$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft File: 9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft (raw, json) Hash identifier: txFtzwVAQk7XuZap9SgE420y5wR3CAJmoiOlWnh1SKE= Subject key identifier: 96:8E:83:F3:64:98:9F:E9:7E:7F:7F:BE:BB:B7:3D:4E:97:5F:7A:C8 Authority key identifier: F4:40:18:18:1E:E5:C6:24:0E:13:94:39:5A:5C:CC:4D:2F:62:31:A4 Certificate issuer: /CN=A91BDD82/serialNumber=F44018181EE5C6240E1394395A5CCC4D2F6231A4 Certificate serial: 0197 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft Manifest number: 1076 Signing time: Sun 02 Nov 2025 17:39:17 +0000 Manifest this update: Sun 02 Nov 2025 17:39:16 +0000 Manifest next update: Sun 09 Nov 2025 17:39:16 +0000 Files and hashes: 1: 9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl (hash: SvmDgtET0PXHxn0GyuIMsSgbIKdEQo3B2CcBjlCsyCk=) 2: 324967826D8D11EE9883B985C4F9AE02.roa (hash: MZyOtnzSYRn5H5siK78kl2QRZxsNV35INBP6UfbHk9E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:39:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 407 (0x197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDD82, serialNumber=F44018181EE5C6240E1394395A5CCC4D2F6231A4 Validity Not Before: Nov 2 17:39:16 2025 GMT Not After : Nov 9 17:39:16 2025 GMT Subject: CN=69079745-bf4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b4:60:e8:7b:7a:e8:b6:6a:9f:f7:b0:56:52: 27:4b:86:ff:7d:f9:39:76:b3:db:dc:cd:85:de:8b: b3:33:4f:28:3e:c0:c9:f7:b9:17:b2:ae:7e:bf:2c: 1c:a3:f4:e1:76:6c:3a:7f:c2:61:cf:86:32:1e:19: d6:f0:2b:f9:4a:8e:4f:0b:c6:aa:86:f8:c2:24:0e: 27:74:28:45:7c:11:de:cb:ee:91:64:72:8a:ad:92: 70:3f:e3:a2:3b:0b:32:51:94:49:3e:fe:a1:ed:65: 0e:cc:1c:e1:87:18:89:16:49:49:5e:96:38:b6:e5: 0f:25:dd:59:76:52:fb:7a:dd:63:d1:1b:c1:19:a1: d2:5b:6f:fd:79:2f:92:86:57:ae:b9:3c:d4:dc:02: a0:b1:65:46:59:f5:36:04:25:5d:ff:24:c2:be:13: 6c:c1:8c:a7:c0:06:f5:63:63:0b:c5:1f:5a:1b:9c: 30:4e:d8:7c:3d:ab:d6:bc:7b:21:63:4d:f1:1c:42: 3a:c1:5e:9c:a0:de:2e:b6:37:11:20:c3:40:dd:fb: 71:5b:76:28:75:28:18:bb:b7:61:8c:ef:32:4d:0e: f7:2c:d2:29:f8:01:0c:a0:5c:43:ef:7f:8c:37:30: 02:5c:1b:55:75:f0:ac:f4:34:ab:a5:d2:bf:85:bd: c1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:8E:83:F3:64:98:9F:E9:7E:7F:7F:BE:BB:B7:3D:4E:97:5F:7A:C8 X509v3 Authority Key Identifier: keyid:F4:40:18:18:1E:E5:C6:24:0E:13:94:39:5A:5C:CC:4D:2F:62:31:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:73:77:4a:0c:fc:9d:89:71:87:18:a1:38:92:63:f0:f3:7c: 