$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.mft File: B82dMe1hhir1A-UglCjHyyfqiB8.mft (raw, json) Hash identifier: sNUnffdmU7vIJleFp9mBEXdMOOdZt2LaZvhLIlfAYq4= Subject key identifier: 56:93:B7:3A:D0:38:0E:E9:2C:9F:E8:50:4C:3C:29:FF:E4:FF:33:A4 Authority key identifier: 07:CD:9D:31:ED:61:86:2A:F5:03:E5:20:94:28:C7:CB:27:EA:88:1F Certificate issuer: /CN=A91FD609/serialNumber=07CD9D31ED61862AF503E5209428C7CB27EA881F Certificate serial: 0837 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.mft Manifest number: 082D Signing time: Sat 18 Oct 2025 22:00:11 +0000 Manifest this update: Sat 18 Oct 2025 22:00:10 +0000 Manifest next update: Sat 25 Oct 2025 22:00:10 +0000 Files and hashes: 1: B82dMe1hhir1A-UglCjHyyfqiB8.crl (hash: YwdYMgDoxXV2ytFjsH0j1KMn4TXPiXFiQFpQ68+Wpd4=) 2: 765DBCFEEC1A11EAA8520072C4F9AE02.roa (hash: LwXV2swiHkwzhmRJHgtxVwl/mp8FDjhnbQvKS2GLsds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.crl rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2103 (0x837) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD609, serialNumber=07CD9D31ED61862AF503E5209428C7CB27EA881F Validity Not Before: Oct 18 22:00:10 2025 GMT Not After : Oct 25 22:00:10 2025 GMT Subject: CN=68f40dea-6564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:08:bb:8e:9a:a4:a5:60:5d:7e:3c:66:62:76: 10:f9:2b:5c:09:d0:8c:56:25:b3:4d:10:0a:00:ad: 01:b8:1f:dc:dd:b1:3c:2a:ee:e3:f8:0a:e0:e2:f2: f1:7e:46:19:10:f1:31:ec:a5:58:78:9b:d2:7c:96: 47:de:fe:0f:ab:22:23:39:ef:07:ac:ce:3a:90:87: 1e:63:8b:30:fd:12:7e:04:74:68:7b:42:e9:3b:c0: 51:b5:28:8e:fc:29:72:f5:55:d8:9a:0e:dc:a3:b0: ad:51:3a:67:a0:a0:dd:98:cf:dd:83:e3:d5:1c:05: 1f:ea:1e:b0:69:6f:51:f5:ca:7c:c8:c2:f3:3c:87: ca:e0:70:9c:bc:d0:db:0e:ad:69:42:5b:17:ca:4b: ab:a3:5a:b6:dd:07:83:2f:38:1f:8d:74:89:9f:89: 14:0b:36:86:3d:d1:cb:8a:f9:03:c0:52:5e:03:72: df:b3:62:d5:45:b6:81:e2:eb:6e:af:cb:7a:21:ab: 15:01:60:7d:d6:bd:33:96:4f:46:d3:63:4f:5f:0b: 58:fa:d9:89:82:2d:7b:2e:c5:03:fc:53:89:0e:82: 33:af:2d:22:51:85:5e:15:d5:e9:35:28:95:11:ff: e0:32:a4:26:55:12:80:09:b7:bd:8f:0a:d6:be:e2: 87:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:93:B7:3A:D0:38:0E:E9:2C:9F:E8:50:4C:3C:29:FF:E4:FF:33:A4 X509v3 Authority Key Identifier: keyid:07:CD:9D:31:ED:61:86:2A:F5:03:E5:20:94:28:C7:CB:27:EA:88:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B82dMe1hhir1A-UglCjHyyfqiB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD609/0C609B9CEC1911EA925DFC6FC4F9AE02/B82dMe1hhir1A-UglCjHyyfqiB8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:ea:7e:a3:d4:ed:ea:a6:cf:b6:fd:73:ef:80:68:f9:8b:14: 