$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft File: 9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft (raw, json) Hash identifier: bfUuyEg9LU5G6DrYHvBM5slD2nOy5i4983N1npu2U2I= Subject key identifier: 21:E8:2A:62:99:11:2B:68:A9:68:2F:9D:6B:42:D3:7A:DC:66:BE:33 Authority key identifier: F6:71:8A:5E:5E:42:D0:8E:25:3A:2F:B3:00:FF:09:C3:F5:35:1D:32 Certificate issuer: /CN=A91F6D91/serialNumber=F6718A5E5E42D08E253A2FB300FF09C3F5351D32 Certificate serial: 0692 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft Manifest number: 067A Signing time: Sun 19 Oct 2025 00:04:56 +0000 Manifest this update: Sun 19 Oct 2025 00:04:55 +0000 Manifest next update: Sun 26 Oct 2025 00:04:55 +0000 Files and hashes: 1: 9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl (hash: 6lbAvOoChduoi8yBkUJviEwzdz6xSLHVRZZrQY/+tP0=) 2: 105CB01A830711ECB472CA0AC4F9AE02.roa (hash: P0BhZPNBq4fF0iWoLAGwiGCR4fuUazibBS/DViNXhlI=) 3: 0E2711E6830711ECB472CA0AC4F9AE02.roa (hash: 6bWPYL9HlnXbgKm1pf8hjZDzf0KdOhZ+kEEuV8xvMnc=) 4: 0F6980C0830711ECB472CA0AC4F9AE02.roa (hash: GSq2aTh4Ighs8Kd5WfNm9bR33IhLvfkn/9rz4nvZ37o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:04:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1682 (0x692) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6D91, serialNumber=F6718A5E5E42D08E253A2FB300FF09C3F5351D32 Validity Not Before: Oct 19 00:04:55 2025 GMT Not After : Oct 26 00:04:55 2025 GMT Subject: CN=68f42b28-5543 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:13:ae:0e:a7:e5:41:55:68:cb:c2:8a:45:74: b9:a2:33:8e:a5:f4:ac:38:bb:7e:14:ee:07:05:98: c1:ae:31:56:54:78:f8:61:ff:96:2c:f2:e1:af:fb: 90:b6:f6:36:3f:e0:f0:6b:4c:f2:d0:f9:dc:38:f6: 3b:92:55:c4:7a:66:9f:fd:de:c6:c9:b5:94:f2:d1: 4e:c8:5a:31:99:86:e6:22:21:a4:47:e8:64:05:b6: 7b:bb:32:48:df:b4:7a:e6:e8:13:df:6b:1e:d4:13: aa:b0:a7:da:90:53:5c:1f:41:5b:74:9b:fc:4c:f7: 31:88:be:fd:d8:fe:79:a0:2a:c7:61:1a:d6:56:36: cf:5e:9d:47:97:76:da:4f:78:03:a8:3f:a5:7b:de: 91:30:fa:6e:3c:49:c7:d4:02:d4:97:c3:be:78:da: 44:0a:e6:e2:30:f4:31:c0:1e:76:00:9e:35:bd:77: f3:67:3f:10:34:f0:cb:9f:31:2e:5e:bf:47:8e:41: 21:40:ef:5b:9d:85:1f:fc:87:12:24:b1:79:94:1d: df:4c:2f:4b:46:f5:2e:f8:67:30:a5:41:1c:64:2a: dc:93:b3:22:13:a7:e2:b6:05:66:04:4f:55:ed:61: 87:29:a1:e7:b4:58:24:a5:12:7d:16:48:33:a8:45: 3a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E8:2A:62:99:11:2B:68:A9:68:2F:9D:6B:42:D3:7A:DC:66:BE:33 X509v3 Authority Key Identifier: