$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft File: ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft (raw, json) Hash identifier: oFhOmtmM+4QsB5FSXCuzBf1zG9fXRG1xCa2DrXOatgo= Subject key identifier: 92:0E:CE:D8:C0:10:5F:79:2B:BB:6F:2C:71:A9:AE:66:A8:4F:32:73 Authority key identifier: 92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 Certificate issuer: /CN=A91CB8BA/serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Certificate serial: 08F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft Manifest number: 08EE Signing time: Sat 18 Oct 2025 21:28:26 +0000 Manifest this update: Sat 18 Oct 2025 21:28:26 +0000 Manifest next update: Sat 25 Oct 2025 21:28:26 +0000 Files and hashes: 1: ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl (hash: Eq1fEd22q1j2tIOVMIJFPAmtu+aLz4XF9C0r5cqydqM=) 2: 0B6B9DE6BAAE11EA8F1DA435C4F9AE02.roa (hash: Pjk7KOVj7H3BoAMc7NRiJiAFk/4ChSG9JZtPBtMlKPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:28:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2294 (0x8f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Validity Not Before: Oct 18 21:28:26 2025 GMT Not After : Oct 25 21:28:26 2025 GMT Subject: CN=68f4067a-9cd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ae:89:86:dc:c2:30:08:1e:4c:bf:a8:ab:0d: 33:63:d6:75:ad:2f:1e:0b:28:55:27:93:c3:ac:b5: 53:25:ed:75:c1:ea:8d:05:af:54:2d:8d:59:24:79: e7:00:44:57:5b:02:c1:df:9b:e6:8d:e0:17:6c:77: d9:a7:7e:ad:c5:6a:19:be:f5:1d:cd:fe:21:5e:e1: a4:a0:14:6e:99:61:e6:62:71:88:49:cb:3d:92:4a: 92:86:a5:7a:6b:5f:4c:c0:2d:5b:e7:c3:a1:0f:01: 9b:9e:d2:5f:a5:9a:35:36:8c:1f:ae:93:88:21:a0: 72:18:56:c7:04:8f:d9:10:03:b7:b6:91:db:e8:3c: 65:27:ad:cd:22:5a:6f:2e:ba:17:6e:db:f7:a3:39: 28:df:9b:4b:dc:f9:3c:f8:ab:c1:a2:a7:39:a8:f2: 6f:f6:1e:b7:a9:6d:50:9c:0e:c2:06:a6:ed:6c:c4: e6:be:dc:dc:a6:4a:dc:a5:64:f0:fd:61:9a:82:c0: 04:6a:78:0f:14:1a:81:06:bc:cd:19:51:4e:47:6a: fd:04:60:72:f4:67:33:26:9c:56:d7:aa:dd:73:1e: 4b:fb:02:f9:3a:17:0b:22:cc:04:7f:5f:c9:be:ff: ff:cf:5f:48:14:c5:34:b3:70:d2:a0:15:68:52:45: e6:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:0E:CE:D8:C0:10:5F:79:2B:BB:6F:2C:71:A9:AE:66:A8:4F:32:73 X509v3 Authority Key Identifier: keyid:92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:b5:51:a1:dd:7a:fe:8f:f9:80:ae:7e:fc:ca:6d:b6:87:1a: cc:fe:bc:b4:96:87:ee:2c:f3:2c:13:79:ff:23:68:68:d8:ce: 52:99:2a:41:20:c8:77:8b:b7:5a:1d:9b:a8:38:49:6f:45:f3: e8:72:25:ac:2e:24:2f:42:df:cb:00:c3:eb:45:2b:15:56:6b: b5:91:be:77:03:9d:c0:54:6e:05:bc:81:b7:90:3d:d7:1b:99: 77:dc:12:3b:50:7e:d3:da:da:71:f3:f3:9a:c7:c9:15:38:d2: d0:0f:1c:cb:38:ba:8c:0b:74:f0:69:31:19:ff:76:bb:0e:03: dc:dc:86:ca:4a:1f:21:75:1b:0e:d5:46:f1:65:62:9c:ab:c2: 46:6a:b2:22:63:56:1a:38:a4:8c:12:ce:76:18:d1:6a:55:77: f7:a8:23:54:4d:0d:d8:ad:da:ff:92:bd:42:f1:d7:87:c8:7b: 27:bd:94:f6:ba:8a:03:7d:75:b2:cd:82:6c:0c:ba:00:79:36: fe:e8:6b:db:69:ed:86:d5:b5:65:a8:51:47:dd:09:8d:56:29: 2d:06:af:45:08:62:fa:31:2a:01:55:03:23:f7:24:54:83:c2: 0a:68:a6:fa:ed:c1:92:5a:68:23:22:0b:8e:21:44:55:7d:f4: c9:02:98:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDkyMkQ2MEVBMTkzOTY3MTc3QkM2QzM5QTQwNjg1OThB M0I3NUE2RDMwHhcNMjUxMDE4MjEyODI2WhcNMjUxMDI1MjEyODI2WjAYMRYwFAYD VQQDEw02OGY0MDY3YS05Y2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3K6JhtzCMAgeTL+oqw0zY9Z1rS8eCyhVJ5PDrLVTJe11weqNBa9ULY1ZJHnn AERXWwLB35vmjeAXbHfZp36txWoZvvUdzf4hXuGkoBRumWHmYnGIScs9kkqShqV6 a19MwC1b58OhDwGbntJfpZo1NowfrpOIIaByGFbHBI/ZEAO3tpHb6DxlJ63NIlpv LroXbtv3ozko35tL3Pk8+KvBoqc5qPJv9h63qW1QnA7CBqbtbMTmvtzcpkrcpWTw /WGagsAEangPFBqBBrzNGVFOR2r9BGBy9GczJpxW16rdcx5L+wL5OhcLIswEf1/J vv//z19IFMU0s3DSoBVoUkXmvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJIOztjA EF95K7tvLHGprmaoTzJzMB8GA1UdIwQYMBaAFJItYOoZOWcXe8bDmkBoWYo7dabT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8zMjA5MDFDNEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4ZDd4c09hUUdoWmlqdDFw dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tpMWc2aGs1WnhkN3hzT2FRR2haaWp0MXB0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8zMjA5MDFDNEJBODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4 ZDd4c09hUUdoWmlqdDFwdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGtVGh3Xr+j/mArn78ym22hxrM/ry0lofuLPMsE3n/I2ho2M5SmSpB IMh3i7daHZuoOElvRfPociWsLiQvQt/LAMPrRSsVVmu1kb53A53AVG4FvIG3kD3X G5l33BI7UH7T2tpx8/Oax8kVONLQDxzLOLqMC3TwaTEZ/3a7DgPc3IbKSh8hdRsO 1UbxZWKcq8JGarIiY1YaOKSMEs52GNFqVXf3qCNUTQ3Yrdr/kr1C8deHyHsnvZT2 uooDfXWyzYJsDLoAeTb+6Gvbae2G1bVlqFFH3QmNViktBq9FCGL6MSoBVQMj9yRU g8IKaKb67cGSWmgjIguOIURVffTJAph1 -----END CERTIFICATE-----Generated at Mon Oct 20 09:36:07 2025 by rpki-client