$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: Sr4fFMmCHqjlVYRfZDz2cwEraDkIhcELKk/MDe/LVkg= Subject key identifier: 16:4C:D4:62:01:62:0D:91:98:DC:86:F7:91:17:C9:F9:F2:47:55:F8 Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0C42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0C11 Signing time: Sat 18 Oct 2025 19:42:58 +0000 Manifest this update: Sat 18 Oct 2025 19:42:57 +0000 Manifest next update: Sat 25 Oct 2025 19:42:57 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: svN6CYtVFh3av3YgKSnixx/f37SHj7dQSlddizlfQhw=) 2: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: x2iHWFegIFwfUv7eETVYAeYmpK9xBEA15+t682RT6r8=) 3: 5380E2B895F911F096F0574EC4F9AE02.roa (hash: 6Xz8FCMqUa8j/rjQSPhyQaudprfohCttOxQs6McUtnY=) 4: 9FC61D303F7A11F0BC711E7FC4F9AE02.roa (hash: KLAu57JBn7NTh33cfX1DBAGhLNuRug57Fl0GJC6kPFQ=) 5: 75775B8A5E3C11F094FDCD71C4F9AE02.roa (hash: edBs+LqPeq6VId1edbW8z5stcuCPjdTspdZcbHXD4ms=) 6: C5639A105E3B11F09FAC9B6DC4F9AE02.roa (hash: +jkx8ForKRaNqf1DBVMg/S9cIOq8CLcZaNyeQAklIwQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:42:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3138 (0xc42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: Oct 18 19:42:57 2025 GMT Not After : Oct 25 19:42:57 2025 GMT Subject: CN=68f3edc1-d684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0a:5c:72:a5:95:83:1c:8e:53:dd:89:ae:74: 5a:40:9a:b7:49:78:40:bf:bb:6f:cd:49:60:ec:05: 5e:1d:28:f5:0c:bb:91:21:20:89:ee:1a:c4:21:b9: 24:67:07:bf:8e:75:46:29:f3:c9:5a:1e:cb:8d:76: 5d:f6:66:89:46:cf:7e:67:f0:7f:43:87:81:62:53: c4:46:21:0c:3c:df:02:33:4a:d9:2c:ef:14:e3:4d: c5:0c:25:ef:e9:69:d8:e5:7a:c2:08:f9:dc:1b:46: 73:12:69:7f:0c:54:ba:5a:3e:f0:dd:67:ec:4e:d9: f2:9b:a2:5a:5b:cd:e2:eb:93:f8:84:fb:dc:82:f3: 0d:84:47:f0:f7:28:ac:dd:bd:31:34:89:95:51:50: 08:60:85:de:3e:2c:54:b0:64:6f:09:69:4d:54:2e: 91:8d:ee:ad:d0:af:61:b1:59:19:55:db:3b:62:21: 35:68:69:ab:6d:bc:21:0d:47:72:9d:94:39:e4:8d: 1c:1c:d4:b4:22:19:b5:40:12:df:79:5e:81:b7:a4: be:2f:5f:bc:16:03:3f:4b:07:fb:4d:9d:99:a2:6e: 2f:16:1f:cb:5f:fb:c3:fa:00:af:9b:f0:29:a8:15: 72:5f:1f:38:05:48:cb:86:2c:7c:6b:f4:89:43:64: 04:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:4C:D4:62:01:62:0D:91:98:DC:86:F7:91:17:C9:F9:F2:47:55:F8 X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:ff:3a:67:0d:66:a0:ea:f2:b3:5f:66:7e:c8:df:c2:c1:08: c9:ff:c7:dd:45:c1:71:8e:ef:71:de:b4:28:5c:cc:89:26:f1: f7:2d:39:39:26:29:26:70:26:48:9c:61:75:f5:a6:61:5e:39: 4a:39:0a:fe:5d:39:26:97:2d:95:2a:1e:e5:7b:82:b2:d7:22: eb:74:3d:3f:d9:40:96:03:4e:df:77:a8:9b:4a:ca:f5:ef:6f: 34:0c:e9:ec:f1:63:e3:64:a7:a3:f6:62:cc:c4:52:97:18:9a: a8:34:ce:27:06:dd:19:74:9e:06:f9:8d:c5:4e:bd:a6:88:29: 1a:81:b7:ff:1a:64:0f:16:23:3d:a9:ba:0d:c2:da:4a:ae:f6: 8c:2b:f0:b6:cb:c6:43:ec:22:e5:b9:fb:d4:b7:71:ff:f1:07: f9:c2:ce:bc:1e:b1:65:2a:96:56:d2:a3:dd:bd:90:ff:4a:3a: c7:75:8f:2e:8d:f7:97:5b:4e:10:76:84:5f:34:cc:06:00:2b: 6c:2f:e8:02:e6:c5:8d:82:3c:51:07:8e:db:23:b8:1f:22:ba: ba:bb:ab:88:92:62:d7:af:5d:88:06:6c:03:18:4e:70:ba:0e: 42:c4:66:f4:a5:02:d9:84:c4:23:e2:fd:34:51:d0:7e:b9:64: 95:29:5b:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjUxMDE4MTk0MjU3WhcNMjUxMDI1MTk0MjU3WjAYMRYwFAYD VQQDEw02OGYzZWRjMS1kNjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwpccqWVgxyOU92JrnRaQJq3SXhAv7tvzUlg7AVeHSj1DLuRISCJ7hrEIbkk Zwe/jnVGKfPJWh7LjXZd9maJRs9+Z/B/Q4eBYlPERiEMPN8CM0rZLO8U403FDCXv 6WnY5XrCCPncG0ZzEml/DFS6Wj7w3WfsTtnym6JaW83i65P4hPvcgvMNhEfw9yis 3b0xNImVUVAIYIXePixUsGRvCWlNVC6Rje6t0K9hsVkZVds7YiE1aGmrbbwhDUdy nZQ55I0cHNS0Ihm1QBLfeV6Bt6S+L1+8FgM/Swf7TZ2Zom4vFh/LX/vD+gCvm/Ap qBVyXx84BUjLhix8a/SJQ2QE2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZM1GIB Yg2RmNyG95EXyfnyR1X4MB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk/zpnDWag6vKzX2Z+yN/CwQjJ/8fdRcFxju9x3rQoXMyJJvH3LTk5 JikmcCZInGF19aZhXjlKOQr+XTkmly2VKh7le4Ky1yLrdD0/2UCWA07fd6ibSsr1 7280DOns8WPjZKej9mLMxFKXGJqoNM4nBt0ZdJ4G+Y3FTr2miCkagbf/GmQPFiM9 qboNwtpKrvaMK/C2y8ZD7CLlufvUt3H/8Qf5ws68HrFlKpZW0qPdvZD/SjrHdY8u jfeXW04QdoRfNMwGACtsL+gC5sWNgjxRB47bI7gfIrq6u6uIkmLXr12IBmwDGE5w ug5CxGb0pQLZhMQj4v00UdB+uWSVKVvJ -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:37 2025 by rpki-client