$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft File: l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft (raw, json) Hash identifier: hhd+kRZV6ZZXiVbuZvr/1e9z7Q8vt2DQu3GUQSbjQn0= Subject key identifier: DB:BD:38:9C:54:0D:7A:CB:0B:8E:53:1E:52:4E:51:E1:5E:2D:4C:A5 Authority key identifier: 97:D2:9B:0D:32:45:5B:B5:C6:F1:25:78:5F:40:F5:BC:27:09:F7:D4 Certificate issuer: /CN=A91DF8DB/serialNumber=97D29B0D32455BB5C6F125785F40F5BC2709F7D4 Certificate serial: 13D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft Manifest number: 13C9 Signing time: Sat 18 Oct 2025 17:25:07 +0000 Manifest this update: Sat 18 Oct 2025 17:25:07 +0000 Manifest next update: Sat 25 Oct 2025 17:25:07 +0000 Files and hashes: 1: l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl (hash: M7hMljrayGO+rmp/S6puUrCz48PyYINshqtXeOy8nUQ=) 2: A6C9934CA74111E88B3EAB2BC4F9AE02.roa (hash: Ps2kpMcHFW9xZn4cXtCxGzuJfkKA6kvJeaElditES+M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:25:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5074 (0x13d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF8DB, serialNumber=97D29B0D32455BB5C6F125785F40F5BC2709F7D4 Validity Not Before: Oct 18 17:25:07 2025 GMT Not After : Oct 25 17:25:07 2025 GMT Subject: CN=68f3cd73-40c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1f:a2:a3:53:22:70:ae:45:93:cb:e6:7f:20: 2a:30:e4:38:e6:70:35:13:26:55:73:d8:8e:76:c8: 74:46:36:09:22:e0:8d:f2:b6:26:11:da:4f:77:0e: 23:40:ca:77:82:f0:bb:e0:a8:89:46:22:16:8d:5d: 9e:ef:94:2d:f2:0e:53:1b:8e:58:89:69:ef:4d:a0: 30:39:3e:0e:c6:91:c6:8a:77:9d:a7:1c:52:fb:a7: d0:78:70:bf:fd:04:f7:4e:8a:ac:81:7b:9f:70:0c: f9:ef:c5:53:c1:43:6a:14:18:4f:9f:6f:9b:95:52: 65:ca:03:06:88:6f:2b:cc:26:e2:60:ad:bd:e3:c3: d0:12:ae:90:8d:30:72:30:29:d5:56:31:9e:1b:8a: bf:41:43:75:24:48:92:bb:e0:23:0d:57:fa:8b:f4: ca:a8:0b:25:1f:80:77:74:52:fa:3a:b3:6f:88:d7: b4:7e:28:ba:1e:79:54:17:ca:8d:09:e4:2a:29:a1: 26:ab:d5:2d:4a:c6:c0:cf:06:26:ee:b4:33:c5:c9: 5a:9c:1e:b6:00:f2:77:f6:d4:52:cc:c6:d7:16:63: ec:d7:e1:67:78:e5:4e:01:43:66:60:c0:7e:be:8d: ac:8d:01:dd:38:c2:64:c4:53:20:1a:37:f3:38:0e: 27:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:BD:38:9C:54:0D:7A:CB:0B:8E:53:1E:52:4E:51:E1:5E:2D:4C:A5 X509v3 Authority Key Identifier: keyid:97:D2:9B:0D:32:45:5B:B5:C6:F1:25:78:5F:40:F5:BC:27:09:F7:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF8DB/6579378C993411E8A0373724C4F9AE02/l9KbDTJFW7XG8SV4X0D1vCcJ99Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:bd:a2:66:7d:54:65:27:28:2a:b0:ee:db:2f:8b:e2:7f:c1: 