$ rpki-client -vvf rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft File: aWYanwY1V84rVDewGIk9fZ_dvtA.mft (raw, json) Hash identifier: AJfKdG0x1fTIo9UKOWHOudhAaE8pRTFR7pvI71hyzEw= Subject key identifier: 22:46:65:6A:AD:9F:0E:A4:CE:9C:4B:49:A5:C4:B9:93:0D:65:47:C4 Authority key identifier: 69:66:1A:9F:06:35:57:CE:2B:54:37:B0:18:89:3D:7D:9F:DD:BE:D0 Certificate issuer: /CN=A91431A6/serialNumber=69661A9F063557CE2B5437B018893D7D9FDDBED0 Certificate serial: 0693 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWYanwY1V84rVDewGIk9fZ_dvtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft Manifest number: 068C Signing time: Sat 18 Oct 2025 23:54:34 +0000 Manifest this update: Sat 18 Oct 2025 23:54:33 +0000 Manifest next update: Sat 25 Oct 2025 23:54:33 +0000 Files and hashes: 1: aWYanwY1V84rVDewGIk9fZ_dvtA.crl (hash: 9hJm+jphRW7YjzCPKNucuCtrX93BTOiybJfaxEGy448=) 2: DDCD4C168EC611EBAB7F3476C4F9AE02.roa (hash: vYh53kbQx56u84oKA/xd3ROknCRDM7pHTjRvm9U4uGU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.crl rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWYanwY1V84rVDewGIk9fZ_dvtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:54:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1683 (0x693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91431A6, serialNumber=69661A9F063557CE2B5437B018893D7D9FDDBED0 Validity Not Before: Oct 18 23:54:33 2025 GMT Not After : Oct 25 23:54:33 2025 GMT Subject: CN=68f428ba-dcb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1e:ea:15:de:fc:72:43:81:ba:a4:00:a5:49: 52:d6:1c:6a:09:d3:b1:fe:32:f9:88:d0:0c:41:bf: 6e:5f:0d:01:4c:cb:d3:c4:8a:e3:32:da:c5:23:5c: c9:db:54:c9:a5:90:ed:d4:f6:24:32:28:96:1b:09: d2:14:3f:26:bb:56:b7:3b:e9:22:41:65:c8:71:40: d8:cf:f6:b2:e8:94:74:f8:b6:b5:81:77:5b:b9:59: 22:d8:cd:e0:44:04:7c:b4:ac:42:01:5a:82:40:af: dc:e3:c3:2f:9f:8d:ff:30:37:c0:22:49:5f:a0:94: 92:23:78:30:49:b4:32:2f:56:ba:bd:9f:ae:e4:45: f4:5a:70:2e:cd:75:23:33:60:87:77:1f:4b:da:d4: 3f:b1:1a:21:4d:11:21:24:2c:98:53:f3:19:cc:cb: ac:0a:e5:82:47:eb:89:fd:e0:cc:39:05:50:4c:68: 8a:a1:5d:aa:f9:7f:ae:bc:79:5a:92:b8:a8:9f:b8: fb:c4:72:51:b8:62:c7:8f:e7:81:9c:c2:6d:86:a7: cf:c0:95:c4:e3:24:a1:69:06:44:25:1c:37:0a:2a: 2c:45:4e:34:ab:44:8e:8b:c9:4b:89:f9:1e:9f:c6: 92:cb:f6:7b:a4:3f:4c:7b:c9:86:07:ec:63:99:cf: 22:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:46:65:6A:AD:9F:0E:A4:CE:9C:4B:49:A5:C4:B9:93:0D:65:47:C4 X509v3 Authority Key Identifier: keyid:69:66:1A:9F:06:35:57:CE:2B:54:37:B0:18:89:3D:7D:9F:DD:BE:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWYanwY1V84rVDewGIk9fZ_dvtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91431A6/44D890CA8EC511EB97B12074C4F9AE02/aWYanwY1V84rVDewGIk9fZ_dvtA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:db:df:7d:b1:48:cd:a0:cd:d7:de:63:ed:35:89:48:99:be: bf:36:b6:37:13:fd:94:47:dd:6f:a6:2e:1e:d1:74:1f:72:69: 2c:05:e2:f2:f3:d0:84:ab:b4:cd:fe:53:f4:54:68:39:b8:d7: fd:88:c4:85:9e:d3:e3:37:9c:ef:a0:74:6e:4d:59:23:3b:c7: f7:ff:80:80:91:0a:af:97:14:83:5b:dd:be:a4:d9:75:c4:1a: 69:2e:49:76:a4:c0:eb:35:7a:72:de:cb:f3:55:03:5f:9f:e0: be:f1:f9:fb:bb:30:8d:5f:5e:06:cc:da:eb:a3:ce:5f:cc:23: 60:b0:66:ee:db:ed:a2:fc:23:0a:16:1f:29:3a:40:5e:e2:d8: 9f:6f:c1:b3:9c:e7:69:2e:a4:74:99:d8:49:fe:2f:f6:df:8c: 07:c9:a4:dc:3f:e6:dd:7c:52:06:29:57:3f:20:82:2f:d5:40: 85:75:5d:71:a3:6a:43:e8:8e:c0:69:c4:11:cd:43:03:17:aa: 30:81:99:72:35:61:90:7d:1c:10:47:84:2c:f2:3f:5d:31:77: dd:0a:2e:7f:c1:6f:65:88:38:1c:d4:8a:4d:4d:f9:e2:35:e7: 04:d0:72:a9:a2:96:9b:23:61:b8:97:73:ef:de:d9:80:a1:29: ab:4c:08:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMxQTYxMTAvBgNVBAUTKDY5NjYxQTlGMDYzNTU3Q0UyQjU0MzdCMDE4ODkzRDdE OUZEREJFRDAwHhcNMjUxMDE4MjM1NDMzWhcNMjUxMDI1MjM1NDMzWjAYMRYwFAYD VQQDEw02OGY0MjhiYS1kY2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxB7qFd78ckOBuqQApUlS1hxqCdOx/jL5iNAMQb9uXw0BTMvTxIrjMtrFI1zJ 21TJpZDt1PYkMiiWGwnSFD8mu1a3O+kiQWXIcUDYz/ay6JR0+La1gXdbuVki2M3g RAR8tKxCAVqCQK/c48Mvn43/MDfAIklfoJSSI3gwSbQyL1a6vZ+u5EX0WnAuzXUj M2CHdx9L2tQ/sRohTREhJCyYU/MZzMusCuWCR+uJ/eDMOQVQTGiKoV2q+X+uvHla krion7j7xHJRuGLHj+eBnMJthqfPwJXE4yShaQZEJRw3CiosRU40q0SOi8lLifke n8aSy/Z7pD9Me8mGB+xjmc8ipQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJGZWqt nw6kzpxLSaXEuZMNZUfEMB8GA1UdIwQYMBaAFGlmGp8GNVfOK1Q3sBiJPX2f3b7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzFBNi80NEQ4OTBDQThF QzUxMUVCOTdCMTIwNzRDNEY5QUUwMi9hV1lhbndZMVY4NHJWRGV3R0lrOWZaX2R2 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXWWFud1kxVjg0clZEZXdHSWs5ZlpfZHZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MzFBNi80NEQ4OTBDQThFQzUxMUVCOTdCMTIwNzRDNEY5QUUwMi9hV1lhbndZMVY4 NHJWRGV3R0lrOWZaX2R2dEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc2999sUjNoM3X3mPtNYlImb6/NrY3E/2UR91vpi4e0XQfcmksBeLy 89CEq7TN/lP0VGg5uNf9iMSFntPjN5zvoHRuTVkjO8f3/4CAkQqvlxSDW92+pNl1 xBppLkl2pMDrNXpy3svzVQNfn+C+8fn7uzCNX14GzNrro85fzCNgsGbu2+2i/CMK Fh8pOkBe4tifb8GznOdpLqR0mdhJ/i/234wHyaTcP+bdfFIGKVc/IIIv1UCFdV1x o2pD6I7AacQRzUMDF6owgZlyNWGQfRwQR4Qs8j9dMXfdCi5/wW9liDgc1IpNTfni NecE0HKpopabI2G4l3Pv3tmAoSmrTAjN -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:01 2025 by rpki-client