$ rpki-client -vvf rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft File: A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft (raw, json) Hash identifier: LgEfHkV+kR+aEqLHrqiW1mR28QtMMdacMITXRwsjcUc= Subject key identifier: BC:09:A3:7F:15:B8:2E:DD:D6:D1:4B:14:C0:83:23:17:01:DD:7B:8F Authority key identifier: 03:91:D9:A7:0E:89:3E:75:1B:C6:12:89:C5:44:17:B8:7A:10:45:59 Certificate issuer: /CN=A91380F7/serialNumber=0391D9A70E893E751BC61289C54417B87A104559 Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5HZpw6JPnUbxhKJxUQXuHoQRVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft Manifest number: AA Signing time: Sun 19 Oct 2025 09:21:11 +0000 Manifest this update: Sun 19 Oct 2025 09:21:10 +0000 Manifest next update: Sun 26 Oct 2025 09:21:10 +0000 Files and hashes: 1: A5HZpw6JPnUbxhKJxUQXuHoQRVk.crl (hash: Q/A7jqdf+6vUoic3J1jcKhaMUjepJFrSElcheIlNQxc=) 2: 9B3FE178A7FA11EFA7886875C4F9AE02.roa (hash: wskyOCDE340iqc6+xbxJBMsRJGfe9vODWh/hz8Ga1HM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.crl rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5HZpw6JPnUbxhKJxUQXuHoQRVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:21:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91380F7, serialNumber=0391D9A70E893E751BC61289C54417B87A104559 Validity Not Before: Oct 19 09:21:10 2025 GMT Not After : Oct 26 09:21:10 2025 GMT Subject: CN=68f4ad87-201d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:6e:16:58:05:dc:d1:58:c1:42:d6:9b:1f:44: 63:84:2f:5d:7a:3a:08:6e:4a:bb:ca:fb:18:8e:0a: 20:20:e6:56:8d:53:79:92:14:f6:a9:33:bb:cc:9d: 3f:ab:3c:cd:a8:a2:56:7b:96:32:2a:03:9c:50:e1: 13:35:90:4b:90:e0:1d:bf:cf:74:05:9f:35:ce:ea: cc:eb:95:9f:da:dd:fb:ea:f0:8e:93:c6:72:b5:cd: 6d:f7:4e:0c:64:86:2a:b6:ff:96:48:bf:bb:93:aa: b6:3b:e1:2b:7c:59:60:90:8e:2d:10:47:78:78:9c: d7:ab:9f:3f:ce:14:74:4f:18:5c:e7:95:6c:8e:02: 60:7c:66:ae:08:6a:45:a6:b1:5c:e7:0d:37:5e:e5: a5:17:2a:e2:0e:9d:5e:db:25:16:dc:34:ad:51:4e: 83:06:a3:2a:62:a3:8f:f1:32:ba:35:1a:bb:2a:5f: ad:23:4b:bc:06:f3:94:3a:fd:ea:8c:59:ea:73:07: 6d:a0:ca:ff:81:fe:dd:6d:78:36:c6:9e:af:d8:da: 70:24:f0:63:e1:aa:31:b0:2a:13:49:6b:fa:ba:d6: 37:73:7b:ff:fa:3b:e2:3e:ba:9c:b2:5c:2f:b8:2c: e0:9c:29:1b:b8:bb:5d:35:33:13:41:59:ed:39:38: d6:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:09:A3:7F:15:B8:2E:DD:D6:D1:4B:14:C0:83:23:17:01:DD:7B:8F X509v3 Authority Key Identifier: