$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft File: 9JfRcWknbUPFhSFcGYMxwzwiWnU.mft (raw, json) Hash identifier: yxcj79o47J+4C8+xZlTFo3xlu+Vkq0ahON7SK15vHNQ= Subject key identifier: 5D:31:59:DF:69:DB:2A:76:75:8B:49:2E:3F:97:3C:65:17:CE:2C:FD Authority key identifier: F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 Certificate issuer: /CN=A91ECC24/serialNumber=F497D17169276D43C585215C198331C33C225A75 Certificate serial: 023A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft Manifest number: 022E Signing time: Sun 19 Oct 2025 04:19:38 +0000 Manifest this update: Sun 19 Oct 2025 04:19:37 +0000 Manifest next update: Sun 26 Oct 2025 04:19:37 +0000 Files and hashes: 1: 9JfRcWknbUPFhSFcGYMxwzwiWnU.crl (hash: JqLQryUBlvO+rae4B7rcEoaQH77HDr1tdF555uSkcVo=) 2: AC8A59D689D311EE81F03018C4F9AE02.roa (hash: CgMPU2zKmFQv28rwsx7lyUdY/WjeUcfrzEMiRjZzUr8=) 3: B9D8F9CE89D011EEB603FF75C4F9AE02.roa (hash: l/45mJzVlvrXkvMnYsTOqET7KEWpbH/MA+sFMBUmJ+A=) 4: C82A0778680811EE88B5527CC4F9AE02.roa (hash: FMfFksLuvdDh719tgVb78yQXrHhuawjPdGhDWuzq2VE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:19:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 570 (0x23a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECC24, serialNumber=F497D17169276D43C585215C198331C33C225A75 Validity Not Before: Oct 19 04:19:37 2025 GMT Not After : Oct 26 04:19:37 2025 GMT Subject: CN=68f466da-96fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2d:d4:fc:ea:a6:2a:9b:96:a9:da:36:2e:db: 51:fb:ac:c7:1a:ad:be:5e:07:38:63:50:ad:aa:e6: aa:3a:35:de:b8:bc:a1:a6:f6:b2:9e:f9:76:9e:60: b7:24:c2:85:c6:a5:f6:31:55:88:95:0c:10:cf:74: 59:ad:f0:99:ba:cb:1d:22:2a:a6:76:e7:e3:85:9f: 2e:5c:3d:f8:9c:db:10:d4:a8:d3:35:8a:38:ea:b6: a3:f0:ad:30:62:12:fc:0e:93:2f:3e:d3:5c:a6:4f: a7:6d:97:36:be:6f:86:ba:fc:73:8d:91:6e:22:7f: db:c6:bd:3e:49:8c:40:9c:f7:a1:79:57:2f:7e:12: a8:e3:8a:c2:de:47:5f:ed:8e:f4:56:d3:19:94:6e: af:d3:c7:86:7d:f7:33:db:c2:ba:40:c3:35:46:18: 0a:0f:aa:04:2a:71:a4:8a:16:6f:b2:02:66:24:4a: 6b:67:5d:e2:f4:87:4f:e4:be:eb:2e:2c:58:b0:28: c4:43:32:e9:68:bf:cf:0d:76:b0:49:51:3e:ff:76: c6:66:2e:e7:78:85:56:7c:cc:7f:67:f3:2c:91:46: 46:1a:b9:64:ea:0c:8a:bf:07:b3:21:a9:14:90:d1: fd:04:bb:c7:2e:5b:bf:17:de:fb:c9:e1:e0:23:1c: 62:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:31:59:DF:69:DB:2A:76:75:8B:49:2E:3F:97:3C:65:17:CE:2C:FD X509v3 Authority Key Identifier: