$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft File: mFjOS0vHLnbmaMR9RImMCQiWq-s.mft (raw, json) Hash identifier: qsTfH8/yyGAIsXIQ+UKjUojl2Zv+IY9nFDzdi8C68wE= Subject key identifier: 97:DF:7C:4D:98:15:83:C9:51:18:1C:15:D6:86:5E:89:82:09:37:5E Authority key identifier: 98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB Certificate issuer: /CN=A91A4B1A/serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Certificate serial: 0226 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft Manifest number: 0220 Signing time: Mon 20 Oct 2025 16:19:44 +0000 Manifest this update: Mon 20 Oct 2025 16:19:43 +0000 Manifest next update: Mon 27 Oct 2025 16:19:43 +0000 Files and hashes: 1: mFjOS0vHLnbmaMR9RImMCQiWq-s.crl (hash: BXpUUvrvgkNNiv+tqmwftdbjffJ+JxpkZLu1Ym9Y3Jg=) 2: 4C3A869614DF11EEAB46A86DC4F9AE02.roa (hash: lu38CDRBmX2eL86FuDGblRO37V7hVT/nMCfbmUIJkQk=) 3: 4BC4F6A614DF11EEAB46A86DC4F9AE02.roa (hash: UFLmIYqMMQZsSlXO+J3Nx0+Pb9WqTG32RlxuAiHOUdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:19:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 550 (0x226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Validity Not Before: Oct 20 16:19:43 2025 GMT Not After : Oct 27 16:19:43 2025 GMT Subject: CN=68f66120-c754 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4e:06:8b:a1:b3:e2:92:f7:56:f9:c1:86:cb: 88:d9:41:cd:91:46:e6:36:22:20:79:d1:6e:ac:c6: d8:44:f7:f0:ad:ec:3b:18:30:72:29:9f:af:71:c2: 04:89:9f:65:32:1c:25:a8:69:9e:83:57:70:1f:16: 43:cd:40:5c:b9:dc:59:28:ef:95:b3:05:20:54:39: eb:7d:43:73:c2:53:4b:42:79:80:c7:50:55:30:86: 22:2a:3e:d1:23:a1:f9:1f:07:bb:ae:84:aa:a2:03: 95:ab:44:83:db:93:c0:66:4d:ef:2c:da:7e:1c:ff: cc:87:da:ca:91:90:a4:10:97:97:df:45:97:b5:87: 3e:7e:4e:9b:13:f0:2f:cb:b5:69:04:1d:fe:4f:79: 91:2d:0a:8c:b2:d1:de:89:59:e7:da:cd:a1:cf:5b: db:33:0d:29:57:e9:23:36:b0:05:e5:eb:6a:e5:cb: 28:55:c1:bc:b4:7e:42:b6:20:e6:5a:82:4f:02:00: a8:43:1e:a6:a4:2d:b2:ff:6f:d7:f3:f0:44:f6:09: a3:e2:16:0b:e0:60:89:ed:a4:8a:40:f4:3e:07:0d: 53:0c:54:b0:88:bd:0e:ed:7f:37:64:3c:56:fe:50: 3c:e7:4f:f7:05:69:9e:8f:16:cb:a9:bf:70:8d:84: a7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:DF:7C:4D:98:15:83:C9:51:18:1C:15:D6:86:5E:89:82:09:37:5E X509v3 Authority Key Identifier: keyid:98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:57:0e:2f:1a:15:59:ad:a3:b0:57:bb:8e:7c:9f:86:32:3c: fc:d0:fc:d4:c0:cd:22:95:7a:74:c1:a7:25:69:1a:40:75:70: 01:7e:2f:dc:90:8a:3e:47:0b:8f:04:3d:01:b7:cd:86:f1:4f: be:4c:c5:78:3d:bb:e3:4e:f3:e5:01:18:27:39:18:b1:90:4c: db:a5:db:4d:45:75:3c:fc:d6:72:93:9e:7b:fb:9e:ba:77:98: c6:eb:93:be:1d:04:46:b5:73:49:b5:27:aa:be:2b:a8:a6:4e: 08:14:78:5f:65:76:c8:80:23:4a:4c:7b:13:f0:b8:41:71:8b: f1:fc:5e:e0:d2:c5:c5:d7:b3:03:92:86:60:2c:d3:db:87:99: c7:8a:2f:61:3e:83:bb:e3:a7:26:63:5f:d6:6d:52:35:de:4f: 5f:24:2c:ad:1a:d2:07:af:ce:a4:0b:aa:34:e5:e5:0f:a8:ff: 8e:91:e5:e2:c9:7a:bf:a6:d9:d8:37:f0:87:29:47:77:a9:3c: 77:23:56:fc:12:f5:46:0f:ab:48:da:8a:74:84:89:71:a6:1d: 4a:92:b9:ef:a3:b2:be:7b:dc:e7:ee:a4:63:6e:70:53:db:08: 42:36:0f:ad:c3:0d:13:3a:5f:27:6e:5b:39:e8:53:ae:c2:64: 60:d7:bc:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKDk4NThDRTRCNEJDNzJFNzZFNjY4QzQ3RDQ0ODk4QzA5 MDg5NkFCRUIwHhcNMjUxMDIwMTYxOTQzWhcNMjUxMDI3MTYxOTQzWjAYMRYwFAYD VQQDEw02OGY2NjEyMC1jNzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy04Gi6Gz4pL3VvnBhsuI2UHNkUbmNiIgedFurMbYRPfwrew7GDByKZ+vccIE iZ9lMhwlqGmeg1dwHxZDzUBcudxZKO+VswUgVDnrfUNzwlNLQnmAx1BVMIYiKj7R I6H5Hwe7roSqogOVq0SD25PAZk3vLNp+HP/Mh9rKkZCkEJeX30WXtYc+fk6bE/Av y7VpBB3+T3mRLQqMstHeiVnn2s2hz1vbMw0pV+kjNrAF5etq5csoVcG8tH5CtiDm WoJPAgCoQx6mpC2y/2/X8/BE9gmj4hYL4GCJ7aSKQPQ+Bw1TDFSwiL0O7X83ZDxW /lA850/3BWmejxbLqb9wjYSnzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJfffE2Y FYPJURgcFdaGXomCCTdeMB8GA1UdIwQYMBaAFJhYzktLxy525mjEfUSJjAkIlqvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS9CNDVGM0ZDNDgx OUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExuYm1hTVI5UkltTUNRaVdx LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Gak9TMHZITG5ibWFNUjlSSW1NQ1FpV3Etcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS9CNDVGM0ZDNDgxOUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExu Ym1hTVI5UkltTUNRaVdxLXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmVw4vGhVZraOwV7uOfJ+GMjz80PzUwM0ilXp0waclaRpAdXABfi/c kIo+RwuPBD0Bt82G8U++TMV4PbvjTvPlARgnORixkEzbpdtNRXU8/NZyk557+566 d5jG65O+HQRGtXNJtSeqviuopk4IFHhfZXbIgCNKTHsT8LhBcYvx/F7g0sXF17MD koZgLNPbh5nHii9hPoO746cmY1/WbVI13k9fJCytGtIHr86kC6o05eUPqP+OkeXi yXq/ptnYN/CHKUd3qTx3I1b8EvVGD6tI2op0hIlxph1Kkrnvo7K+e9zn7qRjbnBT 2whCNg+tww0TOl8nbls56FOuwmRg17zZ -----END CERTIFICATE-----Generated at Tue Oct 21 12:46:02 2025 by rpki-client