$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft File: 9htN6lh5mctuFcVAieTbmD0BuxA.mft (raw, json) Hash identifier: 2JvvMs3+mrD2OQ+qeAKj6pwwUgr7taZVTXJ8CP8pPQ4= Subject key identifier: 1B:76:B9:3B:34:60:A4:5C:B7:4E:46:12:D5:3C:2F:94:A3:3D:A4:EC Authority key identifier: F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 Certificate issuer: /CN=A91F7315/serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Certificate serial: 08B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft Manifest number: 1446 Signing time: Mon 20 Oct 2025 19:39:49 +0000 Manifest this update: Mon 20 Oct 2025 19:39:48 +0000 Manifest next update: Mon 27 Oct 2025 19:39:48 +0000 Files and hashes: 1: 9htN6lh5mctuFcVAieTbmD0BuxA.crl (hash: DbbByfeqxPrl24IgzrA5zAgrZtKNXXUAh9d/jDkqlqw=) 2: 336BD320CA6111EA97DD3439C4F9AE02.roa (hash: pBil4YvB7UVloyu8DhnduF+muuJFikEsjN7164UGvgI=) 3: 341C7414CA6111EA97DD3439C4F9AE02.roa (hash: h5frQG89R9e/TKYUgyXgA4IPep2flQE62K3sYBLnEpw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:39:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2233 (0x8b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7315, serialNumber=F61B4DEA587999CB6E15C54089E4DB983D01BB10 Validity Not Before: Oct 20 19:39:48 2025 GMT Not After : Oct 27 19:39:48 2025 GMT Subject: CN=68f69004-74bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c9:60:f7:07:a9:50:da:d8:cb:18:1d:39:ef: 82:aa:5a:19:bc:28:c9:e2:36:b8:6e:ac:0f:fd:4a: 25:fb:94:32:80:72:71:42:e4:68:4b:fe:5d:2a:f0: 72:45:fa:d7:35:10:06:16:5c:2a:0e:0b:a6:2f:f3: 9d:65:1a:84:22:9a:13:c8:54:dd:33:23:a9:c5:78: 7b:c4:fb:c5:60:e7:2e:dd:f0:13:d2:eb:a4:de:66: e4:b5:08:92:85:ab:50:07:51:4e:8e:1e:74:60:19: 35:f0:a3:e1:c3:8e:66:11:b9:25:57:f0:2d:11:ea: 81:7f:a7:f2:32:3d:d3:31:17:99:ff:c4:26:0f:b5: 4e:4c:03:89:33:d1:8f:e5:83:6f:65:9b:a3:c5:1f: f5:ed:2c:8e:e0:47:e0:6e:26:b6:50:03:f6:aa:c1: ff:e8:4a:a9:80:13:af:73:57:c8:de:eb:c5:2c:00: 30:f5:07:62:12:3b:7f:cc:d8:b3:58:2d:d7:9d:67: 8e:64:2a:9b:fa:97:87:b1:8b:d4:24:e9:8e:c3:94: b0:a2:f9:13:21:c9:09:23:7e:a9:65:b7:30:55:88: eb:a1:f4:f2:84:ad:87:cf:97:6a:12:53:31:99:fd: 16:12:75:3e:99:0d:8e:d0:0d:5a:fc:77:8b:2d:5b: 94:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:76:B9:3B:34:60:A4:5C:B7:4E:46:12:D5:3C:2F:94:A3:3D:A4:EC X509v3 Authority Key Identifier: keyid:F6:1B:4D:EA:58:79:99:CB:6E:15:C5:40:89:E4:DB:98:3D:01:BB:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9htN6lh5mctuFcVAieTbmD0BuxA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/9htN6lh5mctuFcVAieTbmD0BuxA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:0a:4b:7e:21:4c:0e:d8:c4:c4:a0:99:f4:9c:96:3e:c8:1b: a9:63:f5:51:7b:32:36:99:cd:21:28:04:d0:4f:aa:ea:55:4a: 73:48:f9:57:90:1d:15:d7:ac:22:01:44:48:38:42:54:e2:ae: c2:a2:a7:84:61:4f:c9:88:af:71:4e:2b:8a:fe:3a:ff:ea:fa: 7e:a5:9a:44:ab:f2:c6:32:90:2f:80:3b:3a:23:68:9f:0d:8f: 7c:b9:4d:51:e4:f7:21:3e:e1:af:8c:52:da:35:17:eb:a5:6a: ae:db:c1:ea:dd:01:11:bc:7a:8e:90:08:de:2c:22:4f:c8:e2: 84:8a:e5:0c:7d:51:10:31:b6:81:f7:b8:a9:15:cf:d4:fe:da: 22:f2:87:ff:ff:ff:c0:fb:59:e9:d8:cc:e4:d3:13:ea:97:88: eb:5d:7d:25:85:2b:f4:94:db:8e:e4:0e:3a:08:fb:49:b2:f6: c8:73:91:08:5b:a0:6b:e0:43:7f:6c:f6:09:d4:6f:be:c6:f9: bb:a9:33:ea:29:39:76:2d:0a:9e:e9:46:89:cd:21:35:bf:68: 5a:e1:51:a0:ad:1b:3b:cd:0a:ff:ce:69:22:3c:8a:60:10:d8: 0c:06:da:8e:41:d7:4a:78:41:45:57:f1:e7:e5:dd:40:35:a8: 97:d2:20:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMTUxMTAvBgNVBAUTKEY2MUI0REVBNTg3OTk5Q0I2RTE1QzU0MDg5RTREQjk4 M0QwMUJCMTAwHhcNMjUxMDIwMTkzOTQ4WhcNMjUxMDI3MTkzOTQ4WjAYMRYwFAYD VQQDEw02OGY2OTAwNC03NGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8lg9wepUNrYyxgdOe+CqloZvCjJ4ja4bqwP/Uol+5QygHJxQuRoS/5dKvBy RfrXNRAGFlwqDgumL/OdZRqEIpoTyFTdMyOpxXh7xPvFYOcu3fAT0uuk3mbktQiS hatQB1FOjh50YBk18KPhw45mEbklV/AtEeqBf6fyMj3TMReZ/8QmD7VOTAOJM9GP 5YNvZZujxR/17SyO4Efgbia2UAP2qsH/6EqpgBOvc1fI3uvFLAAw9QdiEjt/zNiz WC3XnWeOZCqb+peHsYvUJOmOw5SwovkTIckJI36pZbcwVYjrofTyhK2Hz5dqElMx mf0WEnU+mQ2O0A1a/HeLLVuUzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBt2uTs0 YKRct05GEtU8L5SjPaTsMB8GA1UdIwQYMBaAFPYbTepYeZnLbhXFQInk25g9AbsQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxNS84MjA2RjgzMjMy RTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1jdHVGY1ZBaWVUYm1EMEJ1 eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlodE42bGg1bWN0dUZjVkFpZVRibUQwQnV4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxNS84MjA2RjgzMjMyRTIxMUVBOTlBNDNFNjRDNEY5QUUwMi85aHRONmxoNW1j dHVGY1ZBaWVUYm1EMEJ1eEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjCkt+IUwO2MTEoJn0nJY+yBupY/VRezI2mc0hKATQT6rqVUpzSPlX kB0V16wiAURIOEJU4q7CoqeEYU/JiK9xTiuK/jr/6vp+pZpEq/LGMpAvgDs6I2if DY98uU1R5PchPuGvjFLaNRfrpWqu28Hq3QERvHqOkAjeLCJPyOKEiuUMfVEQMbaB 97ipFc/U/toi8of////A+1np2Mzk0xPql4jrXX0lhSv0lNuO5A46CPtJsvbIc5EI W6Br4EN/bPYJ1G++xvm7qTPqKTl2LQqe6UaJzSE1v2ha4VGgrRs7zQr/zmkiPIpg ENgMBtqOQddKeEFFV/Hn5d1ANaiX0iDD -----END CERTIFICATE-----Generated at Tue Oct 21 00:09:31 2025 by rpki-client