keyid:F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:65:b1:07:73:55:4d:81:8e:69:f5:05:14:8b:04:19:bd:59: aa:00:0a:f1:20:44:9f:67:d3:ff:fc:1f:b9:f2:91:be:d0:13: 8c:bf:e0:4b:62:e1:33:4b:1b:5f:83:cf:08:12:49:dd:04:5e: ba:90:75:82:e9:44:8e:6e:ed:19:ae:4c:a2:bc:d7:93:43:88: c3:c2:15:a7:74:85:bf:a8:70:47:0e:d8:58:20:87:ef:e2:3c: 6c:62:8e:23:d9:4c:bf:1d:2e:32:cf:e3:4f:19:1c:c2:5f:ee: 14:8b:b8:bf:c0:2d:3a:00:64:61:71:37:37:10:2e:39:24:9c: 14:1d:e2:bb:09:c3:eb:98:3e:9a:ab:45:ef:0d:43:02:81:bd: 7a:14:e3:25:6f:0f:51:64:4a:d4:af:68:98:fb:8a:49:8c:91: 74:f1:ff:d1:43:39:95:c9:5b:3b:cc:82:c2:ec:66:d6:bc:3c: 27:22:e3:60:d3:30:0d:70:78:ed:0b:7c:b2:66:ba:3b:99:f4: 72:42:5d:ab:27:67:df:8f:ca:91:2f:97:b2:3a:c9:d1:8b:52: 6d:ec:3f:ae:07:eb:85:0e:34:ce:a1:70:79:09:8a:52:58:29: 4a:86:47:02:ef:07:96:69:bc:d4:95:8a:2a:88:0b:23:7e:49: c0:cd:43:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNDMjQxMTAvBgNVBAUTKEY0OTdEMTcxNjkyNzZENDNDNTg1MjE1QzE5ODMzMUMz M0MyMjVBNzUwHhcNMjUxMDE5MDQxOTM3WhcNMjUxMDI2MDQxOTM3WjAYMRYwFAYD VQQDEw02OGY0NjZkYS05NmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArS3U/OqmKpuWqdo2LttR+6zHGq2+Xgc4Y1CtquaqOjXeuLyhpvaynvl2nmC3 JMKFxqX2MVWIlQwQz3RZrfCZussdIiqmdufjhZ8uXD34nNsQ1KjTNYo46raj8K0w YhL8DpMvPtNcpk+nbZc2vm+GuvxzjZFuIn/bxr0+SYxAnPeheVcvfhKo44rC3kdf 7Y70VtMZlG6v08eGffcz28K6QMM1RhgKD6oEKnGkihZvsgJmJEprZ13i9IdP5L7r LixYsCjEQzLpaL/PDXawSVE+/3bGZi7neIVWfMx/Z/MskUZGGrlk6gyKvwezIakU kNH9BLvHLlu/F977yeHgIxxieQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF0xWd9p 2yp2dYtJLj+XPGUXziz9MB8GA1UdIwQYMBaAFPSX0XFpJ21DxYUhXBmDMcM8Ilp1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0MyNC8xNkM2MTMxNjZB RkExMUVEQjcwNkZGM0NDNEY5QUUwMi85SmZSY1drbmJVUEZoU0ZjR1lNeHd6d2lX blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlKZlJjV2tuYlVQRmhTRmNHWU14d3p3aVduVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0MyNC8xNkM2MTMxNjZBRkExMUVEQjcwNkZGM0NDNEY5QUUwMi85SmZSY1drbmJV UEZoU0ZjR1lNeHd6d2lXblUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnZbEHc1VNgY5p9QUUiwQZvVmqAArxIESfZ9P//B+58pG+0BOMv+BL YuEzSxtfg88IEkndBF66kHWC6USObu0ZrkyivNeTQ4jDwhWndIW/qHBHDthYIIfv 4jxsYo4j2Uy/HS4yz+NPGRzCX+4Ui7i/wC06AGRhcTc3EC45JJwUHeK7CcPrmD6a q0XvDUMCgb16FOMlbw9RZErUr2iY+4pJjJF08f/RQzmVyVs7zILC7GbWvDwnIuNg 0zANcHjtC3yyZro7mfRyQl2rJ2ffj8qRL5eyOsnRi1Jt7D+uB+uFDjTOoXB5CYpS WClKhkcC7weWabzUlYoqiAsjfknAzUO4 -----END CERTIFICATE-----Generated at Wed Oct 22 18:38:05 2025 by rpki-client