$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft File: eKfTXvnEd150y6PRZrYbdZAkFSM.mft (raw, json) Hash identifier: 15VaY1kKptEnsszYrd39HHoP6eRey59TY5TrR7nNlw0= Subject key identifier: 9E:AE:E0:07:76:EE:EE:C4:95:4C:75:6A:3D:ED:B9:69:41:E5:A3:A2 Authority key identifier: 78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 Certificate issuer: /CN=A91D2C38/serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft Manifest number: A9 Signing time: Sun 19 Oct 2025 09:22:22 +0000 Manifest this update: Sun 19 Oct 2025 09:22:21 +0000 Manifest next update: Sun 26 Oct 2025 09:22:21 +0000 Files and hashes: 1: eKfTXvnEd150y6PRZrYbdZAkFSM.crl (hash: Ppxng7gKMp1ESq6uszHvzGew/Q3l87Le8q2LNLQyf+E=) 2: 8DDD0D56A98C11EFAAC0F364C4F9AE02.roa (hash: yg1U4JyDYBAoLLqLQFnhNTd+uuZ0oKhea1PeFahobmY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2C38, serialNumber=78A7D35EF9C4775E74CBA3D166B61B7590241523 Validity Not Before: Oct 19 09:22:21 2025 GMT Not After : Oct 26 09:22:21 2025 GMT Subject: CN=68f4adcd-972e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:57:e3:8c:dc:cf:e5:26:f6:f9:a3:4a:f1:a0: e1:c2:4f:99:04:9a:bf:4c:9c:4f:59:b1:e2:9c:83: 3f:37:03:5c:a4:8d:49:a1:88:5a:19:0d:05:b8:8e: 49:c4:e7:0f:94:78:9c:17:f5:86:80:52:41:c6:e3: 42:dc:76:19:be:d7:f6:9a:97:bf:d8:f0:ca:0c:75: c3:22:66:04:95:ff:00:e8:6c:7f:aa:2b:cf:46:c4: 59:c9:c5:3c:15:53:06:51:a1:51:ab:66:06:7a:9e: 82:7a:70:79:6e:8c:3c:e6:d0:c3:6f:d8:1a:16:c7: b4:a6:7f:5f:1d:e4:2b:e7:0a:d1:81:44:d3:9c:5b: e6:cf:31:99:47:d0:ef:99:88:5c:c5:28:72:6b:6e: a4:47:2c:8e:55:cb:c2:02:aa:d5:41:40:03:2b:e8: 9a:a0:cb:b9:55:68:ed:4b:74:82:ab:05:4c:65:21: c2:1c:f2:a9:cf:47:71:6e:36:cb:55:39:c3:3b:69: e3:6e:a4:e1:de:99:90:df:4a:00:51:04:d7:b9:ed: 56:f6:8d:fc:55:68:b9:73:9c:19:a4:ea:a2:f3:e9: f3:cc:b7:7c:d9:ec:25:88:78:04:e2:ea:40:1b:f5: 6d:9e:be:f0:8f:71:d0:34:8e:a9:9b:0f:c8:01:d2: 9a:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:AE:E0:07:76:EE:EE:C4:95:4C:75:6A:3D:ED:B9:69:41:E5:A3:A2 X509v3 Authority Key Identifier: keyid:78:A7:D3:5E:F9:C4:77:5E:74:CB:A3:D1:66:B6:1B:75:90:24:15:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKfTXvnEd150y6PRZrYbdZAkFSM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2C38/0DE89340A98C11EF9350FB63C4F9AE02/eKfTXvnEd150y6PRZrYbdZAkFSM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:78:b2:92:e8:82:fd:3f:5d:e8:b3:ac:78:05:70:6e:d0:b0: