$ rpki-client -vvf rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft File: g675MVKyUIy8gKNifjon6HvP3so.mft (raw, json) Hash identifier: V9HNL7NAGtAjvziutj6D6O3MGTGQuWKNDcDzTHRFfek= Subject key identifier: 24:28:07:06:E4:88:F5:5D:97:74:E7:13:8D:EB:E2:24:44:86:EB:51 Authority key identifier: 83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA Certificate issuer: /CN=A91D298D/serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Certificate serial: 0834 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft Manifest number: 0825 Signing time: Sat 18 Oct 2025 22:04:04 +0000 Manifest this update: Sat 18 Oct 2025 22:04:03 +0000 Manifest next update: Sat 25 Oct 2025 22:04:03 +0000 Files and hashes: 1: g675MVKyUIy8gKNifjon6HvP3so.crl (hash: HQGvT5xhTkBanWAzOyyfE1eGmlLVPTLGB+wFwdPX0T8=) 2: 1229795E652C11EB9B039023C4F9AE02.roa (hash: eB6jpfzkEyGBZh+SZTE0lOYtKObRo5aMeXareF4tcfY=) 3: 51B1F2A665D911EBA6089869C4F9AE02.roa (hash: BRTjFa3VaO5mZBCwL3I9ZNLwh8/q1ESDbEK3Wu3mXHM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:04:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2100 (0x834) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D298D, serialNumber=83AEF93152B2508CBC80A3627E3A27E87BCFDECA Validity Not Before: Oct 18 22:04:03 2025 GMT Not After : Oct 25 22:04:03 2025 GMT Subject: CN=68f40ed4-a338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ae:e9:96:d7:b4:b7:b0:35:21:07:6d:54:67: f3:20:ee:0a:4b:f8:b2:2c:c4:69:70:b1:cc:54:88: 22:18:f1:c7:53:19:bf:37:d3:5b:93:77:35:b6:02: 20:ca:a0:33:f6:dd:03:81:9a:89:fe:2c:45:48:d4: f5:cc:76:8c:34:56:ef:25:ae:30:28:4d:34:e3:e5: cf:7c:42:b4:66:ed:22:0c:e5:b4:55:f9:0e:39:a4: 2a:c0:cd:12:66:c7:e4:63:c9:59:8e:c7:c0:af:95: e6:5d:0e:1e:66:0c:1e:d9:5f:19:34:51:39:9a:2a: 89:93:ea:5f:b1:cd:a7:a1:5d:3e:a1:7a:60:0b:49: 0a:af:8a:5b:3b:a8:7a:50:98:83:d6:c6:76:b5:c2: d3:c2:df:e6:cd:66:70:37:f7:ed:00:96:7c:85:1f: 01:15:7f:bb:03:7b:29:0f:65:69:11:6c:08:66:d2: c8:3d:4e:89:cd:10:ea:4b:ad:03:5f:af:28:7d:ea: cf:da:55:30:a1:a5:ec:ff:ab:25:d7:fc:e6:b4:49: 6b:c1:67:67:2b:30:e4:6b:c0:57:fb:29:e6:09:72: f3:32:77:38:a8:dc:9e:ff:92:e7:d0:48:ec:df:2b: c4:d9:d6:06:b6:9a:47:47:da:f6:f5:e2:36:b9:32: 82:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:28:07:06:E4:88:F5:5D:97:74:E7:13:8D:EB:E2:24:44:86:EB:51 X509v3 Authority Key Identifier: keyid:83:AE:F9:31:52:B2:50:8C:BC:80:A3:62:7E:3A:27:E8:7B:CF:DE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g675MVKyUIy8gKNifjon6HvP3so.