8e:bc:9e:42:75:f8:73:f5:ec:03:40:3b:79:ac:a7:48:65:68: 31:69:98:30:eb:70:32:53:4e:58:b4:b8:17:a0:13:f3:6e:39: 7d:1d:6e:9e:07:75:f8:8e:71:5d:9b:ed:f7:98:a0:af:ed:0f: 9e:03:b5:63:6a:64:b6:b0:8b:57:e3:69:a5:c8:2b:5e:ff:69: b8:ba:1d:11:88:48:7f:da:c6:18:54:5c:ad:2a:c5:df:6d:cf: 71:5c:42:b9:8e:40:cc:8e:b2:1a:cb:7d:51:22:c5:7e:23:1d: b6:28:56:0e:d4:88:60:57:3b:49:f3:eb:0f:f7:8a:73:49:79: 80:77:78:4c:f1:73:b2:19:6a:8f:76:b3:20:25:f1:0c:9e:c2: 19:d3:b3:70:7b:74:db:a9:38:2b:35:8e:93:4a:a9:ab:9b:d7: 95:03:c0:3d:13:3e:46:fe:97:82:c2:0e:05:91:cb:41:7c:f0: dc:68:48:cc:0f:17:cb:92:7c:fe:60:99:c2:06:f8:09:30:3d: ae:94:f0:78:4d:33:14:9e:27:9e:5b:e3:7a:a3:be:55:33:38: 60:29:b9:6a:52:85:b4:e8:6f:e4:3f:5d:89:26:8a:43:9c:2d: e1:77:3f:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE9IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY4REIxMTAvBgNVBAUTKDk3RDI5QjBEMzI0NTVCQjVDNkYxMjU3ODVGNDBGNUJD MjcwOUY3RDQwHhcNMjUxMDE4MTcyNTA3WhcNMjUxMDI1MTcyNTA3WjAYMRYwFAYD VQQDEw02OGYzY2Q3My00MGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvx+io1MicK5Fk8vmfyAqMOQ45nA1EyZVc9iOdsh0RjYJIuCN8rYmEdpPdw4j QMp3gvC74KiJRiIWjV2e75Qt8g5TG45YiWnvTaAwOT4OxpHGinedpxxS+6fQeHC/ /QT3ToqsgXufcAz578VTwUNqFBhPn2+blVJlygMGiG8rzCbiYK2948PQEq6QjTBy MCnVVjGeG4q/QUN1JEiSu+AjDVf6i/TKqAslH4B3dFL6OrNviNe0fii6HnlUF8qN CeQqKaEmq9UtSsbAzwYm7rQzxclanB62APJ39tRSzMbXFmPs1+FneOVOAUNmYMB+ vo2sjQHdOMJkxFMgGjfzOA4nnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNu9OJxU DXrLC45THlJOUeFeLUylMB8GA1UdIwQYMBaAFJfSmw0yRVu1xvEleF9A9bwnCffU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjhEQi82NTc5Mzc4Qzk5 MzQxMUU4QTAzNzM3MjRDNEY5QUUwMi9sOUtiRFRKRlc3WEc4U1Y0WDBEMXZDY0o5 OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w5S2JEVEpGVzdYRzhTVjRYMEQxdkNjSjk5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjhEQi82NTc5Mzc4Qzk5MzQxMUU4QTAzNzM3MjRDNEY5QUUwMi9sOUtiRFRKRlc3 WEc4U1Y0WDBEMXZDY0o5OVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAvaJmfVRlJygqsO7bL4vif8GOvJ5Cdfhz9ewDQDt5rKdIZWgxaZgw 63AyU05YtLgXoBPzbjl9HW6eB3X4jnFdm+33mKCv7Q+eA7VjamS2sItX42mlyCte /2m4uh0RiEh/2sYYVFytKsXfbc9xXEK5jkDMjrIay31RIsV+Ix22KFYO1IhgVztJ 8+sP94pzSXmAd3hM8XOyGWqPdrMgJfEMnsIZ07Nwe3TbqTgrNY6TSqmrm9eVA8A9 Ez5G/peCwg4FkctBfPDcaEjMDxfLknz+YJnCBvgJMD2ulPB4TTMUnieeW+N6o75V MzhgKblqUoW06G/kP12JJopDnC3hdz9D -----END CERTIFICATE-----Generated at Mon Oct 20 08:24:03 2025 by rpki-client