$ rpki-client -vvf rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft File: 0PiwBllsfAN8tUkwWzlpAACq6KQ.mft (raw, json) Hash identifier: EJkeHOrnSTrMiSyzCUCb32sWyYXBdMxREa/JMTCPOJ4= Subject key identifier: 3D:A2:72:3C:8D:D2:44:D2:3D:DB:F4:A4:27:3D:A0:20:27:35:AA:80 Authority key identifier: D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 Certificate issuer: /CN=A91754C0/serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Certificate serial: 013D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft Manifest number: 0139 Signing time: Sun 19 Oct 2025 07:15:15 +0000 Manifest this update: Sun 19 Oct 2025 07:15:15 +0000 Manifest next update: Sun 26 Oct 2025 07:15:15 +0000 Files and hashes: 1: 0PiwBllsfAN8tUkwWzlpAACq6KQ.crl (hash: Hx9x/psr5h5B4+SYYoR7vTW/Tv5sgGl1Ku9ZYtrrJZE=) 2: D0CB00D4CCBD11EEAC4BCD4BC4F9AE02.roa (hash: tE5MO0yGqfdQRPhR9mD7EUVj7T64niX8BINnA3y1Amk=) 3: 6BA3FEA4CCBD11EEBADDFC4AC4F9AE02.roa (hash: qBQp3vvSD9elb8dQbwCPuGirBXWWVwR3GT0tS3LqEZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:15:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 317 (0x13d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91754C0, serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Validity Not Before: Oct 19 07:15:15 2025 GMT Not After : Oct 26 07:15:15 2025 GMT Subject: CN=68f49003-f660 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2b:76:70:c4:65:21:39:48:89:fc:f0:11:58: 55:9f:ad:49:f1:69:9f:94:d2:56:48:40:e3:8e:19: 0c:d7:67:0a:03:6f:a2:bb:32:fe:2a:88:5e:dd:1c: 40:00:7d:7d:0f:00:b0:06:a7:66:37:d3:24:b9:55: bc:bc:8b:20:11:77:1a:2d:a5:65:5b:48:b3:6f:3a: 83:6e:2a:e0:62:f1:d2:95:fa:ba:67:4a:7f:45:b2: 46:14:fc:f3:70:af:13:83:43:93:a9:49:14:f9:0c: 32:31:99:82:26:e9:1e:1f:dc:f1:22:7d:4f:8a:ed: 5b:0e:d5:12:39:12:6a:87:55:06:b8:22:91:72:2c: da:e3:ef:2c:1c:90:b6:09:75:db:d0:d4:80:08:c3: 9f:b9:12:f3:66:f9:f2:c0:64:2d:53:a9:2d:e0:3a: a9:c6:3a:5e:a3:da:7a:b4:70:ff:e5:ca:c5:9f:e8: 01:3d:ea:8c:12:62:4b:05:84:5b:c3:08:f1:68:eb: 0f:a1:c4:84:a9:5e:8e:b6:7d:de:bf:3f:c6:2d:70: 27:03:cf:ea:c8:18:24:65:9f:ee:05:55:66:a4:56: fc:b4:18:a1:0e:4e:7f:4f:e4:b7:24:21:a3:e0:8b: ad:b5:19:37:9c:4e:8f:fe:05:8e:f4:33:b0:6d:6b: 3a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A2:72:3C:8D:D2:44:D2:3D:DB:F4:A4:27:3D:A0:20:27:35:AA:80 X509v3 Authority Key Identifier: keyid:D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:87:f3:0c:e5:10:1a:7c:e7:36:97:36:6d:8a:07:27:f7:13: 