$ rpki-client -vvf rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft File: A9h0_y9dMgjn62Jadzf81EzuKsI.mft (raw, json) Hash identifier: YNXknbEvnXcRFrPVpaLRkk8flRDSmY0Pq85cNzVvTIs= Subject key identifier: EB:9E:C4:63:A0:D9:78:F5:B7:19:4F:B5:15:72:BF:6F:E3:11:3A:70 Authority key identifier: 03:D8:74:FF:2F:5D:32:08:E7:EB:62:5A:77:37:FC:D4:4C:EE:2A:C2 Certificate issuer: /CN=A91D901E/serialNumber=03D874FF2F5D3208E7EB625A7737FCD44CEE2AC2 Certificate serial: 25 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft Manifest number: 24 Signing time: Sun 19 Oct 2025 11:17:42 +0000 Manifest this update: Sun 19 Oct 2025 11:17:41 +0000 Manifest next update: Sun 26 Oct 2025 11:17:41 +0000 Files and hashes: 1: A9h0_y9dMgjn62Jadzf81EzuKsI.crl (hash: e8u6ckcfNJpxipZ7NI/PEAebOoHb2aNUmyFK0O6WC14=) 2: 58893B2878DC11F084C71D2BC4F9AE02.roa (hash: Top1RS38Q6RG/Bo0KeriCxYaYwIm8AI46xZdJa/NP8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.crl rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D901E, serialNumber=03D874FF2F5D3208E7EB625A7737FCD44CEE2AC2 Validity Not Before: Oct 19 11:17:41 2025 GMT Not After : Oct 26 11:17:41 2025 GMT Subject: CN=68f4c8d5-91bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:88:56:36:4a:34:92:b8:d5:b4:00:bd:c8:fc: 77:d5:b1:b9:e2:01:72:3f:24:44:83:26:7b:35:ce: cd:35:2e:c3:db:2a:4e:49:f5:77:77:98:5c:f3:9a: 74:ea:ab:99:a0:7a:b6:b0:8f:ce:53:3a:e0:d0:c5: 84:47:8d:21:9f:14:f4:e3:85:27:7e:3e:01:a6:b7: f0:ed:fa:10:ac:c8:03:b6:5e:fa:71:68:e0:09:c6: 2a:a2:99:ee:72:ec:3f:3f:59:37:f0:9c:1c:a9:d0: a1:8b:b3:5c:eb:4c:2c:4d:43:54:b3:4e:20:fe:72: dd:24:a3:f2:fd:dc:76:4b:dd:bf:f2:95:ec:a5:15: d3:ce:16:85:06:7d:13:50:16:d3:19:37:7b:b2:bc: 13:11:64:8f:b7:4d:8b:4d:14:c3:1a:1f:46:9a:97: ff:e8:3b:89:dc:9a:c7:72:f8:ed:76:88:2c:9d:b9: ea:e1:62:b6:51:2c:bc:60:15:e7:de:ed:e4:59:52: f2:1d:b6:13:50:de:f3:8b:59:9f:37:98:01:17:82: 22:f8:67:87:47:7f:6b:e0:5f:d0:89:6a:e1:d9:5d: af:32:3c:81:d0:78:b9:0e:a6:cc:c4:88:7d:f7:0e: 10:4a:aa:ce:0f:fb:69:c1:ca:4d:16:95:65:09:b1: 69:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:9E:C4:63:A0:D9:78:F5:B7:19:4F:B5:15:72:BF:6F:E3:11:3A:70 X509v3 Authority Key Identifier: keyid:03:D8:74:FF:2F:5D:32:08:E7:EB:62:5A:77:37:FC:D4:4C:EE:2A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:85:e5:f4:69:48:eb:fb:31:33:b2:32:fb:25:62:a0:06:82: 