$ rpki-client -vvf rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft File: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft (raw, json) Hash identifier: P2vLU9pr5ua4AuWUXQYnRohDi5r6Cwst90raGkGLP+4= Subject key identifier: 79:91:C9:78:4B:B7:66:0B:B0:56:F9:D5:6A:41:43:85:89:5B:53:1C Authority key identifier: 68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 Certificate issuer: /CN=A91872ED/serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Certificate serial: 3562 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft Manifest number: 3510 Signing time: Sat 18 Oct 2025 14:18:01 +0000 Manifest this update: Sat 18 Oct 2025 14:18:01 +0000 Manifest next update: Sat 25 Oct 2025 14:18:01 +0000 Files and hashes: 1: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl (hash: bBZv5eybZ7xWFnVyegHDKzSNGC7uCMhLBFqwwbUsI5A=) 2: 73E75DA6F94711EF9B713B3AC4F9AE02.roa (hash: jqW67pSJSIsRiaBgE6s/DK3BAL3JeM6fk0sbod9Ihss=) 3: 797B4DEC293B11E8B187196DC4F9AE02.roa (hash: m0T5p+j/9s+rm9D6YdSh//2Alx2Eae+Du8lbaB1hR7Y=) 4: 1921C8926CDF11EAB92A3A24C4F9AE02.roa (hash: IkqW+PwyXlQ+AUTKEJ4fHo5q5mHtKj5Ve8Q8p0ADu48=) 5: 35415D50FA7711EFB598EF54C4F9AE02.roa (hash: tqonfMb2T4kEzGLFTTW3PK/xQqepl87jr8dA78s4VGI=) 6: 749BE0C8F94711EF9B713B3AC4F9AE02.roa (hash: D48/pxU7MzDuerY2hyHqIJz8Ni5AYoPlrPyxeWvQn8M=) 7: 6A18A5B0F88811EF9CB20317C4F9AE02.roa (hash: H76rrDZxK8h/g51b1krAIQ2ulCKuPO82m4joCbnFfEs=) 8: 19ACBFF66CDF11EAB92A3A24C4F9AE02.roa (hash: rb6m6NgtqMNqMVoEYBcUFewdPh6xLzsagwAw8cSDCbE=) 9: EDCDDF00FA7811EFAF0CDF57C4F9AE02.roa (hash: kN3zyoollwJXDugnYM0yHLk48cRpRCSo426eiI4jnbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:18:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13666 (0x3562) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED, serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Validity Not Before: Oct 18 14:18:01 2025 GMT Not After : Oct 25 14:18:01 2025 GMT Subject: CN=68f3a199-85cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:88:11:99:0c:d4:1c:9d:b6:ea:ec:1c:10:4c: c0:4a:9a:b2:26:d3:ce:c3:d1:e8:60:1e:e8:71:48: 31:ea:d4:21:9e:86:22:a7:b5:e2:67:20:ab:a7:ca: b5:cd:fd:1d:f6:38:b7:dd:cf:80:16:ed:70:33:66: 9f:df:95:6d:3e:ed:be:fc:0f:18:4e:d2:9e:74:30: 59:2a:08:62:95:bd:c8:84:47:60:b0:2c:d1:1f:49: 9b:7c:41:aa:49:23:e8:24:53:2c:c2:cd:a9:8d:1d: 42:ff:20:db:46:ca:1e:ca:dc:97:98:5c:07:cd:f3: bd:19:ca:4b:5c:67:29:49:17:c6:40:f9:02:cc:4c: 03:4a:73:02:43:34:03:01:ae:1b:77:00:b1:6c:30: de:07:0e:08:a7:59:d4:c3:44:fc:97:2f:71:58:04: 49:2c:cf:83:8b:91:71:44:5d:9b:0e:4d:de:b4:3e: b6:b0:07:4f:59:8a:c5:81:ed:21:cb:56:3f:52:fd: 21:a7:13:16:d3:36:1d:42:09:f7:6a:94:1c:20:e4: 4e:f9:08:21:e0:7d:4c:6b:a4:81:45:ae:fe:ac:e1: 