$ rpki-client -vvf rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft File: s9eTeQ4RSsj43IK64zwdkr29tes.mft (raw, json) Hash identifier: 8Y9TeSFtKRNJi+a94wOk51f3JZ3OaFgu/iIt9kiNkXk= Subject key identifier: F3:26:1F:9E:2F:4A:BD:EB:50:08:7F:E1:32:1C:03:55:36:EA:EE:DE Authority key identifier: B3:D7:93:79:0E:11:4A:C8:F8:DC:82:BA:E3:3C:1D:92:BD:BD:B5:EB Certificate issuer: /CN=A91F71E8/serialNumber=B3D793790E114AC8F8DC82BAE33C1D92BDBDB5EB Certificate serial: 0899 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft Manifest number: 1A9D Signing time: Sat 18 Oct 2025 17:39:55 +0000 Manifest this update: Sat 18 Oct 2025 17:39:54 +0000 Manifest next update: Sat 25 Oct 2025 17:39:54 +0000 Files and hashes: 1: s9eTeQ4RSsj43IK64zwdkr29tes.crl (hash: L2pXdBoU3NvgfMNmrvupZ/9t5PT2EtLMzfOynf3M4Qw=) 2: F87AC94C35BB11EDB0314E29C4F9AE02.roa (hash: QQ2kSpkziq7c/OfdUjW7k6le4ABn54sNBVAUYS+VxSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.crl rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:39:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2201 (0x899) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F71E8, serialNumber=B3D793790E114AC8F8DC82BAE33C1D92BDBDB5EB Validity Not Before: Oct 18 17:39:54 2025 GMT Not After : Oct 25 17:39:54 2025 GMT Subject: CN=68f3d0ea-fef0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a2:21:ec:c2:2f:c0:f9:48:e6:85:6f:10:32: 60:f0:4e:eb:18:a1:63:a3:c9:25:51:f7:06:ec:50: b6:58:0c:96:b5:bb:f8:63:91:32:3b:b1:e7:4c:c6: d6:33:6e:c3:37:59:74:25:a1:61:85:8d:fa:97:8d: c1:5a:5c:a8:25:d2:b2:0e:6e:68:8c:82:22:a0:d9: 1b:62:df:ed:a9:a9:f0:67:38:36:2a:ad:b2:ff:9f: 7a:77:04:6f:20:45:44:74:56:5d:3a:12:06:df:a7: 05:5a:f0:ff:4c:cd:eb:50:79:13:6f:63:d0:3d:61: 6d:63:d4:cf:f3:03:c1:94:36:ac:5e:5e:81:b4:e3: 17:5b:38:39:03:01:4f:1c:d0:88:0a:32:11:94:a2: 7e:24:0f:97:1a:d0:d2:be:6c:83:90:ec:78:68:33: 8a:99:f5:c5:df:26:8e:76:d9:5d:d7:78:33:09:cd: 39:6c:42:10:b6:37:90:a9:3a:cf:3d:ed:88:01:36: 69:87:05:89:93:bf:40:17:1f:08:68:dc:c8:4e:2e: b0:63:9a:e3:37:52:a2:6d:32:17:09:af:db:7e:73: 71:0b:29:be:11:bb:b7:8a:71:0d:ed:c8:90:d5:b4: 66:f6:f9:fb:6f:79:ad:4d:39:ae:e2:5c:f0:81:26: 71:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:26:1F:9E:2F:4A:BD:EB:50:08:7F:E1:32:1C:03:55:36:EA:EE:DE X509v3 Authority Key Identifier: keyid:B3:D7:93:79:0E:11:4A:C8:F8:DC:82:BA:E3:3C:1D:92:BD:BD:B5:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s9eTeQ4RSsj43IK64zwdkr29tes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F71E8/62B787A0EEE411E89E665D4DC4F9AE02/s9eTeQ4RSsj43IK64zwdkr29tes.