$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft File: b9CIejkD49bhe7nP2O8mknC6ywc.mft (raw, json) Hash identifier: WPIImnV44Mvz8fGH9h43Z6eLjZrZo19DxEDW3lt+wb0= Subject key identifier: 30:CF:8D:FD:A6:8D:84:DF:7A:F8:DF:CC:C5:85:A5:18:AB:72:69:54 Authority key identifier: 6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 Certificate issuer: /CN=A91E8BE3/serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft Manifest number: A2 Signing time: Sun 19 Oct 2025 09:35:13 +0000 Manifest this update: Sun 19 Oct 2025 09:35:13 +0000 Manifest next update: Sun 26 Oct 2025 09:35:13 +0000 Files and hashes: 1: b9CIejkD49bhe7nP2O8mknC6ywc.crl (hash: LN6ss/0oGy/nf9A9xLLSGGZXz4r/XF8ksz19YkyKYd4=) 2: 3139D35EBFA811EFA9B7DC2AC4F9AE02.roa (hash: gL/pv5Q4H259tRW/M/fWgTAynaK4mXLMVK09D4O3Mmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:35:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8BE3, serialNumber=6FD0887A3903E3D6E17BB9CFD8EF269270BACB07 Validity Not Before: Oct 19 09:35:13 2025 GMT Not After : Oct 26 09:35:13 2025 GMT Subject: CN=68f4b0d1-9846 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:54:55:a0:1f:03:ae:c3:00:79:0d:b5:0d:91: 4e:67:9f:b7:d4:07:47:66:80:13:21:ce:82:f9:6d: 82:4c:75:42:95:7c:7c:03:c9:83:0e:8e:fd:57:a1: 03:5c:22:1f:e2:5e:74:cd:d1:82:c9:60:c6:36:a6: 3a:93:bf:37:6c:55:34:82:7a:1e:bd:3d:30:1d:af: f2:2f:99:b5:02:93:cc:7a:0e:a5:32:ce:10:6c:46: fd:9d:04:d5:0b:d8:cc:bc:80:aa:d7:5f:30:52:60: c8:a0:9d:03:f0:49:f2:4d:63:77:cd:4f:7a:ed:93: ff:04:c2:34:8b:c6:0c:7c:ff:de:a3:75:74:77:32: 42:48:cb:1d:2d:00:78:5e:ba:00:22:1d:69:c1:fa: cf:23:6f:b3:e3:d5:35:89:56:9e:f9:63:90:a9:43: e6:a8:a3:23:68:11:9f:37:46:56:c7:aa:3d:f4:16: 09:c4:95:e1:c7:8b:4d:a8:62:d4:b2:f7:66:8e:f7: 68:55:6d:10:56:84:7f:22:62:2a:fd:0d:94:20:41: f7:6f:69:13:e9:2c:4e:af:d0:fe:be:03:d5:ea:24: 5a:4b:04:d6:44:8f:da:5a:d2:56:51:d3:a1:99:ac: 64:f4:78:4e:b6:64:89:5b:79:86:2f:05:eb:9e:76: a0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:CF:8D:FD:A6:8D:84:DF:7A:F8:DF:CC:C5:85:A5:18:AB:72:69:54 X509v3 Authority Key Identifier: keyid:6F:D0:88:7A:39:03:E3:D6:E1:7B:B9:CF:D8:EF:26:92:70:BA:CB:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/b9CIejkD49bhe7nP2O8mknC6ywc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8BE3/E6E6BE44BF9C11EF9DA88282C4F9AE02/b9CIejkD49bhe7nP2O8mknC6ywc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:37:0d:d2:c8:c6:60:3a:21:90:8e:17:0f:fe:59:af:b2:c2: 