24:82:01:0b:90:52:ee:5d:50:26:84:7b:f7:8f:91:1d:3f:f0: bf:6b:65:8e:8e:e8:11:0d:f8:71:26:78:d4:2f:a4:7a:00:e7: e2:bc:ec:b2:47:41:32:eb:a2:7e:35:fb:10:bc:a7:a4:b8:e3: 89:b2:fc:62:c7:c5:ef:cd:25:d8:20:83:64:42:de:f8:95:23: 36:f2:47:dd:11:e6:f7:14:3b:81:ee:48:44:23:6e:f1:34:79: ce:d7:ae:79:8d:18:a2:17:9e:a7:14:4a:18:70:2a:57:e4:2c: e4:69:b8:a0:2a:be:b9:6c:f1:39:fb:1f:59:7a:8d:a9:3e:de: fd:91:28:7e:37:5b:69:d0:05:94:36:99:49:73:f3:eb:3e:53: c0:80:c6:39:75:a1:1e:77:c2:b3:80:3e:be:c8:1c:99:36:44: cf:80:77:4f:57:a4:e7:1c:61:80:27:8c:ed:8f:c0:b3:bc:fd: bf:12:21:1f:80:4b:51:9f:7b:71:be:00:f5:1c:e2:84:82:10: 3b:28:70:42:33:c4:9a:d0:9e:d6:60:dc:e3:43:e6:94:fe:33: 63:97:7e:1b:b2:08:b0:e8:73:45:14:44:06:c2:b0:f7:0b:2b: 2c:4b:5a:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU0QzAxMTAvBgNVBAUTKEQwRjhCMDA2NTk2QzdDMDM3Q0I1NDkzMDVCMzk2OTAw MDBBQUU4QTQwHhcNMjUxMDE5MDcxNTE1WhcNMjUxMDI2MDcxNTE1WjAYMRYwFAYD VQQDEw02OGY0OTAwMy1mNjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyt2cMRlITlIifzwEVhVn61J8WmflNJWSEDjjhkM12cKA2+iuzL+Kohe3RxA AH19DwCwBqdmN9MkuVW8vIsgEXcaLaVlW0izbzqDbirgYvHSlfq6Z0p/RbJGFPzz cK8Tg0OTqUkU+QwyMZmCJukeH9zxIn1Piu1bDtUSORJqh1UGuCKRciza4+8sHJC2 CXXb0NSACMOfuRLzZvnywGQtU6kt4Dqpxjpeo9p6tHD/5crFn+gBPeqMEmJLBYRb wwjxaOsPocSEqV6Otn3evz/GLXAnA8/qyBgkZZ/uBVVmpFb8tBihDk5/T+S3JCGj 4IuttRk3nE6P/gWO9DOwbWs6gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD2icjyN 0kTSPdv0pCc9oCAnNaqAMB8GA1UdIwQYMBaAFND4sAZZbHwDfLVJMFs5aQAAquik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTRDMC9GRURGNTcyRUND QkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZBTjh0VWt3V3pscEFBQ3E2 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBQaXdCbGxzZkFOOHRVa3dXemxwQUFDcTZLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTRDMC9GRURGNTcyRUNDQkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZB Tjh0VWt3V3pscEFBQ3E2S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbh/MM5RAafOc2lzZtigcn9xMkggELkFLuXVAmhHv3j5EdP/C/a2WO jugRDfhxJnjUL6R6AOfivOyyR0Ey66J+NfsQvKekuOOJsvxix8XvzSXYIINkQt74 lSM28kfdEeb3FDuB7khEI27xNHnO1655jRiiF56nFEoYcCpX5CzkabigKr65bPE5 +x9Zeo2pPt79kSh+N1tp0AWUNplJc/PrPlPAgMY5daEed8KzgD6+yByZNkTPgHdP V6TnHGGAJ4ztj8CzvP2/EiEfgEtRn3txvgD1HOKEghA7KHBCM8Sa0J7WYNzjQ+aU /jNjl34bsgiw6HNFFEQGwrD3CyssS1rZ -----END CERTIFICATE-----Generated at Tue Oct 21 08:09:11 2025 by rpki-client