$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft File: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft (raw, json) Hash identifier: 3RWiDgLux9amZlSxxq2ahOE/MEj8uQgUQ7CorK1/Ruw= Subject key identifier: 53:AA:91:62:47:DE:75:9F:72:7F:8E:FB:A2:1F:0D:DD:14:AC:62:F5 Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 0802 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft Manifest number: 07FC Signing time: Sat 18 Oct 2025 22:13:44 +0000 Manifest this update: Sat 18 Oct 2025 22:13:43 +0000 Manifest next update: Sat 25 Oct 2025 22:13:43 +0000 Files and hashes: 1: aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl (hash: lHMwykVHI0mS+i80RtwSGi/CcyRmnQKNHBXgMub8xkA=) 2: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (hash: 1JW5KMonI+myYbgnoGZrN58lfkI/ChrhCIGbsfRSUac=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:13:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2050 (0x802) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216, serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Validity Not Before: Oct 18 22:13:43 2025 GMT Not After : Oct 25 22:13:43 2025 GMT Subject: CN=68f41118-25cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ae:88:4b:3b:04:66:84:f0:4a:83:86:e2:aa: 38:24:ad:52:37:4f:0c:d2:05:0b:0b:06:76:ed:8a: a8:7e:4b:6c:78:3f:c1:79:86:fc:df:1a:be:9f:10: df:19:31:fa:f0:b9:d5:97:93:7a:b2:d2:22:95:a1: d1:09:10:82:89:67:de:10:7d:a0:73:47:40:26:81: dc:bf:a4:79:0e:11:84:84:23:01:60:f4:aa:b6:be: 40:e3:66:cf:19:a2:93:81:c0:ab:0c:12:05:94:da: 78:f6:06:1d:2b:85:c2:14:6d:2e:9d:13:29:0c:b8: 15:35:ae:b9:ec:55:00:76:49:66:f7:b5:5b:7e:be: 97:53:86:98:61:4b:bf:59:93:a5:76:67:36:5a:62: 3c:f4:a3:45:16:c1:2b:5e:1b:08:c9:e3:08:b5:51: 2d:15:c1:a4:81:c0:ea:86:66:e8:4d:1e:13:23:f5: 7e:ad:77:98:d0:51:a6:ec:5a:87:82:92:82:b9:5b: 1e:37:2d:0e:73:de:b0:d8:b2:87:4e:02:0f:0d:82: c6:cd:f1:26:a7:3c:17:4e:c1:10:b2:4d:97:24:58: 14:89:53:f2:c9:a1:05:69:16:f5:f6:a0:9e:53:b2: 63:42:e3:0c:d7:cc:6f:c6:41:37:65:ad:f9:3e:07: 50:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:AA:91:62:47:DE:75:9F:72:7F:8E:FB:A2:1F:0D:DD:14:AC:62:F5 X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:45:cf:c0:f8:e5:9f:37:be:9b:df:0f:45:fc:9c:91:a4:a0: 05:e1:a6:f9:c3:20:f9:cb:b1:05:ae:ca:96:b5:d5:22:66:88: ac:a3:5d:63:ce:e9:cc:04:d6:5d:c1:5a:f1:6c:4d:c7:3a:47: e2:3d:b8:55:89:5c:b0:ff:88:0c:fd:e7:2c:9c:5f:17:da:cc: b7:2e:e6:d9:b1:28:14:0f:d3:48:ab:6c:79:f9:14:41:c8:d5: 34:1a:6f:fb:a8:88:29:37:54:78:30:07:e4:f5:2b:ee:15:ae: aa:65:d3:81:33:33:da:fb:1c:ca:e7:2e:32:9a:c3:8f:1f:ab: 59:34:c5:b8:8a:6c:45:79:d4:ba:49:03:92:4d:07:44:5f:27: e9:6e:98:76:ed:61:cd:b0:f9:b8:65:09:f7:dc:ed:cc:e3:cb: 88:4b:33:66:94:bf:b1:72:1f:70:93:d1:f6:1a:dc:5b:e5:84: b8:e4:37:c8:d5:42:bf:38:3c:59:fe:30:3d:d6:6b:a3:8e:4f: 7a:d4:c4:09:c2:c1:41:a0:a0:a0:39:18:6b:ca:4f:00:3b:09: 5b:4e:75:e1:0b:89:96:37:6a:33:3d:61:9c:81:50:18:eb:13: dc:af:9e:7a:4c:a2:62:9f:22:d2:50:66:53:c8:f8:02:fc:ec: bf:73:4a:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjUxMDE4MjIxMzQzWhcNMjUxMDI1MjIxMzQzWjAYMRYwFAYD VQQDEw02OGY0MTExOC0yNWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt66ISzsEZoTwSoOG4qo4JK1SN08M0gULCwZ27YqofktseD/BeYb83xq+nxDf GTH68LnVl5N6stIilaHRCRCCiWfeEH2gc0dAJoHcv6R5DhGEhCMBYPSqtr5A42bP GaKTgcCrDBIFlNp49gYdK4XCFG0unRMpDLgVNa657FUAdklm97Vbfr6XU4aYYUu/ WZOldmc2WmI89KNFFsErXhsIyeMItVEtFcGkgcDqhmboTR4TI/V+rXeY0FGm7FqH gpKCuVseNy0Oc96w2LKHTgIPDYLGzfEmpzwXTsEQsk2XJFgUiVPyyaEFaRb19qCe U7JjQuMM18xvxkE3Za35PgdQuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFOqkWJH 3nWfcn+O+6IfDd0UrGL1MB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTIxNi9BRjU3QjZGQ0ZFMjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtU WS1IRW9UQ1o5VHNDYzNaWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvRc/A+OWfN76b3w9F/JyRpKAF4ab5wyD5y7EFrsqWtdUiZoiso11j zunMBNZdwVrxbE3HOkfiPbhViVyw/4gM/ecsnF8X2sy3LubZsSgUD9NIq2x5+RRB yNU0Gm/7qIgpN1R4MAfk9SvuFa6qZdOBMzPa+xzK5y4ymsOPH6tZNMW4imxFedS6 SQOSTQdEXyfpbph27WHNsPm4ZQn33O3M48uISzNmlL+xch9wk9H2Gtxb5YS45DfI 1UK/ODxZ/jA91mujjk961MQJwsFBoKCgORhryk8AOwlbTnXhC4mWN2ozPWGcgVAY 6xPcr556TKJinyLSUGZTyPgC/Oy/c0rW -----END CERTIFICATE-----Generated at Sun Oct 19 23:28:44 2025 by rpki-client