$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft File: ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft (raw, json) Hash identifier: gqGHkDPB9ziJgfNsAls6BzwdpFfPDZFBeP62uiZHSXA= Subject key identifier: D1:DC:E4:65:D8:98:4C:C4:1B:B7:3C:EE:E0:72:76:52:F2:BC:A6:26 Authority key identifier: 92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 Certificate issuer: /CN=A91CB8BA/serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Certificate serial: 08F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft Manifest number: 08F0 Signing time: Wed 22 Oct 2025 03:47:32 +0000 Manifest this update: Wed 22 Oct 2025 03:47:31 +0000 Manifest next update: Wed 29 Oct 2025 03:47:31 +0000 Files and hashes: 1: ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl (hash: EJNszGDvwNkS7R4/8oGPivv0t7ylzVuXuGn1aIvQ3/8=) 2: 0B6B9DE6BAAE11EA8F1DA435C4F9AE02.roa (hash: Pjk7KOVj7H3BoAMc7NRiJiAFk/4ChSG9JZtPBtMlKPY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 03:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2296 (0x8f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=922D60EA193967177BC6C39A4068598A3B75A6D3 Validity Not Before: Oct 22 03:47:31 2025 GMT Not After : Oct 29 03:47:31 2025 GMT Subject: CN=68f853d3-36a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:04:46:29:2a:3e:fe:19:48:88:62:44:d9:eb: f0:60:d5:ad:8b:f0:80:97:80:85:05:7d:1d:3e:02: 28:82:20:c8:75:ca:46:c4:ae:3f:a1:ba:f4:3d:a2: 39:68:6d:58:4b:11:13:43:ec:40:82:03:13:81:0f: 48:4d:2e:a3:80:3b:a4:6e:ab:85:2e:b8:15:7f:60: 3c:ab:2f:ac:2f:a9:b0:a6:94:f3:f5:42:98:83:e0: 17:13:07:c5:35:dd:31:b1:1e:cb:f5:ad:99:3c:42: f6:8e:93:30:37:2a:26:ab:80:d1:16:ca:9a:3e:c9: 41:35:ec:bf:54:1f:fe:8c:7f:8f:15:1f:84:59:f8: 63:42:5a:ea:e2:66:92:f9:6e:4e:69:e7:22:c3:42: d6:09:b1:e0:9c:8c:a9:6b:f9:5a:97:d7:a0:0d:f4: e3:34:b7:bf:45:bd:61:54:76:aa:77:5c:c7:de:4f: 8e:18:e7:56:01:b7:2a:a3:77:a3:63:62:46:0f:6d: 9e:76:b2:d7:6f:b3:d7:4d:0b:93:fb:c8:d7:a9:ab: 0f:a5:a9:fd:b0:6b:05:2a:99:64:59:3b:a5:59:38: 65:59:c5:19:1c:c0:6d:9a:cb:d9:44:c6:e2:3e:cd: 7a:95:f0:7c:ab:89:0f:55:f7:69:56:90:b8:78:45: 72:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:DC:E4:65:D8:98:4C:C4:1B:B7:3C:EE:E0:72:76:52:F2:BC:A6:26 X509v3 Authority Key Identifier: keyid:92:2D:60:EA:19:39:67:17:7B:C6:C3:9A:40:68:59:8A:3B:75:A6:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ki1g6hk5Zxd7xsOaQGhZijt1ptM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/320901C4BA8511EABA838E30C4F9AE02/ki1g6hk5Zxd7xsOaQGhZijt1ptM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:5d:44:e5:62:28:ab:6f:65:f7:2c:35:4d:b6:9a:61:83:b1: 