$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft File: 0I2GgcK-TUfCopBV9m5olVhGF_c.mft (raw, json) Hash identifier: EAXngUE4XmuIg/imavQ6MqbJs6qO8T0MwuqWxAFfIbc= Subject key identifier: F6:B7:88:13:17:F1:F9:FD:9D:12:EB:77:82:0F:17:60:DB:E2:20:25 Authority key identifier: D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 Certificate issuer: /CN=A91FCEB1/serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Certificate serial: 1ABF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft Manifest number: 2206 Signing time: Mon 20 Oct 2025 16:11:06 +0000 Manifest this update: Mon 20 Oct 2025 16:11:06 +0000 Manifest next update: Mon 27 Oct 2025 16:11:06 +0000 Files and hashes: 1: 0I2GgcK-TUfCopBV9m5olVhGF_c.crl (hash: hP/VqidCxfoc50ku0LrkTd88dJiuFib6BCqbVdBN/t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:11:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6847 (0x1abf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCEB1, serialNumber=D08D8681C2BE4D47C2A29055F66E6895584617F7 Validity Not Before: Oct 20 16:11:06 2025 GMT Not After : Oct 27 16:11:06 2025 GMT Subject: CN=68f65f1a-f07c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:1d:ec:e2:94:90:aa:7d:20:7a:9c:2d:08:d7: 4f:c4:a8:06:66:62:9b:3a:28:5d:f8:a2:f7:77:9c: fb:ff:62:3f:2e:2d:1d:32:72:97:80:5c:7a:f0:08: 6a:d5:65:76:f9:aa:68:b6:c0:7b:92:7f:c7:68:15: 6c:d0:de:13:df:24:fe:fd:e0:07:42:dd:aa:c6:a3: 91:1d:05:06:54:f5:16:4f:97:59:2c:27:a7:82:e7: 04:ae:5e:f4:62:ef:e0:7b:b5:1f:85:e3:ae:fa:e1: c0:4a:3d:e7:80:5d:f5:56:ac:ea:8c:94:bd:32:7e: a5:62:34:26:0f:b0:6f:59:4a:c9:eb:ce:11:04:b7: 18:58:81:4f:b4:81:14:00:c3:5c:e6:86:03:91:10: c8:37:00:35:0d:d9:cd:f7:c6:9f:1e:9e:3d:97:15: d0:e3:1d:57:eb:c4:6a:25:c4:a9:4e:94:1f:2a:a7: 33:99:57:b6:9a:ff:00:83:4f:1f:e2:83:fb:c1:08: ea:73:e6:19:47:67:8e:91:96:ce:07:b0:9c:a3:ba: a6:80:7e:77:8d:a2:2f:00:32:ca:fb:8c:d8:c5:b4: ec:99:36:5f:ea:95:7b:05:40:68:e7:c8:2d:56:1e: fb:eb:f5:bb:58:28:18:f9:07:d5:c3:28:3d:e8:d6: d6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:B7:88:13:17:F1:F9:FD:9D:12:EB:77:82:0F:17:60:DB:E2:20:25 X509v3 Authority Key Identifier: keyid:D0:8D:86:81:C2:BE:4D:47:C2:A2:90:55:F6:6E:68:95:58:46:17:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0I2GgcK-TUfCopBV9m5olVhGF_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCEB1/9C14B4063A2111E79AA0D51CC4F9AE02/0I2GgcK-TUfCopBV9m5olVhGF_c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:30:a7:6f:c8:4f:07:a5:eb:ac:8d:0b:4b:5c:7e:e3:f4:7a: 