$ rpki-client -vvf rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft File: dddb2lG8oAYPcIETI0xBReREQho.mft (raw, json) Hash identifier: 8l+q84/sjYQZohFPKL3A+9+JllWiB9lVdQRGg+BRFyA= Subject key identifier: D1:49:7C:48:6F:FF:05:14:97:E5:0D:BE:81:A2:44:81:E6:0D:F8:BC Authority key identifier: 75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A Certificate issuer: /CN=A91CBB48/serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Certificate serial: 0895 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft Manifest number: 088F Signing time: Sat 18 Oct 2025 21:42:09 +0000 Manifest this update: Sat 18 Oct 2025 21:42:09 +0000 Manifest next update: Sat 25 Oct 2025 21:42:08 +0000 Files and hashes: 1: dddb2lG8oAYPcIETI0xBReREQho.crl (hash: aruunnyeV2NHMsFQy3weIrv/yzV5CPG1xlhoOkGjMYM=) 2: 96AC80A2CBB411EA99BB9A4DC4F9AE02.roa (hash: Orts9nJAHIeXwpDUPuUMiOuSaf1VvGVbpuD8ge8k//4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:42:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2197 (0x895) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CBB48, serialNumber=75D75BDA51BCA0060F708113234C4145E444421A Validity Not Before: Oct 18 21:42:09 2025 GMT Not After : Oct 25 21:42:08 2025 GMT Subject: CN=68f409b1-e851 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c4:9e:af:41:a7:df:3f:6a:58:a7:c0:0e:2c: a1:fd:17:8b:9e:8f:d4:e8:2a:94:68:56:93:85:7c: 04:f9:fb:fb:6f:19:31:3d:78:ac:e6:db:b0:53:01: c3:b9:38:57:70:71:05:81:ee:99:f0:2b:7a:a8:d5: 24:54:7e:97:7c:03:0a:cb:ff:29:11:0b:6e:27:95: 8a:a0:7b:fc:c9:77:04:1a:fb:ce:7e:eb:3c:b6:8d: eb:d3:02:31:72:49:63:59:f7:27:c5:04:30:00:3b: bc:f6:77:00:6c:3e:a9:14:d6:79:86:fa:4e:77:af: 8a:3b:e3:10:82:5e:5d:0f:8c:1b:82:7c:36:b9:3a: c6:ad:e8:1c:42:a6:28:26:60:ec:96:4b:33:bd:47: 44:06:ea:85:f8:1b:73:41:e7:e9:64:09:4e:4d:d7: 48:0a:f2:53:31:51:1c:f7:b3:8b:da:77:51:c2:30: 98:3f:16:fa:10:3c:b1:9b:48:6b:48:93:be:fb:ce: 64:09:dd:5c:91:20:be:b3:ca:d5:fc:e6:11:27:79: bc:e8:f8:16:2f:cb:19:64:7b:7a:87:c8:7b:79:3f: 48:56:de:6c:25:4a:54:3c:8c:49:d4:08:43:6e:2a: ff:b1:bb:51:85:7d:2f:a8:a1:0b:88:d4:32:d4:a5: 7e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:49:7C:48:6F:FF:05:14:97:E5:0D:BE:81:A2:44:81:E6:0D:F8:BC X509v3 Authority Key Identifier: keyid:75:D7:5B:DA:51:BC:A0:06:0F:70:81:13:23:4C:41:45:E4:44:42:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dddb2lG8oAYPcIETI0xBReREQho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CBB48/90C4791CCBB211EAA0CA6A4AC4F9AE02/dddb2lG8oAYPcIETI0xBReREQho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:2c:d2:f5:aa:29:d1:13:76:26:d2:9a:67:1f:b5:c0:2f:64: 