$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft File: 97sXL8rsr7-evvJQihVCZDOuyd4.mft (raw, json) Hash identifier: hxH/D0jc5F2vVoxd3fFUjv4wudQDT/AmwAqt8rsoxc0= Subject key identifier: 89:BF:8D:60:D2:CA:D9:5F:03:2E:E3:89:E2:73:46:8D:C0:8A:1C:E1 Authority key identifier: F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE Certificate issuer: /CN=A91CEDD3/serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE Certificate serial: 0226 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft Manifest number: 0220 Signing time: Sun 19 Oct 2025 04:23:35 +0000 Manifest this update: Sun 19 Oct 2025 04:23:34 +0000 Manifest next update: Sun 26 Oct 2025 04:23:34 +0000 Files and hashes: 1: 97sXL8rsr7-evvJQihVCZDOuyd4.crl (hash: Uz1AbC58mTTx2MuziVFwzpXQXTyYz8a0RHj3du/gc4E=) 2: C714C5A6706211EDA9CCDB76C4F9AE02.roa (hash: AIFISpe4UUSb102JMnJULUVmkKzdqcMZuRuO6tOo8G0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:23:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 550 (0x226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEDD3, serialNumber=F7BB172FCAECAFBF9EBEF2508A15426433AEC9DE Validity Not Before: Oct 19 04:23:34 2025 GMT Not After : Oct 26 04:23:34 2025 GMT Subject: CN=68f467c6-4d9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:99:25:72:1f:c6:25:da:df:b3:26:da:95:9b: 96:c0:f2:e8:a5:fd:d4:41:cf:48:c9:84:55:0b:fd: b9:30:bb:20:70:fa:64:ee:2f:fd:11:bc:14:c1:b0: 22:9a:93:c1:3e:e5:5a:49:63:31:1a:2f:26:c9:e8: 2c:0e:d0:e9:34:80:0c:51:89:3b:a0:f9:3e:36:14: c6:96:42:3c:f4:3c:aa:51:30:5b:28:00:b8:da:00: 05:64:a0:39:41:45:89:72:64:09:40:b2:5c:5b:f2: ee:e0:fc:f5:bd:65:33:46:af:89:43:e8:1f:d1:46: 92:b2:2b:77:90:7a:4a:bd:03:1e:1e:d1:3c:37:82: ca:35:07:1d:32:98:a2:2b:d8:ac:5c:5b:4d:4b:3a: ec:46:a5:55:23:77:b4:3f:26:d5:ab:c0:a2:04:b6: 97:df:6b:6b:43:c9:5e:1c:00:26:00:41:a0:c7:59: c6:bd:e7:c9:38:90:20:b9:6c:d0:c0:ad:00:34:4b: d3:2e:93:c3:61:1b:dd:18:d2:b0:23:61:70:4a:c5: f7:72:49:5c:70:61:c2:25:b6:5a:03:4a:a4:d9:aa: 4b:16:29:25:b9:bb:9f:02:1b:23:ba:79:7a:ad:05: 69:6e:e0:18:5f:64:98:91:51:cd:c2:57:bb:49:84: 31:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:BF:8D:60:D2:CA:D9:5F:03:2E:E3:89:E2:73:46:8D:C0:8A:1C:E1 X509v3 Authority Key Identifier: keyid:F7:BB:17:2F:CA:EC:AF:BF:9E:BE:F2:50:8A:15:42:64:33:AE:C9:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/97sXL8rsr7-evvJQihVCZDOuyd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEDD3/D0663328705E11EDACAD885BC4F9AE02/97sXL8rsr7-evvJQihVCZDOuyd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:1f:cf:ef:87:b7:0b:91:ac:2e:e5:4b:d4:a8:d1:93:ab:e8: 