$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft File: 9htN6lh5mctuFcVAieTbmD0BuxA.mft (raw, json) Hash identifier: BDsZKg30LjHtTjNFFn9Ye1F0Pooeh2LqvVAjM88Ej5k= Subject key identifier: 70:D3:34:CB:FC:BB:59:FE:57:F7:5A:AF:F8:98:A6:FD:4A:87:04:E6 Authority key identifier: F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 Certificate issuer: /CN=A91F7315/serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Certificate serial: 08B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft Manifest number: 1444 Signing time: Sat 18 Oct 2025 19:50:14 +0000 Manifest this update: Sat 18 Oct 2025 19:50:13 +0000 Manifest next update: Sat 25 Oct 2025 19:50:13 +0000 Files and hashes: 1: 9htN6lh5mctuFcVAieTbmD0BuxA.crl (hash: T989wS0MP18dDyi5Lo/Qq3ZasuGl7EU/nKrcLo0pNTc=) 2: 336BD320CA6111EA97DD3439C4F9AE02.roa (hash: pBil4YvB7UVloyu8DhnduF+muuJFikEsjN7164UGvgI=) 3: 341C7414CA6111EA97DD3439C4F9AE02.roa (hash: h5frQG89R9e/TKYUgyXgA4IPep2flQE62K3sYBLnEpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2232 (0x8b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7315, serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Validity Not Before: Oct 18 19:50:13 2025 GMT Not After : Oct 25 19:50:13 2025 GMT Subject: CN=68f3ef75-c22a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a1:09:e8:a2:16:4b:ee:f8:cd:3b:2c:81:03: b5:29:1e:fa:7e:79:20:0c:ae:fc:8b:9f:93:32:52: 59:95:a4:43:dc:98:fe:8c:64:55:7b:40:cf:b2:04: 56:d0:7e:cc:ec:a5:c1:dd:a4:fe:48:b5:42:98:0f: a2:bf:d0:c1:30:a1:35:7a:22:78:0b:61:fe:3e:2a: af:72:2b:ab:22:8b:2c:fd:dd:cc:b0:d7:6a:f0:78: ab:99:ff:3b:26:51:a1:26:8d:05:0d:b6:07:7d:34: d5:6e:7d:0f:ee:93:4c:3a:02:61:39:2e:dc:f0:2d: 86:b1:06:27:a9:00:48:95:07:2c:78:a9:b7:b8:ba: 9d:e6:ab:68:6d:fe:dd:6d:65:22:c4:4c:7d:a5:a9: 77:cd:73:61:f2:43:10:06:59:0b:81:6b:d8:ad:7e: b7:63:4e:da:0a:e5:2e:fd:d7:e9:98:fa:b4:3f:48: cf:5a:48:e5:dd:e8:d8:c2:1a:d5:e6:f3:0f:12:67: 96:5e:33:2a:fd:13:7c:e1:03:72:83:cb:81:7a:3c: cb:e8:7b:90:db:35:b8:de:11:7f:c9:c9:63:0e:68: 0a:d2:c9:1a:aa:a4:c6:3c:fb:e6:be:57:85:1c:1d: cf:90:02:83:46:ed:d5:39:ea:49:83:ca:ff:b0:03: bd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D3:34:CB:FC:BB:59:FE:57:F7:5A:AF:F8:98:A6:FD:4A:87:04:E6 X509v3 Authority Key Identifier: keyid:F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:d9:2e:bb:a0:d5:36:48:b2:5e:d0:77:d5:8e:e2:2b:c7:d0: a3:ba:31:17:d0:66:7d:c2:82:a7:7c:30:80:73:08:71:fa:70: 93:dc:cb:fc:27:30:99:c9:46:e2:a3:ab:c5:f7:bb:77:f3:14: 0b:64:45:fe:8a:5e:e4:d8:86:b8:0a:c1:72:94:72:b7:cc:21: 2b:3b:16:c3:9c:91:e4:3b:4e:25:b3:01:16:11:9f:74:35:77: c7:f3:d7:49:10:6b:86:58:4b:66:3c:8c:07:a2:82:fa:86:78: 4d:01:dd:2d:cd:d2:5d:02:cd:95:3a:bc:f0:2e:77:96:af:60: 60:6b:43:54:b3:29:8f:48:01:2b:9f:a7:79:fc:96:76:54:53: 51:ec:48:a4:97:b6:19:81:f8:22:33:66:4e:0d:1b:dd:54:51: a4:05:97:4a:31:7f:ec:6d:d3:c1:e4:b1:4a:d3:3d:8a:50:3f: f1:fb:e7:1f:5a:4c:7e:36:20:81:5a:37:9b:86:7b:1b:2b:2d: 14:05:e4:d9:60:ee:c2:fc:58:29:47:b0:ea:64:8c:34:e9:f7: ef:70:12:cf:4a:dd:34:2f:72:f9:b3:e1:30:fe:31:5c:c4:48: 31:33:88:6d:83:df:d0:53:92:6d:5e:e5:32:d9:bc:9a:25:d3: 5e:ed:98:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMTUxMTAvBgNVBAUTKEY2MUI0REVBNTg3OTk5Q0I2RTE1QzU0MDg5RTREQjk4 M0QwMUJCMTAwHhcNMjUxMDE4MTk1MDEzWhcNMjUxMDI1MTk1MDEzWjAYMRYwFAYD VQQDEw02OGYzZWY3NS1jMjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaEJ6KIWS+74zTssgQO1KR76fnkgDK78i5+TMlJZlaRD3Jj+jGRVe0DPsgRW 0H7M7KXB3aT+SLVCmA+iv9DBMKE1eiJ4C2H+PiqvciurIoss/d3MsNdq8Hirmf87 JlGhJo0FDbYHfTTVbn0P7pNMOgJhOS7c8C2GsQYnqQBIlQcseKm3uLqd5qtobf7d bWUixEx9pal3zXNh8kMQBlkLgWvYrX63Y07aCuUu/dfpmPq0P0jPWkjl3ejYwhrV 5vMPEmeWXjMq/RN84QNyg8uBejzL6HuQ2zW43hF/ycljDmgK0skaqqTGPPvmvleF HB3PkAKDRu3VOepJg8r/sAO94QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHDTNMv8 u1n+V/dar/iYpv1KhwTmMB8GA1UdIwQYMBaAFPYbTepYeZnLbhXFQInk25g9AbsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxNS84MjA2RjgzMjMy RTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1jdHVGY1ZBaWVUYm1EMEJ1 eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlodE42bGg1bWN0dUZjVkFpZVRibUQwQnV4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxNS84MjA2RjgzMjMyRTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1j dHVGY1ZBaWVUYm1EMEJ1eEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB32S67oNU2SLJe0HfVjuIrx9CjujEX0GZ9woKnfDCAcwhx+nCT3Mv8 JzCZyUbio6vF97t38xQLZEX+il7k2Ia4CsFylHK3zCErOxbDnJHkO04lswEWEZ90 NXfH89dJEGuGWEtmPIwHooL6hnhNAd0tzdJdAs2VOrzwLneWr2Bga0NUsymPSAEr n6d5/JZ2VFNR7Eikl7YZgfgiM2ZODRvdVFGkBZdKMX/sbdPB5LFK0z2KUD/x++cf Wkx+NiCBWjebhnsbKy0UBeTZYO7C/FgpR7DqZIw06ffvcBLPSt00L3L5s+Ew/jFc xEgxM4htg9/QU5JtXuUy2byaJdNe7Zhf -----END CERTIFICATE-----Generated at Mon Oct 20 14:46:29 2025 by rpki-client