97:94:c2:9a:0e:1e:37:29:b3:6d:05:ce:bf:1a:a3:48:1e:e8: 17:9d:4f:d6:50:e9:f3:35:22:8f:02:6a:99:0f:05:0e:c6:3f: 02:d5:1d:bb:7f:ed:cf:96:9c:96:0e:b3:7d:1b:3c:4b:5b:12: 98:e3:07:b0:d4:96:f6:d7:45:98:96:6c:72:7c:be:c8:02:cd: 81:68:19:86:bf:c2:ca:c3:bc:4f:25:0e:c9:2f:a9:8f:71:cd: d3:fb:86:b5:2a:d6:96:d2:42:89:4a:dc:7c:ba:76:17:d7:89: 6b:f5:54:cb:db:29:f3:94:62:c1:9c:47:0e:24:78:7a:0c:26: cf:72:89:71:f0:7f:81:fa:91:80:19:e1:c0:f1:0a:cd:df:d9: 5a:02:d9:c4:50:af:e0:fa:35:0d:e7:6e:04:be:a8:fc:93:bf: 4d:b0:63:0f:45:29:c3:0f:ec:65:f2:c7:fa:ad:18:ad:42:40: c7:ec:13:d3:2f:74:62:44:0f:4b:b6:47:1e:ba:d4:7a:ca:85: e3:bd:dc:c1:df:a1:be:4f:e4:a6:13:61:40:c8:07:b8:ba:4f: 55:6b:4b:7f:f5:dd:2c:1b:c0:c0:de:24:ca:e5:8c:e5:7c:c7: 4c:fa:9d:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDkyMkQ2MEVBMTkzOTY3MTc3QkM2QzM5QTQwNjg1OThB M0I3NUE2RDMwHhcNMjUxMDIyMDM0NzMxWhcNMjUxMDI5MDM0NzMxWjAYMRYwFAYD VQQDEw02OGY4NTNkMy0zNmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wRGKSo+/hlIiGJE2evwYNWti/CAl4CFBX0dPgIogiDIdcpGxK4/obr0PaI5 aG1YSxETQ+xAggMTgQ9ITS6jgDukbquFLrgVf2A8qy+sL6mwppTz9UKYg+AXEwfF Nd0xsR7L9a2ZPEL2jpMwNyomq4DRFsqaPslBNey/VB/+jH+PFR+EWfhjQlrq4maS +W5Oaeciw0LWCbHgnIypa/lal9egDfTjNLe/Rb1hVHaqd1zH3k+OGOdWAbcqo3ej Y2JGD22edrLXb7PXTQuT+8jXqasPpan9sGsFKplkWTulWThlWcUZHMBtmsvZRMbi Ps16lfB8q4kPVfdpVpC4eEVyIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHc5GXY mEzEG7c87uBydlLyvKYmMB8GA1UdIwQYMBaAFJItYOoZOWcXe8bDmkBoWYo7dabT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8zMjA5MDFDNEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4ZDd4c09hUUdoWmlqdDFw dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tpMWc2aGs1WnhkN3hzT2FRR2haaWp0MXB0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8zMjA5MDFDNEJBODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9raTFnNmhrNVp4 ZDd4c09hUUdoWmlqdDFwdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6XUTlYiirb2X3LDVNtpphg7GXlMKaDh43KbNtBc6/GqNIHugXnU/W UOnzNSKPAmqZDwUOxj8C1R27f+3PlpyWDrN9GzxLWxKY4wew1Jb210WYlmxyfL7I As2BaBmGv8LKw7xPJQ7JL6mPcc3T+4a1KtaW0kKJStx8unYX14lr9VTL2ynzlGLB nEcOJHh6DCbPcolx8H+B+pGAGeHA8QrN39laAtnEUK/g+jUN524Evqj8k79NsGMP RSnDD+xl8sf6rRitQkDH7BPTL3RiRA9LtkceutR6yoXjvdzB36G+T+SmE2FAyAe4 uk9Va0t/9d0sG8DA3iTK5YzlfMdM+p0E -----END CERTIFICATE-----Generated at Wed Oct 22 10:31:40 2025 by rpki-client