$ rpki-client -vvf rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft File: cIW1tFSazbW2wnBMhbp4h2D4iic.mft (raw, json) Hash identifier: rwa8uRo5qB1hJVGecKI/fWULCzHQsF9Jsn8Vx40aLiA= Subject key identifier: DA:DF:0B:15:C3:1A:A2:F1:10:07:E4:F9:C3:57:2A:60:FE:0E:A9:88 Authority key identifier: 70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 Certificate issuer: /CN=A91722A3/serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Certificate serial: 0BCE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft Manifest number: 0BC6 Signing time: Sat 18 Oct 2025 19:45:47 +0000 Manifest this update: Sat 18 Oct 2025 19:45:46 +0000 Manifest next update: Sat 25 Oct 2025 19:45:46 +0000 Files and hashes: 1: cIW1tFSazbW2wnBMhbp4h2D4iic.crl (hash: 8nKIVQf5JTv0KFA+FoM/pmiIGD8zzkpK/RfVv4xWqh0=) 2: 002DDDC22B9D11EA92F3094CC4F9AE02.roa (hash: sV6ALO0axr/VXMBheoOGm2xJXWMWbMsVRF9rlXmaHds=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:45:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3022 (0xbce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91722A3, serialNumber=7085B5B4549ACDB5B6C2704C85BA788760F88A27 Validity Not Before: Oct 18 19:45:46 2025 GMT Not After : Oct 25 19:45:46 2025 GMT Subject: CN=68f3ee6a-a0e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9e:1d:2f:d6:de:cb:3f:34:93:96:e1:0a:39: 7b:9c:cf:8a:96:fe:78:9b:4c:94:18:1b:d6:ec:2b: 79:64:8c:31:4b:0c:92:9a:68:85:30:9a:59:e4:3e: 84:cd:7e:84:01:ec:ce:9d:dc:65:bd:76:bc:5f:7b: be:a1:1d:a7:f2:fa:48:d0:98:62:92:1d:24:cb:dd: 8a:f1:76:57:c5:a2:f6:1d:bc:0c:97:fb:c1:0e:c1: 54:80:80:bc:37:21:ad:81:0a:f2:da:a3:ea:d8:f0: 74:36:bc:a4:c0:ce:86:6b:78:cf:39:2a:a5:60:82: 60:7f:dd:34:43:8f:5f:ce:00:68:4a:44:f2:3e:3d: b1:b0:95:64:f7:12:ff:ea:f6:da:1b:14:50:5c:aa: 92:69:19:0b:17:e4:55:ab:cc:b0:9c:83:77:a5:bb: e9:42:e8:aa:42:36:c8:7b:b9:bc:6d:25:99:98:a4: c4:9b:29:4d:b0:8a:0b:c9:69:05:d1:ea:2e:a4:cd: 64:7e:a2:72:e8:03:30:61:01:ce:cd:63:ce:f0:5e: 68:8f:5f:c1:cd:27:96:d2:21:29:3e:ad:f6:e1:87: cf:37:80:f0:c8:36:99:36:fe:24:06:43:4b:45:1b: 76:b4:63:24:79:67:30:18:8f:57:41:ce:63:31:d7: 94:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:DF:0B:15:C3:1A:A2:F1:10:07:E4:F9:C3:57:2A:60:FE:0E:A9:88 X509v3 Authority Key Identifier: keyid:70:85:B5:B4:54:9A:CD:B5:B6:C2:70:4C:85:BA:78:87:60:F8:8A:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cIW1tFSazbW2wnBMhbp4h2D4iic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91722A3/C02D85DE2B9B11EA972CDF46C4F9AE02/cIW1tFSazbW2wnBMhbp4h2D4iic.