$ rpki-client -vvf rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft File: SRNmdefiNOfS-IRZmOLGLbSIgso.mft (raw, json) Hash identifier: uxWvNHfCiiY1CDtNBEC8BNsvpup3JWKCBN9a8mkr4jU= Subject key identifier: 43:FA:88:4C:7D:EA:71:EA:0D:BE:DF:D6:99:CC:85:2E:A0:7C:EE:FE Authority key identifier: 49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA Certificate issuer: /CN=A91A31F5/serialNumber=49136675E7E234E7D2F8845998E2C62DB48882CA Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft Manifest number: 8C Signing time: Sun 19 Oct 2025 09:48:57 +0000 Manifest this update: Sun 19 Oct 2025 09:48:56 +0000 Manifest next update: Sun 26 Oct 2025 09:48:56 +0000 Files and hashes: 1: SRNmdefiNOfS-IRZmOLGLbSIgso.crl (hash: +YoQJxyyb0W0pIZD0a7sDm1SKskgoBty0CAxTO6dJ0A=) 2: A8A5C28ED6ED11EFB4D7876BC4F9AE02.roa (hash: XLgRz6Ys+AWKVb/kmctJ9W9xNxym6vJibxlk+kHS4Ys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.crl rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:48:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A31F5, serialNumber=49136675E7E234E7D2F8845998E2C62DB48882CA Validity Not Before: Oct 19 09:48:56 2025 GMT Not After : Oct 26 09:48:56 2025 GMT Subject: CN=68f4b409-043a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:5e:72:8f:d0:07:8c:df:e6:9d:95:48:20:8a: ec:b0:fd:a9:d1:71:27:ae:cc:da:11:62:eb:c9:bf: f5:6a:b7:9f:c6:f0:7f:a5:72:c6:4d:c9:1f:8f:c8: e1:92:83:31:3f:0c:87:61:25:f0:70:34:2b:12:2f: 2f:ce:29:71:43:a6:02:24:b0:8d:7e:da:d8:dc:e5: cf:d5:7d:98:f3:d5:5f:be:bb:e5:72:e6:55:d9:f6: 1c:da:de:0f:53:0b:73:cf:bf:b4:73:70:71:20:62: 93:a7:6a:40:1e:fe:3e:44:23:f0:12:aa:96:59:5d: 6b:2b:b0:d4:00:d7:96:67:f8:7a:8a:4d:48:fd:e0: 76:95:e2:00:e5:25:d8:4d:1d:ce:79:33:c5:4e:47: 0c:c9:90:24:b9:5e:3d:85:b2:7c:de:88:f7:07:db: a4:dc:36:72:4b:30:82:69:f5:fe:e3:e3:b1:63:d1: a1:8f:4c:11:e0:bc:6a:5c:ca:9e:c2:dd:a5:a6:a9: ed:ee:60:42:5e:95:60:e9:fe:1b:0c:1c:d3:ee:aa: 90:d1:38:36:92:94:77:04:ce:18:49:f8:92:98:b1: 87:85:00:26:3f:75:7c:d5:1e:27:1e:63:3b:a1:3a: e7:f6:7e:4b:39:50:c6:56:cd:a4:1b:47:29:d6:61: 65:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:FA:88:4C:7D:EA:71:EA:0D:BE:DF:D6:99:CC:85:2E:A0:7C:EE:FE X509v3 Authority Key Identifier: keyid:49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:2d:b5:6b:63:b2:69:e2:6c:fd:90:17:70:9a:01:11:50:50: a8:32:29:22:75:06:6a:09:6b:f9:6e:43:6d:e3:24:ca:d4:8d: 29:b6:71:6b:96:a7:fb:0d:b4:f5:e8:97:18:d7:bd:0b:50:3d: 28:99:d1:b5:8d:de:23:f3:aa:d6:d3:a1:e6:6c:12:18:07:c6: b0:00:28:67:e8:0f:85:f3:33:7d:95:7d:7a:1a:89:0f:a2:d0: 13:c2:cd:6c:b8:30:eb:8e:b8:87:a5:80:80:a7:21:d2:de:e9: 11:41:f8:e8:17:12:7e:de:7b:8e:d3:c4:46:99:6a:51:c2:6c: a2:ee:d0:9d:85:06:ac:a2:82:a5:8b:ea:6e:8b:3b:7d:9e:15: b8:ef:39:f7:81:32:11:92:4a:32:5a:b3:56:2e:96:ee:4c:28: 42:51:c2:e3:2d:3a:ac:81:2d:7c:ac:cc:6b:0e:59:a0:42:bd: 40:da:15:03:55:d0:09:b1:2e:2a:d9:4a:71:67:dc:eb:68:80: 0b:3c:a8:62:c0:bf:57:95:0d:3e:2e:65:10:72:c9:4a:b6:b5: 91:0e:25:87:1d:25:9a:3b:b4:4d:89:37:41:e9:47:9d:30:80: 9a:bc:56:3c:5f:b5:c3:0f:87:57:98:00:bb:48:22:e4:fd:5b: 18:e0:2b:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMxRjUxMTAvBgNVBAUTKDQ5MTM2Njc1RTdFMjM0RTdEMkY4ODQ1OTk4RTJDNjJE QjQ4ODgyQ0EwHhcNMjUxMDE5MDk0ODU2WhcNMjUxMDI2MDk0ODU2WjAYMRYwFAYD VQQDEw02OGY0YjQwOS0wNDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAml5yj9AHjN/mnZVIIIrssP2p0XEnrszaEWLryb/1arefxvB/pXLGTckfj8jh koMxPwyHYSXwcDQrEi8vzilxQ6YCJLCNftrY3OXP1X2Y89VfvrvlcuZV2fYc2t4P Uwtzz7+0c3BxIGKTp2pAHv4+RCPwEqqWWV1rK7DUANeWZ/h6ik1I/eB2leIA5SXY TR3OeTPFTkcMyZAkuV49hbJ83oj3B9uk3DZySzCCafX+4+OxY9Ghj0wR4LxqXMqe wt2lpqnt7mBCXpVg6f4bDBzT7qqQ0Tg2kpR3BM4YSfiSmLGHhQAmP3V81R4nHmM7 oTrn9n5LOVDGVs2kG0cp1mFlpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEP6iEx9 6nHqDb7f1pnMhS6gfO7+MB8GA1UdIwQYMBaAFEkTZnXn4jTn0viEWZjixi20iILK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzFGNS9BNzU0RDM4MEQ2 RUMxMUVGQTI3OTlDNjlDNEY5QUUwMi9TUk5tZGVmaU5PZlMtSVJabU9MR0xiU0ln c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1NSTm1kZWZpTk9mUy1JUlptT0xHTGJTSWdzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzFGNS9BNzU0RDM4MEQ2RUMxMUVGQTI3OTlDNjlDNEY5QUUwMi9TUk5tZGVmaU5P ZlMtSVJabU9MR0xiU0lnc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkLbVrY7Jp4mz9kBdwmgERUFCoMikidQZqCWv5bkNt4yTK1I0ptnFr lqf7DbT16JcY170LUD0omdG1jd4j86rW06HmbBIYB8awAChn6A+F8zN9lX16GokP otATws1suDDrjriHpYCApyHS3ukRQfjoFxJ+3nuO08RGmWpRwmyi7tCdhQasooKl i+puizt9nhW47zn3gTIRkkoyWrNWLpbuTChCUcLjLTqsgS18rMxrDlmgQr1A2hUD VdAJsS4q2UpxZ9zraIALPKhiwL9XlQ0+LmUQcslKtrWRDiWHHSWaO7RNiTdB6Ued MICavFY8X7XDD4dXmAC7SCLk/VsY4CuL -----END CERTIFICATE-----Generated at Mon Oct 20 16:05:41 2025 by rpki-client