$ rpki-client -vvf rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft File: F2vOFchi1HunYKH2ZTj4HVxJO4E.mft (raw, json) Hash identifier: IzMNzaHy2/33zHbhBwl0Kyb7Ri6YxehbL256EBz/NK0= Subject key identifier: FE:1C:CD:C1:53:6A:07:E8:76:B8:5C:AE:39:F4:DE:55:E8:83:40:16 Authority key identifier: 17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81 Certificate issuer: /CN=A91706E4/serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft Manifest number: AB Signing time: Sun 19 Oct 2025 09:20:04 +0000 Manifest this update: Sun 19 Oct 2025 09:20:03 +0000 Manifest next update: Sun 26 Oct 2025 09:20:03 +0000 Files and hashes: 1: F2vOFchi1HunYKH2ZTj4HVxJO4E.crl (hash: T6kg34ZzYVmHobr5sTszVectbkO/0SNm9nkGDd21jFA=) 2: 2CE10886A68511EFB0CF9981C4F9AE02.roa (hash: veK+ihHT7rgGehPtR5m7GK/hbNWI81sjRNiKcGQwWGg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.crl rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:20:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91706E4, serialNumber=176BCE15C862D47BA760A1F66538F81D5C493B81 Validity Not Before: Oct 19 09:20:03 2025 GMT Not After : Oct 26 09:20:03 2025 GMT Subject: CN=68f4ad44-a62a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:73:27:68:db:bf:7a:55:cd:bf:c4:2a:1f:e9: 73:be:25:45:f0:c3:42:68:cf:b8:b8:49:05:2f:1c: c3:46:29:fa:98:58:fe:ac:da:69:17:8d:03:a3:99: 73:f0:7e:e6:33:01:75:1c:4e:8b:c4:d6:00:30:52: 99:b2:dc:98:40:de:4d:15:6b:7f:38:84:ee:7a:4c: 66:cd:0a:fd:3c:39:a7:af:6b:07:aa:9e:d7:da:98: ba:49:e0:d6:5d:34:da:18:e6:ef:19:9b:2b:22:6b: 95:80:0a:1d:94:55:be:ce:32:c5:68:31:5d:53:22: 1c:e2:85:70:7e:af:6e:ca:d7:ac:0c:20:3a:74:76: 2c:59:88:6d:e5:7d:47:33:87:13:a1:c3:8a:96:b9: 80:cf:36:5a:4f:b6:8f:2b:40:79:d6:e0:7a:c7:32: b4:2d:01:6c:8f:0f:3d:61:77:0e:6f:08:1a:d2:6e: 05:4a:c8:78:71:3c:7b:88:d1:b5:79:12:6e:ab:59: ba:b4:6e:d3:44:94:1f:bb:58:ac:60:dd:bb:a8:43: 5b:4f:4a:e9:81:64:e8:d6:8b:53:7b:1f:54:d4:f8: 8e:46:a1:4c:96:4d:4e:6c:2f:17:76:cd:e3:74:34: f0:f9:01:ab:b6:3a:9a:a8:9a:6c:d4:55:65:3f:1b: 09:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:1C:CD:C1:53:6A:07:E8:76:B8:5C:AE:39:F4:DE:55:E8:83:40:16 X509v3 Authority Key Identifier: keyid:17:6B:CE:15:C8:62:D4:7B:A7:60:A1:F6:65:38:F8:1D:5C:49:3B:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F2vOFchi1HunYKH2ZTj4HVxJO4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706E4/32E993C0A68411EF8F5ED37FC4F9AE02/F2vOFchi1HunYKH2ZTj4HVxJO4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:2c:08:41:3a:0c:e6:2a:02:c2:27:59:2a:cc:c0:20:76:3a: ff:87:19:f1:37:09:28:a7:1f:41:98:21:09:8d:e7:a7:d9:b0: c1:df:de:dd:4e:31:1e:6f:fa:0f:fc:4f:70:76:2b:70:f3:c5: b9:3f:bf:25:79:51:e2:16:f7:6e:54:78:24:05:13:b6:8c:f1: 92:ab:68:a1:df:c5:f6:1a:eb:b6:50:f9:13:00:3d:3e:4c:b5: 4d:b2:9b:ef:4e:b6:96:62:68:8d:29:9c:fe:a5:b9:79:89:a1: 7b:c8:d5:b7:2d:e4:47:60:4a:ef:68:87:20:a3:4a:cd:fe:e6: 3c:01:8e:37:e6:14:3b:15:4c:53:af:9d:89:e5:7c:4c:74:f3: 80:28:80:2b:81:83:e1:17:6c:10:1d:f7:c6:a3:7d:5e:e1:c9: e4:f1:34:60:65:d0:e7:b3:96:32:e2:58:74:b9:5f:67:54:d3: 9b:cd:8c:3d:e7:b1:a4:26:c9:da:4f:f7:d7:ba:31:55:74:84: 83:77:a8:f7:e7:75:3e:65:c1:37:38:ad:16:d0:43:66:0e:e3: 55:20:47:8c:af:17:37:8e:14:fd:3c:38:69:fb:08:b3:8f:cd: 71:c0:df:a5:7d:3c:0b:f0:d0:09:4c:f0:20:61:a8:f7:e3:08: 01:81:68:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA2RTQxMTAvBgNVBAUTKDE3NkJDRTE1Qzg2MkQ0N0JBNzYwQTFGNjY1MzhGODFE NUM0OTNCODEwHhcNMjUxMDE5MDkyMDAzWhcNMjUxMDI2MDkyMDAzWjAYMRYwFAYD VQQDEw02OGY0YWQ0NC1hNjJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXMnaNu/elXNv8QqH+lzviVF8MNCaM+4uEkFLxzDRin6mFj+rNppF40Do5lz 8H7mMwF1HE6LxNYAMFKZstyYQN5NFWt/OITuekxmzQr9PDmnr2sHqp7X2pi6SeDW XTTaGObvGZsrImuVgAodlFW+zjLFaDFdUyIc4oVwfq9uytesDCA6dHYsWYht5X1H M4cTocOKlrmAzzZaT7aPK0B51uB6xzK0LQFsjw89YXcObwga0m4FSsh4cTx7iNG1 eRJuq1m6tG7TRJQfu1isYN27qENbT0rpgWTo1otTex9U1PiORqFMlk1ObC8Xds3j dDTw+QGrtjqaqJps1FVlPxsJPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4czcFT agfodrhcrjn03lXog0AWMB8GA1UdIwQYMBaAFBdrzhXIYtR7p2Ch9mU4+B1cSTuB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDZFNC8zMkU5OTNDMEE2 ODQxMUVGOEY1RUQzN0ZDNEY5QUUwMi9GMnZPRmNoaTFIdW5ZS0gyWlRqNEhWeEpP NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Yydk9GY2hpMUh1bllLSDJaVGo0SFZ4Sk80RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDZFNC8zMkU5OTNDMEE2ODQxMUVGOEY1RUQzN0ZDNEY5QUUwMi9GMnZPRmNoaTFI dW5ZS0gyWlRqNEhWeEpPNEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+LAhBOgzmKgLCJ1kqzMAgdjr/hxnxNwkopx9BmCEJjeen2bDB397d TjEeb/oP/E9wditw88W5P78leVHiFvduVHgkBRO2jPGSq2ih38X2Guu2UPkTAD0+ TLVNspvvTraWYmiNKZz+pbl5iaF7yNW3LeRHYErvaIcgo0rN/uY8AY435hQ7FUxT r52J5XxMdPOAKIArgYPhF2wQHffGo31e4cnk8TRgZdDns5Yy4lh0uV9nVNObzYw9 57GkJsnaT/fXujFVdISDd6j353U+ZcE3OK0W0ENmDuNVIEeMrxc3jhT9PDhp+wiz j81xwN+lfTwL8NAJTPAgYaj34wgBgWjr -----END CERTIFICATE-----Generated at Tue Oct 21 02:52:00 2025 by rpki-client