$ rpki-client -vvf rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft File: rGoi8eThZQrPtSifXctdU5IPzzQ.mft (raw, json) Hash identifier: EHaE6c5sB90+/2ejq0nCyHH/EtCghTNmzzdu8YADhAk= Subject key identifier: FE:58:86:C8:BC:32:B6:90:65:E0:51:8F:92:7D:CB:5E:E8:BC:CD:73 Authority key identifier: AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 Certificate issuer: /CN=A91422D7/serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft Manifest number: 045B Signing time: Sun 19 Oct 2025 03:13:21 +0000 Manifest this update: Sun 19 Oct 2025 03:13:21 +0000 Manifest next update: Sun 26 Oct 2025 03:13:21 +0000 Files and hashes: 1: rGoi8eThZQrPtSifXctdU5IPzzQ.crl (hash: mMZ6nAuak9cO1OvL7bYWHFZ0McysG1XkV5W6cfXcw/s=) 2: CE5F74E2BE5811EEA8C02E2AC4F9AE02.roa (hash: 7mnEbW853H0TtxSAAqitSldZ+gKZe1bS6fxCspOc670=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:13:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91422D7, serialNumber=AC6A22F1E4E1650ACFB5289F5DCB5D53920FCF34 Validity Not Before: Oct 19 03:13:21 2025 GMT Not After : Oct 26 03:13:21 2025 GMT Subject: CN=68f45751-b660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:a7:76:f2:96:93:3b:b9:81:fa:7b:4a:01:65: a5:4b:b6:d6:39:db:80:1a:60:a5:c6:a5:2a:4e:8b: 73:d5:44:b8:2c:9f:da:04:87:fa:3b:1f:fa:9d:e8: 43:f6:e4:68:91:67:3b:ef:61:2b:98:68:76:10:4e: 23:b7:a1:49:35:fa:40:ef:d1:c2:5b:1d:36:b7:0e: 8a:b4:e3:b0:6c:31:58:cd:7a:40:02:0d:0d:58:3e: 4b:26:37:34:54:fa:15:45:24:d2:22:ef:3c:94:af: bd:4d:e6:3d:92:ed:98:c8:94:40:67:e7:cb:f2:5d: cf:06:72:d8:28:e8:f0:32:0f:2e:1e:b6:ac:2a:dc: 57:ea:30:50:4b:0b:de:ca:65:b4:3d:cc:40:12:0a: 9d:8f:ba:69:12:23:41:72:d8:95:a1:71:9c:28:32: 7d:7f:d2:d9:78:97:e5:8e:18:b5:44:76:aa:aa:3f: 21:fd:e6:54:17:2b:5e:6c:70:6c:12:74:d1:dc:0b: 56:88:33:0b:8f:3b:59:11:71:5c:36:ab:37:f4:79: ba:85:db:52:af:33:45:6d:9c:e8:bb:71:7d:85:ef: d9:ad:0f:98:d4:87:b0:02:22:e8:0a:24:f6:70:48: 3f:70:a3:91:4f:af:ff:f5:4b:71:a4:1c:39:1d:a4: 45:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:58:86:C8:BC:32:B6:90:65:E0:51:8F:92:7D:CB:5E:E8:BC:CD:73 X509v3 Authority Key Identifier: keyid:AC:6A:22:F1:E4:E1:65:0A:CF:B5:28:9F:5D:CB:5D:53:92:0F:CF:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoi8eThZQrPtSifXctdU5IPzzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91422D7/5B9F71D2ED3011ECBF07F012C4F9AE02/rGoi8eThZQrPtSifXctdU5IPzzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:e7:ac:e4:4b:1c:c0:c4:93:c9:97:25:63:73:96:b4:2b:4e: 