$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft File: CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft (raw, json) Hash identifier: dwk1G37eRA+f66KSSldQbUbD4K9WozsaSee42Gp70tM= Subject key identifier: 93:12:C5:ED:79:92:95:72:E4:C7:34:9D:61:7D:4D:E3:69:B5:8D:5B Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 350A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft Manifest number: 34EA Signing time: Wed 08 Oct 2025 14:19:31 +0000 Manifest this update: Wed 08 Oct 2025 14:19:31 +0000 Manifest next update: Wed 15 Oct 2025 14:19:31 +0000 Files and hashes: 1: CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl (hash: n9BPCC7P620/MSj9zoShUNE+TfLvwKgI6Dz7MxBYEnU=) 2: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (hash: 5TYvs++Mvewysf2Y0/6vpFA2+467A8J4q0CP6JqLCQs=) 3: E404430CB0F811E595E0F761C4F9AE02.roa (hash: aPLpTjVx3H8dG+sQrN1VcBaFu+dKTfAESi5mspAt7yo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Oct 2025 14:19:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13578 (0x350a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A, serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: Oct 8 14:19:31 2025 GMT Not After : Oct 15 14:19:31 2025 GMT Subject: CN=68e672f3-b38d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7a:9e:b1:da:12:d9:a0:f5:2c:6d:8c:e0:e1: b9:2d:f0:2d:b5:44:bc:e8:6f:88:3c:89:91:7f:4e: 64:57:43:34:e7:92:46:34:a2:28:7f:04:0b:9c:54: 17:db:e4:0f:0d:13:1d:2b:11:d2:02:d2:ba:65:6b: bc:3d:42:3e:66:d6:57:e5:fd:5c:12:80:cf:95:d2: 29:8a:cd:6b:20:a3:db:c4:7d:fb:44:75:07:0c:a9: a1:e2:5d:20:fe:5d:cf:8c:0a:41:d1:3c:aa:35:9c: 66:75:d3:d9:7e:b0:43:d3:91:b5:d5:91:f6:c0:ac: ae:c7:16:dc:52:83:3b:3d:1e:df:b0:e2:7c:be:e8: 64:88:d6:47:db:80:0f:ab:d0:a3:8f:d8:06:f6:76: 07:49:9e:91:68:85:b4:0e:fe:b6:0a:30:21:58:2d: 93:0c:f6:4a:6e:d5:74:d8:d3:9d:bf:3e:3c:e6:a0: ed:16:ca:44:f0:3c:b2:57:6f:03:fc:fd:15:38:08: 59:ca:40:21:d2:06:a4:f0:9d:5b:d6:73:a0:1c:12: c3:5a:9f:6a:3c:2f:2f:cd:4f:3a:4c:2c:a6:ae:84: b9:11:33:d9:7d:8e:62:80:a1:63:60:b6:46:d3:9a: 85:4d:6b:35:ce:57:02:72:75:9d:cb:4d:80:2e:98: 76:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:12:C5:ED:79:92:95:72:E4:C7:34:9D:61:7D:4D:E3:69:B5:8D:5B X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:82:19:e8:37:a1:7f:a4:2d:a4:dc:e9:3c:a1:21:70:a0:a7: 20:c6:4f:5f:96:ca:2b:0c:a3:26:21:ef:08:4a:4b:bc:3a:b1: d8:64:0a:a0:36:54:e3:e9:3a:da:24:18:56:7a:87:04:bf:5c: f6:3c:83:25:ea:55:77:c9:79:c1:1e:2a:43:21:60:39:aa:34: bc:47:eb:14:b5:bc:dc:b3:e5:e0:e3:2b:4b:29:b0:fa:20:a5: ca:af:cd:be:e0:ac:ca:98:47:d3:74:33:22:3f:a5:c5:0c:66: b7:dc:12:9a:31:11:1f:f8:06:30:30:df:b5:7e:41:a5:05:fa: 00:66:c9:73:0f:31:53:cf:09:c5:6f:ac:4d:6d:9d:18:ed:5a: 17:fb:d4:0a:87:f5:04:5b:cd:cc:6b:40:35:13:75:d7:a0:76: a3:5b:5d:a1:5e:50:95:b5:bb:6b:3f:b4:c8:21:f4:34:68:36: b9:91:0e:3e:31:d0:fd:1b:80:4d:f4:0c:38:4e:ad:11:c2:f4: 9f:f6:60:42:32:cc:77:ec:58:07:b7:8c:ec:a5:a8:9d:da:e6: f1:7a:b6:72:8b:59:3c:d5:68:7d:55:9e:8e:3a:eb:83:cd:4d: e1:d0:1f:e6:48:9a:8d:7b:39:5c:49:b0:3c:e9:26:7c:c0:7e: d4:35:df:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjUxMDA4MTQxOTMxWhcNMjUxMDE1MTQxOTMxWjAYMRYwFAYD VQQDEw02OGU2NzJmMy1iMzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApHqesdoS2aD1LG2M4OG5LfAttUS86G+IPImRf05kV0M055JGNKIofwQLnFQX 2+QPDRMdKxHSAtK6ZWu8PUI+ZtZX5f1cEoDPldIpis1rIKPbxH37RHUHDKmh4l0g /l3PjApB0TyqNZxmddPZfrBD05G11ZH2wKyuxxbcUoM7PR7fsOJ8vuhkiNZH24AP q9Cjj9gG9nYHSZ6RaIW0Dv62CjAhWC2TDPZKbtV02NOdvz485qDtFspE8DyyV28D /P0VOAhZykAh0gak8J1b1nOgHBLDWp9qPC8vzU86TCymroS5ETPZfY5igKFjYLZG 05qFTWs1zlcCcnWdy02ALph2iwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMSxe15 kpVy5Mc0nWF9TeNptY1bMB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQxQS9DNTlCMDJEQTFENzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJV akdjWGMzUUlrYzlVNHh1QTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrghnoN6F/pC2k3Ok8oSFwoKcgxk9flsorDKMmIe8ISku8OrHYZAqg NlTj6TraJBhWeocEv1z2PIMl6lV3yXnBHipDIWA5qjS8R+sUtbzcs+Xg4ytLKbD6 IKXKr82+4KzKmEfTdDMiP6XFDGa33BKaMREf+AYwMN+1fkGlBfoAZslzDzFTzwnF b6xNbZ0Y7VoX+9QKh/UEW83Ma0A1E3XXoHajW12hXlCVtbtrP7TIIfQ0aDa5kQ4+ MdD9G4BN9Aw4Tq0RwvSf9mBCMsx37FgHt4zspaid2ubxerZyi1k81Wh9VZ6OOuuD zU3h0B/mSJqNezlcSbA86SZ8wH7UNd+6 -----END CERTIFICATE-----Generated at Wed Oct 8 15:48:26 2025 by rpki-client