$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft File: -Q4hD858Z6Lysy3hTusFoEsNEOE.mft (raw, json) Hash identifier: RrYTxXx8yRYE2SRYWrwpn8WIOICDopY7Is+f/gq4/0k= Subject key identifier: 4E:96:5D:8B:B8:07:EB:28:DE:53:85:0A:AA:68:BF:23:EE:E3:6E:6F Authority key identifier: F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 Certificate issuer: /CN=A91A7369/serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Certificate serial: 0195 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft Manifest number: 0191 Signing time: Sun 19 Oct 2025 06:03:33 +0000 Manifest this update: Sun 19 Oct 2025 06:03:32 +0000 Manifest next update: Sun 26 Oct 2025 06:03:32 +0000 Files and hashes: 1: -Q4hD858Z6Lysy3hTusFoEsNEOE.crl (hash: 0ZKcXWkqXh5sWjD1zfr0nJQKKQNbnMZfoV5VoXtPGLk=) 2: A99E5658488011EE8113A766C4F9AE02.roa (hash: NccKQh/awErD0XICha+c3zCJvrDGH6h5P5yVRARZDuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:03:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 405 (0x195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7369, serialNumber=F90E210FCE7C67A2F2B32DE14EEB05A04B0D10E1 Validity Not Before: Oct 19 06:03:32 2025 GMT Not After : Oct 26 06:03:32 2025 GMT Subject: CN=68f47f35-b8dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2b:3c:a8:82:94:ae:d7:be:be:4c:73:80:8c: c8:8c:90:7b:e2:32:14:bf:a5:4c:55:b8:cf:1b:14: 9a:f6:95:3e:15:4a:97:46:bc:48:88:c2:8c:92:d2: ed:55:5f:55:5d:ba:7f:36:06:8d:23:48:43:c7:75: 78:4c:70:0f:fe:50:94:e1:cd:c3:da:38:70:e7:e8: 6e:46:23:64:8e:35:0c:04:2d:15:38:fd:dc:85:13: f2:27:d6:f5:36:c1:8c:a6:00:4a:ea:7c:a3:4a:e0: 6c:6d:78:d2:d7:7c:8b:c9:7a:64:f1:50:7b:e5:97: c9:55:01:ec:c5:78:d5:f1:5d:a4:a7:73:0d:9c:85: 63:1e:66:0b:31:48:0d:ad:69:77:51:13:8c:e9:64: 50:8a:9e:c1:b6:24:40:40:17:26:3e:58:a3:12:d9: 49:65:f6:fe:33:02:78:1d:b2:6d:5a:a9:26:87:c1: b8:1d:13:fc:c0:70:eb:eb:73:fd:63:27:34:9d:0a: 04:fe:ec:11:bf:af:fa:a7:3c:30:1a:c3:38:5e:1d: 7b:52:9f:1a:f2:93:9b:4b:e7:97:29:5d:22:2d:3a: 1f:a1:a3:14:19:be:e1:6d:8d:11:24:e1:f8:65:4e: 1c:3c:ea:27:65:95:a9:5c:e2:8c:de:82:c3:51:bc: 43:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:96:5D:8B:B8:07:EB:28:DE:53:85:0A:AA:68:BF:23:EE:E3:6E:6F X509v3 Authority Key Identifier: keyid:F9:0E:21:0F:CE:7C:67:A2:F2:B3:2D:E1:4E:EB:05:A0:4B:0D:10:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Q4hD858Z6Lysy3hTusFoEsNEOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7369/B1D61942487F11EEA80A024CC4F9AE02/-Q4hD858Z6Lysy3hTusFoEsNEOE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:af:5f:44:c2:bb:50:30:ab:1a:16:1b:82:84:2b:bb:c5:bf: 