$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft File: S0Nd1JrBEcPde6D08IaF8hZRWFk.mft (raw, json) Hash identifier: KsHlvrWkH1VKEuMV4EJT6/1nmzXM7Gb94pKhKv3hgaA= Subject key identifier: 6E:81:9E:4E:AA:14:D9:05:7F:88:8D:C9:C5:CB:B9:4D:F9:76:8D:C0 Authority key identifier: 4B:43:5D:D4:9A:C1:11:C3:DD:7B:A0:F4:F0:86:85:F2:16:51:58:59 Certificate issuer: /CN=A91DC33B/serialNumber=4B435DD49AC111C3DD7BA0F4F08685F216515859 Certificate serial: 16BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft Manifest number: 16DE Signing time: Mon 20 Oct 2025 17:02:10 +0000 Manifest this update: Mon 20 Oct 2025 17:02:10 +0000 Manifest next update: Mon 27 Oct 2025 17:02:10 +0000 Files and hashes: 1: S0Nd1JrBEcPde6D08IaF8hZRWFk.crl (hash: pvGBhxjzyoRDJImdxLKhfwyLUh3mazoTqZzuksWjQsE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.crl rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5819 (0x16bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC33B, serialNumber=4B435DD49AC111C3DD7BA0F4F08685F216515859 Validity Not Before: Oct 20 17:02:10 2025 GMT Not After : Oct 27 17:02:10 2025 GMT Subject: CN=68f66b12-d82a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:84:69:d5:f2:41:a1:27:f7:c3:fe:3e:cf:10: dc:4e:6b:71:44:9b:5a:70:a2:46:87:9b:4c:35:f7: 54:be:75:40:59:50:b9:d9:b2:7e:71:00:9c:a6:b1: 05:2e:79:bd:f4:45:4a:d5:6e:bb:dd:cf:96:92:b3: 93:a3:77:6e:db:eb:c6:64:2e:b7:20:dd:85:f8:f9: fe:c5:36:2f:52:19:ce:c1:53:4c:2f:fa:f3:36:d1: 55:18:54:fa:d7:ce:e6:11:b6:8e:e3:40:d1:20:73: da:c6:68:21:f5:cf:b4:2c:93:e8:8e:f1:83:e0:38: 5c:df:8d:10:d8:57:9d:77:e1:f4:bc:d4:5c:eb:28: 78:ae:d1:e2:31:56:10:80:5a:74:1c:e8:86:ab:6f: 20:05:c0:a3:3c:f8:c2:3f:de:ca:e6:42:04:16:36: 4c:da:7e:01:34:d2:7e:b9:b4:16:51:43:97:8c:a8: d5:71:06:6a:da:9a:25:d8:80:85:d9:3e:c3:62:5a: 63:b5:90:f8:fb:ca:e9:10:7b:ee:aa:c8:3f:6a:d7: b8:0d:55:51:d6:cf:07:61:0b:d6:c7:b5:c6:07:52: 7d:1e:13:06:17:5a:3c:6d:c1:40:cf:85:44:1a:e4: d9:78:fa:bf:06:e6:04:b1:c2:6c:01:0c:b5:68:72: ce:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:81:9E:4E:AA:14:D9:05:7F:88:8D:C9:C5:CB:B9:4D:F9:76:8D:C0 X509v3 Authority Key Identifier: keyid:4B:43:5D:D4:9A:C1:11:C3:DD:7B:A0:F4:F0:86:85:F2:16:51:58:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0Nd1JrBEcPde6D08IaF8hZRWFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC33B/B4C9FE9206F511E89618F42FC4F9AE02/S0Nd1JrBEcPde6D08IaF8hZRWFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:ec:8a:bc:51:0b:b2:fc:d1:7f:a7:a3:2b:7f:99:1b:45:ab: