$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft File: sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft (raw, json) Hash identifier: brTvqzKuxhJVcwid2slaOhNhXYO2bLJBvMoD9MKrwQE= Subject key identifier: F5:46:7D:C0:3E:AE:54:8B:2C:1E:A2:93:4B:9B:4F:BD:68:E1:64:0C Authority key identifier: B1:91:AE:20:68:14:6F:9C:73:9B:EA:6C:D5:9E:79:2C:4F:89:7B:76 Certificate issuer: /CN=A91D5320/serialNumber=B191AE2068146F9C739BEA6CD59E792C4F897B76 Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft Manifest number: 01A9 Signing time: Sun 19 Oct 2025 05:50:00 +0000 Manifest this update: Sun 19 Oct 2025 05:49:59 +0000 Manifest next update: Sun 26 Oct 2025 05:49:59 +0000 Files and hashes: 1: sZGuIGgUb5xzm-ps1Z55LE-Je3Y.crl (hash: Y2v+6tCh3IxLG4JTNDDP3ESau6kT6Jv3rgdXphvdnRI=) 2: E7B472CE2DC811EEBADF8E61C4F9AE02.roa (hash: 5HgkoEjy2X/F47jraS1FxwE/N3K0sTH/50e9DNotSWM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.crl rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:49:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5320, serialNumber=B191AE2068146F9C739BEA6CD59E792C4F897B76 Validity Not Before: Oct 19 05:49:59 2025 GMT Not After : Oct 26 05:49:59 2025 GMT Subject: CN=68f47c07-ed2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:91:84:45:44:50:7a:b6:6b:45:c6:c9:09:2b: a9:87:f0:1f:15:eb:b9:98:5d:b5:37:9a:ca:70:de: 63:55:34:64:ed:be:08:6e:fa:89:fd:90:52:5f:69: 3b:58:08:f8:96:82:d5:5d:f1:f7:c3:ed:f0:5d:df: eb:8d:8a:cd:44:3b:a5:a1:9a:3f:05:28:48:c1:ca: 53:32:02:f0:a2:71:74:64:d5:af:32:4f:3a:09:da: 35:cd:4b:cf:b5:e8:52:8e:0f:ae:30:f9:0c:8e:ce: 24:8d:39:8e:9b:5f:e6:d5:b2:e4:be:0a:b4:c2:7d: 61:7e:ad:cb:a2:f3:f6:f4:bb:b5:f6:79:b2:fb:b5: 79:43:2a:79:51:86:5c:47:e5:63:bb:6b:92:a8:1d: a0:ef:ad:2e:cf:10:fc:93:33:c1:60:3a:e8:38:24: e6:42:f1:17:6f:d9:c0:07:6f:ca:84:cb:21:b8:df: 06:85:b5:76:07:f2:f3:71:fb:ad:c4:9c:a4:55:b8: 73:ad:b8:60:3b:6b:77:2e:c9:b6:69:57:fa:c5:b4: 04:98:dd:10:19:0b:f8:73:52:f3:29:99:ec:d5:c8: 3b:87:ff:70:86:ad:a6:08:ff:51:62:a3:00:6d:6b: f4:28:06:e8:17:f6:0f:f7:e9:d4:85:aa:ce:05:50: 59:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:46:7D:C0:3E:AE:54:8B:2C:1E:A2:93:4B:9B:4F:BD:68:E1:64:0C X509v3 Authority Key Identifier: keyid:B1:91:AE:20:68:14:6F:9C:73:9B:EA:6C:D5:9E:79:2C:4F:89:7B:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5320/78CCFE4E2DC811EE9370D348C4F9AE02/sZGuIGgUb5xzm-ps1Z55LE-Je3Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:9d:fa:f8:68:ed:c1:c4:63:c7:01:19:2a:f2:0f:f5:4f:d0: 