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:c6:1a:e1:e0:8d:bd:3d:d8:1d:cd:21:71:9a:99:ac:b1:f9: 49:c3:83:32:97:3d:fd:5d:35:59:b0:1e:95:b4:04:a4:8a:1f: 6a:c3:52:6a:0f:f3:94:9e:c1:19:95:5a:e8:68:c3:c4:f1:da: b8:cc:91:a3:12:b1:38:12:38:19:c1:f5:ee:ee:5d:83:4a:81: a0:c7:cc:ed:06:ee:7e:bb:b1:46:5b:f9:de:0e:de:90:1e:21: 04:0e:a4:52:36:d1:fc:ac:1c:8c:0f:55:4b:43:e6:d8:32:a0: 39:7b:43:7f:7b:5d:cf:e5:01:14:71:21:bc:b7:a5:1e:34:5a: dc:da:50:58:a3:37:26:d7:c0:c9:00:5b:da:f8:0f:91:cd:80: d8:3f:32:7a:25:11:02:68:a8:3d:7a:e4:80:05:f3:f6:97:9b: f5:0c:44:44:70:67:e9:66:73:14:5b:df:8c:57:0e:00:c6:8e: 6c:74:12:e0:b6:a2:bf:59:35:d8:70:99:9d:38:58:32:70:81: 7c:d3:e2:e3:36:aa:dc:74:a7:98:04:54:0b:86:df:03:49:83: 6c:43:15:ac:62:5d:59:8a:95:7d:59:e8:b5:a5:dd:6d:16:95: fc:58:47:ff:d6:50:3c:28:aa:47:76:82:d1:9f:05:8d:6c:08: 00:92:76:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyQTMxMTAvBgNVBAUTKDcwODVCNUI0NTQ5QUNEQjVCNkMyNzA0Qzg1QkE3ODg3 NjBGODhBMjcwHhcNMjUxMDE4MTk0NTQ2WhcNMjUxMDI1MTk0NTQ2WjAYMRYwFAYD VQQDEw02OGYzZWU2YS1hMGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJ4dL9beyz80k5bhCjl7nM+Klv54m0yUGBvW7Ct5ZIwxSwySmmiFMJpZ5D6E zX6EAezOndxlvXa8X3u+oR2n8vpI0Jhikh0ky92K8XZXxaL2HbwMl/vBDsFUgIC8 NyGtgQry2qPq2PB0NrykwM6Ga3jPOSqlYIJgf900Q49fzgBoSkTyPj2xsJVk9xL/ 6vbaGxRQXKqSaRkLF+RVq8ywnIN3pbvpQuiqQjbIe7m8bSWZmKTEmylNsIoLyWkF 0eoupM1kfqJy6AMwYQHOzWPO8F5oj1/BzSeW0iEpPq324YfPN4DwyDaZNv4kBkNL RRt2tGMkeWcwGI9XQc5jMdeUyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNrfCxXD GqLxEAfk+cNXKmD+DqmIMB8GA1UdIwQYMBaAFHCFtbRUms21tsJwTIW6eIdg+Ion MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjJBMy9DMDJEODVERTJC OUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpiVzJ3bkJNaGJwNGgyRDRp aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NJVzF0RlNhemJXMnduQk1oYnA0aDJENGlpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjJBMy9DMDJEODVERTJCOUIxMUVBOTcyQ0RGNDZDNEY5QUUwMi9jSVcxdEZTYXpi VzJ3bkJNaGJwNGgyRDRpaWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIxhrh4I29PdgdzSFxmpmssflJw4Mylz39XTVZsB6VtASkih9qw1Jq D/OUnsEZlVroaMPE8dq4zJGjErE4EjgZwfXu7l2DSoGgx8ztBu5+u7FGW/neDt6Q HiEEDqRSNtH8rByMD1VLQ+bYMqA5e0N/e13P5QEUcSG8t6UeNFrc2lBYozcm18DJ AFva+A+RzYDYPzJ6JRECaKg9euSABfP2l5v1DEREcGfpZnMUW9+MVw4Axo5sdBLg tqK/WTXYcJmdOFgycIF80+LjNqrcdKeYBFQLht8DSYNsQxWsYl1ZipV9Wei1pd1t FpX8WEf/1lA8KKpHdoLRnwWNbAgAknYF -----END CERTIFICATE-----Generated at Mon Oct 20 01:42:44 2025 by rpki-client