$ rpki-client -vvf rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft File: FTtjqTdzsliYghhmVd7zBEbdhg0.mft (raw, json) Hash identifier: qYzu1GOcRq80XOjYv1c+S4saUMhACye37W/h+xxzAiQ= Subject key identifier: 59:EA:DA:01:68:0F:E5:4A:D9:00:87:12:62:FD:67:42:D7:1F:13:A5 Authority key identifier: 15:3B:63:A9:37:73:B2:58:98:82:18:66:55:DE:F3:04:46:DD:86:0D Certificate issuer: /CN=A91810B4/serialNumber=153B63A93773B2589882186655DEF30446DD860D Certificate serial: 02AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft Manifest number: 02A8 Signing time: Sun 19 Oct 2025 03:42:52 +0000 Manifest this update: Sun 19 Oct 2025 03:42:51 +0000 Manifest next update: Sun 26 Oct 2025 03:42:51 +0000 Files and hashes: 1: FTtjqTdzsliYghhmVd7zBEbdhg0.crl (hash: 9UggqBoC1rNr009FVWDw2+EgdWAIBY78SB2PHI9aGPU=) 2: 27A32D7A16BA11EDB0E9E464C4F9AE02.roa (hash: uux+o2sOdsirWh/aoHrxCjsCKmrUczbEHaZJtHyFOgA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.crl rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:42:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 684 (0x2ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91810B4, serialNumber=153B63A93773B2589882186655DEF30446DD860D Validity Not Before: Oct 19 03:42:51 2025 GMT Not After : Oct 26 03:42:51 2025 GMT Subject: CN=68f45e3c-8e30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1a:3b:a5:db:db:cf:de:ed:c9:da:8b:5b:0d: 09:b1:b7:c7:0b:21:00:4f:11:48:7b:3f:7d:ce:34: a3:ad:55:a9:16:17:9a:a0:de:2b:9a:37:1b:9a:3b: 84:b1:d6:f3:dc:a6:8b:c2:7c:c7:bf:79:ef:2f:6b: 2e:f7:55:6a:53:4f:e3:7d:d3:8f:6d:95:c3:29:91: 2f:7f:9f:28:3a:3e:77:24:3a:71:ad:e9:a6:97:b8: cb:db:4d:16:a7:ac:e0:6f:96:51:14:4c:86:e3:38: 99:fc:e3:60:49:e8:b1:be:f5:72:02:c5:f0:5d:35: a0:83:31:03:16:10:85:47:59:5a:eb:aa:6c:44:8e: a9:02:f1:1d:e3:e0:f5:8e:73:2d:83:d4:6d:1e:d3: f2:b6:51:39:20:fb:a6:c1:ae:12:71:7a:ba:7f:f8: f6:ad:c3:95:81:c2:13:39:0e:b3:c8:e2:81:30:13: c7:e0:5c:97:ee:0a:bf:4e:bd:6d:d4:9d:0e:fc:ae: 6e:54:3b:29:38:dd:d7:97:7a:f0:14:dc:da:c7:27: 2c:6a:ef:e8:d7:04:48:e3:91:67:64:80:28:4b:33: 63:5a:c4:56:93:69:b3:4e:6a:f5:b0:e2:1f:79:37: a8:15:76:d6:b1:27:1e:19:04:c4:3e:82:d2:11:56: 08:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:EA:DA:01:68:0F:E5:4A:D9:00:87:12:62:FD:67:42:D7:1F:13:A5 X509v3 Authority Key Identifier: keyid:15:3B:63:A9:37:73:B2:58:98:82:18:66:55:DE:F3:04:46:DD:86:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FTtjqTdzsliYghhmVd7zBEbdhg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91810B4/77D52AA016B511ED9803A272C4F9AE02/FTtjqTdzsliYghhmVd7zBEbdhg0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:7e:a5:22:0b:ad:b4:c6:61:8b:32:19:d2:35:4a:3a:f4:04: