$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft File: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft (raw, json) Hash identifier: bsD+8BOSNWReI0c91l+Zr/unZznPeK4V+tPnp2MT0Us= Subject key identifier: 46:F0:51:AF:0B:46:E9:94:4E:F7:F3:3B:76:2A:E1:76:09:60:B9:6B Authority key identifier: 87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 Certificate issuer: /CN=A91A5030/serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Certificate serial: 2657 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft Manifest number: 2643 Signing time: Sat 18 Oct 2025 15:55:23 +0000 Manifest this update: Sat 18 Oct 2025 15:55:22 +0000 Manifest next update: Sat 25 Oct 2025 15:55:22 +0000 Files and hashes: 1: h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl (hash: KgBMmKCZkNoDb2Jy0ns4FcBsS51hlRACZ8sbEH0VdO0=) 2: 764601EE6A7A11EFAF10EC37C4F9AE02.roa (hash: KC0xcucgFsPCAN+N80I9dtcN0tPHYNAOVU4Hu0w2pjA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:55:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9815 (0x2657) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5030, serialNumber=8769B952F9C8006757929F06997CDE5B1E448F14 Validity Not Before: Oct 18 15:55:22 2025 GMT Not After : Oct 25 15:55:22 2025 GMT Subject: CN=68f3b86a-8108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:22:53:6e:0d:51:80:25:38:2a:f7:ad:6e:f3: 52:30:3b:4f:aa:83:4d:5c:a6:8b:b3:65:6c:0a:37: 11:56:f3:94:5a:7b:f5:85:91:d6:93:d3:77:da:21: 68:a3:c0:61:13:a6:24:7a:04:28:28:71:35:3d:7e: f1:4a:e6:bf:4b:48:32:5f:7d:7d:a0:ce:b0:9d:7f: 70:84:d6:3f:1e:8a:27:a5:9e:cc:ed:56:c5:7e:92: 16:9e:c8:78:11:ac:69:f0:ff:bd:81:99:f7:6c:7e: 99:71:02:f7:22:07:db:7a:51:2f:42:d2:0b:c5:3c: bb:0c:6c:49:b5:d3:c0:95:16:28:a0:07:a4:04:e2: 5e:f1:54:15:4a:bf:63:e1:a3:eb:5c:e5:91:f8:0c: 15:00:d7:e0:cd:d7:2b:eb:87:c3:fb:8f:d4:1e:9f: df:49:99:ec:1f:4d:48:60:da:60:08:a0:6f:df:3f: 5a:77:be:d5:f5:d6:a5:84:94:de:10:d3:ac:af:c1: 46:94:be:62:33:0c:08:c0:fb:a5:19:cf:9a:d9:ce: cf:61:3b:84:a2:dd:55:91:a4:de:a8:4e:0a:9c:38: d7:a8:1d:e8:11:47:4c:a5:a0:e0:d3:7f:b2:b6:d1: 12:18:24:8a:72:87:56:98:ba:93:ba:a6:ff:35:74: 4f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:F0:51:AF:0B:46:E9:94:4E:F7:F3:3B:76:2A:E1:76:09:60:B9:6B X509v3 Authority Key Identifier: keyid:87:69:B9:52:F9:C8:00:67:57:92:9F:06:99:7C:DE:5B:1E:44:8F:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5030/CE6A3F10FD2A11E4B74FEA42C4F9AE02/h2m5UvnIAGdXkp8GmXzeWx5EjxQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:de:84:0b:b9:0b:22:7e:a9:47:18:5f:50:84:96:6a:93:56: df:36:10:57:55:f0:3e:ae:09:be:be:df:c4:68:e5:7e:28:7e: 96:4c:d3:6c:0e:d5:05:f5:26:39:b0:3c:d1:68:76:39:e1:94: 90:22:30:db:7b:38:b7:21:9b:01:9f:0e:96:fb:b3:91:a7:79: 01:72:36:14:9b:28:81:43:7f:25:c7:29:00:da:0c:38:c7:6d: 2c:b4:df:58:d8:c1:45:1f:bc:a6:5f:47:3b:00:ca:6e:ee:20: dc:96:ed:eb:74:58:bd:a7:e7:aa:67:cf:c1:99:d1:70:af:a3: de:aa:e2:8b:5d:f2:7a:ea:18:ca:45:66:d4:67:7a:66:b1:ab: 3e:bf:90:cd:77:fb:00:7e:c9:3a:02:22:4d:91:51:61:21:0f: 6a:92:49:18:b3:40:26:88:db:47:32:65:63:c3:0e:a8:46:48: d0:2d:df:09:a1:d1:dc:3e:18:e3:b4:8d:67:6e:97:1c:a1:20: 91:28:ca:30:16:e1:0b:a3:60:b2:2a:51:a5:3a:a6:c4:c4:d4: 94:ed:ee:a4:17:5a:8a:d7:19:83:28:f1:6f:c7:e9:4c:2e:97: d9:7d:b9:0e:9f:ff:82:24:c5:e9:c6:9d:12:2a:20:62:41:94: 71:1f:0b:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUwMzAxMTAvBgNVBAUTKDg3NjlCOTUyRjlDODAwNjc1NzkyOUYwNjk5N0NERTVC MUU0NDhGMTQwHhcNMjUxMDE4MTU1NTIyWhcNMjUxMDI1MTU1NTIyWjAYMRYwFAYD VQQDEw02OGYzYjg2YS04MTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiJTbg1RgCU4KvetbvNSMDtPqoNNXKaLs2VsCjcRVvOUWnv1hZHWk9N32iFo o8BhE6YkegQoKHE1PX7xSua/S0gyX319oM6wnX9whNY/HoonpZ7M7VbFfpIWnsh4 Eaxp8P+9gZn3bH6ZcQL3IgfbelEvQtILxTy7DGxJtdPAlRYooAekBOJe8VQVSr9j 4aPrXOWR+AwVANfgzdcr64fD+4/UHp/fSZnsH01IYNpgCKBv3z9ad77V9dalhJTe ENOsr8FGlL5iMwwIwPulGc+a2c7PYTuEot1VkaTeqE4KnDjXqB3oEUdMpaDg03+y ttESGCSKcodWmLqTuqb/NXRP2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEbwUa8L RumUTvfzO3Yq4XYJYLlrMB8GA1UdIwQYMBaAFIdpuVL5yABnV5KfBpl83lseRI8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTAzMC9DRTZBM0YxMEZE MkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFHZFhrcDhHbVh6ZVd4NUVq eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gybTVVdm5JQUdkWGtwOEdtWHplV3g1RWp4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTAzMC9DRTZBM0YxMEZEMkExMUU0Qjc0RkVBNDJDNEY5QUUwMi9oMm01VXZuSUFH ZFhrcDhHbVh6ZVd4NUVqeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq3oQLuQsifqlHGF9QhJZqk1bfNhBXVfA+rgm+vt/EaOV+KH6WTNNs DtUF9SY5sDzRaHY54ZSQIjDbezi3IZsBnw6W+7ORp3kBcjYUmyiBQ38lxykA2gw4 x20stN9Y2MFFH7ymX0c7AMpu7iDclu3rdFi9p+eqZ8/BmdFwr6PequKLXfJ66hjK RWbUZ3pmsas+v5DNd/sAfsk6AiJNkVFhIQ9qkkkYs0AmiNtHMmVjww6oRkjQLd8J odHcPhjjtI1nbpccoSCRKMowFuELo2CyKlGlOqbExNSU7e6kF1qK1xmDKPFvx+lM LpfZfbkOn/+CJMXpxp0SKiBiQZRxHwsh -----END CERTIFICATE-----Generated at Sun Oct 19 23:28:59 2025 by rpki-client