26:8e:01:cb:d2:b3:4e:53:60:73:38:bc:6b:58:f1:5e:7a:ca: de:d7:9b:59:a8:ee:c4:54:b3:0c:40:20:7b:e5:25:95:b5:e5: d7:89:58:eb:f4:0a:7f:07:a2:de:bd:fd:31:87:50:3a:0b:99: 01:eb:8c:a1:02:45:4d:74:22:c9:d8:fd:94:37:67:ca:56:b1: ca:7f:31:db:47:a4:09:96:d6:b7:22:44:34:3f:16:7a:1c:72: b4:3d:93:b2:30:35:5b:b4:8f:f8:1a:a2:85:15:4a:b1:1d:e9: 3b:63:cd:1a:7c:2a:96:57:35:f2:e7:31:82:43:b4:d1:a5:eb: e3:2c:29:f8:b9:8c:7c:ea:16:63:47:48:6d:81:de:86:93:7c: d4:c0:df:67:62:a0:6e:4b:89:16:7f:06:b0:99:ba:ed:b5:e0: 82:af:a0:06:21:b5:28:b3:8f:52:96:34:1d:c2:98:86:9a:c0: af:ff:54:c2:cb:55:ef:90:c9:db:08:70:c0:dd:60:ee:4a:49: 38:48:ee:d1:5a:f1:37:2e:a4:17:0f:31:03:29:1e:41:02:3c: 05:07:31:00:04:04:99:6f:be:95:e2:2f:5c:72:e1:5f:75:92: b8:be:22:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2MDkxMTAvBgNVBAUTKDA3Q0Q5RDMxRUQ2MTg2MkFGNTAzRTUyMDk0MjhDN0NC MjdFQTg4MUYwHhcNMjUxMDE4MjIwMDEwWhcNMjUxMDI1MjIwMDEwWjAYMRYwFAYD VQQDEw02OGY0MGRlYS02NTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqgi7jpqkpWBdfjxmYnYQ+StcCdCMViWzTRAKAK0BuB/c3bE8Ku7j+Arg4vLx fkYZEPEx7KVYeJvSfJZH3v4PqyIjOe8HrM46kIceY4sw/RJ+BHRoe0LpO8BRtSiO /Cly9VXYmg7co7CtUTpnoKDdmM/dg+PVHAUf6h6waW9R9cp8yMLzPIfK4HCcvNDb Dq1pQlsXykuro1q23QeDLzgfjXSJn4kUCzaGPdHLivkDwFJeA3Lfs2LVRbaB4utu r8t6IasVAWB91r0zlk9G02NPXwtY+tmJgi17LsUD/FOJDoIzry0iUYVeFdXpNSiV Ef/gMqQmVRKACbe9jwrWvuKHyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFaTtzrQ OA7pLJ/oUEw8Kf/k/zOkMB8GA1UdIwQYMBaAFAfNnTHtYYYq9QPlIJQox8sn6ogf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDYwOS8wQzYwOUI5Q0VD MTkxMUVBOTI1REZDNkZDNEY5QUUwMi9CODJkTWUxaGhpcjFBLVVnbENqSHl5ZnFp QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I4MmRNZTFoaGlyMUEtVWdsQ2pIeXlmcWlCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDYwOS8wQzYwOUI5Q0VDMTkxMUVBOTI1REZDNkZDNEY5QUUwMi9CODJkTWUxaGhp cjFBLVVnbENqSHl5ZnFpQjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT6n6j1O3qps+2/XPvgGj5ixQmjgHL0rNOU2BzOLxrWPFeesre15tZ qO7EVLMMQCB75SWVteXXiVjr9Ap/B6Levf0xh1A6C5kB64yhAkVNdCLJ2P2UN2fK VrHKfzHbR6QJlta3IkQ0PxZ6HHK0PZOyMDVbtI/4GqKFFUqxHek7Y80afCqWVzXy 5zGCQ7TRpevjLCn4uYx86hZjR0htgd6Gk3zUwN9nYqBuS4kWfwawmbrtteCCr6AG IbUos49SljQdwpiGmsCv/1TCy1XvkMnbCHDA3WDuSkk4SO7RWvE3LqQXDzEDKR5B AjwFBzEABASZb76V4i9ccuFfdZK4viKK -----END CERTIFICATE-----Generated at Sun Oct 19 23:34:06 2025 by rpki-client