23:98:e5:11:72:97:8d:c8:5c:bd:bd:de:d6:ad:d6:f1:e8:36: 5f:cc:12:da:47:ba:5b:21:dc:61:25:92:10:d1:6b:96:86:ed: 90:5f:d4:00:19:32:c9:a5:c3:67:45:6b:9c:30:65:70:89:5b: 4d:38:d6:c0:2d:fc:cb:a1:b0:82:f2:0c:d4:57:b9:8b:24:ef: c9:c8:49:2b:9a:02:f2:de:46:eb:48:3d:9c:48:a2:e1:1e:b0: f4:37:44:2b:d5:2f:45:5b:09:07:50:65:42:4d:03:e4:9d:cd: 21:ce:c8:0f:d4:68:6a:25:31:8a:71:6f:9e:2a:9c:e3:19:73: 6b:65:2f:46:3f:9d:e3:d8:6e:77:92:1c:c8:38:32:4e:b5:ed: b3:f7:9f:3f:df:23:e0:c6:51:66:eb:7f:82:b0:c1:f0:e1:10: 66:71:43:66:d3:39:2c:fa:e2:3e:f8:e7:52:71:11:f3:f0:fa: ef:91:1b:09:b1:c3:58:13:9c:b2:87:60:61:98:3b:f4:39:a8: 6c:43:a6:5a:6c:20:ae:20:05:b5:5b:08:0e:98:31:06:da:43: 77:8d:9e:d3:f1:56:ec:e2:aa:03:57:92:5d:6e:f7:4a:79:91: b5:14:bc:bc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OTAxRTExMC8GA1UEBRMoMDNEODc0RkYyRjVEMzIwOEU3RUI2MjVBNzczN0ZDRDQ0 Q0VFMkFDMjAeFw0yNTEwMTkxMTE3NDFaFw0yNTEwMjYxMTE3NDFaMBgxFjAUBgNV BAMTDTY4ZjRjOGQ1LTkxYmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfiFY2SjSSuNW0AL3I/HfVsbniAXI/JESDJns1zs01LsPbKk5J9Xd3mFzzmnTq q5mgerawj85TOuDQxYRHjSGfFPTjhSd+PgGmt/Dt+hCsyAO2XvpxaOAJxiqime5y 7D8/WTfwnByp0KGLs1zrTCxNQ1SzTiD+ct0ko/L93HZL3b/yleylFdPOFoUGfRNQ FtMZN3uyvBMRZI+3TYtNFMMaH0aal//oO4ncmsdy+O12iCyduerhYrZRLLxgFefe 7eRZUvIdthNQ3vOLWZ83mAEXgiL4Z4dHf2vgX9CJauHZXa8yPIHQeLkOpszEiH33 DhBKqs4P+2nByk0WlWUJsWldAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU657EY6DZ ePW3GU+1FXK/b+MROnAwHwYDVR0jBBgwFoAUA9h0/y9dMgjn62Jadzf81EzuKsIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5MDFFL0RFMkQ2NEVBNzhE QTExRjBCMEZCRTIxNkM0RjlBRTAyL0E5aDBfeTlkTWdqbjYySmFkemY4MUV6dUtz SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQTloMF95OWRNZ2puNjJKYWR6ZjgxRXp1S3NJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 MDFFL0RFMkQ2NEVBNzhEQTExRjBCMEZCRTIxNkM0RjlBRTAyL0E5aDBfeTlkTWdq bjYySmFkemY4MUV6dUtzSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHSF5fRpSOv7MTOyMvslYqAGgiOY5RFyl43IXL293tat1vHoNl/MEtpH ulsh3GElkhDRa5aG7ZBf1AAZMsmlw2dFa5wwZXCJW0041sAt/MuhsILyDNRXuYsk 78nISSuaAvLeRutIPZxIouEesPQ3RCvVL0VbCQdQZUJNA+SdzSHOyA/UaGolMYpx b54qnOMZc2tlL0Y/nePYbneSHMg4Mk617bP3nz/fI+DGUWbrf4KwwfDhEGZxQ2bT OSz64j7451JxEfPw+u+RGwmxw1gTnLKHYGGYO/Q5qGxDplpsIK4gBbVbCA6YMQba Q3eNntPxVuziqgNXkl1u90p5kbUUvLw= -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:39 2025 by rpki-client