$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: DbEq6R7/cDJCLMtNjN+NKJyt85MJ93Ph26oCdYEO9/E= Subject key identifier: DF:E2:16:EB:C7:2E:20:2B:CD:45:55:61:C8:47:AB:31:13:BC:E9:BD Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 0A45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 0A2B Signing time: Sat 18 Oct 2025 20:48:37 +0000 Manifest this update: Sat 18 Oct 2025 20:48:36 +0000 Manifest next update: Sat 25 Oct 2025 20:48:36 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: NphWX/wWMYxwlfyVlIou6Tv2/6nqRbMGu4JvJkv0Am0=) 2: 344644CC1DC511EF95607948C4F9AE02.roa (hash: rkDHfwPM1DT0Lu0jNtn8nf16whUr6uH9MCf0inhJdfs=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: p62MlJx+4H10Goj45fvAZ4d/rgVHWdc/FettBrr2SX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:48:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2629 (0xa45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Oct 18 20:48:36 2025 GMT Not After : Oct 25 20:48:36 2025 GMT Subject: CN=68f3fd24-76fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fc:04:34:a4:b1:f2:81:3d:1e:78:1c:26:a2: be:f0:0a:f8:0e:3b:0e:00:2f:da:6b:d0:05:b4:69: 39:5c:d2:6d:28:30:c0:ce:35:b4:d9:a8:3a:61:fb: 61:dd:99:7f:b9:12:c0:2b:e3:dc:f1:13:23:38:11: 6f:d4:2e:8f:a2:3d:69:c4:0a:b6:06:b7:ca:11:c3: 5e:9e:a5:7b:61:7d:02:92:66:74:c3:f1:7b:c3:65: 34:e2:b2:7e:0d:7c:65:1e:8e:85:d7:c6:b3:08:1d: fc:88:a4:58:4e:b3:3b:f1:2e:52:d3:20:25:c4:ae: 69:58:83:c9:bf:5d:27:dc:05:2e:97:36:d9:c1:ed: 1e:b4:1d:9c:8c:14:04:c2:1e:3f:b8:c7:7c:8d:4e: de:20:5f:c9:f3:6b:c3:8c:03:0a:9c:4b:49:91:a6: 35:17:02:6a:68:44:38:44:45:95:ba:b2:41:64:f4: 79:9b:e0:5a:50:b6:82:ac:38:89:9d:01:d4:0e:97: 51:2d:c1:7f:ae:00:82:ee:21:78:b1:aa:d3:dc:28: 78:e9:1e:bd:bb:24:9f:82:00:16:1a:b6:d2:a4:7c: a3:ba:17:ac:ad:40:3d:98:f0:86:17:ef:4e:19:16: 02:21:62:94:3d:d9:e4:92:5f:67:52:3c:68:a2:11: 61:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E2:16:EB:C7:2E:20:2B:CD:45:55:61:C8:47:AB:31:13:BC:E9:BD X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:60:a7:d5:d2:a1:fa:1b:d0:d4:06:cc:e7:5c:a8:1c:60:8d: 0b:62:62:89:89:f9:36:b9:38:fd:6f:8e:1c:ae:a6:06:12:7c: 30:a6:1d:70:19:07:be:75:74:75:7c:3f:19:55:11:ba:3a:a4: ed:75:66:f9:e6:73:49:55:dc:02:30:8a:e2:73:56:ae:63:1b: 23:58:cf:7e:a3:d1:f5:32:2b:b4:cd:94:54:2a:0d:b5:11:a3: c0:e8:f8:e0:39:17:94:73:74:19:0d:07:26:24:58:69:66:ca: 9a:68:8f:86:44:cc:89:b3:c6:b6:e1:68:ad:f5:1c:f6:b3:16: d3:9f:92:ec:b0:c5:6f:4f:01:59:d7:4f:b9:c7:1f:97:6f:91: 8d:ec:f5:9d:d0:68:e5:a7:51:97:ae:f6:b9:25:a9:ce:66:2f: 87:4d:48:44:41:bb:fb:52:f7:7e:d3:e9:b6:43:b0:57:20:f7: 48:6a:29:b8:f5:f1:7d:69:d6:0e:66:fb:e6:91:44:0d:aa:f3: cf:80:1c:f8:a0:10:63:3c:6a:fb:4c:38:1b:f5:00:f7:fc:7b: d6:8d:fe:55:03:25:fe:d2:d4:ba:a3:c1:f6:b9:84:2a:67:db: 18:d0:36:f1:29:42:ab:ca:f0:a0:d8:01:87:97:09:7f:eb:c3: 5d:10:f3:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjUxMDE4MjA0ODM2WhcNMjUxMDI1MjA0ODM2WjAYMRYwFAYD VQQDEw02OGYzZmQyNC03NmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvwENKSx8oE9HngcJqK+8Ar4DjsOAC/aa9AFtGk5XNJtKDDAzjW02ag6Yfth 3Zl/uRLAK+Pc8RMjOBFv1C6Poj1pxAq2BrfKEcNenqV7YX0CkmZ0w/F7w2U04rJ+ DXxlHo6F18azCB38iKRYTrM78S5S0yAlxK5pWIPJv10n3AUulzbZwe0etB2cjBQE wh4/uMd8jU7eIF/J82vDjAMKnEtJkaY1FwJqaEQ4REWVurJBZPR5m+BaULaCrDiJ nQHUDpdRLcF/rgCC7iF4sarT3Ch46R69uySfggAWGrbSpHyjuhesrUA9mPCGF+9O GRYCIWKUPdnkkl9nUjxoohFhzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN/iFuvH LiArzUVVYchHqzETvOm9MB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADYKfV0qH6G9DUBsznXKgcYI0LYmKJifk2uTj9b44crqYGEnwwph1w GQe+dXR1fD8ZVRG6OqTtdWb55nNJVdwCMIric1auYxsjWM9+o9H1Miu0zZRUKg21 EaPA6PjgOReUc3QZDQcmJFhpZsqaaI+GRMyJs8a24Wit9Rz2sxbTn5LssMVvTwFZ 10+5xx+Xb5GN7PWd0Gjlp1GXrva5JanOZi+HTUhEQbv7Uvd+0+m2Q7BXIPdIaim4 9fF9adYOZvvmkUQNqvPPgBz4oBBjPGr7TDgb9QD3/HvWjf5VAyX+0tS6o8H2uYQq Z9sY0DbxKUKryvCg2AGHlwl/68NdEPOp -----END CERTIFICATE-----Generated at Mon Oct 20 21:35:55 2025 by rpki-client