$ rpki-client -vvf rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft File: A9h0_y9dMgjn62Jadzf81EzuKsI.mft (raw, json) Hash identifier: yoDoO+vmmi6K94Dsh4LkPt5QXeUZqnGD5S3gRjHP3rc= Subject key identifier: 8C:1B:A4:A9:73:46:E0:1E:83:04:51:2C:B9:7B:80:46:2D:16:E7:EF Authority key identifier: 03:D8:74:FF:2F:5D:32:08:E7:EB:62:5A:77:37:FC:D4:4C:EE:2A:C2 Certificate issuer: /CN=A91D901E/serialNumber=03D874FF2F5D3208E7EB625A7737FCD44CEE2AC2 Certificate serial: 24 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft Manifest number: 23 Signing time: Fri 17 Oct 2025 11:32:51 +0000 Manifest this update: Fri 17 Oct 2025 11:32:51 +0000 Manifest next update: Fri 24 Oct 2025 11:32:51 +0000 Files and hashes: 1: A9h0_y9dMgjn62Jadzf81EzuKsI.crl (hash: jSHPkpppKWxzb40IbDU+WVbhsjXSJOEZpoKLx/xYaXs=) 2: 58893B2878DC11F084C71D2BC4F9AE02.roa (hash: Top1RS38Q6RG/Bo0KeriCxYaYwIm8AI46xZdJa/NP8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.crl rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D901E, serialNumber=03D874FF2F5D3208E7EB625A7737FCD44CEE2AC2 Validity Not Before: Oct 17 11:32:51 2025 GMT Not After : Oct 24 11:32:51 2025 GMT Subject: CN=68f22963-8692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e7:6f:6a:e8:91:a7:fd:b7:0f:e4:2b:78:f5: 74:1a:6b:86:4a:49:94:42:5f:df:5c:e5:a7:27:36: fa:f5:9b:0f:b6:1a:3a:0d:3f:52:2e:8d:1f:a0:e1: 74:07:99:66:d5:5a:33:4b:56:05:b9:41:5e:24:57: 5a:07:2a:bd:68:56:97:ef:27:4a:74:6f:c0:6e:c1: 75:cf:dc:27:16:21:22:31:ca:95:e1:0b:0a:f8:7c: c0:b9:ea:dc:74:4c:ac:e5:01:1b:4d:14:8d:3f:84: 30:02:4e:48:7e:7e:cd:3d:a9:26:14:d5:4e:b5:31: ac:c8:87:a2:cd:fa:11:dc:f3:7d:2e:cd:7f:45:f5: 89:af:c7:ca:ee:6a:cb:39:6e:40:64:40:9b:db:be: 5c:6b:15:89:e4:57:53:1a:57:0c:58:a6:93:ef:a5: e3:94:0f:57:15:60:24:13:cd:9f:84:b1:48:4d:36: 7a:b0:82:c8:ae:17:fa:9a:98:59:27:f4:0c:de:45: 0c:69:31:6b:ae:e2:64:37:fc:df:74:32:e0:e3:01: 24:9d:55:06:4a:e1:ee:5c:f7:0f:eb:6e:82:1b:a0: 81:b2:ef:29:e2:81:63:b2:56:06:ab:2f:55:02:ae: 33:84:2a:53:5f:16:f1:fe:62:d6:6f:66:97:0d:e0: a9:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:1B:A4:A9:73:46:E0:1E:83:04:51:2C:B9:7B:80:46:2D:16:E7:EF X509v3 Authority Key Identifier: keyid:03:D8:74:FF:2F:5D:32:08:E7:EB:62:5A:77:37:FC:D4:4C:EE:2A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:a5:65:7e:54:52:42:31:6a:cc:2f:48:28:47:08:4c:94:52: 