$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft File: sgd9XTkKxy472IWxHzrm0qUmqe0.mft (raw, json) Hash identifier: p7bEts0oVcUt4lv4R91OCp2qNMwgHnyUydD8ttW7qok= Subject key identifier: FC:C3:29:63:53:E1:5D:DE:1E:54:7D:E5:2E:E2:04:64:D3:E9:16:86 Authority key identifier: B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED Certificate issuer: /CN=A91C9B85/serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Certificate serial: 07DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft Manifest number: 07D1 Signing time: Tue 04 Nov 2025 21:19:08 +0000 Manifest this update: Tue 04 Nov 2025 21:19:07 +0000 Manifest next update: Tue 11 Nov 2025 21:19:07 +0000 Files and hashes: 1: sgd9XTkKxy472IWxHzrm0qUmqe0.crl (hash: n6ERgbSloa1c5Jg2dh7mrxUQm4XzB6jGLjY/RZyYwLQ=) 2: 53B6E5D212CF11EBA8D2C037C4F9AE02.roa (hash: SqNXqLNgkpLICxW/LBSYL1V/21ZqqGqKzf6yPi47f5c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:19:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2010 (0x7da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B85, serialNumber=B2077D5D390AC72E3BD885B11F3AE6D2A526A9ED Validity Not Before: Nov 4 21:19:07 2025 GMT Not After : Nov 11 21:19:07 2025 GMT Subject: CN=690a6dcb-50ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:72:1c:d5:8b:e3:fe:85:16:2e:b8:9a:a8:d3: c5:af:73:cc:63:4c:a6:ea:db:24:7a:3f:24:50:c1: 98:62:fe:5d:75:f5:11:d4:52:89:9e:5f:53:91:10: 30:8f:26:21:05:bd:c2:24:97:7a:a8:7b:b6:8c:8f: 85:b8:86:64:c4:3a:db:ed:f8:d1:f9:b4:fc:e9:fb: 84:92:bc:37:5f:79:6f:49:65:db:b8:58:29:19:f6: 37:42:84:91:b4:5f:7e:ce:cc:d6:75:7d:3e:7f:b9: 13:aa:57:4a:fa:d6:07:d8:6f:ae:6e:16:5f:8b:0b: 20:6f:9d:69:16:b4:05:0a:a4:be:a8:d2:ee:f6:40: ad:89:6a:4b:75:f0:a2:7f:e2:ca:1b:d5:c9:08:a9: b6:8d:0b:e7:92:d1:8d:3e:fa:93:f6:d1:cb:07:95: af:43:07:7f:56:7c:aa:00:fd:92:96:0e:71:e6:e0: 9d:8e:58:5b:a0:1c:c2:f9:e4:bd:c0:f3:de:4f:91: 88:5b:e1:61:b1:b3:1a:6b:b2:60:80:b8:81:27:af: b9:86:6d:7e:24:90:93:37:0d:cc:e5:e1:c6:9e:e6: 2b:40:09:9b:08:32:bf:f7:da:03:b8:cb:fc:da:7c: ac:30:06:dc:2c:1f:5b:49:ec:1b:a8:a6:3c:08:8b: 8d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:C3:29:63:53:E1:5D:DE:1E:54:7D:E5:2E:E2:04:64:D3:E9:16:86 X509v3 Authority Key Identifier: keyid:B2:07:7D:5D:39:0A:C7:2E:3B:D8:85:B1:1F:3A:E6:D2:A5:26:A9:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sgd9XTkKxy472IWxHzrm0qUmqe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B85/42D7C00C12CE11EB95331937C4F9AE02/sgd9XTkKxy472IWxHzrm0qUmqe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:99:da:f2:87:73:aa:74:0d:9f:b8:fb:0c:16:04:11:60:ff: 