09:2f:c9:b5:22:2d:c9:f2:a3:ed:d0:c1:fb:b7:34:17:45:05: 98:15:fd:88:74:c0:4e:a2:29:78:46:d3:34:cd:f2:b5:2e:46: fa:c1:5e:7f:5f:80:59:d4:aa:a4:bf:a5:73:24:e6:2d:8e:76: 98:26:3b:61:7f:18:8f:51:27:4e:c0:4e:ff:48:04:31:40:46: 33:b7:fe:19:d8:66:5e:28:2a:96:8c:42:f1:bd:11:b0:17:23: ad:87:04:35:f4:18:71:d8:3a:1e:4a:84:7c:40:6c:3a:79:ed: 31:75:e5:59:f4:98:11:a9:f6:07:d4:79:03:2e:c7:9a:48:9b: c1:58:57:a3:82:93:6b:51:25:15:60:71:18:22:f0:2a:df:df: a4:e9:2b:c2:7c:4c:50:a5:39:a6:0c:e0:3e:e4:02:62:ae:83: c7:9b:8b:2a:3d:fd:c4:b0:c0:fb:47:cb:6c:67:d2:f5:50:fd: 76:2f:68:55:49:8e:df:57:7b:93:3e:07:41:9f:60:22:e8:c2: 7f:1a:e1:c9:a3:40:53:68:bd:e0:42:35:5b:eb:a8:30:9b:f0: 1a:2e:c2:2d:74:5b:91:78:76:d5:49:5a:74:1d:9d:f6:98:d4: df:e4:c4:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyRDcxMTAvBgNVBAUTKEFDNkEyMkYxRTRFMTY1MEFDRkI1Mjg5RjVEQ0I1RDUz OTIwRkNGMzQwHhcNMjUxMDE5MDMxMzIxWhcNMjUxMDI2MDMxMzIxWjAYMRYwFAYD VQQDEw02OGY0NTc1MS1iNjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ad28paTO7mB+ntKAWWlS7bWOduAGmClxqUqTotz1US4LJ/aBIf6Ox/6nehD 9uRokWc772ErmGh2EE4jt6FJNfpA79HCWx02tw6KtOOwbDFYzXpAAg0NWD5LJjc0 VPoVRSTSIu88lK+9TeY9ku2YyJRAZ+fL8l3PBnLYKOjwMg8uHrasKtxX6jBQSwve ymW0PcxAEgqdj7ppEiNBctiVoXGcKDJ9f9LZeJfljhi1RHaqqj8h/eZUFytebHBs EnTR3AtWiDMLjztZEXFcNqs39Hm6hdtSrzNFbZzou3F9he/ZrQ+Y1IewAiLoCiT2 cEg/cKORT6//9UtxpBw5HaRFOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5Yhsi8 MraQZeBRj5J9y17ovM1zMB8GA1UdIwQYMBaAFKxqIvHk4WUKz7Uon13LXVOSD880 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjJENy81QjlGNzFEMkVE MzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpRclB0U2lmWGN0ZFU1SVB6 elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHb2k4ZVRoWlFyUHRTaWZYY3RkVTVJUHp6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjJENy81QjlGNzFEMkVEMzAxMUVDQkYwN0YwMTJDNEY5QUUwMi9yR29pOGVUaFpR clB0U2lmWGN0ZFU1SVB6elEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA756zkSxzAxJPJlyVjc5a0K04JL8m1Ii3J8qPt0MH7tzQXRQWYFf2I dMBOoil4RtM0zfK1Lkb6wV5/X4BZ1Kqkv6VzJOYtjnaYJjthfxiPUSdOwE7/SAQx QEYzt/4Z2GZeKCqWjELxvRGwFyOthwQ19Bhx2DoeSoR8QGw6ee0xdeVZ9JgRqfYH 1HkDLseaSJvBWFejgpNrUSUVYHEYIvAq39+k6SvCfExQpTmmDOA+5AJiroPHm4sq Pf3EsMD7R8tsZ9L1UP12L2hVSY7fV3uTPgdBn2Ai6MJ/GuHJo0BTaL3gQjVb66gw m/AaLsItdFuReHbVSVp0HZ32mNTf5MQa -----END CERTIFICATE-----Generated at Mon Oct 20 19:14:01 2025 by rpki-client