ba:a1:f1:41:6d:5b:49:9c:bc:10:8e:a2:a7:fd:e3:dc:b1:20: ce:4e:04:fd:44:f8:49:c4:b3:03:55:81:62:20:5b:6e:f9:ca: 39:0f:98:2c:1e:03:13:09:14:37:1d:a2:09:11:c7:56:2c:2d: fc:49:f1:8f:05:26:7d:61:ca:1d:ac:85:94:3f:bb:53:9d:a5: 92:1f:3c:cd:92:7c:2f:70:08:f5:e5:9a:3b:70:cb:07:56:b2: 52:8f:ed:49:64:6d:04:1d:cd:e5:8b:8f:3a:c9:95:2b:77:14: 8e:9a:49:bc:50:bb:ca:f2:3e:c7:f4:1f:3a:68:65:4a:f4:de: d4:21:6e:10:ab:de:71:25:9b:c0:46:34:d3:0a:bc:f1:0a:9d: 85:f5:e7:0a:80:76:dc:66:d5:95:4b:19:a9:0e:64:b7:fc:5d: ae:08:a7:dc:10:69:39:c7:6d:fd:61:f2:b8:e0:c9:f1:a0:22: 72:35:6c:be:34:80:34:02:f4:88:0e:d2:a5:26:84:d2:b5:f1: 1a:73:a0:b6:e6:58:a3:34:b2:c4:c3:3d:af:3e:d4:ac:35:0c: 18:2d:b9:d0:5a:4d:e9:04:0e:dc:48:97:1d:97:65:00:3b:9a: a9:e0:09:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEwQjQxMTAvBgNVBAUTKDE1M0I2M0E5Mzc3M0IyNTg5ODgyMTg2NjU1REVGMzA0 NDZERDg2MEQwHhcNMjUxMDE5MDM0MjUxWhcNMjUxMDI2MDM0MjUxWjAYMRYwFAYD VQQDEw02OGY0NWUzYy04ZTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBo7pdvbz97tydqLWw0JsbfHCyEATxFIez99zjSjrVWpFheaoN4rmjcbmjuE sdbz3KaLwnzHv3nvL2su91VqU0/jfdOPbZXDKZEvf58oOj53JDpxremml7jL200W p6zgb5ZRFEyG4ziZ/ONgSeixvvVyAsXwXTWggzEDFhCFR1la66psRI6pAvEd4+D1 jnMtg9RtHtPytlE5IPumwa4ScXq6f/j2rcOVgcITOQ6zyOKBMBPH4FyX7gq/Tr1t 1J0O/K5uVDspON3Xl3rwFNzaxycsau/o1wRI45FnZIAoSzNjWsRWk2mzTmr1sOIf eTeoFXbWsSceGQTEPoLSEVYIbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFnq2gFo D+VK2QCHEmL9Z0LXHxOlMB8GA1UdIwQYMBaAFBU7Y6k3c7JYmIIYZlXe8wRG3YYN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTBCNC83N0Q1MkFBMDE2 QjUxMUVEOTgwM0EyNzJDNEY5QUUwMi9GVHRqcVRkenNsaVlnaGhtVmQ3ekJFYmRo ZzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZUdGpxVGR6c2xpWWdoaG1WZDd6QkViZGhnMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MTBCNC83N0Q1MkFBMDE2QjUxMUVEOTgwM0EyNzJDNEY5QUUwMi9GVHRqcVRkenNs aVlnaGhtVmQ3ekJFYmRoZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApfqUiC620xmGLMhnSNUo69AS6ofFBbVtJnLwQjqKn/ePcsSDOTgT9 RPhJxLMDVYFiIFtu+co5D5gsHgMTCRQ3HaIJEcdWLC38SfGPBSZ9YcodrIWUP7tT naWSHzzNknwvcAj15Zo7cMsHVrJSj+1JZG0EHc3li486yZUrdxSOmkm8ULvK8j7H 9B86aGVK9N7UIW4Qq95xJZvARjTTCrzxCp2F9ecKgHbcZtWVSxmpDmS3/F2uCKfc EGk5x239YfK44MnxoCJyNWy+NIA0AvSIDtKlJoTStfEac6C25lijNLLEwz2vPtSs NQwYLbnQWk3pBA7cSJcdl2UAO5qp4Akd -----END CERTIFICATE-----Generated at Mon Oct 20 13:56:24 2025 by rpki-client