56:6d:be:72:ff:eb:87:dd:d0:d5:63:bc:5c:05:4a:ef:33:51: 70:4b:2f:08:de:43:f6:58:e9:7e:54:df:27:cc:ef:1e:dd:27: 54:cb:fb:40:19:d4:9d:7d:9d:80:66:ad:1f:fd:e8:e9:9b:14: 86:9d:45:b5:da:1b:f1:b4:53:36:8a:f6:68:23:eb:52:6e:7a: 0e:81:13:1d:2b:ca:fb:08:d5:98:56:38:63:72:30:0c:91:57: 08:93:ca:79:ab:86:a7:6c:4b:69:3c:61:12:4f:1d:57:85:e0: 37:da:6a:79:78:4b:96:86:8b:a5:33:d9:88:41:7a:2f:cd:4f: 39:e8:ea:2c:4d:c7:dd:e4:c0:b0:fe:54:fc:85:76:77:2b:6c: a2:6e:68:0d:15:23:37:a0:78:a2:64:64:e5:26:11:e5:0d:5c: 5d:56:64:da:15:fb:44:4f:b2:91:6d:d1:0b:0a:0c:87:68:06: 06:bd:b4:93:4a:62:d6:43:dc:1a:8f:ed:5b:3c:c3:68:33:ed: ad:3f:86:97:f9:ec:d6:8e:fe:ca:30:91:38:e8:4a:8c:a8:14: dd:73:0d:3e:c4:07:1d:7e:fc:34:b4:d7:66:75:0f:ea:c9:74: fb:f6:a2:c2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OTAxRTExMC8GA1UEBRMoMDNEODc0RkYyRjVEMzIwOEU3RUI2MjVBNzczN0ZDRDQ0 Q0VFMkFDMjAeFw0yNTEwMTcxMTMyNTFaFw0yNTEwMjQxMTMyNTFaMBgxFjAUBgNV BAMTDTY4ZjIyOTYzLTg2OTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3529q6JGn/bcP5Ct49XQaa4ZKSZRCX99c5acnNvr1mw+2GjoNP1IujR+g4XQH mWbVWjNLVgW5QV4kV1oHKr1oVpfvJ0p0b8BuwXXP3CcWISIxypXhCwr4fMC56tx0 TKzlARtNFI0/hDACTkh+fs09qSYU1U61MazIh6LN+hHc830uzX9F9Ymvx8ruass5 bkBkQJvbvlxrFYnkV1MaVwxYppPvpeOUD1cVYCQTzZ+EsUhNNnqwgsiuF/qamFkn 9AzeRQxpMWuu4mQ3/N90MuDjASSdVQZK4e5c9w/rboIboIGy7ynigWOyVgarL1UC rjOEKlNfFvH+YtZvZpcN4Km/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjBukqXNG 4B6DBFEsuXuARi0W5+8wHwYDVR0jBBgwFoAUA9h0/y9dMgjn62Jadzf81EzuKsIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5MDFFL0RFMkQ2NEVBNzhE QTExRjBCMEZCRTIxNkM0RjlBRTAyL0E5aDBfeTlkTWdqbjYySmFkemY4MUV6dUtz SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQTloMF95OWRNZ2puNjJKYWR6ZjgxRXp1S3NJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 MDFFL0RFMkQ2NEVBNzhEQTExRjBCMEZCRTIxNkM0RjlBRTAyL0E5aDBfeTlkTWdq bjYySmFkemY4MUV6dUtzSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ2lZX5UUkIxaswvSChHCEyUUlZtvnL/64fd0NVjvFwFSu8zUXBLLwje Q/ZY6X5U3yfM7x7dJ1TL+0AZ1J19nYBmrR/96OmbFIadRbXaG/G0UzaK9mgj61Ju eg6BEx0ryvsI1ZhWOGNyMAyRVwiTynmrhqdsS2k8YRJPHVeF4Dfaanl4S5aGi6Uz 2YhBei/NTzno6ixNx93kwLD+VPyFdncrbKJuaA0VIzegeKJkZOUmEeUNXF1WZNoV +0RPspFt0QsKDIdoBga9tJNKYtZD3BqP7Vs8w2gz7a0/hpf57NaO/sowkTjoSoyo FN1zDT7EBx1+/DS012Z1D+rJdPv2osI= -----END CERTIFICATE-----Generated at Sat Oct 18 23:38:45 2025 by rpki-client