b8:f4:b5:a1:10:ed:8b:ad:70:b9:af:62:d4:9b:3a:0c:43:70: ae:16:2e:8b:b3:36:74:97:bc:a3:fd:1c:a4:89:df:2d:36:4d: 56:03:ca:72:7f:95:64:49:78:b1:08:a7:c0:b0:85:c1:85:d8: df:8d:d8:63:ee:78:05:88:a2:d4:3d:1c:73:16:f0:e0:40:d8: e9:49:26:75:20:60:24:89:b3:1d:ca:87:a0:3f:09:82:c5:72: 64:f6:de:7b:6c:db:fd:a2:16:4d:d0:5c:df:17:4f:89:3c:0f: 9d:1f:94:3b:f0:5c:cc:6a:3e:00:18:c2:32:9e:2e:07:21:97: 51:64:a9:46:ca:0a:79:77:ef:e8:b9:6c:3a:31:9f:bc:51:63: c8:fe:4a:19:13:9c:97:06:ae:d3:d1:ca:b0:92:23:d7:d7:d2: 1b:61:36:8a:30:cc:ea:b9:9f:3e:6d:1d:f0:48:ef:0e:ef:84: 5e:75:3f:77:d8:67:7d:f4:50:a6:39:6e:0f:8a:a7:33:23:80: 4e:e5:d9:48:4a:38:79:b8:d6:15:47:e2:e3:ae:08:4c:d9:a7: 46:8a:dc:c7:3c:83:90:7f:8e:d7:17:37:df:68:80:59:07:c3: 33:9a:9b:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzM0IxMTAvBgNVBAUTKDRCNDM1REQ0OUFDMTExQzNERDdCQTBGNEYwODY4NUYy MTY1MTU4NTkwHhcNMjUxMDIwMTcwMjEwWhcNMjUxMDI3MTcwMjEwWjAYMRYwFAYD VQQDEw02OGY2NmIxMi1kODJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+YRp1fJBoSf3w/4+zxDcTmtxRJtacKJGh5tMNfdUvnVAWVC52bJ+cQCcprEF Lnm99EVK1W673c+WkrOTo3du2+vGZC63IN2F+Pn+xTYvUhnOwVNML/rzNtFVGFT6 187mEbaO40DRIHPaxmgh9c+0LJPojvGD4Dhc340Q2Fedd+H0vNRc6yh4rtHiMVYQ gFp0HOiGq28gBcCjPPjCP97K5kIEFjZM2n4BNNJ+ubQWUUOXjKjVcQZq2pol2ICF 2T7DYlpjtZD4+8rpEHvuqsg/ate4DVVR1s8HYQvWx7XGB1J9HhMGF1o8bcFAz4VE GuTZePq/BuYEscJsAQy1aHLOLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG6Bnk6q FNkFf4iNycXLuU35do3AMB8GA1UdIwQYMBaAFEtDXdSawRHD3Xug9PCGhfIWUVhZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMzQi9CNEM5RkU5MjA2 RjUxMUU4OTYxOEY0MkZDNEY5QUUwMi9TME5kMUpyQkVjUGRlNkQwOElhRjhoWlJX RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwTmQxSnJCRWNQZGU2RDA4SWFGOGhaUldGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzMzQi9CNEM5RkU5MjA2RjUxMUU4OTYxOEY0MkZDNEY5QUUwMi9TME5kMUpyQkVj UGRlNkQwOElhRjhoWlJXRmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAr7Iq8UQuy/NF/p6Mrf5kbRau49LWhEO2LrXC5r2LUmzoMQ3CuFi6L szZ0l7yj/Rykid8tNk1WA8pyf5VkSXixCKfAsIXBhdjfjdhj7ngFiKLUPRxzFvDg QNjpSSZ1IGAkibMdyoegPwmCxXJk9t57bNv9ohZN0FzfF0+JPA+dH5Q78FzMaj4A GMIyni4HIZdRZKlGygp5d+/ouWw6MZ+8UWPI/koZE5yXBq7T0cqwkiPX19IbYTaK MMzquZ8+bR3wSO8O74RedT932Gd99FCmOW4PiqczI4BO5dlISjh5uNYVR+LjrghM 2adGitzHPIOQf47XFzffaIBZB8Mzmpuh -----END CERTIFICATE-----Generated at Mon Oct 20 20:36:28 2025 by rpki-client