2a:bd:ba:52:6d:8c:2a:05:d1:dc:60:eb:ce:a5:67:06:3a:1b: dd:46:1f:bf:2d:8b:01:be:b3:53:58:9f:71:2e:2d:be:ed:aa: 98:7c:07:02:9e:61:45:d8:30:09:73:56:85:5f:57:39:7d:3d: c1:2f:05:11:a7:93:ce:dd:61:88:d7:ae:bb:ae:99:63:9e:82: b5:3d:29:5b:9f:af:10:28:03:79:3e:51:ac:b5:42:4d:23:47: c7:43:22:46:f8:4a:e8:63:1f:2a:c8:86:01:e9:3a:3c:99:5b: ab:04:b8:91:46:fa:bb:37:08:44:d9:da:e0:41:98:8f:43:3e: 12:63:9b:41:c2:fb:82:3b:a5:43:97:eb:b7:bd:df:14:1e:74: 63:cc:69:1b:34:68:69:97:bb:d5:2b:24:c1:c3:3a:a4:54:76: 70:68:d6:d3:7b:d8:92:c8:82:30:fb:ae:7d:d5:ba:ab:b7:7a: be:0f:6b:8c:10:9f:90:eb:c5:63:08:62:2a:8f:d3:e6:73:75: 26:77:7e:f9:1a:d6:30:67:df:48:26:15:ea:82:26:21:25:4d: 16:10:b4:20:9c:36:52:d4:b9:cd:1d:65:83:ee:01:71:e9:69: db:0f:d0:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNFQjExMTAvBgNVBAUTKEQwOEQ4NjgxQzJCRTRENDdDMkEyOTA1NUY2NkU2ODk1 NTg0NjE3RjcwHhcNMjUxMDIwMTYxMTA2WhcNMjUxMDI3MTYxMTA2WjAYMRYwFAYD VQQDEw02OGY2NWYxYS1mMDdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3h3s4pSQqn0gepwtCNdPxKgGZmKbOihd+KL3d5z7/2I/Li0dMnKXgFx68Ahq 1WV2+apotsB7kn/HaBVs0N4T3yT+/eAHQt2qxqORHQUGVPUWT5dZLCengucErl70 Yu/ge7UfheOu+uHASj3ngF31VqzqjJS9Mn6lYjQmD7BvWUrJ684RBLcYWIFPtIEU AMNc5oYDkRDINwA1DdnN98afHp49lxXQ4x1X68RqJcSpTpQfKqczmVe2mv8Ag08f 4oP7wQjqc+YZR2eOkZbOB7Cco7qmgH53jaIvADLK+4zYxbTsmTZf6pV7BUBo58gt Vh776/W7WCgY+QfVwyg96NbWqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPa3iBMX 8fn9nRLrd4IPF2Db4iAlMB8GA1UdIwQYMBaAFNCNhoHCvk1HwqKQVfZuaJVYRhf3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0VCMS85QzE0QjQwNjNB MjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRVZkNvcEJWOW01b2xWaEdG X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBJMkdnY0stVFVmQ29wQlY5bTVvbFZoR0ZfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0VCMS85QzE0QjQwNjNBMjExMUU3OUFBMEQ1MUNDNEY5QUUwMi8wSTJHZ2NLLVRV ZkNvcEJWOW01b2xWaEdGX2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFMKdvyE8HpeusjQtLXH7j9HoqvbpSbYwqBdHcYOvOpWcGOhvdRh+/ LYsBvrNTWJ9xLi2+7aqYfAcCnmFF2DAJc1aFX1c5fT3BLwURp5PO3WGI1667rplj noK1PSlbn68QKAN5PlGstUJNI0fHQyJG+EroYx8qyIYB6To8mVurBLiRRvq7NwhE 2drgQZiPQz4SY5tBwvuCO6VDl+u3vd8UHnRjzGkbNGhpl7vVKyTBwzqkVHZwaNbT e9iSyIIw+6591bqrt3q+D2uMEJ+Q68VjCGIqj9Pmc3Umd375GtYwZ99IJhXqgiYh JU0WELQgnDZS1LnNHWWD7gFx6WnbD9DJ -----END CERTIFICATE-----Generated at Tue Oct 21 12:46:01 2025 by rpki-client