:0C:52:7F:8B:DD:4C:3A Authority key identifier: B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED Certificate issuer: /CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Certificate serial: 07D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft Manifest number: 07C9 Signing time: Sat 18 Oct 2025 22:31:53 +0000 Manifest this update: Sat 18 Oct 2025 22:31:52 +0000 Manifest next update: Sat 25 Oct 2025 22:31:52 +0000 Files and hashes: 1: sgd9XTkKxy472IWxHzrm0qUmqe0.crl (hash: ZCutaiAeFGY6O0b6YeazGyG34Fw6Q7O+PcMbH06XdHs=) 2: 53B6E5D212CF11EBA8D2C037C4F9AE02.roa (hash: SqNXqLNgkpLICxW/LBSYL1V/21ZqqGqKzf6yPi47f5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:31:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2002 (0x7d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B85, serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Validity Not Before: Oct 18 22:31:52 2025 GMT Not After : Oct 25 22:31:52 2025 GMT Subject: CN=68f41558-d781 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:54:f3:8a:ca:47:59:f5:4f:dc:bb:4e:0f:34: e2:53:a2:3a:94:e8:1a:08:34:e0:4d:86:da:5c:91: 38:8a:8d:e0:32:69:9d:18:20:ae:f1:15:1a:14:9a: 8c:bc:bb:1e:0d:dc:43:9d:8d:2e:69:06:86:c6:04: 68:eb:72:95:95:70:9d:43:34:3b:15:cb:04:db:3d: d7:83:4b:a5:e7:27:1d:14:4d:60:a7:94:62:6a:24: b7:a0:f1:ed:e6:14:5d:81:3c:6a:b6:3a:da:80:aa: 2d:33:72:70:c3:1b:6b:09:76:53:9a:63:09:ff:86: 07:3b:81:4b:7a:21:28:7c:ba:70:a8:7a:bb:a3:80: 26:85:cf:72:82:9e:7d:e6:9a:51:d7:fe:64:5c:b2: a4:c7:67:65:1b:a1:3b:09:dc:43:7c:84:e6:56:d0: 2e:3a:bd:67:8b:7e:1a:d0:fe:97:f6:e0:86:28:24: ae:b2:ae:5f:6d:b9:f5:74:b0:d5:19:0f:e9:af:77: af:49:ce:57:ed:2f:52:8d:22:bf:3c:42:85:19:92: 41:3c:24:9f:a2:4f:51:88:12:96:0b:eb:7f:00:de: e1:f7:94:18:75:f5:52:44:3c:9e:81:a3:e8:3a:e5: 2a:b7:40:54:6f:44:92:25:a1:cd:06:35:09:e6:62: 2c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:3C:11:CC:B0:0D:A8:7D:57:9C:EA:E6:AE:0C:52:7F:8B:DD:4C:3A X509v3 Authority Key Identifier: keyid:B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:4f:bd:21:9e:e1:10:f9:86:6c:1c:c2:c6:5b:db:d9:35:f7: 7d:2d:1e:e5:61:09:e1:04:20:ac:87:24:6c:9b:55:ce:2f:6f: 4e:e7:90:1e:9c:88:f1:73:ff:82:f4:05:4a:89:87:32:4b:16: a9:25:0b:15:d8:8b:ea:bb:cd:3a:08:1c:25:3a:cb:31:ea:98: 68:69:fb:33:a8:47:f1:09:64:bf:a3:4b:28:af:df:7c:24:19: 09:68:cd:ea:8e:b3:20:2e:ff:45:da:54:80:53:50:bb:4f:2c: 30:f8:41:3a:03:f1:1d:98:25:4c:c5:d4:eb:39:4e:94:50:ba: 1d:e6:2e:14:64:75:09:8d:d9:38:46:9b:39:51:8f:cf:cc:56: 6e:dc:1c:28:53:8f:bb:27:d1:ac:e7:32:7e:4f:02:55:f3:3e: 9d:45:91:86:99:90:9a:42:ed:4b:ee:56:ab:27:d0:57:cf:1e: 7d:c8:12:7d:22:fb:16:4f:d9:3c:cb:d6:0a:59:40:a3:75:c1: e0:40:92:02:44:dc:e3:a0:d8:c3:3f:e0:37:a0:18:da:48:a4: a0:44:d8:d3:9c:e4:ef:97:21:d2:7e:19:f7:85:41:41:e6:49: 20:28:3f:23:ec:6c:e7:22:30:1a:93:95:f8:c4:24:a5:82:23: a0:89:73:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCODUxMTAvBgNVBAUTKEIyMDc3RDVEMzkwQUM3MkUzQkQ4ODVCMTFGM0FFNkQy QTUyNkE5RUQwHhcNMjUxMDE4MjIzMTUyWhcNMjUxMDI1MjIzMTUyWjAYMRYwFAYD VQQDEw02OGY0MTU1OC1kNzgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtlTzispHWfVP3LtODzTiU6I6lOgaCDTgTYbaXJE4io3gMmmdGCCu8RUaFJqM vLseDdxDnY0uaQaGxgRo63KVlXCdQzQ7FcsE2z3Xg0ul5ycdFE1gp5RiaiS3oPHt 5hRdgTxqtjragKotM3JwwxtrCXZTmmMJ/4YHO4FLeiEofLpwqHq7o4Amhc9ygp59 5ppR1/5kXLKkx2dlG6E7CdxDfITmVtAuOr1ni34a0P6X9uCGKCSusq5fbbn1dLDV GQ/pr3evSc5X7S9SjSK/PEKFGZJBPCSfok9RiBKWC+t/AN7h95QYdfVSRDyegaPo OuUqt0BUb0SSJaHNBjUJ5mIsLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKc8Ecyw Dah9V5zq5q4MUn+L3Uw6MB8GA1UdIwQYMBaAFLIHfV05CscuO9iFsR865tKlJqnt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUI4NS80MkQ3QzAwQzEy Q0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5NDcySVd4SHpybTBxVW1x ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnZDlYVGtLeHk0NzJJV3hIenJtMHFVbXFlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUI4NS80MkQ3QzAwQzEyQ0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5 NDcySVd4SHpybTBxVW1xZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmT70hnuEQ+YZsHMLGW9vZNfd9LR7lYQnhBCCshyRsm1XOL29O55Ae nIjxc/+C9AVKiYcySxapJQsV2Ivqu806CBwlOssx6phoafszqEfxCWS/o0sor998 JBkJaM3qjrMgLv9F2lSAU1C7Tyww+EE6A/EdmCVMxdTrOU6UULod5i4UZHUJjdk4 Rps5UY/PzFZu3BwoU4+7J9Gs5zJ+TwJV8z6dRZGGmZCaQu1L7larJ9BXzx59yBJ9 IvsWT9k8y9YKWUCjdcHgQJICRNzjoNjDP+A3oBjaSKSgRNjTnOTvlyHSfhn3hUFB 5kkgKD8j7GznIjAak5X4xCSlgiOgiXMl -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:05 2025 by rpki-client