$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: s3kSF0DcHMRnmK+L5qpsGOE5mqUxlPIPNds3MHDni+8= Subject key identifier: 50:0E:7D:F3:A1:ED:E2:2D:E1:C8:1A:F4:13:BF:3A:AC:13:07:5A:F5 Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 082B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 081A Signing time: Fri 24 Oct 2025 21:45:15 +0000 Manifest this update: Fri 24 Oct 2025 21:45:14 +0000 Manifest next update: Fri 31 Oct 2025 21:45:14 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: 2LEhCRmqfPunRHYBuljXmRBUiDthg8KNdnBzNkjwP80=) 2: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: ypu19bei6HfdziAUkQKrmGrUpzhyQcDpqvAElnhFxJ8=) 3: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: IN3RfDkD8NjweSOu/JOBHYJplR97v1OTcMrbU5p1LVw=) 4: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: 2VJGwp3cB6SQYB5sCKPYP1OXIy417U6bgx3FYDkVNxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 21:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2091 (0x82b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Oct 24 21:45:14 2025 GMT Not After : Oct 31 21:45:14 2025 GMT Subject: CN=68fbf36b-a7f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9b:b1:57:2a:8d:e5:77:cc:39:bd:3a:ab:fc: 6a:52:eb:1c:9d:b5:21:ac:f1:8a:36:b6:46:ed:aa: 27:b6:97:c6:89:36:e2:d1:76:1a:f2:b5:50:ea:5a: 14:a3:1b:5a:1f:13:bb:ad:a1:b1:1e:0a:2b:ba:6a: a8:92:95:3f:27:c1:01:fd:57:9e:ce:b6:b6:47:18: 93:fd:5c:a6:c9:33:30:7b:a5:18:d1:f4:85:b9:7b: 2d:94:e7:82:b6:b7:b7:57:d0:47:a7:7b:09:19:14: c1:3a:80:3f:19:b5:d0:a3:e2:c0:ed:2a:38:9c:ee: 96:2b:0d:00:76:7f:ef:f5:7b:83:ac:b3:86:57:31: ea:d7:c4:7a:71:15:e4:fe:83:59:b9:74:33:8c:8c: 97:5a:9e:b9:ff:89:1f:d1:7d:1c:a5:b6:6a:83:cd: 82:48:8c:cd:ac:66:0a:9f:c4:30:53:24:df:4b:a3: 1c:61:c4:a1:60:66:40:a9:e0:24:81:e7:7c:5e:c0: 05:e5:cd:17:89:1d:ff:e3:24:45:46:82:9a:17:30: 53:e0:82:46:02:ee:8a:2b:b2:a7:02:09:d5:f7:ec: c8:41:23:1d:84:5f:7b:12:5b:e1:68:88:50:c7:8a: 08:88:ac:69:47:0e:01:4f:f9:2a:f6:00:3d:48:a4: 9c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:0E:7D:F3:A1:ED:E2:2D:E1:C8:1A:F4:13:BF:3A:AC:13:07:5A:F5 X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:dc:ee:8c:a5:af:65:23:57:62:48:c5:0d:fa:7a:4b:aa:e0: 16:c3:6a:a8:45:c5:7c:69:e9:a2:4c:cd:f2:59:ef:b8:da:68: 96:3b:9e:e9:ad:46:37:82:ba:68:15:0d:d3:b3:71:ac:d5:ee: e8:ed:b8:df:40:15:59:16:7e:d3:16:25:99:72:01:c1:1d:cd: 6a:1c:7c:03:25:ed:1e:fd:ae:74:ee:39:f9:e2:04:4b:25:25: 71:7c:45:ac:29:92:a6:95:d8:35:c4:b0:1d:97:c8:74:37:42: 3e:f8:1f:48:5d:5a:64:d8:1a:41:cb:d6:f6:6a:bd:3f:9b:20: b9:00:07:ae:9c:a3:6a:ac:d2:c8:6f:9b:e6:c2:8c:b9:49:37: e2:3d:62:5a:57:e6:13:e3:fe:0b:64:c1:0f:ab:3b:b7:62:d9: df:c4:ed:21:de:f7:6c:d0:c4:bf:8e:80:36:f8:cc:2a:8c:36: ff:1b:f6:6c:69:d3:9e:7d:aa:0d:87:80:22:e6:63:bc:46:c5: 3b:54:2c:49:01:dc:8b:18:21:3c:3a:16:19:0f:87:4f:4a:d6: 36:f0:62:0f:b6:4d:ce:a2:7e:17:47:9d:7f:c9:ca:e4:93:f5: 91:5b:41:24:7e:91:71:5d:fc:78:72:20:a8:90:83:2d:17:b6: d7:d0:51:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjUxMDI0MjE0NTE0WhcNMjUxMDMxMjE0NTE0WjAYMRYwFAYD VQQDEw02OGZiZjM2Yi1hN2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJuxVyqN5XfMOb06q/xqUuscnbUhrPGKNrZG7aontpfGiTbi0XYa8rVQ6loU oxtaHxO7raGxHgorumqokpU/J8EB/Veezra2RxiT/VymyTMwe6UY0fSFuXstlOeC tre3V9BHp3sJGRTBOoA/GbXQo+LA7So4nO6WKw0Adn/v9XuDrLOGVzHq18R6cRXk /oNZuXQzjIyXWp65/4kf0X0cpbZqg82CSIzNrGYKn8QwUyTfS6McYcShYGZAqeAk ged8XsAF5c0XiR3/4yRFRoKaFzBT4IJGAu6KK7KnAgnV9+zIQSMdhF97ElvhaIhQ x4oIiKxpRw4BT/kq9gA9SKScTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFAOffOh 7eIt4cga9BO/OqwTB1r1MB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAN3O6Mpa9lI1diSMUN+npLquAWw2qoRcV8aemiTM3yWe+42miWO57p rUY3grpoFQ3Ts3Gs1e7o7bjfQBVZFn7TFiWZcgHBHc1qHHwDJe0e/a507jn54gRL JSVxfEWsKZKmldg1xLAdl8h0N0I++B9IXVpk2BpBy9b2ar0/myC5AAeunKNqrNLI b5vmwoy5STfiPWJaV+YT4/4LZMEPqzu3YtnfxO0h3vds0MS/joA2+MwqjDb/G/Zs adOefaoNh4Ai5mO8RsU7VCxJAdyLGCE8OhYZD4dPStY28GIPtk3Oon4XR51/ycrk k/WRW0EkfpFxXfx4ciCokIMtF7bX0FEX -----END CERTIFICATE-----Generated at Sat Oct 25 17:38:15 2025 by rpki-client