85:41:fb:74:f9:20:4e:38:40:4d:52:2b:ec:8b:0b:84:e6:5c: 45:04:c0:a1:0c:79:68:66:d2:e6:d6:3f:ac:a2:c9:e2:fc:d6: 2e:0f:32:d2:84:92:bd:c0:a2:f7:81:eb:19:42:32:08:33:bb: 54:46:e2:8d:53:3f:d7:51:f6:5c:7a:a2:f3:01:11:fa:31:2b: 78:fd:0e:9c:19:83:cc:82:1b:a6:75:be:9b:ed:89:8e:3d:5e: 50:ff:c2:e2:05:4c:3d:19:42:af:99:3d:6b:12:68:c4:e5:3c: d8:97:43:69:07:b7:81:98:7b:56:79:c7:d3:ef:cc:49:4c:e6: 2a:87:92:44:32:28:1f:84:cd:28:39:48:a5:46:c2:8a:4b:23: 4f:89:dc:1d:c6:56:1c:70:4e:ac:ae:a4:8d:11:b9:9c:2e:1a: 30:06:a8:19:53:16:f2:3d:fe:50:bf:f0:15:d1:42:da:2a:90: fe:d8:d4:46:c3:8e:ca:5e:d8:49:01:be:b5:08:3e:61:27:55: 3d:f5:6f:68:e5:ad:4b:6c:d1:0b:22:b5:6b:a1:c0:b6:17:b2: 19:5c:ba:47:fb:36:ad:86:67:00:7d:f0:8b:b5:6c:a4:34:13: 2c:f0:73:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VERDMxMTAvBgNVBAUTKEY3QkIxNzJGQ0FFQ0FGQkY5RUJFRjI1MDhBMTU0MjY0 MzNBRUM5REUwHhcNMjUxMDE5MDQyMzM0WhcNMjUxMDI2MDQyMzM0WjAYMRYwFAYD VQQDEw02OGY0NjdjNi00ZDljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Zklch/GJdrfsybalZuWwPLopf3UQc9IyYRVC/25MLsgcPpk7i/9EbwUwbAi mpPBPuVaSWMxGi8myegsDtDpNIAMUYk7oPk+NhTGlkI89DyqUTBbKAC42gAFZKA5 QUWJcmQJQLJcW/Lu4Pz1vWUzRq+JQ+gf0UaSsit3kHpKvQMeHtE8N4LKNQcdMpii K9isXFtNSzrsRqVVI3e0PybVq8CiBLaX32trQ8leHAAmAEGgx1nGvefJOJAguWzQ wK0ANEvTLpPDYRvdGNKwI2FwSsX3cklccGHCJbZaA0qk2apLFiklubufAhsjunl6 rQVpbuAYX2SYkVHNwle7SYQxsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIm/jWDS ytlfAy7jieJzRo3AihzhMB8GA1UdIwQYMBaAFPe7Fy/K7K+/nr7yUIoVQmQzrsne MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUREMy9EMDY2MzMyODcw NUUxMUVEQUNBRDg4NUJDNEY5QUUwMi85N3NYTDhyc3I3LWV2dkpRaWhWQ1pET3V5 ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk3c1hMOHJzcjctZXZ2SlFpaFZDWkRPdXlkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUREMy9EMDY2MzMyODcwNUUxMUVEQUNBRDg4NUJDNEY5QUUwMi85N3NYTDhyc3I3 LWV2dkpRaWhWQ1pET3V5ZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWH8/vh7cLkawu5UvUqNGTq+iFQft0+SBOOEBNUivsiwuE5lxFBMCh DHloZtLm1j+sosni/NYuDzLShJK9wKL3gesZQjIIM7tURuKNUz/XUfZceqLzARH6 MSt4/Q6cGYPMghumdb6b7YmOPV5Q/8LiBUw9GUKvmT1rEmjE5TzYl0NpB7eBmHtW ecfT78xJTOYqh5JEMigfhM0oOUilRsKKSyNPidwdxlYccE6srqSNEbmcLhowBqgZ UxbyPf5Qv/AV0ULaKpD+2NRGw47KXthJAb61CD5hJ1U99W9o5a1LbNELIrVrocC2 F7IZXLpH+zathmcAffCLtWykNBMs8HN3 -----END CERTIFICATE-----Generated at Mon Oct 20 10:31:02 2025 by rpki-client