50:1d:ce:a4:f3:01:dc:d6:72:2a:6d:8c:22:96:f8:1c:f0:53: e4:68:4f:9d:4b:50:3e:62:45:cc:bd:9f:d7:c3:8f:e2:58:9d: 59:00:e7:09:b5:1a:a4:66:0b:09:5d:d7:b6:39:af:23:2f:2b: 98:90:f2:37:7f:25:e5:2f:65:92:2b:04:94:54:26:cb:9c:5b: a7:41:46:22:9d:74:d8:e0:cc:81:4e:f2:e1:48:1c:e9:a2:6d: bc:e2:b0:c5:49:03:42:52:12:36:63:74:b3:a1:c4:84:40:e4: 61:6a:40:0b:14:15:5d:0d:06:1c:ae:cf:8e:20:1a:f7:19:02: 08:7b:c8:41:79:0b:ff:6b:a4:e0:c3:6a:87:dc:6a:f1:ac:cf: 26:37:f5:da:88:31:e4:0a:86:a9:f3:56:a0:d4:07:15:d5:ef: 54:96:47:f9:af:f1:88:be:f6:2e:d1:25:02:1b:26:9c:5d:96: 8d:cb:d5:62:76:65:b2:ee:6c:39:07:c8:68:94:ec:bc:3b:26: c3:c1:1f:91:d3:2c:c4:c1:b6:9f:9f:33:d9:45:af:05:cf:a3: ff:c4:ab:2d:ee:2b:43:3d:c3:94:db:9c:fb:31:23:c6:07:03: e7:b9:76:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0JCNDgxMTAvBgNVBAUTKDc1RDc1QkRBNTFCQ0EwMDYwRjcwODExMzIzNEM0MTQ1 RTQ0NDQyMUEwHhcNMjUxMDE4MjE0MjA5WhcNMjUxMDI1MjE0MjA4WjAYMRYwFAYD VQQDEw02OGY0MDliMS1lODUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMSer0Gn3z9qWKfADiyh/ReLno/U6CqUaFaThXwE+fv7bxkxPXis5tuwUwHD uThXcHEFge6Z8Ct6qNUkVH6XfAMKy/8pEQtuJ5WKoHv8yXcEGvvOfus8to3r0wIx ckljWfcnxQQwADu89ncAbD6pFNZ5hvpOd6+KO+MQgl5dD4wbgnw2uTrGregcQqYo JmDslkszvUdEBuqF+BtzQefpZAlOTddICvJTMVEc97OL2ndRwjCYPxb6EDyxm0hr SJO++85kCd1ckSC+s8rV/OYRJ3m86PgWL8sZZHt6h8h7eT9IVt5sJUpUPIxJ1AhD bir/sbtRhX0vqKELiNQy1KV+XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNFJfEhv /wUUl+UNvoGiRIHmDfi8MB8GA1UdIwQYMBaAFHXXW9pRvKAGD3CBEyNMQUXkREIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQkI0OC85MEM0NzkxQ0NC QjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9BWVBjSUVUSTB4QlJlUkVR aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkZGIybEc4b0FZUGNJRVRJMHhCUmVSRVFoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QkI0OC85MEM0NzkxQ0NCQjIxMUVBQTBDQTZBNEFDNEY5QUUwMi9kZGRiMmxHOG9B WVBjSUVUSTB4QlJlUkVRaG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0LNL1qinRE3Ym0ppnH7XAL2RQHc6k8wHc1nIqbYwilvgc8FPkaE+d S1A+YkXMvZ/Xw4/iWJ1ZAOcJtRqkZgsJXde2Oa8jLyuYkPI3fyXlL2WSKwSUVCbL nFunQUYinXTY4MyBTvLhSBzpom284rDFSQNCUhI2Y3SzocSEQORhakALFBVdDQYc rs+OIBr3GQIIe8hBeQv/a6Tgw2qH3GrxrM8mN/XaiDHkCoap81ag1AcV1e9Ulkf5 r/GIvvYu0SUCGyacXZaNy9VidmWy7mw5B8holOy8OybDwR+R0yzEwbafnzPZRa8F z6P/xKst7itDPcOU25z7MSPGBwPnuXbv -----END CERTIFICATE-----Generated at Mon Oct 20 19:11:15 2025 by rpki-client