9d:5b:41:48:fd:e8:65:29:c8:a3:70:59:85:9c:2c:39:af:ea: 28:d5:8d:32:71:1c:d4:d4:d5:68:c5:8b:c0:3b:8d:79:c0:69: 9d:0e:31:91:47:68:18:6c:d0:c2:ea:c3:d6:7d:cc:41:91:12: 00:3a:5c:9c:c0:d2:b3:33:cc:24:64:d2:3a:6b:39:be:0a:e0: 62:0c:ec:f5:88:3c:bf:0d:e9:a4:47:38:b3:bc:6e:42:0f:04: fc:e6:6b:6d:a1:c0:ac:a4:52:93:12:59:28:fc:15:19:dd:11: f5:50:de:60:b0:5c:e1:61:51:f2:f2:5d:55:c3:b9:5a:09:a2: 58:16:9f:c2:d4:ed:53:1b:f1:26:9d:ee:92:0f:06:85:d9:7f: 72:2e:d1:47:3e:89:7f:d7:d5:7b:c9:1a:e7:27:8d:a9:0e:d5: 11:99:8f:e5:12:cd:8c:a9:ea:9d:b0:80:e7:55:32:ab:13:b1: 89:dd:e9:86:e6:9f:b0:d4:de:9e:af:bc:66:77:9e:91:07:5c: 05:58:ae:58:d6:33:0f:5a:16:44:72:cb:14:6e:a5:db:46:52: 53:8e:bb:9a:9f:29:45:c5:e1:49:43:48:f2:fe:a7:93:db:dd: 99:1c:3c:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkREODIxMTAvBgNVBAUTKEY0NDAxODE4MUVFNUM2MjQwRTEzOTQzOTVBNUNDQzRE MkY2MjMxQTQwHhcNMjUxMTAyMTczOTE2WhcNMjUxMTA5MTczOTE2WjAYMRYwFAYD VQQDEw02OTA3OTc0NS1iZjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rRg6Ht66LZqn/ewVlInS4b/ffk5drPb3M2F3ouzM08oPsDJ97kXsq5+vywc o/Thdmw6f8Jhz4YyHhnW8Cv5So5PC8aqhvjCJA4ndChFfBHey+6RZHKKrZJwP+Oi OwsyUZRJPv6h7WUOzBzhhxiJFklJXpY4tuUPJd1ZdlL7et1j0RvBGaHSW2/9eS+S hleuuTzU3AKgsWVGWfU2BCVd/yTCvhNswYynwAb1Y2MLxR9aG5wwTth8PavWvHsh Y03xHEI6wV6coN4utjcRIMNA3ftxW3YodSgYu7dhjO8yTQ73LNIp+AEMoFxD73+M NzACXBtVdfCs9DSrpdK/hb3BnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJaOg/Nk mJ/pfn9/vru3PU6XX3rIMB8GA1UdIwQYMBaAFPRAGBge5cYkDhOUOVpczE0vYjGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREQ4Mi8xOTdGOUQ5Mjkx RTIxMUU5OTc2ODg5MEVDNEY5QUUwMi85RUFZR0I3bHhpUU9FNVE1V2x6TVRTOWlN YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlFQVlHQjdseGlRT0U1UTVXbHpNVFM5aU1hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REQ4Mi8xOTdGOUQ5MjkxRTIxMUU5OTc2ODg5MEVDNEY5QUUwMi85RUFZR0I3bHhp UU9FNVE1V2x6TVRTOWlNYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOc3dKDPydiXGHGKE4kmPw83ydW0FI/ehlKcijcFmFnCw5r+oo1Y0y cRzU1NVoxYvAO415wGmdDjGRR2gYbNDC6sPWfcxBkRIAOlycwNKzM8wkZNI6azm+ CuBiDOz1iDy/DemkRzizvG5CDwT85mttocCspFKTElko/BUZ3RH1UN5gsFzhYVHy 8l1Vw7laCaJYFp/C1O1TG/Emne6SDwaF2X9yLtFHPol/19V7yRrnJ42pDtURmY/l Es2MqeqdsIDnVTKrE7GJ3emG5p+w1N6er7xmd56RB1wFWK5Y1jMPWhZEcssUbqXb RlJTjruanylFxeFJQ0jy/qeT292ZHDzr -----END CERTIFICATE-----Generated at Tue Nov 4 12:36:06 2025 by rpki-client