keyid:F6:71:8A:5E:5E:42:D0:8E:25:3A:2F:B3:00:FF:09:C3:F5:35:1D:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6D91/E517F2B69AE511EB837F135EC4F9AE02/9nGKXl5C0I4lOi-zAP8Jw_U1HTI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cf:70:5b:e0:b4:1f:7b:0c:d2:0e:e7:8e:f5:01:af:5a:84:97: 66:9a:9e:12:96:a9:44:56:25:c0:49:94:2d:4f:55:58:d4:a2: 18:02:14:34:6e:3a:45:8c:06:2d:04:60:46:33:67:43:28:40: 88:32:fb:8d:4f:ee:13:50:21:bf:1d:88:44:3e:12:96:7b:19: 25:7c:ee:5b:a0:5a:74:23:4f:85:5b:77:dd:67:f5:df:be:8a: 79:e4:5d:11:ed:46:63:bf:a2:ed:ac:ca:be:16:e6:73:7f:89: d6:62:39:24:8e:6f:4a:fc:dc:9a:d8:86:e7:51:d5:61:c2:f2: 58:9a:05:28:71:02:f2:6d:fc:b3:41:38:ed:da:84:48:67:94: b7:40:15:1c:5c:03:94:e0:5d:8a:8b:9f:96:a9:49:c0:ea:b4: c6:f9:a4:4a:e3:fc:63:47:16:66:4a:00:10:12:7f:52:ba:c3: 2e:fe:ee:0e:64:7b:f5:4b:c1:cc:8c:54:15:88:3a:a0:01:f6: 8d:2a:17:02:13:da:f5:2b:7e:6b:3c:d5:1a:b0:f6:7a:93:75: 53:05:27:ae:db:c2:a4:bf:2b:52:3a:14:67:91:9c:45:f1:c3: c5:94:ad:7f:6f:90:ea:34:2a:35:bd:ee:10:2f:af:9b:aa:6b: 5b:dd:0f:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZEOTExMTAvBgNVBAUTKEY2NzE4QTVFNUU0MkQwOEUyNTNBMkZCMzAwRkYwOUMz RjUzNTFEMzIwHhcNMjUxMDE5MDAwNDU1WhcNMjUxMDI2MDAwNDU1WjAYMRYwFAYD VQQDEw02OGY0MmIyOC01NTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoBOuDqflQVVoy8KKRXS5ojOOpfSsOLt+FO4HBZjBrjFWVHj4Yf+WLPLhr/uQ tvY2P+Dwa0zy0PncOPY7klXEemaf/d7GybWU8tFOyFoxmYbmIiGkR+hkBbZ7uzJI 37R65ugT32se1BOqsKfakFNcH0FbdJv8TPcxiL792P55oCrHYRrWVjbPXp1Hl3ba T3gDqD+le96RMPpuPEnH1ALUl8O+eNpECubiMPQxwB52AJ41vXfzZz8QNPDLnzEu Xr9HjkEhQO9bnYUf/IcSJLF5lB3fTC9LRvUu+GcwpUEcZCrck7MiE6fitgVmBE9V 7WGHKaHntFgkpRJ9FkgzqEU6PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHoKmKZ EStoqWgvnWtC03rcZr4zMB8GA1UdIwQYMBaAFPZxil5eQtCOJTovswD/CcP1NR0y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkQ5MS9FNTE3RjJCNjlB RTUxMUVCODM3RjEzNUVDNEY5QUUwMi85bkdLWGw1QzBJNGxPaS16QVA4SndfVTFI VEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzluR0tYbDVDMEk0bE9pLXpBUDhKd19VMUhUSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkQ5MS9FNTE3RjJCNjlBRTUxMUVCODM3RjEzNUVDNEY5QUUwMi85bkdLWGw1QzBJ NGxPaS16QVA4SndfVTFIVEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDPcFvgtB97DNIO5471Aa9ahJdmmp4SlqlEViXASZQtT1VY1KIYAhQ0 bjpFjAYtBGBGM2dDKECIMvuNT+4TUCG/HYhEPhKWexklfO5boFp0I0+FW3fdZ/Xf vop55F0R7UZjv6LtrMq+FuZzf4nWYjkkjm9K/Nya2IbnUdVhwvJYmgUocQLybfyz QTjt2oRIZ5S3QBUcXAOU4F2Ki5+WqUnA6rTG+aRK4/xjRxZmSgAQEn9SusMu/u4O ZHv1S8HMjFQViDqgAfaNKhcCE9r1K35rPNUasPZ6k3VTBSeu28KkvytSOhRnkZxF 8cPFlK1/b5DqNCo1ve4QL6+bqmtb3Q9I -----END CERTIFICATE-----Generated at Mon Oct 20 07:49:49 2025 by rpki-client