$ rpki-client -vvf rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft File: i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft (raw, json) Hash identifier: EEXeD21N/m2kD6pKErPDCzzlcB8+Jj81mQNvgBDcdp4= Subject key identifier: F2:81:47:07:59:89:67:30:09:4D:9A:EC:D0:FF:36:F2:91:84:59:9F Authority key identifier: 8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D Certificate issuer: /CN=A91D37E4/serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Certificate serial: 07B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft Manifest number: 07AB Signing time: Sat 18 Oct 2025 22:41:39 +0000 Manifest this update: Sat 18 Oct 2025 22:41:39 +0000 Manifest next update: Sat 25 Oct 2025 22:41:39 +0000 Files and hashes: 1: i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl (hash: 7zXN2UXAkeaTJb2dpBPb1rTOHmidq1LgmKkdtyLXCTI=) 2: D933655E23B511EBA7BDD50FC4F9AE02.roa (hash: 8WBXx40LoIwub2WeF3ccrcQG4fq4wKZ7IVrDku/6ikQ=) 3: BD764EAE1D5B11EBAB008D19C4F9AE02.roa (hash: faL6wM9GsLMo9++JSpEkUSiwl7+QPEuIOOkR0NTNngU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:41:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1976 (0x7b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D37E4, serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Validity Not Before: Oct 18 22:41:39 2025 GMT Not After : Oct 25 22:41:39 2025 GMT Subject: CN=68f417a3-5947 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:78:a8:2f:e9:79:69:35:31:a3:4e:76:3d:e9: 87:ac:65:54:25:f3:bd:80:c3:e7:8a:f3:b6:8c:ac: 0f:ab:f8:70:0b:33:c9:dd:1f:40:be:c6:6f:02:0d: 08:79:07:c0:d5:8f:17:97:83:be:72:49:ca:36:55: 36:dc:fa:19:5c:bd:76:86:cf:d2:9e:b4:ce:fb:a9: 54:05:1a:4f:f5:06:e3:c8:76:63:18:79:9b:e9:b4: 38:a0:2d:6a:9f:3e:bf:a2:78:82:7c:da:f9:ef:05: 91:1b:99:92:15:cc:2c:f2:89:84:d5:ff:78:68:0c: 97:ad:ab:e2:d8:a9:2d:c7:e3:49:1e:d0:20:9f:f3: 16:43:84:da:5e:05:5e:f1:df:7a:c1:09:ac:e0:ac: 23:ea:dc:0e:33:23:d7:c9:c8:50:cd:b5:fa:90:f7: 97:71:57:81:7d:3b:80:0f:5d:7c:51:d9:09:0b:ca: 36:b6:92:14:b4:f2:56:66:31:dd:c8:65:74:47:1e: 49:41:26:ad:eb:ba:98:2b:6c:74:14:be:bf:a8:12: 79:35:dd:60:0f:eb:4b:8e:96:0e:7d:fb:26:6e:39: 8c:0b:4f:1f:f0:c1:39:5f:a9:52:1f:2d:29:fd:61: e6:73:8a:d1:7d:cb:ab:18:f8:d0:fa:e5:49:2d:ee: 0e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:81:47:07:59:89:67:30:09:4D:9A:EC:D0:FF:36:F2:91:84:59:9F X509v3 Authority Key Identifier: keyid:8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:7f:48:44:b1:f4:d5:fc:8a:42:bf:cb:89:d7:d8:b1:6a:e7: c2:f8:e1:ef:33:83:1f:58:c7:bf:4c:f1:bc:5c:99:e7:87:05: 7d:e8:ce:34:11:a4:1e:62:71:38:b0:cb:62:6f:c0:9a:ec:04: de:d5:1d:3e:69:4a:bc:96:e6:89:3c:b8:3f:e8:e4:60:97:82: 79:e5:b0:5b:9f:7c:c6:ea:b5:43:5f:33:d6:af:c1:5f:4b:e4: e9:b4:37:26:18:d0:c0:a6:92:71:a6:c7:45:83:4a:1b:52:1c: ea:9d:12:c3:0d:fe:e2:94:7b:32:27:b4:1a:ba:ee:c3:a7:3e: 68:d4:1a:40:ab:0c:cd:f2:85:56:89:94:b5:0e:0c:7a:01:fe: ec:da:23:4a:f7:dc:81:49:71:5b:1f:64:c7:e6:4a:0a:24:ea: 23:0c:f6:09:d0:f7:56:4c:8e:c5:57:f2:e3:b8:37:db:41:fc: 04:f5:f0:87:03:10:3e:3d:12:50:b8:89:8e:24:76:ca:26:5e: 01:ad:da:2c:d6:87:5a:ad:8f:65:7b:91:5f:df:ff:f9:6a:f6: 25:aa:7b:d7:74:75:ba:5d:70:03:b0:36:5d:b9:fd:74:bb:4a: d4:ea:54:d8:75:ff:cf:6d:39:32:3f:0b:6c:8c:f1:cd:89:05: 18:14:58:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM3RTQxMTAvBgNVBAUTKDhCREE4QTFGRTA3QjQ2QzMzMDYzMDQ2QTcyNUVBQjg1 NjQyQjlDMkQwHhcNMjUxMDE4MjI0MTM5WhcNMjUxMDI1MjI0MTM5WjAYMRYwFAYD VQQDEw02OGY0MTdhMy01OTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA73ioL+l5aTUxo052PemHrGVUJfO9gMPnivO2jKwPq/hwCzPJ3R9AvsZvAg0I eQfA1Y8Xl4O+cknKNlU23PoZXL12hs/SnrTO+6lUBRpP9QbjyHZjGHmb6bQ4oC1q nz6/oniCfNr57wWRG5mSFcws8omE1f94aAyXravi2Kktx+NJHtAgn/MWQ4TaXgVe 8d96wQms4Kwj6twOMyPXychQzbX6kPeXcVeBfTuAD118UdkJC8o2tpIUtPJWZjHd yGV0Rx5JQSat67qYK2x0FL6/qBJ5Nd1gD+tLjpYOffsmbjmMC08f8ME5X6lSHy0p /WHmc4rRfcurGPjQ+uVJLe4OOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPKBRwdZ iWcwCU2a7ND/NvKRhFmfMB8GA1UdIwQYMBaAFIvaih/ge0bDMGMEanJeq4VkK5wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzdFNC8zNkZCMTE0NDFE NUExMUVCQjc5ODhEMTdDNEY5QUUwMi9pOXFLSC1CN1JzTXdZd1JxY2w2cmhXUXJu QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k5cUtILUI3UnNNd1l3UnFjbDZyaFdRcm5DMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzdFNC8zNkZCMTE0NDFENUExMUVCQjc5ODhEMTdDNEY5QUUwMi9pOXFLSC1CN1Jz TXdZd1JxY2w2cmhXUXJuQzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAf0hEsfTV/IpCv8uJ19ixaufC+OHvM4MfWMe/TPG8XJnnhwV96M40 EaQeYnE4sMtib8Ca7ATe1R0+aUq8luaJPLg/6ORgl4J55bBbn3zG6rVDXzPWr8Ff S+TptDcmGNDAppJxpsdFg0obUhzqnRLDDf7ilHsyJ7Qauu7Dpz5o1BpAqwzN8oVW iZS1Dgx6Af7s2iNK99yBSXFbH2TH5koKJOojDPYJ0PdWTI7FV/LjuDfbQfwE9fCH AxA+PRJQuImOJHbKJl4Brdos1odarY9le5Ff3//5avYlqnvXdHW6XXADsDZduf10 u0rU6lTYdf/PbTkyPwtsjPHNiQUYFFgl -----END CERTIFICATE-----Generated at Mon Oct 20 14:01:50 2025 by rpki-client