$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft File: sGfGu3DfDcBM5398jXZwakn2y4U.mft (raw, json) Hash identifier: ij4wSFNQf/ibD6xbjq8W1iTQXJYqiD3+OWnfMHn5H10= Subject key identifier: 88:F3:04:CA:88:87:B9:2A:24:BF:6E:0D:72:6C:4B:79:85:D4:3E:1F Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 02D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft Manifest number: 02A9 Signing time: Sun 19 Oct 2025 03:54:59 +0000 Manifest this update: Sun 19 Oct 2025 03:54:58 +0000 Manifest next update: Sun 26 Oct 2025 03:54:58 +0000 Files and hashes: 1: sGfGu3DfDcBM5398jXZwakn2y4U.crl (hash: GVYNZaSpajACRMnGijbDjZgHKYXW+9e+ibW1ZgrovNw=) 2: DF9C04F4897811F08A9D002AC4F9AE02.roa (hash: XfF79hvTmc8NMCL/hID++kJM7536Tc7Eia39Bf3yFuA=) 3: D6D1A360323911F0BDA2E834C4F9AE02.roa (hash: 3S7sTHQwNR4M05c/J0LAnFvlwfRaJo13g2aipeOM4II=) 4: 6E41DE08310A11F0AC8DF544C4F9AE02.roa (hash: MdnsK78f+RePT5EKFxzpSrHG7P2t5sm3+YBB1dYO5+4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:54:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 727 (0x2d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A, serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: Oct 19 03:54:58 2025 GMT Not After : Oct 26 03:54:58 2025 GMT Subject: CN=68f46112-9b54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0c:02:db:2b:97:37:a1:ad:8e:4e:f6:21:b6: b7:2d:bf:f2:b7:f7:80:a5:5d:8b:c4:c8:08:6d:c1: 49:34:d5:c6:3f:49:7e:ba:99:70:df:9d:ae:2f:16: c4:f1:83:ed:35:81:fe:04:b8:73:30:1f:8e:f9:e7: 3c:3d:2b:b0:e9:0d:c6:07:f1:28:be:4c:95:c3:f2: 53:06:57:09:6e:4b:7a:f7:eb:de:1f:ac:5c:fc:d0: 00:62:f8:f0:e1:e9:bd:f3:a9:9c:61:9a:3c:06:54: 1a:35:74:be:7e:12:4c:63:90:a4:57:86:ca:8d:43: 81:c1:84:7f:3c:13:93:4d:81:60:87:e6:82:c0:46: f4:9c:d2:73:81:d6:4c:ed:f4:78:35:7a:9c:85:5b: 58:4e:b7:c5:79:2c:3c:d3:27:d1:c5:60:49:48:0f: d2:16:62:dc:da:d7:63:7a:86:84:b9:aa:82:18:f9: 29:6d:a5:9b:52:bf:ac:e4:50:c5:70:32:b4:6d:66: fd:76:cc:05:0e:39:f9:32:2d:15:89:aa:14:6b:83: 3d:30:92:ab:47:2f:37:c6:fb:00:42:a9:28:c8:c7: 07:e1:80:e1:6b:9f:67:e1:2e:20:f8:8f:f3:22:cd: 20:54:ce:ef:fb:4a:53:74:61:52:7f:7d:a5:ea:e4: 90:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:F3:04:CA:88:87:B9:2A:24:BF:6E:0D:72:6C:4B:79:85:D4:3E:1F X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:6b:f5:44:cd:c5:1d:63:c9:b3:0c:e1:7e:ac:82:1d:e3:1e: 6b:f2:fb:9b:02:f2:17:c7:b5:b9:3f:f9:9b:c7:ae:ac:83:0d: 6f:4d:68:bb:f7:5a:e1:2b:d5:63:9d:3f:76:b5:70:02:97:22: 3c:07:e3:2c:b9:40:07:38:fc:75:e6:79:b7:90:df:90:01:a3: cd:2f:f3:70:92:a0:d9:90:bc:6c:d0:31:bc:9e:b0:62:3d:87: ab:0a:4a:23:15:b9:3a:93:5a:39:b2:ac:cb:e4:05:15:bf:ad: dc:db:80:59:7a:9d:d2:6c:63:db:28:ac:99:76:9c:3c:6f:e8: 57:ca:1b:95:66:3b:6c:76:ed:78:78:f6:7d:8f:ea:ec:ad:00: d8:33:ac:c5:bb:f3:85:75:dd:d3:18:3f:12:ea:b1:38:c7:ca: 81:71:62:96:5c:70:b3:ba:f2:6c:88:a6:25:ab:2c:76:31:47: 6f:a4:97:7a:34:9c:46:d5:f8:99:5d:c4:5c:a0:66:0d:08:c6: 70:3e:cd:4a:9d:3e:e7:8c:07:56:a6:c4:e7:5e:c8:ff:a8:43: 03:21:6c:af:0a:77:57:94:9b:98:d3:88:25:2a:1b:1a:7f:9c: 37:67:a5:b8:4f:02:1f:35:89:d7:a1:08:c5:93:05:16:a8:4b: 15:a2:c7:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjUxMDE5MDM1NDU4WhcNMjUxMDI2MDM1NDU4WjAYMRYwFAYD VQQDEw02OGY0NjExMi05YjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwwC2yuXN6Gtjk72Iba3Lb/yt/eApV2LxMgIbcFJNNXGP0l+uplw352uLxbE 8YPtNYH+BLhzMB+O+ec8PSuw6Q3GB/EovkyVw/JTBlcJbkt69+veH6xc/NAAYvjw 4em986mcYZo8BlQaNXS+fhJMY5CkV4bKjUOBwYR/PBOTTYFgh+aCwEb0nNJzgdZM 7fR4NXqchVtYTrfFeSw80yfRxWBJSA/SFmLc2tdjeoaEuaqCGPkpbaWbUr+s5FDF cDK0bWb9dswFDjn5Mi0ViaoUa4M9MJKrRy83xvsAQqkoyMcH4YDha59n4S4g+I/z Is0gVM7v+0pTdGFSf32l6uSQaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIjzBMqI h7kqJL9uDXJsS3mF1D4fMB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzY2QS9FQzA5QUE0QTMwN0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRj Qk01Mzk4alhad2FrbjJ5NFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBva/VEzcUdY8mzDOF+rIId4x5r8vubAvIXx7W5P/mbx66sgw1vTWi7 91rhK9VjnT92tXAClyI8B+MsuUAHOPx15nm3kN+QAaPNL/NwkqDZkLxs0DG8nrBi PYerCkojFbk6k1o5sqzL5AUVv63c24BZep3SbGPbKKyZdpw8b+hXyhuVZjtsdu14 ePZ9j+rsrQDYM6zFu/OFdd3TGD8S6rE4x8qBcWKWXHCzuvJsiKYlqyx2MUdvpJd6 NJxG1fiZXcRcoGYNCMZwPs1KnT7njAdWpsTnXsj/qEMDIWyvCndXlJuY04glKhsa f5w3Z6W4TwIfNYnXoQjFkwUWqEsVosfM -----END CERTIFICATE-----Generated at Mon Oct 20 11:40:37 2025 by rpki-client