$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft File: ipvaaFOfcVjLATcgqZNvJkuaU3s.mft (raw, json) Hash identifier: TomQjzuW7SFBFFmo3Swwx9j008oScKl01DXfLuG2Zuk= Subject key identifier: 24:71:40:97:7C:1E:49:4E:49:B7:31:D9:98:D4:E7:7D:A4:D1:D8:A6 Authority key identifier: 8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B Certificate issuer: /CN=A91A1857/serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Certificate serial: 0D80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft Manifest number: 0D70 Signing time: Mon 20 Oct 2025 18:31:07 +0000 Manifest this update: Mon 20 Oct 2025 18:31:06 +0000 Manifest next update: Mon 27 Oct 2025 18:31:06 +0000 Files and hashes: 1: ipvaaFOfcVjLATcgqZNvJkuaU3s.crl (hash: B6x5d8fFGledrKjIkAqR+u3gjt023zSQ8M2tz60ZYYQ=) 2: F23EB988E9A811E9864E3674C4F9AE02.roa (hash: H71fhd8JZc5XXH6DNUerfJbZNQyJaOd/VCkFhoBssG8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 18:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3456 (0xd80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1857, serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Validity Not Before: Oct 20 18:31:06 2025 GMT Not After : Oct 27 18:31:06 2025 GMT Subject: CN=68f67feb-9741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a4:2c:61:53:3a:6b:28:f2:c9:d2:0b:11:f9: 3b:f2:45:0e:33:a1:be:05:00:f2:22:c1:2f:59:a1: 21:37:15:47:4b:47:8c:5d:4a:01:b3:41:62:fe:75: 50:9b:a1:f7:c2:31:70:ad:82:2e:be:0e:00:7d:b1: eb:5a:53:c6:43:06:66:bc:dd:c7:00:8d:ae:d2:6b: f9:91:bf:ad:77:6c:a5:1a:ef:fb:b3:59:25:12:8c: 6a:ac:55:8a:a1:79:6d:ad:8a:ed:1e:64:c4:83:49: e0:9a:1d:2b:26:30:c8:ff:70:47:f3:7b:65:5e:ee: 4c:7e:5c:d3:7d:a3:bb:d4:6a:7a:5f:53:9e:f3:52: 27:50:12:0f:e5:f5:36:35:a4:e9:ea:1c:e3:88:be: 5a:a3:bb:42:ba:ca:95:c5:e4:1c:b7:58:4a:ac:ec: c6:b1:bc:ec:74:d0:0f:e0:b7:38:0c:66:5a:88:9c: bc:fd:cf:ee:6f:e6:3b:8d:53:ac:e2:c4:99:11:44: 05:19:df:c9:ae:5c:62:8a:5f:70:55:53:d2:4e:82: ff:0e:ac:f4:87:1a:a3:09:f0:7a:4a:40:b1:cf:31: 40:ab:3e:cf:22:f7:48:db:c2:7d:a3:b0:bc:dd:3f: 02:ed:e5:3b:57:ab:05:51:cd:fc:fe:1f:92:e4:5b: 98:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:71:40:97:7C:1E:49:4E:49:B7:31:D9:98:D4:E7:7D:A4:D1:D8:A6 X509v3 Authority Key Identifier: keyid:8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:f4:05:cf:cb:4f:d6:1c:76:d9:d4:76:3c:61:47:1e:a4:23: de:93:a8:52:58:00:e8:43:61:0f:72:ab:0c:9e:1d:06:ac:cd: 08:60:d9:4e:67:2a:30:12:7e:d8:09:27:5c:e2:b6:16:45:1b: 92:d4:07:28:08:79:3b:71:45:52:ef:48:d4:3b:e1:b7:7e:ac: 2c:1f:1e:71:ef:38:18:c7:b6:a1:a5:3a:ac:7f:06:0f:e1:a1: 38:c8:fb:0d:63:aa:57:bf:c1:74:f8:43:92:88:02:fc:a5:23: c7:69:3b:f3:93:b8:38:e4:9d:da:32:73:34:3e:64:62:18:ac: 7d:f5:89:26:60:1b:a5:eb:0b:7a:5f:96:37:af:02:87:1e:95: f4:e0:2d:e8:2f:4b:cc:48:36:78:4e:11:a6:1f:97:03:aa:ba: f8:51:6e:c9:6f:13:d8:df:9e:70:12:c6:b1:2f:96:90:2b:2e: af:cc:dd:78:4e:ed:5f:3e:59:cc:5d:47:aa:05:e6:65:21:67: 49:74:8c:79:f2:7a:35:7c:8e:9e:f7:e0:b6:50:f9:47:03:96: 9f:f5:95:cf:3b:e5:ca:81:56:81:ac:41:14:7d:3d:80:0f:8b: 48:7e:4a:f3:78:5b:d6:4e:a7:3f:8e:71:ce:7e:ab:ec:8e:52: 23:73:95:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NTcxMTAvBgNVBAUTKDhBOUJEQTY4NTM5RjcxNThDQjAxMzcyMEE5OTM2RjI2 NEI5QTUzN0IwHhcNMjUxMDIwMTgzMTA2WhcNMjUxMDI3MTgzMTA2WjAYMRYwFAYD VQQDEw02OGY2N2ZlYi05NzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6QsYVM6ayjyydILEfk78kUOM6G+BQDyIsEvWaEhNxVHS0eMXUoBs0Fi/nVQ m6H3wjFwrYIuvg4AfbHrWlPGQwZmvN3HAI2u0mv5kb+td2ylGu/7s1klEoxqrFWK oXltrYrtHmTEg0ngmh0rJjDI/3BH83tlXu5MflzTfaO71Gp6X1Oe81InUBIP5fU2 NaTp6hzjiL5ao7tCusqVxeQct1hKrOzGsbzsdNAP4Lc4DGZaiJy8/c/ub+Y7jVOs 4sSZEUQFGd/Jrlxiil9wVVPSToL/Dqz0hxqjCfB6SkCxzzFAqz7PIvdI28J9o7C8 3T8C7eU7V6sFUc38/h+S5FuYDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCRxQJd8 HklOSbcx2ZjU532k0dimMB8GA1UdIwQYMBaAFIqb2mhTn3FYywE3IKmTbyZLmlN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg1Ny9GMTMwN0I3NERB RDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNWakxBVGNncVpOdkprdWFV M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwdmFhRk9mY1ZqTEFUY2dxWk52Smt1YVUzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTg1Ny9GMTMwN0I3NERBRDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNW akxBVGNncVpOdkprdWFVM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW9AXPy0/WHHbZ1HY8YUcepCPek6hSWADoQ2EPcqsMnh0GrM0IYNlO ZyowEn7YCSdc4rYWRRuS1AcoCHk7cUVS70jUO+G3fqwsHx5x7zgYx7ahpTqsfwYP 4aE4yPsNY6pXv8F0+EOSiAL8pSPHaTvzk7g45J3aMnM0PmRiGKx99YkmYBul6wt6 X5Y3rwKHHpX04C3oL0vMSDZ4ThGmH5cDqrr4UW7JbxPY355wEsaxL5aQKy6vzN14 Tu1fPlnMXUeqBeZlIWdJdIx58no1fI6e9+C2UPlHA5af9ZXPO+XKgVaBrEEUfT2A D4tIfkrzeFvWTqc/jnHOfqvsjlIjc5UA -----END CERTIFICATE-----Generated at Tue Oct 21 02:06:17 2025 by rpki-client