$ rpki-client -vvf rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft File: M_iOrx5M4PGhh31J75fA5_7cA5o.mft (raw, json) Hash identifier: uO28kqp3MsW2P26+0hyiMpteYPF5CUKqssOa40vOXwA= Subject key identifier: 98:BC:D2:8F:59:45:ED:F8:B9:B1:D1:EB:45:49:8F:12:51:DA:78:1D Authority key identifier: 33:F8:8E:AF:1E:4C:E0:F1:A1:87:7D:49:EF:97:C0:E7:FE:DC:03:9A Certificate issuer: /CN=A91758DF/serialNumber=33F88EAF1E4CE0F1A1877D49EF97C0E7FEDC039A Certificate serial: 04DA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft Manifest number: 04CF Signing time: Mon 20 Oct 2025 21:35:56 +0000 Manifest this update: Mon 20 Oct 2025 21:35:55 +0000 Manifest next update: Mon 27 Oct 2025 21:35:55 +0000 Files and hashes: 1: M_iOrx5M4PGhh31J75fA5_7cA5o.crl (hash: nsnS+6ExFSs1cUyZpXfKiJHym6Mphk0IkpaGIkDXVPI=) 2: E763AA76A3E811EC8665D621C4F9AE02.roa (hash: trLJfSwyymOYXghPy0PGh0ipgzAzEgwWMLJxE/C/bWY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.crl rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1242 (0x4da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758DF, serialNumber=33F88EAF1E4CE0F1A1877D49EF97C0E7FEDC039A Validity Not Before: Oct 20 21:35:55 2025 GMT Not After : Oct 27 21:35:55 2025 GMT Subject: CN=68f6ab3b-9ce2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:43:0f:48:93:62:73:03:8d:3d:e6:91:30:92: de:46:f6:1a:6c:d2:3c:f0:68:4f:cf:9e:33:c6:8d: e9:fb:e8:32:ca:27:0b:74:05:75:06:45:4d:cd:2b: a1:aa:4e:cb:3f:5b:d5:48:ef:20:b2:2a:73:19:2b: f4:71:85:25:d3:04:fc:a6:eb:bb:a4:21:36:63:9e: 34:48:b4:d2:5e:72:80:36:7d:65:4f:fb:48:58:71: e1:83:7f:47:b5:d1:f7:96:7c:13:f2:8e:85:d2:6a: da:fd:bf:36:aa:4c:03:e3:42:ad:db:0e:cc:bb:25: 9e:c0:3c:a7:06:26:b3:f0:fa:58:3b:ea:c7:ed:f6: ca:7c:0d:5d:2c:bf:c2:3d:40:2a:8e:05:67:8d:b9: 70:bf:76:88:ea:de:33:32:54:44:29:86:95:7c:53: a3:4f:06:d9:f0:d0:79:b2:7c:3e:3a:d1:ca:2f:f4: 5a:eb:23:17:52:14:9e:62:34:1d:21:19:6c:84:ed: 0a:df:2a:fc:af:0b:0d:67:d2:21:d1:51:9a:50:32: d0:91:06:bf:3a:b6:7b:94:25:76:4b:d7:bc:bb:fd: b3:b2:06:07:59:e4:e5:32:e1:ec:2e:79:7b:a7:59: 64:d4:ee:ee:3c:bd:4b:9d:b2:04:6c:8f:71:43:25: 23:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:BC:D2:8F:59:45:ED:F8:B9:B1:D1:EB:45:49:8F:12:51:DA:78:1D X509v3 Authority Key Identifier: keyid:33:F8:8E:AF:1E:4C:E0:F1:A1:87:7D:49:EF:97:C0:E7:FE:DC:03:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M_iOrx5M4PGhh31J75fA5_7cA5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758DF/8673608047FE11EC9CDF4B0AC4F9AE02/M_iOrx5M4PGhh31J75fA5_7cA5o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:cc:7b:4c:75:9b:91:22:ad:c8:da:96:4a:5f:c1:46:eb:3d: 