$ rpki-client -vvf rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.mft File: WKIeeyP68huJ00Jw61b3RJwjmYY.mft (raw, json) Hash identifier: r9DwZlA4NzPx6sSeBHl02X2f/hlkzmIKi5bB78CxCzQ= Subject key identifier: A6:B9:6C:34:C4:58:40:67:D1:E2:1F:09:A1:89:92:EB:97:EC:49:11 Authority key identifier: 58:A2:1E:7B:23:FA:F2:1B:89:D3:42:70:EB:56:F7:44:9C:23:99:86 Certificate issuer: /CN=A91656C7/serialNumber=58A21E7B23FAF21B89D34270EB56F7449C239986 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKIeeyP68huJ00Jw61b3RJwjmYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.mft Manifest number: 41 Signing time: Sun 19 Oct 2025 10:48:00 +0000 Manifest this update: Sun 19 Oct 2025 10:47:59 +0000 Manifest next update: Sun 26 Oct 2025 10:47:59 +0000 Files and hashes: 1: WKIeeyP68huJ00Jw61b3RJwjmYY.crl (hash: Kt1RjuRx5ZfezzZrO8jRCZAx8E6LRB7MX4Oa6HlUoyE=) 2: 559FC8C054F411F08DC15C53C4F9AE02.roa (hash: Bm8WKhY+hNcg+fjUuluI2/RvbnR7gkU6ugwO04YyI/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.crl rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKIeeyP68huJ00Jw61b3RJwjmYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:47:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91656C7, serialNumber=58A21E7B23FAF21B89D34270EB56F7449C239986 Validity Not Before: Oct 19 10:47:59 2025 GMT Not After : Oct 26 10:47:59 2025 GMT Subject: CN=68f4c1e0-a2ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8d:1f:f0:bd:1a:ae:34:7a:88:d7:9b:52:a8: 85:e8:75:5b:18:79:cd:c7:0c:3f:e2:8a:89:13:e5: a1:c7:01:21:1c:c9:91:02:52:b9:2d:2b:ea:2b:7c: 4f:ae:59:9a:9d:4a:0e:b9:b2:a2:98:3d:bb:6f:d6: fe:95:5b:59:4d:ef:40:ec:67:db:d6:3f:1f:b4:1c: fe:00:7d:10:0c:d9:91:21:12:f0:77:1c:0f:5e:15: be:6b:f0:99:9a:2f:e4:fa:d0:e3:b3:ec:e2:76:4a: 67:94:7d:e2:1e:84:2e:dc:09:c9:13:9d:7a:c3:a0: de:78:17:1d:0d:f9:b0:55:84:82:bd:34:eb:b4:a6: 7a:44:b2:c9:9a:f6:92:fc:b9:81:8a:60:cf:96:c6: ba:74:3f:e9:2f:e0:06:51:d5:df:8e:3c:89:dc:0f: 68:d4:e6:14:4e:ec:26:b4:66:ff:fd:d1:de:d3:68: 5b:14:86:71:9a:4d:da:0b:87:91:99:eb:df:6f:a0: 2a:11:93:56:8a:ad:f7:8c:c6:99:30:34:23:2c:1c: 7d:c7:d8:bd:12:90:33:7c:8d:f3:52:d9:c7:83:d8: 8f:08:93:db:0c:f6:44:8f:79:aa:af:46:6f:16:2c: 86:c7:4e:06:e3:ba:31:cd:de:08:1f:bf:a6:5b:07: d0:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:B9:6C:34:C4:58:40:67:D1:E2:1F:09:A1:89:92:EB:97:EC:49:11 X509v3 Authority Key Identifier: keyid:58:A2:1E:7B:23:FA:F2:1B:89:D3:42:70:EB:56:F7:44:9C:23:99:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WKIeeyP68huJ00Jw61b3RJwjmYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91656C7/85DEDAD850A511F0B2D1DE4FC4F9AE02/WKIeeyP68huJ00Jw61b3RJwjmYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:db:31:c3:75:7e:92:82:a7:c1:ed:58:f9:43:e0:fe:81:65: 4e:b8:47:3d:47:76:2e:91:73:d1:67:67:7e:b7:3a:10:ed:5e: 41:23:75:ce:40:5d:62:b0:7d:de:9f:c0:8b:ff:4a:92:1e:7b: 76:87:ac:21:d3:87:ad:70:da:ad:c0:25:46:25:c7:42:5c:75: 63:43:b0:17:e4:01:45:3a:a6:93:ab:1d:28:70:4a:3d:40:2a: 53:eb:93:99:c5:56:f1:dc:91:64:65:79:27:94:f9:b9:82:1e: 5f:49:e9:3d:91:25:91:d3:b7:10:9a:4f:6b:a7:3b:3c:c9:d6: 86:3c:a2:68:b0:14:9e:35:1c:2f:b8:aa:28:0b:0e:aa:14:ac: e7:e3:dc:70:66:86:24:cc:b6:7a:7c:1b:16:37:02:16:62:51: e2:2d:27:f6:ce:9b:d9:ca:11:57:99:1b:52:74:f3:da:eb:bd: f5:44:59:4d:1b:12:9f:1f:42:67:8a:63:f7:17:42:ee:e5:9f: e3:68:2e:62:ef:49:e4:07:45:a3:14:6a:48:52:49:91:44:1b: 28:fe:b4:b6:27:44:59:ce:e2:07:63:e7:03:72:5e:c1:f6:2c: 32:7d:35:21:51:9e:a1:3c:47:04:57:62:6e:72:79:ee:3c:86: fd:ed:ce:69 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTZDNzExMC8GA1UEBRMoNThBMjFFN0IyM0ZBRjIxQjg5RDM0MjcwRUI1NkY3NDQ5 QzIzOTk4NjAeFw0yNTEwMTkxMDQ3NTlaFw0yNTEwMjYxMDQ3NTlaMBgxFjAUBgNV BAMTDTY4ZjRjMWUwLWEyY2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwjR/wvRquNHqI15tSqIXodVsYec3HDD/iiokT5aHHASEcyZECUrktK+orfE+u WZqdSg65sqKYPbtv1v6VW1lN70DsZ9vWPx+0HP4AfRAM2ZEhEvB3HA9eFb5r8Jma L+T60OOz7OJ2SmeUfeIehC7cCckTnXrDoN54Fx0N+bBVhIK9NOu0pnpEssma9pL8 uYGKYM+Wxrp0P+kv4AZR1d+OPIncD2jU5hRO7Ca0Zv/90d7TaFsUhnGaTdoLh5GZ 699voCoRk1aKrfeMxpkwNCMsHH3H2L0SkDN8jfNS2ceD2I8Ik9sM9kSPeaqvRm8W LIbHTgbjujHN3ggfv6ZbB9CtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUprlsNMRY QGfR4h8JoYmS65fsSREwHwYDVR0jBBgwFoAUWKIeeyP68huJ00Jw61b3RJwjmYYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1NkM3Lzg1REVEQUQ4NTBB NTExRjBCMkQxREU0RkM0RjlBRTAyL1dLSWVleVA2OGh1SjAwSnc2MWIzUkp3am1Z WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvV0tJZWV5UDY4aHVKMDBKdzYxYjNSSndqbVlZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 NkM3Lzg1REVEQUQ4NTBBNTExRjBCMkQxREU0RkM0RjlBRTAyL1dLSWVleVA2OGh1 SjAwSnc2MWIzUkp3am1ZWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHPbMcN1fpKCp8HtWPlD4P6BZU64Rz1Hdi6Rc9FnZ363OhDtXkEjdc5A XWKwfd6fwIv/SpIee3aHrCHTh61w2q3AJUYlx0JcdWNDsBfkAUU6ppOrHShwSj1A KlPrk5nFVvHckWRleSeU+bmCHl9J6T2RJZHTtxCaT2unOzzJ1oY8omiwFJ41HC+4 qigLDqoUrOfj3HBmhiTMtnp8GxY3AhZiUeItJ/bOm9nKEVeZG1J089rrvfVEWU0b Ep8fQmeKY/cXQu7ln+NoLmLvSeQHRaMUakhSSZFEGyj+tLYnRFnO4gdj5wNyXsH2 LDJ9NSFRnqE8RwRXYm5yee48hv3tzmk= -----END CERTIFICATE-----Generated at Tue Oct 21 15:09:16 2025 by rpki-client