99:78:a8:4e:47:6c:32:61:29:f2:e0:78:5f:44:0d:90:2a:c8: 2e:ce:d7:69:ff:74:07:c3:a2:af:b2:a1:fd:89:df:2e:f6:58: 3b:c0:47:0e:7a:f0:d0:ed:b5:cd:da:4c:c1:c0:07:5b:f1:2a: 13:ad:ad:cb:bf:0e:e6:0f:e8:52:b5:26:67:69:db:34:e1:94: ea:5b:3e:db:f3:e4:70:b5:74:bd:7a:b2:ed:bd:43:d5:a7:0e: 0d:ba:20:29:76:62:1d:9a:d6:9f:a9:21:d1:f6:8b:3a:81:98: 0d:af:5b:20:4f:24:49:03:b0:47:32:ef:66:68:00:34:e0:6e: 89:09:51:95:79:92:1a:d4:5b:8c:0e:b9:c2:7a:bc:56:f6:a2: ce:c9:0b:ba:65:c3:0d:0f:1c:86:56:56:fc:bb:eb:ee:97:5b: 8e:59:4d:c4:2d:02:c6:ad:90:13:7a:e4:89:8c:09:ba:ea:26: 4c:04:c0:aa:a0:08:f6:96:6f:64:42:f2:59:02:42:78:18:66: fa:2b:7b:f7:18:0c:c1:1d:61:9b:bd:ed:3a:1f:c5:62:88:2c: 9b:6f:30:ff:aa:19:5c:51:ad:36:38:73:ed:4a:8b:4b:2e:cf: 2b:c8:50:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCODUxMTAvBgNVBAUTKEIyMDc3RDVEMzkwQUM3MkUzQkQ4ODVCMTFGM0FFNkQy QTUyNkE5RUQwHhcNMjUxMTA0MjExOTA3WhcNMjUxMTExMjExOTA3WjAYMRYwFAYD VQQDEw02OTBhNmRjYi01MGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsHIc1Yvj/oUWLriaqNPFr3PMY0ym6tskej8kUMGYYv5ddfUR1FKJnl9TkRAw jyYhBb3CJJd6qHu2jI+FuIZkxDrb7fjR+bT86fuEkrw3X3lvSWXbuFgpGfY3QoSR tF9+zszWdX0+f7kTqldK+tYH2G+ubhZfiwsgb51pFrQFCqS+qNLu9kCtiWpLdfCi f+LKG9XJCKm2jQvnktGNPvqT9tHLB5WvQwd/VnyqAP2Slg5x5uCdjlhboBzC+eS9 wPPeT5GIW+FhsbMaa7JggLiBJ6+5hm1+JJCTNw3M5eHGnuYrQAmbCDK/99oDuMv8 2nysMAbcLB9bSewbqKY8CIuNeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzDKWNT 4V3eHlR95S7iBGTT6RaGMB8GA1UdIwQYMBaAFLIHfV05CscuO9iFsR865tKlJqnt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUI4NS80MkQ3QzAwQzEy Q0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5NDcySVd4SHpybTBxVW1x ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NnZDlYVGtLeHk0NzJJV3hIenJtMHFVbXFlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUI4NS80MkQ3QzAwQzEyQ0UxMUVCOTUzMzE5MzdDNEY5QUUwMi9zZ2Q5WFRrS3h5 NDcySVd4SHpybTBxVW1xZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUmdryh3OqdA2fuPsMFgQRYP+ZeKhOR2wyYSny4HhfRA2QKsguztdp /3QHw6KvsqH9id8u9lg7wEcOevDQ7bXN2kzBwAdb8SoTra3Lvw7mD+hStSZnads0 4ZTqWz7b8+RwtXS9erLtvUPVpw4NuiApdmIdmtafqSHR9os6gZgNr1sgTyRJA7BH Mu9maAA04G6JCVGVeZIa1FuMDrnCerxW9qLOyQu6ZcMNDxyGVlb8u+vul1uOWU3E LQLGrZATeuSJjAm66iZMBMCqoAj2lm9kQvJZAkJ4GGb6K3v3GAzBHWGbve06H8Vi iCybbzD/qhlcUa02OHPtSotLLs8ryFCg -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:11 2025 by rpki-client