$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft File: PN9D1xf8WEnyOpTimncrKKXXAeM.mft (raw, json) Hash identifier: zOYLWZkfUd4XsvA6Et1B9BK0rJ6Bds5bvOy+z8inUuc= Subject key identifier: 36:F7:F5:E4:37:27:50:B3:83:B4:B7:E2:29:BE:7F:C7:8F:76:94:F2 Authority key identifier: 3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 Certificate issuer: /CN=A91E3BB3/serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Certificate serial: 0899 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft Manifest number: 0890 Signing time: Sat 18 Oct 2025 21:42:34 +0000 Manifest this update: Sat 18 Oct 2025 21:42:33 +0000 Manifest next update: Sat 25 Oct 2025 21:42:33 +0000 Files and hashes: 1: PN9D1xf8WEnyOpTimncrKKXXAeM.crl (hash: MwW+1V3kD6oW3yyhg6hLWzEWiFXvNjXbkM2BpmsTqS4=) 2: D0CF108ED85111EF9DC0826CC4F9AE02.roa (hash: YDlJJK3r3QY2jge7AOb3CYnCW+wC8nrMDrmyeODCDi8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:42:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2201 (0x899) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3BB3, serialNumber=3CDF43D717FC5849F23A94E29A772B28A5D701E3 Validity Not Before: Oct 18 21:42:33 2025 GMT Not After : Oct 25 21:42:33 2025 GMT Subject: CN=68f409ca-b29a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:07:67:6e:76:1b:1c:cc:81:ad:22:f0:b0:08: 8b:02:9d:3e:ae:fa:f0:25:8b:fb:98:60:1d:4a:3e: 79:b1:a0:d8:a7:ca:36:53:d0:65:ac:26:19:88:cb: fb:00:d7:48:37:6b:75:9a:95:48:ea:51:fd:92:83: 47:87:db:a9:73:fa:40:25:ea:1f:e2:a6:f7:3a:84: f5:d0:fd:cf:19:2d:c4:e7:9c:dc:6a:ca:68:83:32: aa:06:af:e3:ff:c2:c8:11:30:a8:e3:fd:54:02:13: 04:73:40:19:82:60:51:39:87:3f:ee:9f:4c:7e:b7: 42:dd:86:48:c7:87:e7:b1:fc:3b:a3:c1:3d:1f:43: 35:85:c6:95:26:74:3c:4c:f8:16:e1:35:f3:1e:6e: b9:41:cb:04:a0:ac:0a:d7:0e:22:c1:ec:43:e5:29: bf:b2:ae:6e:f9:ea:93:8e:bd:36:22:1d:ba:87:34: a3:3d:8c:90:4a:d5:eb:67:00:bc:a1:e8:eb:48:1e: 81:44:7e:d7:b5:e9:ba:ff:29:5a:90:c9:67:b7:76: 9f:fa:f4:55:60:a6:35:d2:7d:eb:50:18:55:a5:dc: 11:c0:d8:a5:01:0b:f3:33:91:2d:b8:98:45:0a:d0: 0f:04:c8:69:b2:c7:09:fc:11:42:20:29:95:f7:fa: 65:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:F7:F5:E4:37:27:50:B3:83:B4:B7:E2:29:BE:7F:C7:8F:76:94:F2 X509v3 Authority Key Identifier: keyid:3C:DF:43:D7:17:FC:58:49:F2:3A:94:E2:9A:77:2B:28:A5:D7:01:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PN9D1xf8WEnyOpTimncrKKXXAeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3BB3/95AEA9E8CBE411EA806A4A75C4F9AE02/PN9D1xf8WEnyOpTimncrKKXXAeM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:e0:99:60:91:f2:7e:6a:55:b5:75:06:f6:0a:39:dc:8c:68: e3:47:f8:6f:10:b5:90:10:39:98:35:99:31:80:8e:a6:ad:a9: df:a7:53:26:8b:63:61:7c:8c:4c:7e:47:c9:96:27:26:6b:ac: 02:dc:be:6f:57:8c:c6:1f:af:52:08:90:c8:63:d9:b3:9f:b2: 8b:09:f1:28:76:b9:59:21:46:f5:49:8c:25:3a:98:15:6d:8c: 3a:9c:a5:a7:6c:0f:2b:9d:f8:66:42:8b:b9:7a:1d:ae:02:62: 7f:93:b1:7a:2e:ac:1b:f7:a9:04:5d:e4:18:e0:28:26:24:56: ac:d9:33:1c:70:88:55:a3:61:0f:3e:53:2a:57:f7:ec:de:5e: 9a:48:88:31:f9:62:7a:54:0f:56:f4:43:9a:5d:77:4b:ca:b8: fc:bc:b2:5e:e1:43:1e:d2:e9:63:10:71:e5:8c:d1:19:0c:ce: e4:a0:12:b6:57:95:3c:4e:a6:fe:db:13:78:86:64:0b:3b:8d: 4f:d7:67:16:3f:dc:9e:0f:a3:0c:0a:49:0a:a2:0e:b9:ef:33: 20:0e:70:08:54:1b:b3:4b:73:d1:60:73:6b:18:63:6c:cf:e0: fc:bb:c7:4b:cf:15:18:06:78:57:01:99:4a:4e:13:38:ab:b2: d6:a7:0e:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCQjMxMTAvBgNVBAUTKDNDREY0M0Q3MTdGQzU4NDlGMjNBOTRFMjlBNzcyQjI4 QTVENzAxRTMwHhcNMjUxMDE4MjE0MjMzWhcNMjUxMDI1MjE0MjMzWjAYMRYwFAYD VQQDEw02OGY0MDljYS1iMjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQdnbnYbHMyBrSLwsAiLAp0+rvrwJYv7mGAdSj55saDYp8o2U9BlrCYZiMv7 ANdIN2t1mpVI6lH9koNHh9upc/pAJeof4qb3OoT10P3PGS3E55zcaspogzKqBq/j /8LIETCo4/1UAhMEc0AZgmBROYc/7p9MfrdC3YZIx4fnsfw7o8E9H0M1hcaVJnQ8 TPgW4TXzHm65QcsEoKwK1w4iwexD5Sm/sq5u+eqTjr02Ih26hzSjPYyQStXrZwC8 oejrSB6BRH7Xtem6/ylakMlnt3af+vRVYKY10n3rUBhVpdwRwNilAQvzM5EtuJhF CtAPBMhpsscJ/BFCICmV9/pltQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDb39eQ3 J1Czg7S34im+f8ePdpTyMB8GA1UdIwQYMBaAFDzfQ9cX/FhJ8jqU4pp3Kyil1wHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0JCMy85NUFFQTlFOENC RTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdFbnlPcFRpbW5jcktLWFhB ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BOOUQxeGY4V0VueU9wVGltbmNyS0tYWEFlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0JCMy85NUFFQTlFOENCRTQxMUVBODA2QTRBNzVDNEY5QUUwMi9QTjlEMXhmOFdF bnlPcFRpbW5jcktLWFhBZU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz4JlgkfJ+alW1dQb2CjncjGjjR/hvELWQEDmYNZkxgI6mranfp1Mm i2NhfIxMfkfJlicma6wC3L5vV4zGH69SCJDIY9mzn7KLCfEodrlZIUb1SYwlOpgV bYw6nKWnbA8rnfhmQou5eh2uAmJ/k7F6Lqwb96kEXeQY4CgmJFas2TMccIhVo2EP PlMqV/fs3l6aSIgx+WJ6VA9W9EOaXXdLyrj8vLJe4UMe0uljEHHljNEZDM7koBK2 V5U8Tqb+2xN4hmQLO41P12cWP9yeD6MMCkkKog657zMgDnAIVBuzS3PRYHNrGGNs z+D8u8dLzxUYBnhXAZlKThM4q7LWpw51 -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:12 2025 by rpki-client