$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: akOZ5ivsCHq8/PlDlIiAzdrD2pVCst4QveP7UWjbtgA= Subject key identifier: 69:5B:5D:14:41:76:69:FF:0C:34:53:3A:71:3D:17:40:17:73:30:15 Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: 0102 Signing time: Sat 25 Oct 2025 08:43:48 +0000 Manifest this update: Sat 25 Oct 2025 08:43:47 +0000 Manifest next update: Sat 01 Nov 2025 08:43:47 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: yiwHGkebh2hBUa30JYeKJuCNjnUa4s4dGToDb4Jo7gc=) 2: 879152E62E4811EF929FE162C4F9AE02.roa (hash: cr46hMBXMjVoUuUCIeS55LaT84JtFcqvVMAfnbq95f8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 08:43:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Oct 25 08:43:47 2025 GMT Not After : Nov 1 08:43:47 2025 GMT Subject: CN=68fc8dc3-b3a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8e:c8:97:8e:2c:91:66:57:9c:43:de:4b:50: b7:ca:79:a5:5d:49:7f:da:c8:85:78:cd:38:71:03: 8e:44:e2:a4:b8:76:5f:de:e3:a1:98:25:03:58:5d: 66:fe:a8:ca:71:1f:f1:32:a0:91:13:9f:39:97:ad: 56:3d:8a:63:c2:23:b2:02:5c:ab:50:63:6e:42:16: 02:f0:48:b6:ec:04:b9:fc:9b:bb:2a:3b:03:a4:f3: 75:f8:6d:96:b3:63:9d:d1:31:71:81:17:a4:a2:9e: 8c:c5:91:7f:34:20:ea:df:2c:d3:31:32:5f:a4:77: 5e:07:52:a6:b7:aa:dc:e0:f3:02:ca:1b:50:e8:dc: b3:8a:78:07:19:2d:10:7d:99:f4:e0:08:4b:63:ba: 65:a7:cb:27:55:df:c3:4b:99:a8:51:12:5c:24:b6: bd:71:68:45:e0:d9:59:34:79:af:5e:5e:cf:5b:c6: f7:3d:38:80:23:2d:87:40:10:35:ff:09:cf:cf:02: b2:c3:c5:b2:15:55:bb:29:6a:47:9d:a3:1b:f7:5e: f9:a6:2e:e4:a4:5e:0c:a2:a5:df:30:e3:9c:9f:ba: b8:d6:58:c7:a7:7e:e1:48:b3:fc:56:f1:80:b7:dc: 97:eb:76:a7:01:35:f7:b5:1f:ee:39:34:8e:ae:18: 02:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:5B:5D:14:41:76:69:FF:0C:34:53:3A:71:3D:17:40:17:73:30:15 X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:19:12:55:41:03:f0:d4:c2:f4:f1:eb:ec:a5:a2:87:81:a9: 56:c6:8d:0e:cd:82:33:9d:03:ff:da:43:bd:64:ca:f4:0f:6d: 9a:5a:78:ca:ff:d9:79:e2:24:0b:38:66:c0:24:78:e0:db:28: ca:ce:ae:13:0f:60:fa:b2:b1:53:f1:15:58:2b:7b:7a:56:9a: c4:e3:3c:ac:14:ab:b2:a7:97:b7:ce:44:06:59:6a:37:78:f4: 12:01:11:7e:cc:9a:b6:ce:c9:a0:ff:0e:86:9c:99:c5:b0:b4: 4a:bb:39:21:c5:1d:7e:6e:10:97:dc:1d:d0:a1:8d:3d:95:85: ff:cc:02:57:fd:e5:9c:f0:47:18:b8:34:f4:f8:a8:10:9b:a0: a2:9d:8b:b7:0c:de:7e:94:68:28:dd:f3:15:25:91:f3:d8:98: b8:11:25:50:a1:37:67:32:a5:ed:fe:54:6b:3d:cd:33:ca:ed: 59:ac:8f:a7:7b:96:ee:3e:16:3d:08:a3:48:aa:48:f9:1f:93: 69:ce:c7:32:8f:e7:27:78:bb:fa:eb:f8:bb:66:8f:07:9b:3f: 86:10:2e:8c:bf:50:15:ed:79:7b:ab:61:9b:3a:e4:da:91:e9: dc:53:fe:fb:81:bf:1b:54:41:9a:06:68:1b:9c:77:3a:bd:57: ac:c3:7e:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKDkwOERCM0Y5Qjc0NkY1MjBCQkI5QTg0Qzg1M0Y2OTI2 QzE1RUI5QkQwHhcNMjUxMDI1MDg0MzQ3WhcNMjUxMTAxMDg0MzQ3WjAYMRYwFAYD VQQDEw02OGZjOGRjMy1iM2E4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwI7Il44skWZXnEPeS1C3ynmlXUl/2siFeM04cQOOROKkuHZf3uOhmCUDWF1m /qjKcR/xMqCRE585l61WPYpjwiOyAlyrUGNuQhYC8Ei27AS5/Ju7KjsDpPN1+G2W s2Od0TFxgRekop6MxZF/NCDq3yzTMTJfpHdeB1Kmt6rc4PMCyhtQ6NyzingHGS0Q fZn04AhLY7plp8snVd/DS5moURJcJLa9cWhF4NlZNHmvXl7PW8b3PTiAIy2HQBA1 /wnPzwKyw8WyFVW7KWpHnaMb9175pi7kpF4MoqXfMOOcn7q41ljHp37hSLP8VvGA t9yX63anATX3tR/uOTSOrhgCnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGlbXRRB dmn/DDRTOnE9F0AXczAVMB8GA1UdIwQYMBaAFJCNs/m3RvUgu7moTIU/aSbBXrm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8yMDlFRERDRTJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlTQzd1YWhNaFQ5cEpzRmV1 YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXViMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTkwOS8yMDlFRERDRTJBMzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlT Qzd1YWhNaFQ5cEpzRmV1YjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUGRJVQQPw1ML08evspaKHgalWxo0OzYIznQP/2kO9ZMr0D22aWnjK /9l54iQLOGbAJHjg2yjKzq4TD2D6srFT8RVYK3t6VprE4zysFKuyp5e3zkQGWWo3 ePQSARF+zJq2zsmg/w6GnJnFsLRKuzkhxR1+bhCX3B3QoY09lYX/zAJX/eWc8EcY uDT0+KgQm6CinYu3DN5+lGgo3fMVJZHz2Ji4ESVQoTdnMqXt/lRrPc0zyu1ZrI+n e5buPhY9CKNIqkj5H5Npzscyj+cneLv66/i7Zo8Hmz+GEC6Mv1AV7Xl7q2GbOuTa kencU/77gb8bVEGaBmgbnHc6vVesw35Y -----END CERTIFICATE-----Generated at Sat Oct 25 23:11:14 2025 by rpki-client