50:25:1a:19:c9:a0:c4:79:40:30:fb:bd:d1:52:a2:5d:87:31: 21:26:46:4e:c0:e8:02:4d:7b:c2:43:fa:d3:5f:60:a5:bb:7f: 7b:48:95:13:19:71:c7:77:78:e4:ff:08:44:67:23:0b:38:37: 23:dd:30:2b:95:35:72:d0:87:da:8c:8c:45:18:d1:98:86:22: 85:30:3f:81:0e:9f:63:8c:eb:29:d0:26:23:4a:59:98:1b:3e: fd:f5:c6:85:69:e8:68:58:4a:be:5b:5d:45:8c:9a:44:90:28: c0:be:4a:a6:18:68:82:ef:13:e5:77:d5:19:5f:1e:64:38:f2: de:19:5c:bb:32:b8:5b:a4:49:c9:00:b1:61:7a:92:0c:e1:b2: 3b:8f:f4:2a:13:3d:6b:aa:1b:c6:7d:3f:2b:0d:78:3b:71:1b: 42:63:43:9f:50:15:de:6f:6d:02:f5:5e:bc:32:43:ed:dc:1a: da:c4:d3:bc:8c:bf:1a:b5:10:57:da:ac:7f:32:98:f2:2f:af: 13:0f:8f:53:9e:12:84:ef:05:d4:b0:37:7d:34:26:f3:75:6e: f1:dd:15:00:31:70:50:54:bb:30:0b:e1:9b:2f:1b:33:3c:e9: f9:82:d3:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThCRTMxMTAvBgNVBAUTKDZGRDA4ODdBMzkwM0UzRDZFMTdCQjlDRkQ4RUYyNjky NzBCQUNCMDcwHhcNMjUxMDE5MDkzNTEzWhcNMjUxMDI2MDkzNTEzWjAYMRYwFAYD VQQDEw02OGY0YjBkMS05ODQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1RVoB8DrsMAeQ21DZFOZ5+31AdHZoATIc6C+W2CTHVClXx8A8mDDo79V6ED XCIf4l50zdGCyWDGNqY6k783bFU0gnoevT0wHa/yL5m1ApPMeg6lMs4QbEb9nQTV C9jMvICq118wUmDIoJ0D8EnyTWN3zU967ZP/BMI0i8YMfP/eo3V0dzJCSMsdLQB4 XroAIh1pwfrPI2+z49U1iVae+WOQqUPmqKMjaBGfN0ZWx6o99BYJxJXhx4tNqGLU svdmjvdoVW0QVoR/ImIq/Q2UIEH3b2kT6SxOr9D+vgPV6iRaSwTWRI/aWtJWUdOh maxk9HhOtmSJW3mGLwXrnnaguwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDDPjf2m jYTfevjfzMWFpRircmlUMB8GA1UdIwQYMBaAFG/QiHo5A+PW4Xu5z9jvJpJwussH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEJFMy9FNkU2QkU0NEJG OUMxMUVGOURBODgyODJDNEY5QUUwMi9iOUNJZWprRDQ5YmhlN25QMk84bWtuQzZ5 d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2I5Q0llamtENDliaGU3blAyTzhta25DNnl3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEJFMy9FNkU2QkU0NEJGOUMxMUVGOURBODgyODJDNEY5QUUwMi9iOUNJZWprRDQ5 YmhlN25QMk84bWtuQzZ5d2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgNw3SyMZgOiGQjhcP/lmvssJQJRoZyaDEeUAw+73RUqJdhzEhJkZO wOgCTXvCQ/rTX2Clu397SJUTGXHHd3jk/whEZyMLODcj3TArlTVy0IfajIxFGNGY hiKFMD+BDp9jjOsp0CYjSlmYGz799caFaehoWEq+W11FjJpEkCjAvkqmGGiC7xPl d9UZXx5kOPLeGVy7MrhbpEnJALFhepIM4bI7j/QqEz1rqhvGfT8rDXg7cRtCY0Of UBXeb20C9V68MkPt3BraxNO8jL8atRBX2qx/MpjyL68TD49TnhKE7wXUsDd9NCbz dW7x3RUAMXBQVLswC+GbLxszPOn5gtNw -----END CERTIFICATE-----Generated at Mon Oct 20 18:02:36 2025 by rpki-client