keyid:03:91:D9:A7:0E:89:3E:75:1B:C6:12:89:C5:44:17:B8:7A:10:45:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A5HZpw6JPnUbxhKJxUQXuHoQRVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91380F7/A7EBC1D2A7F811EFBB44F371C4F9AE02/A5HZpw6JPnUbxhKJxUQXuHoQRVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c0:12:93:ba:71:c1:70:18:86:ff:93:31:b7:88:16:d7:bf:21: 0d:29:e5:7e:c9:68:9a:fe:13:24:88:2b:b3:40:18:60:24:ea: 15:7e:b9:3e:2c:f2:18:62:5e:96:fa:38:e5:1e:a9:f2:94:bc: 3c:47:b6:f9:78:67:62:4c:a7:d4:31:9b:5b:de:4d:29:b1:96: 7d:65:43:4d:87:d2:19:dd:84:ad:d2:91:4b:f3:40:70:ec:1b: 8c:99:55:af:ea:73:18:0d:0f:a3:40:72:39:4e:38:e2:01:f8: 5c:1b:99:51:f2:3e:18:cd:35:dd:9b:93:e8:5e:cd:6a:ad:5b: 9e:65:d3:18:67:88:11:3a:0c:22:09:02:eb:f1:5e:7d:ed:80: 3e:63:9c:e5:aa:0d:0f:03:0d:9b:ec:7f:ef:4e:fd:d1:33:97: 8f:86:d9:c9:14:10:f1:0d:93:60:2d:e2:dd:21:00:53:19:db: 8f:8f:0f:dd:42:fe:b2:0f:87:f9:63:de:64:18:8b:86:1f:35: 02:66:20:3f:00:20:fc:d9:08:de:4f:b4:a1:6e:ee:4d:4f:67: 8f:4d:2c:9f:6e:29:23:d5:b0:88:7b:a5:97:b9:81:cf:71:fb: 02:18:35:aa:cc:33:45:a0:f8:30:81:c2:d6:2f:ed:22:2b:73: 92:b9:0a:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgwRjcxMTAvBgNVBAUTKDAzOTFEOUE3MEU4OTNFNzUxQkM2MTI4OUM1NDQxN0I4 N0ExMDQ1NTkwHhcNMjUxMDE5MDkyMTEwWhcNMjUxMDI2MDkyMTEwWjAYMRYwFAYD VQQDEw02OGY0YWQ4Ny0yMDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn24WWAXc0VjBQtabH0RjhC9dejoIbkq7yvsYjgogIOZWjVN5khT2qTO7zJ0/ qzzNqKJWe5YyKgOcUOETNZBLkOAdv890BZ81zurM65Wf2t376vCOk8Zytc1t904M ZIYqtv+WSL+7k6q2O+ErfFlgkI4tEEd4eJzXq58/zhR0Txhc55VsjgJgfGauCGpF prFc5w03XuWlFyriDp1e2yUW3DStUU6DBqMqYqOP8TK6NRq7Kl+tI0u8BvOUOv3q jFnqcwdtoMr/gf7dbXg2xp6v2NpwJPBj4aoxsCoTSWv6utY3c3v/+jviPrqcslwv uCzgnCkbuLtdNTMTQVntOTjWawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLwJo38V uC7d1tFLFMCDIxcB3XuPMB8GA1UdIwQYMBaAFAOR2acOiT51G8YSicVEF7h6EEVZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODBGNy9BN0VCQzFEMkE3 RjgxMUVGQkI0NEYzNzFDNEY5QUUwMi9BNUhacHc2SlBuVWJ4aEtKeFVRWHVIb1FS VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E1SFpwdzZKUG5VYnhoS0p4VVFYdUhvUVJWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODBGNy9BN0VCQzFEMkE3RjgxMUVGQkI0NEYzNzFDNEY5QUUwMi9BNUhacHc2SlBu VWJ4aEtKeFVRWHVIb1FSVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDAEpO6ccFwGIb/kzG3iBbXvyENKeV+yWia/hMkiCuzQBhgJOoVfrk+ LPIYYl6W+jjlHqnylLw8R7b5eGdiTKfUMZtb3k0psZZ9ZUNNh9IZ3YSt0pFL80Bw 7BuMmVWv6nMYDQ+jQHI5TjjiAfhcG5lR8j4YzTXdm5PoXs1qrVueZdMYZ4gROgwi CQLr8V597YA+Y5zlqg0PAw2b7H/vTv3RM5ePhtnJFBDxDZNgLeLdIQBTGduPjw/d Qv6yD4f5Y95kGIuGHzUCZiA/ACD82QjeT7Shbu5NT2ePTSyfbikj1bCIe6WXuYHP cfsCGDWqzDNFoPgwgcLWL+0iK3OSuQr4 -----END CERTIFICATE-----Generated at Tue Oct 21 01:02:42 2025 by rpki-client