$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft File: sXSj1LqbR24rMeR8cqKY0ETZh4U.mft (raw, json) Hash identifier: ubQ623YB776/x2WBSgc2tzHaXN1yvqSpKO/NeDcCxKs= Subject key identifier: 46:4C:F3:96:31:7A:1D:3B:AD:F3:6D:05:79:7E:E7:37:52:76:BF:9F Authority key identifier: B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 Certificate issuer: /CN=A91FBC89/serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft Manifest number: 8F Signing time: Sun 19 Oct 2025 10:03:16 +0000 Manifest this update: Sun 19 Oct 2025 10:03:14 +0000 Manifest next update: Sun 26 Oct 2025 10:03:14 +0000 Files and hashes: 1: sXSj1LqbR24rMeR8cqKY0ETZh4U.crl (hash: qfWNfvvrmFox37uvmwytr7mUfy2iWArGqrC5Vx6DJ/U=) 2: 000A7CE25A5911F0948C6D20C4F9AE02.roa (hash: GWfp52D5q+ZWDIE0kYIw+TpLPvEGwRDdK6mh7QUL+8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:03:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBC89, serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Validity Not Before: Oct 19 10:03:14 2025 GMT Not After : Oct 26 10:03:14 2025 GMT Subject: CN=68f4b763-3212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f4:a0:8b:28:57:b8:d4:82:d5:d9:19:5f:37: 7f:27:1f:06:a3:bb:fb:88:fd:eb:93:f4:04:c6:b7: 56:b9:1e:86:26:e7:7f:75:fc:5c:29:63:55:a5:49: ec:30:70:cd:b1:5b:04:d8:27:7f:c0:49:d3:16:07: 99:60:a0:dd:b6:0c:cb:62:a2:3b:6a:04:50:28:41: e2:f8:b6:14:b4:5f:9e:84:69:40:03:ca:0e:b8:c7: 6f:4c:a2:37:16:7a:04:33:ec:b3:80:be:b5:64:8a: 0b:79:27:ba:22:23:f3:09:96:1c:cc:85:a1:01:1c: 27:91:aa:ed:a9:e8:dc:6f:8d:6c:1b:04:48:ac:d6: 40:34:8e:a5:ea:4a:d3:65:4a:16:97:9f:23:ad:02: f6:86:1f:26:c9:1f:e8:08:b5:06:4b:72:66:f7:d6: 32:77:c1:64:cf:0d:cb:6f:34:1b:8a:90:ee:b1:fe: 52:cc:47:87:27:13:22:8e:7e:5d:e9:c4:db:bb:19: 3a:d8:38:8e:89:05:d7:b6:00:3c:41:7d:5d:14:a8: 11:4c:c0:6a:1a:a7:19:ce:2e:20:07:9d:25:de:74: 05:ca:d5:19:68:95:c2:e7:3d:07:b7:ee:c0:33:8b: f6:27:90:f9:a3:89:80:73:9d:68:66:0a:d5:f8:ff: e1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:4C:F3:96:31:7A:1D:3B:AD:F3:6D:05:79:7E:E7:37:52:76:BF:9F X509v3 Authority Key Identifier: keyid:B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:e9:9a:d1:41:af:e1:25:be:d4:09:39:14:5b:13:13:71:03: f0:ac:4a:51:c5:bc:af:44:7d:7b:30:fb:79:68:ca:05:95:59: 62:d1:69:72:a9:da:f1:18:cf:88:f5:4f:4b:2a:58:7e:30:1a: 5d:38:01:b7:c4:36:12:24:0b:da:d5:e0:63:62:41:eb:ba:c9: 26:26:11:19:df:f9:bf:1c:87:79:ec:1e:f5:fb:ea:d4:bd:d8: d4:7f:e8:c6:a2:cd:43:ed:ad:de:82:fa:ab:10:de:83:87:0a: 3d:fe:b7:ba:8e:0f:cd:f4:03:0b:aa:28:7b:7a:b8:a2:da:15: 88:29:fe:35:0b:99:40:0c:c5:5c:41:13:ce:68:b7:8d:a3:44: d2:53:1a:fa:fd:38:2a:b1:db:f3:bb:4e:80:bd:d6:33:01:e9: 58:79:b1:ff:6c:d5:70:d9:d7:54:af:14:0c:cb:af:86:d3:03: 00:b2:28:3e:eb:a1:39:0c:95:33:53:54:2d:21:33:37:ab:22: ed:33:92:b0:f2:41:c3:9c:22:79:66:1b:64:f7:b5:b0:21:35: a1:8b:c2:1f:e7:db:29:b3:be:18:7b:2f:18:e5:54:44:aa:72: b3:49:04:f1:ea:91:5c:c4:c3:0e:06:ed:53:20:88:c6:04:a2: 29:4e:01:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkJDODkxMTAvBgNVBAUTKEIxNzRBM0Q0QkE5QjQ3NkUyQjMxRTQ3QzcyQTI5OEQw NDREOTg3ODUwHhcNMjUxMDE5MTAwMzE0WhcNMjUxMDI2MTAwMzE0WjAYMRYwFAYD VQQDEw02OGY0Yjc2My0zMjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/SgiyhXuNSC1dkZXzd/Jx8Go7v7iP3rk/QExrdWuR6GJud/dfxcKWNVpUns MHDNsVsE2Cd/wEnTFgeZYKDdtgzLYqI7agRQKEHi+LYUtF+ehGlAA8oOuMdvTKI3 FnoEM+yzgL61ZIoLeSe6IiPzCZYczIWhARwnkartqejcb41sGwRIrNZANI6l6krT ZUoWl58jrQL2hh8myR/oCLUGS3Jm99Yyd8Fkzw3LbzQbipDusf5SzEeHJxMijn5d 6cTbuxk62DiOiQXXtgA8QX1dFKgRTMBqGqcZzi4gB50l3nQFytUZaJXC5z0Ht+7A M4v2J5D5o4mAc51oZgrV+P/huQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZM85Yx eh07rfNtBXl+5zdSdr+fMB8GA1UdIwQYMBaAFLF0o9S6m0duKzHkfHKimNBE2YeF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQkM4OS85RTcyNjJCRUVG Q0UxMUVGODkzRkY3MEVDNEY5QUUwMi9zWFNqMUxxYlIyNHJNZVI4Y3FLWTBFVFpo NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NYU2oxTHFiUjI0ck1lUjhjcUtZMEVUWmg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkM4OS85RTcyNjJCRUVGQ0UxMUVGODkzRkY3MEVDNEY5QUUwMi9zWFNqMUxxYlIy NHJNZVI4Y3FLWTBFVFpoNFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAl6ZrRQa/hJb7UCTkUWxMTcQPwrEpRxbyvRH17MPt5aMoFlVli0Wly qdrxGM+I9U9LKlh+MBpdOAG3xDYSJAva1eBjYkHruskmJhEZ3/m/HId57B71++rU vdjUf+jGos1D7a3egvqrEN6Dhwo9/re6jg/N9AMLqih7erii2hWIKf41C5lADMVc QRPOaLeNo0TSUxr6/Tgqsdvzu06AvdYzAelYebH/bNVw2ddUrxQMy6+G0wMAsig+ 66E5DJUzU1QtITM3qyLtM5Kw8kHDnCJ5Zhtk97WwITWhi8If59sps74Yey8Y5VRE qnKzSQTx6pFcxMMOBu1TIIjGBKIpTgGE -----END CERTIFICATE-----Generated at Mon Oct 20 01:49:14 2025 by rpki-client