31:9d:64:1a:26:1a:44:0f:b9:18:aa:e8:31:06:fa:de:81:0e: 3b:71:12:c0:33:40:f3:7b:db:a7:5b:52:8b:fe:89:a6:f5:1b: 4b:38:55:02:06:90:8d:51:df:86:53:50:d0:a2:5b:01:6e:06: b1:6f:4c:80:2e:0f:eb:bb:1f:e5:7b:2a:ec:6c:43:c5:f1:95: 25:62:24:34:13:c5:65:4f:db:4a:68:62:5d:ed:d8:92:8a:b6: d4:d7:82:16:34:52:2d:ba:df:a9:d1:1f:e7:91:20:04:79:07: f5:96:1c:fc:85:6b:67:3b:84:ca:04:dc:91:12:04:73:3b:54: 18:81:c2:68:7e:5b:18:14:a1:00:3d:7b:e3:f3:fe:f6:46:bb: 42:80:b6:33:18:2d:b1:d0:67:75:6a:19:d6:64:f1:bd:07:fb: 4e:3c:9b:ea:b4:f1:60:48:a3:ea:a7:8a:34:71:b1:10:6e:3a: 9e:f9:62:be:5e:8d:e1:64:2a:9d:1d:98:bf:f4:0f:db:6c:da: 82:22:24:b4:56:0a:95:72:0d:98:a1:9d:63:1d:25:b5:8c:1b: bd:2d:e1:d8:39:44:b8:7c:99:a8:83:4f:25:86:bc:88:11:63: 4e:61:15:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUzMjAxMTAvBgNVBAUTKEIxOTFBRTIwNjgxNDZGOUM3MzlCRUE2Q0Q1OUU3OTJD NEY4OTdCNzYwHhcNMjUxMDE5MDU0OTU5WhcNMjUxMDI2MDU0OTU5WjAYMRYwFAYD VQQDEw02OGY0N2MwNy1lZDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZGERURQerZrRcbJCSuph/AfFeu5mF21N5rKcN5jVTRk7b4IbvqJ/ZBSX2k7 WAj4loLVXfH3w+3wXd/rjYrNRDuloZo/BShIwcpTMgLwonF0ZNWvMk86Cdo1zUvP tehSjg+uMPkMjs4kjTmOm1/m1bLkvgq0wn1hfq3LovP29Lu19nmy+7V5Qyp5UYZc R+Vju2uSqB2g760uzxD8kzPBYDroOCTmQvEXb9nAB2/KhMshuN8GhbV2B/Lzcfut xJykVbhzrbhgO2t3Lsm2aVf6xbQEmN0QGQv4c1LzKZns1cg7h/9whq2mCP9RYqMA bWv0KAboF/YP9+nUharOBVBZJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVGfcA+ rlSLLB6ik0ubT71o4WQMMB8GA1UdIwQYMBaAFLGRriBoFG+cc5vqbNWeeSxPiXt2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTMyMC83OENDRkU0RTJE QzgxMUVFOTM3MEQzNDhDNEY5QUUwMi9zWkd1SUdnVWI1eHptLXBzMVo1NUxFLUpl M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NaR3VJR2dVYjV4em0tcHMxWjU1TEUtSmUzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTMyMC83OENDRkU0RTJEQzgxMUVFOTM3MEQzNDhDNEY5QUUwMi9zWkd1SUdnVWI1 eHptLXBzMVo1NUxFLUplM1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFnfr4aO3BxGPHARkq8g/1T9AxnWQaJhpED7kYqugxBvregQ47cRLA M0Dze9unW1KL/omm9RtLOFUCBpCNUd+GU1DQolsBbgaxb0yALg/rux/leyrsbEPF 8ZUlYiQ0E8VlT9tKaGJd7diSirbU14IWNFItut+p0R/nkSAEeQf1lhz8hWtnO4TK BNyREgRzO1QYgcJoflsYFKEAPXvj8/72RrtCgLYzGC2x0Gd1ahnWZPG9B/tOPJvq tPFgSKPqp4o0cbEQbjqe+WK+Xo3hZCqdHZi/9A/bbNqCIiS0VgqVcg2YoZ1jHSW1 jBu9LeHYOUS4fJmog08lhryIEWNOYRXt -----END CERTIFICATE-----Generated at Mon Oct 20 17:25:48 2025 by rpki-client