$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft File: awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft (raw, json) Hash identifier: 22y2lYMgi5u1hrvP6ubozwZqKEagWmcB7J2Ufan2/ck= Subject key identifier: 8F:DA:57:BC:B8:F0:91:91:01:12:B0:85:2D:6D:08:7D:8F:C7:B5:D1 Authority key identifier: 6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 Certificate issuer: /CN=A91A45E0/serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Certificate serial: 0C89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft Manifest number: 0C62 Signing time: Sat 18 Oct 2025 19:23:00 +0000 Manifest this update: Sat 18 Oct 2025 19:22:59 +0000 Manifest next update: Sat 25 Oct 2025 19:22:59 +0000 Files and hashes: 1: awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl (hash: 1l1HdSsPKnE8dzoOyIOBp/2LEzpYHQX7Ham7kM+ElIE=) 2: 1ECA8050696211EC8A05D115C4F9AE02.roa (hash: bKIVbhRs5w35IIfwUaxKPcUoIg+dZW+Orr/jkzvA1ls=) 3: 7A0359125C0E11ECA36CBF0FC4F9AE02.roa (hash: o9KgCgIfk9qmZZ9pgzWFPU4WMxKkFhiZ4bjzLNQ6ffs=) 4: DF1E2FEA97D611EB8BEF8223C4F9AE02.roa (hash: ltU83qHdHMX+gE2JiPsnwwizXD7fI0umImKJHXZ+qiY=) 5: 884C5FB8E60411EFBF5A7957C4F9AE02.roa (hash: X2T86WPoFoEyZcogT1ndr7RJyh96AHdCumJauzM/7xw=) 6: 84CFF0D6D2F311EEAFCF3273C4F9AE02.roa (hash: 3CkpfzzdlD3cY7gMPcsoVBDo+GHLrm85uXTpFP0fJ9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:22:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3209 (0xc89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45E0, serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Validity Not Before: Oct 18 19:22:59 2025 GMT Not After : Oct 25 19:22:59 2025 GMT Subject: CN=68f3e914-b123 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:82:eb:0c:b0:d9:86:8d:59:97:e7:15:d0:1a: 74:15:3c:58:2b:fb:99:8d:2b:fa:38:6c:df:21:61: 98:a6:34:c5:96:da:e6:22:ac:d2:b5:80:08:0c:cb: 8d:4a:33:c7:06:6f:69:f8:b0:9e:af:8a:c1:aa:cf: 29:9d:5a:9b:c5:00:2e:b7:b6:57:13:4f:d6:65:b7: 08:97:bd:cd:56:69:0f:68:b4:39:7b:e4:af:41:74: 60:0f:bf:d3:d1:c6:df:ac:79:7e:79:d7:43:67:0c: 75:04:af:19:4d:05:e7:d1:2a:e4:85:84:59:52:b1: c3:0a:b6:90:93:10:b3:b9:a6:1b:64:3f:8d:be:43: 12:3d:8b:8f:57:77:91:d5:22:8e:9a:73:ce:cc:6c: 94:2e:c8:3a:09:5d:1f:ed:fe:e7:7d:ea:6b:1c:31: 32:19:5c:05:65:76:e0:3e:63:a6:aa:2c:ff:c3:b0: 78:fe:b6:3b:34:22:e8:bd:4f:50:6f:d6:f9:0f:84: cd:19:31:9e:e5:c1:99:1f:44:31:ea:43:c4:cc:72: 08:cf:21:17:43:c6:65:5c:bc:2e:03:a7:4f:af:49: f3:d6:79:01:53:5b:a8:f8:45:57:b5:fe:6d:7e:fb: 05:b0:63:10:d3:a2:f2:34:e7:21:27:f0:86:f5:ed: 89:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:DA:57:BC:B8:F0:91:91:01:12:B0:85:2D:6D:08:7D:8F:C7:B5:D1 X509v3 Authority Key Identifier: keyid:6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:7e:fc:53:1c:1e:17:b0:f0:97:2b:c5:10:ff:c9:61:0d:2a: b9:df:d3:34:a2:d7:dd:a3:96:40:6f:4f:f5:92:6e:09:29:b5: 38:bc:33:94:8c:a3:9d:59:0d:d3:3e:7f:04:a1:57:b6:c0:8e: c1:60:e6:0f:70:3f:63:0e:7a:3d:93:49:20:8c:d2:d1:6c:cf: 14:df:2f:7b:33:6c:8b:be:7a:0e:ce:11:c6:f1:60:0c:56:2f: 7d:09:f7:d0:9e:6d:ed:a8:a5:75:e4:0a:65:d9:ac:b0:66:f8: 46:eb:ff:a7:0b:ad:82:83:6c:22:2a:90:56:b3:12:0c:9d:d1: 9a:f7:2f:c3:9c:de:0e:d7:b7:16:1c:a0:ad:88:1e:2b:46:cb: 10:75:a8:22:32:f9:46:03:2f:ff:07:18:08:65:2d:4b:5d:52: 5e:a5:72:14:9c:61:1d:e7:65:7e:54:17:7e:5a:f6:21:e3:0c: c5:5e:68:b2:4b:cd:01:c0:61:d8:e5:89:1f:f1:fa:a8:cb:3f: 0a:76:44:cc:da:cb:a4:44:4d:50:d7:0c:00:af:fb:e8:7b:fd: d8:32:87:f1:2b:90:ad:ae:94:ee:7b:81:80:15:8c:04:16:c7: 6c:d8:b1:b8:ec:b3:b0:44:bc:6e:f2:76:9a:5b:57:81:dc:75: 55:32:d1:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1RTAxMTAvBgNVBAUTKDZCMENCNTk1MDNEQTg5NUZGOTQyNjlEN0E5QkMyMDI2 MTcwNERDRTkwHhcNMjUxMDE4MTkyMjU5WhcNMjUxMDI1MTkyMjU5WjAYMRYwFAYD VQQDEw02OGYzZTkxNC1iMTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmYLrDLDZho1Zl+cV0Bp0FTxYK/uZjSv6OGzfIWGYpjTFltrmIqzStYAIDMuN SjPHBm9p+LCer4rBqs8pnVqbxQAut7ZXE0/WZbcIl73NVmkPaLQ5e+SvQXRgD7/T 0cbfrHl+eddDZwx1BK8ZTQXn0SrkhYRZUrHDCraQkxCzuaYbZD+NvkMSPYuPV3eR 1SKOmnPOzGyULsg6CV0f7f7nfeprHDEyGVwFZXbgPmOmqiz/w7B4/rY7NCLovU9Q b9b5D4TNGTGe5cGZH0Qx6kPEzHIIzyEXQ8ZlXLwuA6dPr0nz1nkBU1uo+EVXtf5t fvsFsGMQ06LyNOchJ/CG9e2JcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI/aV7y4 8JGRARKwhS1tCH2Px7XRMB8GA1UdIwQYMBaAFGsMtZUD2olf+UJp16m8ICYXBNzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVFMC8yM0JGMkYyNjEx M0UxMUVBODhFODc4NzZDNEY5QUUwMi9hd3kxbFFQYWlWXzVRbW5YcWJ3Z0poY0Uz T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F3eTFsUVBhaVZfNVFtblhxYndnSmhjRTNPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDVFMC8yM0JGMkYyNjExM0UxMUVBODhFODc4NzZDNEY5QUUwMi9hd3kxbFFQYWlW XzVRbW5YcWJ3Z0poY0UzT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFfvxTHB4XsPCXK8UQ/8lhDSq539M0otfdo5ZAb0/1km4JKbU4vDOU jKOdWQ3TPn8EoVe2wI7BYOYPcD9jDno9k0kgjNLRbM8U3y97M2yLvnoOzhHG8WAM Vi99CffQnm3tqKV15Apl2aywZvhG6/+nC62Cg2wiKpBWsxIMndGa9y/DnN4O17cW HKCtiB4rRssQdagiMvlGAy//BxgIZS1LXVJepXIUnGEd52V+VBd+WvYh4wzFXmiy S80BwGHY5Ykf8fqoyz8KdkTM2sukRE1Q1wwAr/voe/3YMofxK5CtrpTue4GAFYwE Fsds2LG47LOwRLxu8naaW1eB3HVVMtFs -----END CERTIFICATE-----Generated at Mon Oct 20 14:46:16 2025 by rpki-client