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:f4:c2:31:24:bb:70:90:11:a2:d9:9b:0d:d9:22:a1:90:99: 05:9f:10:19:99:bc:fb:f8:80:27:b1:4b:04:bf:fb:05:bf:8b: da:b9:a7:17:a1:7b:eb:b0:67:35:ad:65:5e:94:96:47:e5:48: 3d:35:85:58:1d:39:25:5e:3a:9b:b4:2b:bb:6a:1f:ac:a2:27: a0:36:53:33:b3:c2:0d:6d:5c:88:45:b6:30:14:69:67:36:78: 4d:1d:84:f2:2a:46:9e:3a:02:0f:06:54:e4:34:ac:16:93:21: 5b:27:58:d6:eb:26:0f:9d:c3:fc:77:70:6b:1c:fa:f1:2c:37: 08:13:24:83:6e:aa:1a:0e:ad:2f:09:88:98:c3:12:bf:05:3f: c3:52:31:22:e3:89:b1:6f:23:2d:35:2d:44:0c:29:1c:e7:11: 42:03:f8:de:10:9f:58:58:8e:4f:20:11:d3:18:c2:9a:37:56: 85:cc:e5:4b:24:55:a0:af:d4:2e:7f:9f:9e:09:4c:5b:71:c1: be:6d:5a:8d:fc:e8:d2:0b:1f:80:3e:25:55:c4:07:5f:d7:38: 06:22:23:59:1c:c2:a1:46:d9:52:52:b9:15:a0:f2:10:1b:ae: 0c:db:c5:8b:09:3f:08:24:b5:6a:49:3b:15:75:1a:7e:47:03: 64:d6:87:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjcxRTgxMTAvBgNVBAUTKEIzRDc5Mzc5MEUxMTRBQzhGOERDODJCQUUzM0MxRDky QkRCREI1RUIwHhcNMjUxMDE4MTczOTU0WhcNMjUxMDI1MTczOTU0WjAYMRYwFAYD VQQDEw02OGYzZDBlYS1mZWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2KIh7MIvwPlI5oVvEDJg8E7rGKFjo8klUfcG7FC2WAyWtbv4Y5EyO7HnTMbW M27DN1l0JaFhhY36l43BWlyoJdKyDm5ojIIioNkbYt/tqanwZzg2Kq2y/596dwRv IEVEdFZdOhIG36cFWvD/TM3rUHkTb2PQPWFtY9TP8wPBlDasXl6BtOMXWzg5AwFP HNCICjIRlKJ+JA+XGtDSvmyDkOx4aDOKmfXF3yaOdtld13gzCc05bEIQtjeQqTrP Pe2IATZphwWJk79AFx8IaNzITi6wY5rjN1KibTIXCa/bfnNxCym+Ebu3inEN7ciQ 1bRm9vn7b3mtTTmu4lzwgSZxawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPMmH54v Sr3rUAh/4TIcA1U26u7eMB8GA1UdIwQYMBaAFLPXk3kOEUrI+NyCuuM8HZK9vbXr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzFFOC82MkI3ODdBMEVF RTQxMUU4OUU2NjVENERDNEY5QUUwMi9zOWVUZVE0UlNzajQzSUs2NHp3ZGtyMjl0 ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M5ZVRlUTRSU3NqNDNJSzY0endka3IyOXRlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzFFOC82MkI3ODdBMEVFRTQxMUU4OUU2NjVENERDNEY5QUUwMi9zOWVUZVE0UlNz ajQzSUs2NHp3ZGtyMjl0ZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCB9MIxJLtwkBGi2ZsN2SKhkJkFnxAZmbz7+IAnsUsEv/sFv4vauacX oXvrsGc1rWVelJZH5Ug9NYVYHTklXjqbtCu7ah+soiegNlMzs8INbVyIRbYwFGln NnhNHYTyKkaeOgIPBlTkNKwWkyFbJ1jW6yYPncP8d3BrHPrxLDcIEySDbqoaDq0v CYiYwxK/BT/DUjEi44mxbyMtNS1EDCkc5xFCA/jeEJ9YWI5PIBHTGMKaN1aFzOVL JFWgr9Quf5+eCUxbccG+bVqN/OjSCx+APiVVxAdf1zgGIiNZHMKhRtlSUrkVoPIQ G64M28WLCT8IJLVqSTsVdRp+RwNk1of0 -----END CERTIFICATE-----Generated at Mon Oct 20 12:16:07 2025 by rpki-client