7b:32:8d:09:3f:c8:14:4b:c2:ea:16:25:75:a6:ed: 14:de:1c:ac:3a:be:f0:73:94:27:91:7c:2b:b9:21: 21:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:91:C9:78:4B:B7:66:0B:B0:56:F9:D5:6A:41:43:85:89:5B:53:1C X509v3 Authority Key Identifier: keyid:68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:9c:a9:f0:d6:9e:18:b9:97:34:87:c7:63:11:7e:49:22:e5: 24:47:ee:35:f7:43:bd:60:2b:3e:84:26:e9:fd:2c:47:0f:9b: 31:3e:d6:5b:13:15:a1:de:62:0c:d8:c6:23:3f:03:73:f6:e5: 7b:a8:23:69:9f:ad:7d:c0:19:a2:77:a1:cb:a1:f5:26:7d:cf: 49:8f:e6:9a:59:e5:6a:c4:fe:10:16:54:3b:3f:3b:c4:c1:50: 97:86:57:9d:91:55:2e:dc:ab:d1:01:c9:a5:50:ce:55:81:51: 37:73:4e:7e:12:0c:4b:b8:81:33:e4:ed:39:6b:2f:24:ac:15: 9e:53:1a:53:10:6e:f9:91:f1:8d:5f:7c:d0:d4:34:e8:c0:ea: d7:68:68:d9:b2:76:94:81:de:61:69:04:d1:dc:14:38:05:32: 81:27:4c:2f:fd:11:6b:a4:54:7b:bc:5b:bc:40:ff:12:22:40: f1:da:5f:3b:1b:7e:81:4b:64:23:ca:a6:23:c8:60:d8:d4:98: b7:51:1a:ed:15:4d:85:55:fc:13:c8:1b:2c:8d:4e:57:8c:f0: de:8b:ef:27:cd:06:9c:59:53:06:37:70:79:83:9f:64:89:c3: 79:4d:a8:b1:b4:58:68:bf:90:eb:34:26:08:cc:39:09:67:de: 1e:f9:bd:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcyRUQxMTAvBgNVBAUTKDY4RkFGOURBQ0UxOTc2OENBQzNENEVEN0JCMjQzNzJC RkZBNkQwMTgwHhcNMjUxMDE4MTQxODAxWhcNMjUxMDI1MTQxODAxWjAYMRYwFAYD VQQDEw02OGYzYTE5OS04NWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqIgRmQzUHJ226uwcEEzASpqyJtPOw9HoYB7ocUgx6tQhnoYip7XiZyCrp8q1 zf0d9ji33c+AFu1wM2af35VtPu2+/A8YTtKedDBZKghilb3IhEdgsCzRH0mbfEGq SSPoJFMsws2pjR1C/yDbRsoeytyXmFwHzfO9GcpLXGcpSRfGQPkCzEwDSnMCQzQD Aa4bdwCxbDDeBw4Ip1nUw0T8ly9xWARJLM+Di5FxRF2bDk3etD62sAdPWYrFge0h y1Y/Uv0hpxMW0zYdQgn3apQcIORO+Qgh4H1Ma6SBRa7+rOF7Mo0JP8gUS8LqFiV1 pu0U3hysOr7wc5QnkXwruSEhEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHmRyXhL t2YLsFb51WpBQ4WJW1McMB8GA1UdIwQYMBaAFGj6+drOGXaMrD1O17skNyv/ptAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzJFRC9FRDhDOTY5MDFE NkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRveXNQVTdYdXlRM0tfLW0w QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FQcjUyczRaZG95c1BVN1h1eVEzS18tbTBCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzJFRC9FRDhDOTY5MDFENkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRv eXNQVTdYdXlRM0tfLW0wQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtnKnw1p4YuZc0h8djEX5JIuUkR+4190O9YCs+hCbp/SxHD5sxPtZb ExWh3mIM2MYjPwNz9uV7qCNpn619wBmid6HLofUmfc9Jj+aaWeVqxP4QFlQ7PzvE wVCXhledkVUu3KvRAcmlUM5VgVE3c05+EgxLuIEz5O05ay8krBWeUxpTEG75kfGN X3zQ1DTowOrXaGjZsnaUgd5haQTR3BQ4BTKBJ0wv/RFrpFR7vFu8QP8SIkDx2l87 G36BS2QjyqYjyGDY1Ji3URrtFU2FVfwTyBssjU5XjPDei+8nzQacWVMGN3B5g59k icN5TaixtFhov5DrNCYIzDkJZ94e+b2n -----END CERTIFICATE-----Generated at Sun Oct 19 23:30:55 2025 by rpki-client