$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: xhVx0MzEVvUxZjt/TgMV2S2WcmisuIoMbzSQwVZgepE= Subject key identifier: A8:FF:0C:59:CD:D7:B4:C7:E0:77:78:28:8C:E2:0D:55:5A:E9:A7:E8 Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: 0108 Signing time: Wed 05 Nov 2025 05:10:13 +0000 Manifest this update: Wed 05 Nov 2025 05:10:12 +0000 Manifest next update: Wed 12 Nov 2025 05:10:12 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: gH6QdHkXBhUp9ALOno5UInfb/pivZOEj9d60mOXZNnY=) 2: 879152E62E4811EF929FE162C4F9AE02.roa (hash: cr46hMBXMjVoUuUCIeS55LaT84JtFcqvVMAfnbq95f8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Nov 5 05:10:12 2025 GMT Not After : Nov 12 05:10:12 2025 GMT Subject: CN=690adc35-57d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:41:f7:14:88:f4:63:34:a5:6f:1c:e5:19:90: 57:05:d8:f2:2c:75:2b:62:88:4d:00:2b:3e:77:b8: d7:e5:d9:b3:86:12:09:43:31:87:2f:18:65:99:20: 30:26:8b:eb:c9:c5:c4:d6:2c:da:9d:57:0d:1c:7b: be:f4:88:ab:16:c1:f0:d2:f4:1a:71:a2:25:55:55: a2:85:a4:bc:9c:b6:2c:bf:fc:7c:8f:82:a9:34:9a: c2:54:53:db:6d:73:50:41:5a:7a:a3:d2:4f:f5:8c: 27:d1:45:88:69:25:ee:b5:b2:c6:79:1f:8e:ef:04: 59:3c:f4:77:be:d0:2b:48:2d:45:cc:ab:bf:1d:1f: 8c:b9:a1:e7:bb:de:1c:9c:ca:81:00:6d:b1:d9:36: 5a:b8:79:88:b9:53:f4:e5:44:21:8f:7f:c4:62:43: e3:d3:53:5d:84:89:15:2c:4b:c2:df:54:4c:24:20: d8:3a:59:4c:8c:3c:6a:b8:8f:8e:90:e5:06:3a:05: e0:f8:88:6e:fb:2f:1a:1c:07:de:c4:37:af:13:ab: 69:45:d5:dc:28:90:cd:4d:55:72:cd:87:fc:81:96: 95:50:c3:46:7f:21:f4:d1:ba:8d:23:7f:de:13:e6: 62:ce:b0:60:f9:e0:97:6b:cc:35:db:15:6e:ad:2e: 36:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:FF:0C:59:CD:D7:B4:C7:E0:77:78:28:8C:E2:0D:55:5A:E9:A7:E8 X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:c9:ff:5d:dd:18:e6:8e:de:58:64:73:20:f3:d3:10:e7:d4: d3:e9:3b:cb:64:d1:a8:14:d5:d4:98:31:1f:32:7e:d1:4e:e9: 6d:dc:25:6f:e8:8a:95:57:84:72:fd:d0:9c:ad:5c:1b:a8:de: 23:87:e2:02:57:01:08:1e:c7:cf:86:6b:9f:f4:95:df:7c:61: 71:7f:c0:2a:fe:c6:1e:02:6e:0b:ca:b8:fc:d1:64:b5:d2:4b: 8d:fc:4f:0f:d5:0a:6c:f0:1b:de:ba:fc:d9:be:27:78:03:6d: 86:56:6a:e3:2f:14:2f:c7:2a:32:18:5c:46:92:5b:0c:a0:41: 8a:d1:77:c1:d5:c9:91:5b:99:a3:8e:3f:df:26:65:1f:de:35: b5:1e:58:89:c1:13:77:be:1d:b4:05:f6:03:36:31:48:22:48: c4:c5:11:41:be:af:3f:36:06:fc:f8:99:db:8c:54:fe:13:c3: c1:2b:40:4c:3b:33:f5:04:2f:d3:b2:df:62:7b:7d:84:a7:04: 18:96:16:f1:08:f1:16:51:64:ef:98:a6:05:9f:de:2e:58:d4: 37:64:c2:7b:30:25:64:20:59:08:e2:a7:c4:b4:09:c5:18:27: ba:15:0f:e2:8b:2c:09:32:15:0c:5d:e8:10:9a:cc:48:62:51: 5e:13:86:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKDkwOERCM0Y5Qjc0NkY1MjBCQkI5QTg0Qzg1M0Y2OTI2 QzE1RUI5QkQwHhcNMjUxMTA1MDUxMDEyWhcNMjUxMTEyMDUxMDEyWjAYMRYwFAYD VQQDEw02OTBhZGMzNS01N2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnEH3FIj0YzSlbxzlGZBXBdjyLHUrYohNACs+d7jX5dmzhhIJQzGHLxhlmSAw JovrycXE1izanVcNHHu+9IirFsHw0vQacaIlVVWihaS8nLYsv/x8j4KpNJrCVFPb bXNQQVp6o9JP9Ywn0UWIaSXutbLGeR+O7wRZPPR3vtArSC1FzKu/HR+MuaHnu94c nMqBAG2x2TZauHmIuVP05UQhj3/EYkPj01NdhIkVLEvC31RMJCDYOllMjDxquI+O kOUGOgXg+Ihu+y8aHAfexDevE6tpRdXcKJDNTVVyzYf8gZaVUMNGfyH00bqNI3/e E+ZizrBg+eCXa8w12xVurS42jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKj/DFnN 17TH4Hd4KIziDVVa6afoMB8GA1UdIwQYMBaAFJCNs/m3RvUgu7moTIU/aSbBXrm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8yMDlFRERDRTJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlTQzd1YWhNaFQ5cEpzRmV1 YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXViMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTkwOS8yMDlFRERDRTJBMzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlT Qzd1YWhNaFQ5cEpzRmV1YjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCyf9d3Rjmjt5YZHMg89MQ59TT6TvLZNGoFNXUmDEfMn7RTult3CVv 6IqVV4Ry/dCcrVwbqN4jh+ICVwEIHsfPhmuf9JXffGFxf8Aq/sYeAm4Lyrj80WS1 0kuN/E8P1Qps8BveuvzZvid4A22GVmrjLxQvxyoyGFxGklsMoEGK0XfB1cmRW5mj jj/fJmUf3jW1HliJwRN3vh20BfYDNjFIIkjExRFBvq8/Ngb8+JnbjFT+E8PBK0BM OzP1BC/Tst9ie32EpwQYlhbxCPEWUWTvmKYFn94uWNQ3ZMJ7MCVkIFkI4qfEtAnF GCe6FQ/iiywJMhUMXegQmsxIYlFeE4ai -----END CERTIFICATE-----Generated at Wed Nov 5 10:02:08 2025 by rpki-client