$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft File: K99csyKL7Ic-zuddZ1g1RlOCNJI.mft (raw, json) Hash identifier: xt484iBdwyftzX+EkUaWGXzD33W1h9b34syS2qpmaNs= Subject key identifier: 1E:65:21:FC:6F:43:F6:9C:80:92:37:10:60:13:C1:87:23:55:A2:A1 Authority key identifier: 2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92 Certificate issuer: /CN=A91D8100/serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492 Certificate serial: 0815 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft Manifest number: 0808 Signing time: Sat 18 Oct 2025 22:12:28 +0000 Manifest this update: Sat 18 Oct 2025 22:12:27 +0000 Manifest next update: Sat 25 Oct 2025 22:12:27 +0000 Files and hashes: 1: K99csyKL7Ic-zuddZ1g1RlOCNJI.crl (hash: NmSDhr1OiEgYf10P/bR20VlJ+mtfA49LD4DTqYORaS8=) 2: DFB4AB2C9FD911F0B75B1848C4F9AE02.roa (hash: RLRjH/J0+me+Vx3yyTHl66wKq7FxNXMRxmdR2kAu53U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.crl rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:12:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2069 (0x815) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8100, serialNumber=2BDF5CB3228BEC873ECEE75D6758354653823492 Validity Not Before: Oct 18 22:12:27 2025 GMT Not After : Oct 25 22:12:27 2025 GMT Subject: CN=68f410cc-1f9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ee:58:05:96:a9:46:a6:ed:86:75:5f:4b:a8: b8:b5:4d:91:03:ac:42:44:db:b9:9a:7c:91:bf:e5: de:d7:c6:b9:28:4a:ca:a7:ad:97:e3:b3:44:40:f7: 41:e3:12:1b:f2:32:d9:31:17:f9:4b:57:c1:48:7c: 72:44:ab:bd:d9:ca:03:51:68:aa:b6:19:af:53:9e: f3:4e:f7:ee:c0:ff:c2:00:69:82:7b:07:01:9e:a2: fb:09:2b:28:89:ba:a9:c2:3e:d8:39:35:86:f1:2e: 4f:9f:9f:41:9a:e9:a3:1a:04:96:8d:8d:ca:38:6e: 6f:b9:ce:83:63:db:65:ca:31:4c:d5:09:09:15:92: 64:f9:6d:c0:86:36:ec:1f:39:74:38:94:b5:b3:69: 1d:90:72:2a:3f:74:84:39:d7:53:a8:04:06:36:00: f3:d4:41:b4:00:67:81:9a:8c:08:a8:65:5d:13:e5: c9:a3:c3:b6:46:e4:43:5e:52:ac:7c:b3:7c:ac:4d: a7:25:33:ee:49:23:70:5f:9f:5c:19:a0:93:74:5a: 18:cc:e5:9b:65:43:15:24:2b:f4:07:33:5c:7c:8d: 61:be:a1:19:99:c6:fa:7d:c8:c6:bd:fb:a7:33:ab: 72:b2:44:1d:bb:58:65:be:9a:d1:53:77:22:67:40: 68:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:65:21:FC:6F:43:F6:9C:80:92:37:10:60:13:C1:87:23:55:A2:A1 X509v3 Authority Key Identifier: keyid:2B:DF:5C:B3:22:8B:EC:87:3E:CE:E7:5D:67:58:35:46:53:82:34:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K99csyKL7Ic-zuddZ1g1RlOCNJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8100/AAC72E0CFCCE11EA8C19D87FC4F9AE02/K99csyKL7Ic-zuddZ1g1RlOCNJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:5e:a0:33:d3:d4:70:05:18:26:33:02:20:bb:08:65:a3:cb: c5:86:fb:74:7a:6f:0d:6d:59:14:b4:27:79:f9:83:30:7c:6a: eb:4f:ac:85:c0:c3:77:3a:00:dc:eb:32:a5:7c:4b:11:13:d5: 50:6d:7b:c6:75:e4:8a:b7:dd:31:4c:96:03:64:e3:5f:47:bd: 0e:4e:93:ee:5d:14:dc:4a:3f:39:2f:8a:69:ab:26:02:c9:6e: e5:72:b8:56:ae:4c:01:94:49:c5:9a:5e:b3:ff:ed:0b:42:36: 08:57:f7:93:b8:41:13:8d:0e:60:74:9a:ee:21:e2:1b:5d:aa: c1:d4:d6:69:3f:34:f3:97:69:16:5e:8b:70:31:31:c5:89:98: 0b:03:4a:b9:85:95:f1:1e:5c:a5:5c:10:6b:36:16:f6:7b:d8: 08:a2:a1:af:4c:f2:b4:2f:28:e9:8a:54:04:ae:fb:bf:06:88: 5a:77:48:93:58:8a:9d:8f:32:de:00:5f:fd:db:93:0e:02:1e: a3:fc:e3:01:79:40:0c:f7:a9:bd:bf:5c:4b:58:33:e4:ed:c4: 41:1a:57:e6:35:bd:90:08:30:7e:4f:5a:9f:75:7e:f7:67:1c: 5f:c0:40:c0:db:36:8c:ff:a5:98:f8:07:59:3d:ef:3f:e5:87: 9b:39:b6:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgxMDAxMTAvBgNVBAUTKDJCREY1Q0IzMjI4QkVDODczRUNFRTc1RDY3NTgzNTQ2 NTM4MjM0OTIwHhcNMjUxMDE4MjIxMjI3WhcNMjUxMDI1MjIxMjI3WjAYMRYwFAYD VQQDEw02OGY0MTBjYy0xZjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAru5YBZapRqbthnVfS6i4tU2RA6xCRNu5mnyRv+Xe18a5KErKp62X47NEQPdB 4xIb8jLZMRf5S1fBSHxyRKu92coDUWiqthmvU57zTvfuwP/CAGmCewcBnqL7CSso ibqpwj7YOTWG8S5Pn59BmumjGgSWjY3KOG5vuc6DY9tlyjFM1QkJFZJk+W3Ahjbs Hzl0OJS1s2kdkHIqP3SEOddTqAQGNgDz1EG0AGeBmowIqGVdE+XJo8O2RuRDXlKs fLN8rE2nJTPuSSNwX59cGaCTdFoYzOWbZUMVJCv0BzNcfI1hvqEZmcb6fcjGvfun M6tyskQdu1hlvprRU3ciZ0BoBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5lIfxv Q/acgJI3EGATwYcjVaKhMB8GA1UdIwQYMBaAFCvfXLMii+yHPs7nXWdYNUZTgjSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODEwMC9BQUM3MkUwQ0ZD Q0UxMUVBOEMxOUQ4N0ZDNEY5QUUwMi9LOTljc3lLTDdJYy16dWRkWjFnMVJsT0NO SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s5OWNzeUtMN0ljLXp1ZGRaMWcxUmxPQ05KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE ODEwMC9BQUM3MkUwQ0ZDQ0UxMUVBOEMxOUQ4N0ZDNEY5QUUwMi9LOTljc3lLTDdJ Yy16dWRkWjFnMVJsT0NOSkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxXqAz09RwBRgmMwIguwhlo8vFhvt0em8NbVkUtCd5+YMwfGrrT6yF wMN3OgDc6zKlfEsRE9VQbXvGdeSKt90xTJYDZONfR70OTpPuXRTcSj85L4ppqyYC yW7lcrhWrkwBlEnFml6z/+0LQjYIV/eTuEETjQ5gdJruIeIbXarB1NZpPzTzl2kW XotwMTHFiZgLA0q5hZXxHlylXBBrNhb2e9gIoqGvTPK0LyjpilQErvu/Bohad0iT WIqdjzLeAF/925MOAh6j/OMBeUAM96m9v1xLWDPk7cRBGlfmNb2QCDB+T1qfdX73 ZxxfwEDA2zaM/6WY+AdZPe8/5YebObb9 -----END CERTIFICATE-----Generated at Mon Oct 20 09:35:06 2025 by rpki-client