$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft File: sGfGu3DfDcBM5398jXZwakn2y4U.mft (raw, json) Hash identifier: hPeK+OsinnXEwytvx9MF1cZOgjeWJ9mw9nK8Pd4qqCc= Subject key identifier: B3:29:FA:37:F5:8D:24:DF:77:1E:AF:5D:28:76:0B:F9:29:BD:8A:A3 Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 02D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft Manifest number: 02AA Signing time: Thu 23 Oct 2025 03:07:41 +0000 Manifest this update: Thu 23 Oct 2025 03:07:40 +0000 Manifest next update: Thu 30 Oct 2025 03:07:40 +0000 Files and hashes: 1: sGfGu3DfDcBM5398jXZwakn2y4U.crl (hash: cjsY3gOo7m4xKicLV+zCgPF+9Z6tfNGpYSqmO/oBjDg=) 2: DF9C04F4897811F08A9D002AC4F9AE02.roa (hash: XfF79hvTmc8NMCL/hID++kJM7536Tc7Eia39Bf3yFuA=) 3: D6D1A360323911F0BDA2E834C4F9AE02.roa (hash: 3S7sTHQwNR4M05c/J0LAnFvlwfRaJo13g2aipeOM4II=) 4: 6E41DE08310A11F0AC8DF544C4F9AE02.roa (hash: MdnsK78f+RePT5EKFxzpSrHG7P2t5sm3+YBB1dYO5+4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 03:07:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 728 (0x2d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A, serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: Oct 23 03:07:40 2025 GMT Not After : Oct 30 03:07:40 2025 GMT Subject: CN=68f99bfc-b3ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:60:83:95:2a:a2:84:91:9e:18:4e:53:0e:b8: 39:cb:cb:12:3a:ae:ea:f5:19:21:e5:f1:b2:67:73: 95:8b:a5:0a:bb:c5:ce:a3:87:44:d1:5a:e5:21:ea: bd:97:f2:70:2f:7c:92:b4:e3:21:59:e6:91:2e:55: 6f:40:7e:2a:2f:a3:67:f2:b6:9f:38:56:bd:ea:dd: 5c:58:ac:20:12:99:e2:73:f7:db:c1:f6:66:e1:bd: d7:ce:e4:f9:af:ff:89:2f:bd:f1:d4:12:2d:ea:b9: 9f:48:09:4a:42:c0:63:1e:f4:64:1d:96:12:99:5b: f4:a8:c2:af:00:58:80:85:b8:45:25:ed:b2:3c:45: c7:7d:30:07:b8:85:9f:cf:9a:37:fd:3d:f6:fb:56: fc:62:62:49:58:8e:ec:f1:54:c0:02:5a:76:a8:93: 8b:2b:79:db:76:2b:0e:2b:bc:b5:82:6c:d0:0e:bb: ef:7d:0a:5f:54:32:33:2e:8e:49:dc:94:fd:56:e0: 94:af:05:90:ca:1a:7f:79:d7:ab:19:88:90:20:ad: cd:15:69:a2:f8:e8:6b:34:d0:d7:3f:22:33:fc:c0: 75:b1:9b:c9:9f:08:41:4b:f7:df:cd:60:01:6a:43: cd:f5:28:b7:ee:76:0b:0e:44:9c:f2:27:97:09:68: 98:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:29:FA:37:F5:8D:24:DF:77:1E:AF:5D:28:76:0B:F9:29:BD:8A:A3 X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:51:db:b3:ca:8b:3c:75:0c:72:9c:60:94:07:2a:02:a6:b8: 45:d0:b8:d0:7e:fa:7a:b3:8b:28:65:5f:8c:20:ae:44:65:57: b0:9a:b5:59:3e:3d:22:a1:0b:b4:28:2a:1c:cd:15:34:9f:f5: f5:01:18:92:69:d6:53:74:74:04:95:60:e8:7a:a4:21:4a:21: 2c:bb:67:f4:ba:17:1b:b1:02:88:f8:f5:a3:1e:a0:f6:fc:aa: f9:85:60:c1:83:15:47:11:65:24:67:25:c0:75:25:92:9c:60: aa:90:36:d1:49:c6:28:4b:48:af:d3:e6:14:47:cf:be:64:31: c8:54:38:60:8f:c8:17:98:03:17:1c:9f:4b:3f:5c:64:cf:49: 9c:4c:ad:7e:a6:ec:31:40:32:87:06:41:ce:b5:26:a0:bd:8f: ac:73:b7:8e:33:3b:89:a7:27:8b:3e:4e:52:d9:5b:e7:63:72: 7a:8d:1e:23:45:61:c4:21:9f:02:19:0a:04:cf:54:da:f3:56: a6:8d:6a:ce:ea:af:66:66:55:3b:24:58:bc:d5:43:59:a9:2b: c5:45:eb:ef:9a:fd:53:5a:6b:fd:97:d0:f4:ee:f7:60:d5:b5: 26:13:f1:31:7e:68:00:0a:f2:80:9f:a3:1f:a2:7d:55:3f:21: 58:d1:1a:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjUxMDIzMDMwNzQwWhcNMjUxMDMwMDMwNzQwWjAYMRYwFAYD VQQDEw02OGY5OWJmYy1iM2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA92CDlSqihJGeGE5TDrg5y8sSOq7q9Rkh5fGyZ3OVi6UKu8XOo4dE0VrlIeq9 l/JwL3yStOMhWeaRLlVvQH4qL6Nn8rafOFa96t1cWKwgEpnic/fbwfZm4b3XzuT5 r/+JL73x1BIt6rmfSAlKQsBjHvRkHZYSmVv0qMKvAFiAhbhFJe2yPEXHfTAHuIWf z5o3/T32+1b8YmJJWI7s8VTAAlp2qJOLK3nbdisOK7y1gmzQDrvvfQpfVDIzLo5J 3JT9VuCUrwWQyhp/ederGYiQIK3NFWmi+OhrNNDXPyIz/MB1sZvJnwhBS/ffzWAB akPN9Si37nYLDkSc8ieXCWiYrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLMp+jf1 jSTfdx6vXSh2C/kpvYqjMB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzY2QS9FQzA5QUE0QTMwN0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRj Qk01Mzk4alhad2FrbjJ5NFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMUduzyos8dQxynGCUByoCprhF0LjQfvp6s4soZV+MIK5EZVewmrVZ Pj0ioQu0KCoczRU0n/X1ARiSadZTdHQElWDoeqQhSiEsu2f0uhcbsQKI+PWjHqD2 /Kr5hWDBgxVHEWUkZyXAdSWSnGCqkDbRScYoS0iv0+YUR8++ZDHIVDhgj8gXmAMX HJ9LP1xkz0mcTK1+puwxQDKHBkHOtSagvY+sc7eOMzuJpyeLPk5S2VvnY3J6jR4j RWHEIZ8CGQoEz1Ta81amjWrO6q9mZlU7JFi81UNZqSvFRevvmv1TWmv9l9D07vdg 1bUmE/ExfmgACvKAn6Mfon1VPyFY0Rrq -----END CERTIFICATE-----Generated at Thu Oct 23 21:05:22 2025 by rpki-client