37:57:90:10:45:c1:df:b6:87:9a:cc:45:c4:6e:72:4e:25:d8: e7:78:ea:45:1c:e7:82:a7:3c:de:c1:bc:98:45:a8:21:c2:3a: 33:5f:78:31:8d:6b:93:8f:07:6e:81:87:d7:52:d5:95:1a:a2: 2c:fa:8f:7f:c2:39:57:cd:f9:ee:fa:1a:18:e2:1f:fc:8b:0c: 24:e7:65:fd:41:2b:b2:55:71:14:59:49:1d:db:b0:d1:6d:84: 83:b1:ed:b3:e4:0d:42:fa:ad:1d:6f:11:d4:64:1e:9e:40:e2: a6:d8:b6:25:8d:7e:03:e9:3e:ec:c0:c3:7a:00:3c:1e:e3:13: 14:2e:c7:e4:3a:d5:9b:6d:7e:ce:0b:0c:62:8c:f3:9d:70:6a: 21:bd:8a:c2:85:5f:82:9e:25:5c:fd:50:b2:90:94:42:6c:0b: 76:35:12:0c:52:a4:64:21:18:ce:47:fe:7b:87:a1:84:f0:ab: be:07:03:cd:72:ad:d0:fa:29:7d:4f:34:e6:7c:7b:d0:c6:0c: 7f:31:d1:08:ee:9a:84:e7:da:3f:07:c8:1b:06:e4:f9:d7:1c: 47:cb:0d:3b:90:4e:55:7f:4f:40:3e:f8:4e:c0:20:44:21:74: ef:c8:4d:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4REYxMTAvBgNVBAUTKDMzRjg4RUFGMUU0Q0UwRjFBMTg3N0Q0OUVGOTdDMEU3 RkVEQzAzOUEwHhcNMjUxMDIwMjEzNTU1WhcNMjUxMDI3MjEzNTU1WjAYMRYwFAYD VQQDEw02OGY2YWIzYi05Y2UyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0MPSJNicwONPeaRMJLeRvYabNI88GhPz54zxo3p++gyyicLdAV1BkVNzSuh qk7LP1vVSO8gsipzGSv0cYUl0wT8puu7pCE2Y540SLTSXnKANn1lT/tIWHHhg39H tdH3lnwT8o6F0mra/b82qkwD40Kt2w7MuyWewDynBiaz8PpYO+rH7fbKfA1dLL/C PUAqjgVnjblwv3aI6t4zMlREKYaVfFOjTwbZ8NB5snw+OtHKL/Ra6yMXUhSeYjQd IRlshO0K3yr8rwsNZ9Ih0VGaUDLQkQa/OrZ7lCV2S9e8u/2zsgYHWeTlMuHsLnl7 p1lk1O7uPL1LnbIEbI9xQyUjsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJi80o9Z Re34ubHR60VJjxJR2ngdMB8GA1UdIwQYMBaAFDP4jq8eTODxoYd9Se+XwOf+3AOa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NThERi84NjczNjA4MDQ3 RkUxMUVDOUNERjRCMEFDNEY5QUUwMi9NX2lPcng1TTRQR2hoMzFKNzVmQTVfN2NB NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01faU9yeDVNNFBHaGgzMUo3NWZBNV83Y0E1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NThERi84NjczNjA4MDQ3RkUxMUVDOUNERjRCMEFDNEY5QUUwMi9NX2lPcng1TTRQ R2hoMzFKNzVmQTVfN2NBNW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1zHtMdZuRIq3I2pZKX8FG6z03V5AQRcHftoeazEXEbnJOJdjneOpF HOeCpzzewbyYRaghwjozX3gxjWuTjwdugYfXUtWVGqIs+o9/wjlXzfnu+hoY4h/8 iwwk52X9QSuyVXEUWUkd27DRbYSDse2z5A1C+q0dbxHUZB6eQOKm2LYljX4D6T7s wMN6ADwe4xMULsfkOtWbbX7OCwxijPOdcGohvYrChV+CniVc/VCykJRCbAt2NRIM UqRkIRjOR/57h6GE8Ku+BwPNcq3Q+il9TzTmfHvQxgx/MdEI7pqE59o/B8gbBuT5 1xxHyw07kE5Vf09APvhOwCBEIXTvyE2d -----END CERTIFICATE-----Generated at Tue Oct 21 00:13:02 2025 by rpki-client