40:ff:25:34:bd:60:03:d7:74:2e:93:a8:86:c5:8e:55:f2:aa: 86:f1:86:83:2e:43:88:f7:57:92:00:9f:84:c6:99:54:5d:65: 39:63:e6:7b:f7:ec:2f:1e:95:2f:c9:06:c9:65:21:c7:ed:13: 1d:6d:d1:87:81:d7:d0:83:80:a8:6b:84:28:a1:a4:3b:30:62: 89:e4:6f:c5:c7:53:f7:98:47:d9:6d:94:1a:96:30:54:14:89: c2:16:b2:61:e4:e6:65:3e:f2:fd:3c:f1:5e:f1:b1:89:d4:cc: a9:d8:06:25:25:f5:b5:da:92:fd:c5:b7:20:16:56:68:4a:4f: ae:e4:5d:de:93:1a:03:2a:ce:c9:74:00:7d:e0:5e:32:ee:4a: 97:10:01:69:f0:68:b4:05:61:e7:ff:86:e5:08:96:76:82:dd: 67:72:66:9e:b9:2c:97:47:13:f0:65:d3:22:b4:97:be:23:e2: 35:c2:a5:b2:50:1a:14:25:52:8f:7b:1e:b2:e5:a3:01:03:f9: 07:62:75:45:3f:f7:da:ea:a4:69:5a:cd:58:88:74:98:93:ba: ee:61:d4:3c:31:7f:0a:28:75:a4:b0:7e:6a:85:16:9d:29:b7: 85:6a:39:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTczNjkxMTAvBgNVBAUTKEY5MEUyMTBGQ0U3QzY3QTJGMkIzMkRFMTRFRUIwNUEw NEIwRDEwRTEwHhcNMjUxMDE5MDYwMzMyWhcNMjUxMDI2MDYwMzMyWjAYMRYwFAYD VQQDEw02OGY0N2YzNS1iOGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSs8qIKUrte+vkxzgIzIjJB74jIUv6VMVbjPGxSa9pU+FUqXRrxIiMKMktLt VV9VXbp/NgaNI0hDx3V4THAP/lCU4c3D2jhw5+huRiNkjjUMBC0VOP3chRPyJ9b1 NsGMpgBK6nyjSuBsbXjS13yLyXpk8VB75ZfJVQHsxXjV8V2kp3MNnIVjHmYLMUgN rWl3UROM6WRQip7BtiRAQBcmPlijEtlJZfb+MwJ4HbJtWqkmh8G4HRP8wHDr63P9 Yyc0nQoE/uwRv6/6pzwwGsM4Xh17Up8a8pObS+eXKV0iLTofoaMUGb7hbY0RJOH4 ZU4cPOonZZWpXOKM3oLDUbxDFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE6WXYu4 B+so3lOFCqpovyPu425vMB8GA1UdIwQYMBaAFPkOIQ/OfGei8rMt4U7rBaBLDRDh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNzM2OS9CMUQ2MTk0MjQ4 N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2THlzeTNoVHVzRm9Fc05F T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1RNGhEODU4WjZMeXN5M2hUdXNGb0VzTkVPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzM2OS9CMUQ2MTk0MjQ4N0YxMUVFQTgwQTAyNENDNEY5QUUwMi8tUTRoRDg1OFo2 THlzeTNoVHVzRm9Fc05FT0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdr19EwrtQMKsaFhuChCu7xb9A/yU0vWAD13Quk6iGxY5V8qqG8YaD LkOI91eSAJ+ExplUXWU5Y+Z79+wvHpUvyQbJZSHH7RMdbdGHgdfQg4Coa4QooaQ7 MGKJ5G/Fx1P3mEfZbZQaljBUFInCFrJh5OZlPvL9PPFe8bGJ1Myp2AYlJfW12pL9 xbcgFlZoSk+u5F3ekxoDKs7JdAB94F4y7kqXEAFp8Gi0BWHn/4blCJZ2gt1ncmae uSyXRxPwZdMitJe+I+I1wqWyUBoUJVKPex6y5aMBA/kHYnVFP/fa6qRpWs1YiHSY k7ruYdQ8MX8KKHWksH5qhRadKbeFajn7 -----END CERTIFICATE-----Generated at Mon Oct 20 10:15:52 2025 by rpki-client