db:35:67:50:8b:84:1b:f0:5a:72:97:9c:b3:77:a8:91:72:1f: 3d:60:7b:40:17:cd:5e:99:27:cf:70:02:25:5a:e0:fa:d9:b9: 37:37:c6:d7:74:36:be:87:2b:3c:be:a7:1d:7d:27:1d:e4:51: 3d:d3:f0:43:be:53:3a:9c:30:09:95:ba:37:14:a2:e4:eb:50: f8:85:61:e9:b1:33:db:34:98:e4:19:79:54:56:99:a6:e0:20: d2:11:3d:70:64:ba:8d:22:8d:21:28:63:95:75:44:7b:0b:fe: c0:a0:b2:0e:b6:a5:10:61:3a:2d:8f:d4:e6:7e:11:f8:d1:20: 7b:89:db:50:0a:39:a2:8d:4e:08:e2:7b:5c:3b:0a:41:ea:7d: ff:ba:eb:9c:55:d7:56:e8:c3:89:0d:39:b8:f8:76:bb:b7:c2: 51:a7:35:32:46:65:bd:02:cd:e4:ac:d0:20:fc:88:e4:75:ee: b1:f6:74:31:3c:94:00:ca:71:ce:9d:32:30:04:57:1f:14:f4: 65:f1:fb:14:1e:4e:44:94:6e:3c:ec:a2:a4:1a:e4:f7:7b:46: 69:d1:c8:62:23:69:73:54:cd:7d:75:ba:57:a9:ee:18:12:10: 25:02:b7:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJDMzgxMTAvBgNVBAUTKDc4QTdEMzVFRjlDNDc3NUU3NENCQTNEMTY2QjYxQjc1 OTAyNDE1MjMwHhcNMjUxMDE5MDkyMjIxWhcNMjUxMDI2MDkyMjIxWjAYMRYwFAYD VQQDEw02OGY0YWRjZC05NzJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoVfjjNzP5Sb2+aNK8aDhwk+ZBJq/TJxPWbHinIM/NwNcpI1JoYhaGQ0FuI5J xOcPlHicF/WGgFJBxuNC3HYZvtf2mpe/2PDKDHXDImYElf8A6Gx/qivPRsRZycU8 FVMGUaFRq2YGep6CenB5bow85tDDb9gaFse0pn9fHeQr5wrRgUTTnFvmzzGZR9Dv mYhcxShya26kRyyOVcvCAqrVQUADK+iaoMu5VWjtS3SCqwVMZSHCHPKpz0dxbjbL VTnDO2njbqTh3pmQ30oAUQTXue1W9o38VWi5c5wZpOqi8+nzzLd82ewliHgE4upA G/Vtnr7wj3HQNI6pmw/IAdKaXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6u4Ad2 7u7ElUx1aj3tuWlB5aOiMB8GA1UdIwQYMBaAFHin0175xHdedMuj0Wa2G3WQJBUj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkMzOC8wREU4OTM0MEE5 OEMxMUVGOTM1MEZCNjNDNEY5QUUwMi9lS2ZUWHZuRWQxNTB5NlBSWnJZYmRaQWtG U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VLZlRYdm5FZDE1MHk2UFJaclliZFpBa0ZTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkMzOC8wREU4OTM0MEE5OEMxMUVGOTM1MEZCNjNDNEY5QUUwMi9lS2ZUWHZuRWQx NTB5NlBSWnJZYmRaQWtGU00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6eLKS6IL9P13os6x4BXBu0LDbNWdQi4Qb8Fpyl5yzd6iRch89YHtA F81emSfPcAIlWuD62bk3N8bXdDa+hys8vqcdfScd5FE90/BDvlM6nDAJlbo3FKLk 61D4hWHpsTPbNJjkGXlUVpmm4CDSET1wZLqNIo0hKGOVdUR7C/7AoLIOtqUQYTot j9TmfhH40SB7idtQCjmijU4I4ntcOwpB6n3/uuucVddW6MOJDTm4+Ha7t8JRpzUy RmW9As3krNAg/Ijkde6x9nQxPJQAynHOnTIwBFcfFPRl8fsUHk5ElG487KKkGuT3 e0Zp0chiI2lzVM19dbpXqe4YEhAlArc3 -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:06 2025 by rpki-client