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D298D/2CB11FCEF1A611EAB95C0E2FC4F9AE02/g675MVKyUIy8gKNifjon6HvP3so.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:bb:4d:7e:5c:72:ba:7e:31:65:b8:32:5a:a4:bc:66:32:45: 46:fd:0b:5d:76:b1:cd:8a:b9:1b:be:b1:1c:c0:0b:56:66:eb: ef:eb:b1:ee:d2:30:09:c0:9c:9a:51:4e:10:11:ac:f0:04:cc: e3:d1:8a:ff:0f:ff:5f:17:56:c6:68:02:e6:b5:d8:e6:01:6a: 5b:4a:d0:d7:a0:83:39:ec:88:58:15:bd:ea:02:35:3f:f5:27: b7:7f:b5:d0:10:ef:21:4b:4e:2b:6a:c0:fd:6a:d8:2e:84:57: cb:af:a8:fb:e2:3e:59:5c:58:03:03:78:67:71:97:eb:2c:a1: 64:bc:58:b6:8f:2b:5f:1f:73:58:5d:b5:2b:77:56:b5:6b:c8: 86:a3:f6:6e:c9:ff:e0:1a:8d:4d:a0:2e:9d:2d:04:20:b2:7f: 26:11:b6:b0:d6:db:ad:73:bd:ff:47:41:6e:32:ad:7c:7c:9d: 73:00:11:a3:17:3f:a6:b2:d3:bd:e7:fe:97:21:73:7b:fe:91: 91:35:fa:a8:6d:05:4f:44:21:f7:0c:3d:25:a4:44:29:4f:4a: ff:63:c0:cb:95:d0:29:be:ab:1f:f7:e2:96:1e:2a:75:20:fc: ea:f7:55:90:f5:7c:88:9b:16:3a:e4:6c:b3:ad:6b:82:95:19: ab:e5:a8:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI5OEQxMTAvBgNVBAUTKDgzQUVGOTMxNTJCMjUwOENCQzgwQTM2MjdFM0EyN0U4 N0JDRkRFQ0EwHhcNMjUxMDE4MjIwNDAzWhcNMjUxMDI1MjIwNDAzWjAYMRYwFAYD VQQDEw02OGY0MGVkNC1hMzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4q7plte0t7A1IQdtVGfzIO4KS/iyLMRpcLHMVIgiGPHHUxm/N9Nbk3c1tgIg yqAz9t0DgZqJ/ixFSNT1zHaMNFbvJa4wKE004+XPfEK0Zu0iDOW0VfkOOaQqwM0S ZsfkY8lZjsfAr5XmXQ4eZgwe2V8ZNFE5miqJk+pfsc2noV0+oXpgC0kKr4pbO6h6 UJiD1sZ2tcLTwt/mzWZwN/ftAJZ8hR8BFX+7A3spD2VpEWwIZtLIPU6JzRDqS60D X68oferP2lUwoaXs/6sl1/zmtElrwWdnKzDka8BX+ynmCXLzMnc4qNye/5Ln0Ejs 3yvE2dYGtppHR9r29eI2uTKCnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQoBwbk iPVdl3TnE43r4iREhutRMB8GA1UdIwQYMBaAFIOu+TFSslCMvICjYn46J+h7z97K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjk4RC8yQ0IxMUZDRUYx QTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJeThnS05pZmpvbjZIdlAz c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c2NzVNVkt5VUl5OGdLTmlmam9uNkh2UDNzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Mjk4RC8yQ0IxMUZDRUYxQTYxMUVBQjk1QzBFMkZDNEY5QUUwMi9nNjc1TVZLeVVJ eThnS05pZmpvbjZIdlAzc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbu01+XHK6fjFluDJapLxmMkVG/QtddrHNirkbvrEcwAtWZuvv67Hu 0jAJwJyaUU4QEazwBMzj0Yr/D/9fF1bGaALmtdjmAWpbStDXoIM57IhYFb3qAjU/ 9Se3f7XQEO8hS04rasD9atguhFfLr6j74j5ZXFgDA3hncZfrLKFkvFi2jytfH3NY XbUrd1a1a8iGo/Zuyf/gGo1NoC6dLQQgsn8mEbaw1tutc73/R0FuMq18fJ1zABGj Fz+mstO95/6XIXN7/pGRNfqobQVPRCH3DD0lpEQpT0r/Y8DLldApvqsf9+KWHip1 IPzq91WQ9XyImxY65GyzrWuClRmr5ajO -----END CERTIFICATE-----Generated at Mon Oct 20 18:39:19 2025 by rpki-client