$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft File: o1D687bxS8juGymW7tSOJwIOEIM.mft (raw, json) Hash identifier: /YLAgttU1lg6VjhnnVx3CglpLPMjmkdwHzBYPi7fmXw= Subject key identifier: 94:D5:AD:25:E1:B4:B2:F6:05:17:ED:0E:B3:97:60:7B:60:71:BB:5B Authority key identifier: A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 Certificate issuer: /CN=A91D4834/serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Certificate serial: 08AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft Manifest number: 089A Signing time: Sat 18 Oct 2025 21:43:12 +0000 Manifest this update: Sat 18 Oct 2025 21:43:11 +0000 Manifest next update: Sat 25 Oct 2025 21:43:11 +0000 Files and hashes: 1: o1D687bxS8juGymW7tSOJwIOEIM.crl (hash: Mjoe/0yNJyPMnSO+1XS1YZ7uUtoSNSgsLol/0NATfRw=) 2: C5E7AA2289A011F08D995D74C4F9AE02.roa (hash: jS53WXHjCoys1e1t5l2xcO16jh1u3l1FTq8ZOUzIH88=) 3: ECE8975685D811F09A4FFA45C4F9AE02.roa (hash: kbQycqq6uhbmllHh50J5L3MKomIfAJJoAz4btbBqKyw=) 4: D32DB3AE7FC111F0B3BEC06AC4F9AE02.roa (hash: /uldeOBBVv+zaXl5jNRHeGbB+ckh7FIYfUU0p3GU20E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:43:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2223 (0x8af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4834, serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Validity Not Before: Oct 18 21:43:11 2025 GMT Not After : Oct 25 21:43:11 2025 GMT Subject: CN=68f409ef-9d08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1c:37:30:79:dc:3d:74:fc:09:07:c3:c9:b8: 55:b3:fe:d6:90:5b:01:a2:6b:33:5b:16:e4:1e:9f: 8a:15:a2:d1:fd:76:60:92:66:7e:d7:03:ae:15:29: 18:41:72:40:e5:ce:3d:9c:37:51:18:b7:3b:b5:ce: 38:75:f7:86:47:87:14:03:74:02:6c:8b:60:f0:7d: ca:6e:c8:53:8d:42:a7:99:ff:0a:3b:0b:40:05:93: 6b:ba:5a:bb:1c:cb:db:09:42:68:9b:a5:05:74:a0: 58:7d:15:e4:15:1a:12:da:29:fa:d0:62:89:9e:09: f6:da:b3:f2:8b:fe:8b:33:29:27:93:1c:7b:10:9b: ee:63:36:7f:7d:ca:0a:35:1b:d1:13:27:e9:87:07: e5:c5:f5:b9:43:83:33:64:2d:1d:a6:75:68:28:b5: 45:80:08:02:51:d3:df:42:eb:e3:dc:d8:da:f5:83: dc:73:1a:b0:13:21:74:86:d2:13:59:8a:b1:46:db: 0b:e4:b5:36:d2:6f:38:8f:bd:33:6f:78:62:b0:2d: 85:44:64:c1:65:85:35:6a:54:01:d6:0a:ad:57:6c: aa:3d:89:05:7b:00:5c:82:e2:86:40:6d:25:19:6d: 19:ac:93:43:e3:be:9a:a2:b6:87:b2:c8:c7:49:ee: 0f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:D5:AD:25:E1:B4:B2:F6:05:17:ED:0E:B3:97:60:7B:60:71:BB:5B X509v3 Authority Key Identifier: keyid:A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:25:32:e5:40:37:23:c6:65:93:21:f1:e8:48:e1:74:1d:cf: 37:f1:c0:6d:07:98:88:da:c7:bc:d2:04:0f:1a:d5:d7:52:97: dc:6f:aa:66:91:a4:50:97:87:b2:7a:ad:68:93:a5:27:36:c2: 31:15:a5:ad:a7:5f:26:7c:f4:c4:c5:b0:35:09:ba:98:67:25: b4:c4:49:75:6a:58:e7:1a:95:b7:01:e8:8d:f8:7c:ed:36:47: 48:15:90:09:91:d1:fa:15:7a:98:b8:f4:02:08:55:3a:51:1a: bf:15:da:22:7e:8a:6d:b1:9e:b6:e0:c1:2b:63:3f:f3:8e:f2: b2:5b:5d:c0:c5:73:d0:2d:a4:65:38:c2:6c:4c:8e:63:c8:1c: 0c:a3:cf:18:5b:20:25:08:40:47:07:01:71:97:7d:9b:9b:06: 15:89:63:fc:b0:1b:00:fc:75:94:21:ea:78:af:21:c6:f7:d8: 47:b2:77:2d:7c:6d:b2:d0:74:76:90:d5:85:21:fb:ed:2b:45: bf:33:d1:f0:8a:4e:e7:cc:95:d7:02:9a:9f:57:d3:5b:b8:c5: dc:bc:6b:aa:eb:49:16:3b:a1:c7:cd:1e:a8:6d:1c:a9:e6:3b: 71:99:6d:44:59:3b:5a:e2:cd:4e:e1:d9:67:87:0a:0b:8f:1d: fd:15:e6:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MzQxMTAvBgNVBAUTKEEzNTBGQUYzQjZGMTRCQzhFRTFCMjk5NkVFRDQ4RTI3 MDIwRTEwODMwHhcNMjUxMDE4MjE0MzExWhcNMjUxMDI1MjE0MzExWjAYMRYwFAYD VQQDEw02OGY0MDllZi05ZDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshw3MHncPXT8CQfDybhVs/7WkFsBomszWxbkHp+KFaLR/XZgkmZ+1wOuFSkY QXJA5c49nDdRGLc7tc44dfeGR4cUA3QCbItg8H3KbshTjUKnmf8KOwtABZNrulq7 HMvbCUJom6UFdKBYfRXkFRoS2in60GKJngn22rPyi/6LMyknkxx7EJvuYzZ/fcoK NRvREyfphwflxfW5Q4MzZC0dpnVoKLVFgAgCUdPfQuvj3Nja9YPccxqwEyF0htIT WYqxRtsL5LU20m84j70zb3hisC2FRGTBZYU1alQB1gqtV2yqPYkFewBcguKGQG0l GW0ZrJND476aoraHssjHSe4PLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJTVrSXh tLL2BRftDrOXYHtgcbtbMB8GA1UdIwQYMBaAFKNQ+vO28UvI7hsplu7UjicCDhCD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgzNC81MUJFREZDNEND OEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4anVHeW1XN3RTT0p3SU9F SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRDY4N2J4UzhqdUd5bVc3dFNPSndJT0VJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgzNC81MUJFREZDNENDOEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4 anVHeW1XN3RTT0p3SU9FSU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYJTLlQDcjxmWTIfHoSOF0Hc838cBtB5iI2se80gQPGtXXUpfcb6pm kaRQl4eyeq1ok6UnNsIxFaWtp18mfPTExbA1CbqYZyW0xEl1aljnGpW3AeiN+Hzt NkdIFZAJkdH6FXqYuPQCCFU6URq/FdoifoptsZ624MErYz/zjvKyW13AxXPQLaRl OMJsTI5jyBwMo88YWyAlCEBHBwFxl32bmwYViWP8sBsA/HWUIep4ryHG99hHsnct fG2y0HR2kNWFIfvtK0W/M9Hwik7nzJXXApqfV9NbuMXcvGuq60kWO6HHzR6obRyp 5jtxmW1EWTta4s1O4dlnhwoLjx39Febl -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:17 2025 by rpki-client