$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft File: aU9WG2PafMV3kxY21HiK0rC0riA.mft (raw, json) Hash identifier: CYSj6eddshOrJEcNXX4qCXPIRQyUmOq1l0W/r1RSsAY= Subject key identifier: 7B:39:7C:C4:8D:8D:8C:E5:B0:9A:83:CA:E5:6F:D6:C5:E2:14:89:FF Authority key identifier: 69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 Certificate issuer: /CN=A91A9083/serialNumber=694F561B63DA7CC577931636D4788AD2B0B4AE20 Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft Manifest number: 97 Signing time: Wed 29 Oct 2025 06:15:23 +0000 Manifest this update: Wed 29 Oct 2025 06:15:22 +0000 Manifest next update: Wed 05 Nov 2025 06:15:22 +0000 Files and hashes: 1: aU9WG2PafMV3kxY21HiK0rC0riA.crl (hash: Labc1x5jBdisEh/bkidcjG/8I5UhWYLZiNKRFk6fH48=) 2: 8DDA6872D25311EF8EBE2767C4F9AE02.roa (hash: AKFJ0EmXDuIFiZbxj+tbIwUPsfALbR27GRMsJeNf4oY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 06:15:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9083, serialNumber=694F561B63DA7CC577931636D4788AD2B0B4AE20 Validity Not Before: Oct 29 06:15:22 2025 GMT Not After : Nov 5 06:15:22 2025 GMT Subject: CN=6901b0fa-9c03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:68:ec:f6:e5:03:6b:e2:fd:14:6b:11:61:54: 42:2e:76:d5:7a:89:85:a7:03:49:0b:f5:07:e3:57: 05:ed:e0:d5:d2:38:e6:60:0f:1a:ec:c4:45:3d:8b: 9d:19:4c:3c:62:7e:18:22:f5:13:3f:ab:31:2e:46: 84:61:eb:5a:9b:6b:b9:cc:b0:10:a0:02:47:f2:9a: 5c:6d:ae:9b:b6:63:04:7b:fb:b0:9d:62:77:03:11: c7:24:e8:90:96:1a:34:0b:e3:8c:88:ea:4d:0e:0e: 38:4c:1c:4d:a5:ab:7b:5b:06:2a:4e:b7:7f:4f:4e: ce:3d:d8:55:0b:0f:d6:27:b2:26:a5:42:ad:c4:ff: 84:9a:f1:1f:77:97:ce:f8:e7:2e:77:27:ea:09:60: b8:a8:f9:f7:b5:fa:a7:e0:c9:e7:b5:26:0b:7b:f4: 26:d0:7a:9b:19:43:8c:a7:84:87:d7:5c:18:fd:e8: 6a:f1:b9:ac:fe:79:0f:d6:b6:4f:31:d7:84:8c:d0: c7:42:c7:97:17:e9:3e:84:7a:de:99:e5:ed:c7:f0: c1:90:88:4c:f0:a2:fa:f4:40:67:12:dc:32:a3:a1: d8:6a:e6:c6:d4:6e:c1:8a:d6:f8:bf:81:f2:1f:57: e7:70:19:7c:66:f4:f2:7b:86:f8:2a:e1:5f:6f:17: 04:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:39:7C:C4:8D:8D:8C:E5:B0:9A:83:CA:E5:6F:D6:C5:E2:14:89:FF X509v3 Authority Key Identifier: keyid:69:4F:56:1B:63:DA:7C:C5:77:93:16:36:D4:78:8A:D2:B0:B4:AE:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aU9WG2PafMV3kxY21HiK0rC0riA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9083/C86CD806D1B011EF8833C933C4F9AE02/aU9WG2PafMV3kxY21HiK0rC0riA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:64:03:6a:54:0b:44:53:f9:32:36:87:43:3a:54:85:d2:29: c8:73:cc:e7:63:84:c2:9f:5d:4b:6f:6a:42:db:2a:ac:ba:7a: 3b:64:60:84:de:30:b7:56:d7:e5:41:e5:b8:6f:3e:a8:b3:ce: 79:04:65:1a:ed:b0:0e:05:8d:02:5b:74:d8:09:81:09:57:4e: 97:b3:91:28:cd:65:fd:b2:62:06:08:66:61:32:09:e7:58:a4: 84:bd:55:c4:c5:d8:1e:1c:2e:75:87:24:c7:8a:0c:12:e9:f4: ac:33:36:46:fb:f8:d7:00:dd:5c:3d:d0:72:12:9b:dc:73:7a: f1:03:46:18:c7:3d:69:1b:7f:29:cd:09:76:ac:4a:cd:e7:d8: 35:df:53:ec:3a:ef:43:0a:90:87:89:4e:96:cc:8b:72:cc:3e: 36:0b:b7:3d:7e:82:b9:b2:33:4b:a4:0f:52:25:82:5f:59:ba: 3d:d6:b4:f2:91:58:75:26:b8:da:b3:b6:fc:65:95:84:07:09: c5:68:1c:8a:a7:2f:83:99:71:ce:c5:67:7a:7f:06:95:0c:5a: bb:39:a7:d2:7a:fa:68:c7:e0:61:78:87:76:2a:76:e5:4b:c1: 19:ef:ed:6f:7d:f7:2c:e7:a0:27:cd:3a:31:2a:d7:ea:08:e6: a3:f3:41:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkwODMxMTAvBgNVBAUTKDY5NEY1NjFCNjNEQTdDQzU3NzkzMTYzNkQ0Nzg4QUQy QjBCNEFFMjAwHhcNMjUxMDI5MDYxNTIyWhcNMjUxMTA1MDYxNTIyWjAYMRYwFAYD VQQDEw02OTAxYjBmYS05YzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWjs9uUDa+L9FGsRYVRCLnbVeomFpwNJC/UH41cF7eDV0jjmYA8a7MRFPYud GUw8Yn4YIvUTP6sxLkaEYetam2u5zLAQoAJH8ppcba6btmMEe/uwnWJ3AxHHJOiQ lho0C+OMiOpNDg44TBxNpat7WwYqTrd/T07OPdhVCw/WJ7ImpUKtxP+EmvEfd5fO +OcudyfqCWC4qPn3tfqn4MnntSYLe/Qm0HqbGUOMp4SH11wY/ehq8bms/nkP1rZP MdeEjNDHQseXF+k+hHremeXtx/DBkIhM8KL69EBnEtwyo6HYaubG1G7Bitb4v4Hy H1fncBl8ZvTye4b4KuFfbxcEuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHs5fMSN jYzlsJqDyuVv1sXiFIn/MB8GA1UdIwQYMBaAFGlPVhtj2nzFd5MWNtR4itKwtK4g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTA4My9DODZDRDgwNkQx QjAxMUVGODgzM0M5MzNDNEY5QUUwMi9hVTlXRzJQYWZNVjNreFkyMUhpSzByQzBy aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FVOVdHMlBhZk1WM2t4WTIxSGlLMHJDMHJpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTA4My9DODZDRDgwNkQxQjAxMUVGODgzM0M5MzNDNEY5QUUwMi9hVTlXRzJQYWZN VjNreFkyMUhpSzByQzByaUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFZANqVAtEU/kyNodDOlSF0inIc8znY4TCn11Lb2pC2yqsuno7ZGCE 3jC3VtflQeW4bz6os855BGUa7bAOBY0CW3TYCYEJV06Xs5EozWX9smIGCGZhMgnn WKSEvVXExdgeHC51hyTHigwS6fSsMzZG+/jXAN1cPdByEpvcc3rxA0YYxz1pG38p zQl2rErN59g131PsOu9DCpCHiU6WzItyzD42C7c9foK5sjNLpA9SJYJfWbo91rTy kVh1Jrjas7b8ZZWEBwnFaByKpy+DmXHOxWd6fwaVDFq7OafSevpox+BheId2Knbl S8EZ7+1vffcs56AnzToxKtfqCOaj80Hc -----END CERTIFICATE-----Generated at Thu Oct 30 21:48:30 2025 by rpki-client