$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft File: MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft (raw, json) Hash identifier: +V34lvabtoqSoX05eExYxE/uYtewkH2H5L2akYAvfXE= Subject key identifier: 28:47:46:3D:96:B3:F3:6D:8A:28:BF:2C:7D:7E:A6:B4:10:DF:B5:8F Authority key identifier: 31:D2:1D:5C:EE:5F:AC:DE:F3:C8:C1:C8:7D:0D:73:91:F9:F7:3A:FF Certificate issuer: /CN=A91C8203/serialNumber=31D21D5CEE5FACDEF3C8C1C87D0D7391F9F73AFF Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft Manifest number: B5 Signing time: Tue 07 Oct 2025 06:18:55 +0000 Manifest this update: Tue 07 Oct 2025 06:18:55 +0000 Manifest next update: Tue 14 Oct 2025 06:18:55 +0000 Files and hashes: 1: MdIdXO5frN7zyMHIfQ1zkfn3Ov8.crl (hash: HNFBks+TVpNweUJW6gka6JItUkSiwi54KZFdZMlea4s=) 2: BE48D4AA927D11EF9651FC4AC4F9AE02.roa (hash: QPPTXA+ALXUhXbBS6N6EbcLL1inNfd3655N4UckWgIw=) 3: D9BE56E2927D11EFB83ACB5CC4F9AE02.roa (hash: qSH5h5rhfF2GxCdM6cfWpd9BiagkUdZKPfSn4h0sbnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.crl rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Oct 2025 06:18:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8203, serialNumber=31D21D5CEE5FACDEF3C8C1C87D0D7391F9F73AFF Validity Not Before: Oct 7 06:18:55 2025 GMT Not After : Oct 14 06:18:55 2025 GMT Subject: CN=68e4b0cf-9a88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0b:3f:c0:49:25:91:3c:1c:d9:a7:58:ee:f5: 49:45:f9:6a:b7:33:51:0b:86:d4:81:10:b8:5c:1f: 19:a8:77:4f:10:5d:dd:b4:1e:0a:06:4c:df:bd:9c: 52:b2:45:ad:05:db:09:dd:3c:ed:34:06:da:3c:a2: da:a8:67:cd:d7:06:b1:12:53:b8:59:fd:ff:8a:6a: 69:2a:a7:cb:15:f7:9b:12:89:9a:ae:84:e0:95:50: 9c:c8:51:20:c0:af:3b:a6:dd:18:e9:7b:5e:64:1d: ef:89:36:c1:ce:bb:59:6b:cf:9b:08:39:cd:82:48: 95:21:0c:22:9e:0b:a9:84:42:83:84:f4:c5:7b:48: 60:ce:1e:92:49:37:f4:82:36:a6:60:95:ec:a5:35: e8:1b:bd:c1:e5:ce:5d:b9:8b:98:6d:fa:0a:df:dd: f8:7e:ea:9b:e6:3b:0b:a0:77:71:2e:87:08:be:5f: f6:31:5d:30:f7:19:85:98:a2:f6:08:80:49:b5:e9: e9:97:d0:d7:16:2c:94:f6:29:c0:90:ae:5d:aa:8b: 9c:95:cf:eb:eb:15:3b:c2:49:b3:62:c1:eb:b3:f7: a3:5f:6b:0f:c1:85:34:d5:d7:e0:1a:9d:dd:c1:28: 31:d0:12:86:02:8b:0a:4a:80:76:6c:87:2a:71:22: 11:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:47:46:3D:96:B3:F3:6D:8A:28:BF:2C:7D:7E:A6:B4:10:DF:B5:8F X509v3 Authority Key Identifier: keyid:31:D2:1D:5C:EE:5F:AC:DE:F3:C8:C1:C8:7D:0D:73:91:F9:F7:3A:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:19:54:49:6c:52:c3:e3:ed:68:4b:e1:bc:7a:f0:e9:2e:4b: c4:84:d8:bd:8a:b0:1d:a4:83:75:6a:60:7f:d4:35:29:aa:c2: 4d:36:1e:9a:cc:aa:fe:3b:4c:84:f3:2c:34:c6:0d:c9:d3:fd: 9f:da:37:91:a0:2e:c9:2b:95:fd:1e:73:cc:14:72:5c:5e:d8: d0:eb:b0:cc:bc:e0:ef:75:39:0b:6c:e5:b2:e4:1f:e8:99:c3: 46:9d:08:98:c1:a4:c5:db:5a:56:81:b8:7f:70:36:ea:fe:c3: 4c:25:d1:7f:73:29:e4:1a:ec:19:ec:af:a0:bf:4a:eb:69:47: 9c:a2:4b:95:74:a5:50:a1:05:77:88:1a:8b:26:c0:43:a8:a4: 06:30:3f:bc:76:46:12:e2:d6:1b:c2:72:60:94:53:6e:d8:cd: 88:a7:55:8e:dd:e2:40:86:bd:ee:56:7c:c2:f7:9a:76:7a:9a: 20:a5:14:78:7e:0d:d1:c1:8a:16:84:61:10:33:59:77:a5:1d: 5e:f1:7c:40:ad:eb:e7:a0:a8:5d:7c:d7:e1:4f:8e:eb:b0:07: 61:d0:38:55:1f:8b:00:44:41:b1:4e:0e:5a:ae:9f:af:4e:93: 2a:1f:63:bb:23:ec:eb:e1:98:58:1e:00:04:47:9a:de:72:9a: cb:be:e2:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgyMDMxMTAvBgNVBAUTKDMxRDIxRDVDRUU1RkFDREVGM0M4QzFDODdEMEQ3Mzkx RjlGNzNBRkYwHhcNMjUxMDA3MDYxODU1WhcNMjUxMDE0MDYxODU1WjAYMRYwFAYD VQQDEw02OGU0YjBjZi05YTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAs/wEklkTwc2adY7vVJRflqtzNRC4bUgRC4XB8ZqHdPEF3dtB4KBkzfvZxS skWtBdsJ3TztNAbaPKLaqGfN1waxElO4Wf3/imppKqfLFfebEomaroTglVCcyFEg wK87pt0Y6XteZB3viTbBzrtZa8+bCDnNgkiVIQwinguphEKDhPTFe0hgzh6SSTf0 gjamYJXspTXoG73B5c5duYuYbfoK3934fuqb5jsLoHdxLocIvl/2MV0w9xmFmKL2 CIBJtenpl9DXFiyU9inAkK5dqouclc/r6xU7wkmzYsHrs/ejX2sPwYU01dfgGp3d wSgx0BKGAosKSoB2bIcqcSIRQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFChHRj2W s/Ntiii/LH1+prQQ37WPMB8GA1UdIwQYMBaAFDHSHVzuX6ze88jByH0Nc5H59zr/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODIwMy9CQzUxNURBQTky N0ExMUVGQjU2NDNDNEVDNEY5QUUwMi9NZElkWE81ZnJON3p5TUhJZlExemtmbjNP djguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01kSWRYTzVmck43enlNSElmUTF6a2ZuM092OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODIwMy9CQzUxNURBQTkyN0ExMUVGQjU2NDNDNEVDNEY5QUUwMi9NZElkWE81ZnJO N3p5TUhJZlExemtmbjNPdjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1GVRJbFLD4+1oS+G8evDpLkvEhNi9irAdpIN1amB/1DUpqsJNNh6a zKr+O0yE8yw0xg3J0/2f2jeRoC7JK5X9HnPMFHJcXtjQ67DMvODvdTkLbOWy5B/o mcNGnQiYwaTF21pWgbh/cDbq/sNMJdF/cynkGuwZ7K+gv0rraUecokuVdKVQoQV3 iBqLJsBDqKQGMD+8dkYS4tYbwnJglFNu2M2Ip1WO3eJAhr3uVnzC95p2epogpRR4 fg3RwYoWhGEQM1l3pR1e8XxArevnoKhdfNfhT47rsAdh0DhVH4sAREGxTg5arp+v TpMqH2O7I+zr4ZhYHgAER5recprLvuKT -----END CERTIFICATE-----Generated at Thu Oct 9 03:52:53 2025 by rpki-client