$ rpki-client -vvf rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft File: CkMWPL6xv3mMnOQcHF50ociDesY.mft (raw, json) Hash identifier: jDT/9QbV/qgoK1nlJqWkb6MFQ1eq1KGNWjeTRsw015U= Subject key identifier: 41:B9:99:08:EF:86:3B:F7:83:7E:1E:02:60:AD:8A:EF:A7:D1:49:62 Authority key identifier: 0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 Certificate issuer: /CN=A91A95C1/serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Certificate serial: 02C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft Manifest number: 02BD Signing time: Sun 19 Oct 2025 03:36:22 +0000 Manifest this update: Sun 19 Oct 2025 03:36:22 +0000 Manifest next update: Sun 26 Oct 2025 03:36:22 +0000 Files and hashes: 1: CkMWPL6xv3mMnOQcHF50ociDesY.crl (hash: suCPmy9A+9aGUyRdCNQ5Gd6zwwFoQc9H0xnxqWjb9WQ=) 2: DA61302A0F0211EDABBE3C6AC4F9AE02.roa (hash: vW2EZP2Cwb4m+zHwX4dxc62MHLuj24Kv3gEJBseD9aY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:36:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 706 (0x2c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A95C1, serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Validity Not Before: Oct 19 03:36:22 2025 GMT Not After : Oct 26 03:36:22 2025 GMT Subject: CN=68f45cb6-2fe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:de:1c:35:a0:0c:46:9d:84:ae:3d:e1:11:d5: 6c:ad:c2:93:a2:f6:9c:6d:6d:ec:a3:98:ba:4a:b2: dd:27:09:fd:99:d8:f9:ae:06:12:44:71:70:61:62: a6:cb:94:d1:e8:94:b2:72:78:81:ca:84:e1:fd:c0: 45:5b:2d:37:64:86:e9:c7:59:a9:6b:66:00:93:f3: 02:e6:4c:5e:f5:80:4d:69:df:0c:df:a3:4d:1c:0f: bc:da:6a:f0:64:62:88:02:2a:09:5c:63:43:4b:5a: 72:97:75:25:47:62:f2:e5:76:43:55:4d:6f:22:4a: 17:e5:bc:f4:66:5a:4f:1f:a4:37:8e:a3:4c:a3:40: b3:1d:45:09:37:d5:45:98:ab:be:b6:56:11:79:ee: 7b:04:50:d4:d1:5e:f5:32:ec:93:4f:44:69:74:32: dd:a2:b3:7c:99:d6:b4:75:e2:4e:fd:6a:ee:8d:d4: 7d:59:3b:7b:ff:ae:04:19:aa:c7:b7:c6:1b:99:a6: e3:1f:a5:a3:ca:18:9c:ea:6f:6d:76:fc:44:43:7b: b8:af:7e:c9:3f:18:4a:06:cc:00:fb:01:1a:76:9c: 34:bd:90:5f:63:30:a1:cb:e2:04:f1:cb:62:2d:b4: 3d:0a:0a:78:5d:82:f0:e9:dd:62:a3:e0:2e:75:ea: 69:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:B9:99:08:EF:86:3B:F7:83:7E:1E:02:60:AD:8A:EF:A7:D1:49:62 X509v3 Authority Key Identifier: keyid:0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:61:f6:d6:25:ff:a3:59:19:6e:fb:a8:b9:08:7a:fb:9a:cf: 15:b2:cc:12:f1:88:d7:d4:52:59:00:9b:2a:2c:0e:a9:f6:45: a5:0a:d7:7f:2d:4d:1b:d7:29:fc:28:eb:3d:55:bf:75:08:e6: 74:a2:33:45:f1:49:1d:b3:6a:f1:12:d1:de:ed:3c:03:d6:cd: a9:84:41:84:98:c5:71:f7:c9:22:92:0b:ef:43:14:a7:0c:cc: e6:d8:60:d7:0c:43:99:2d:50:fc:90:47:e3:d3:5a:de:b5:d3: 23:9c:5e:98:69:14:c0:8e:36:89:8d:7d:d4:87:84:4d:a6:ed: c5:43:35:a6:b4:c1:e6:c2:7b:50:a2:63:bd:aa:d4:a2:54:e1: e3:30:4c:36:3c:0d:f9:20:5b:5b:8e:b2:7d:57:14:77:fa:99: 70:8b:66:a5:47:73:ff:a8:6e:95:6f:e1:91:25:0d:a1:d1:1c: 26:82:a1:ac:27:26:23:de:91:1d:e6:1f:39:22:27:37:d8:51: ad:6b:56:46:c5:bf:0f:89:b8:1d:62:b4:49:c5:10:9e:40:54: a8:53:0e:11:68:cf:bc:99:11:42:95:d0:ef:9a:df:96:6e:6d: f5:7b:b5:49:35:71:eb:a2:b8:8c:7f:d8:96:72:be:b4:5b:ab: 9b:ac:1f:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk1QzExMTAvBgNVBAUTKDBBNDMxNjNDQkVCMUJGNzk4QzlDRTQxQzFDNUU3NEEx Qzg4MzdBQzYwHhcNMjUxMDE5MDMzNjIyWhcNMjUxMDI2MDMzNjIyWjAYMRYwFAYD VQQDEw02OGY0NWNiNi0yZmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApN4cNaAMRp2Erj3hEdVsrcKTovacbW3so5i6SrLdJwn9mdj5rgYSRHFwYWKm y5TR6JSycniByoTh/cBFWy03ZIbpx1mpa2YAk/MC5kxe9YBNad8M36NNHA+82mrw ZGKIAioJXGNDS1pyl3UlR2Ly5XZDVU1vIkoX5bz0ZlpPH6Q3jqNMo0CzHUUJN9VF mKu+tlYRee57BFDU0V71MuyTT0RpdDLdorN8mda0deJO/WrujdR9WTt7/64EGarH t8YbmabjH6Wjyhic6m9tdvxEQ3u4r37JPxhKBswA+wEadpw0vZBfYzChy+IE8cti LbQ9Cgp4XYLw6d1io+AudeppzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEG5mQjv hjv3g34eAmCtiu+n0UliMB8GA1UdIwQYMBaAFApDFjy+sb95jJzkHBxedKHIg3rG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTVDMS9DQkU2QkM3NDBG MDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYzbU1uT1FjSEY1MG9jaURl c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrTVdQTDZ4djNtTW5PUWNIRjUwb2NpRGVzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTVDMS9DQkU2QkM3NDBGMDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYz bU1uT1FjSEY1MG9jaURlc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfYfbWJf+jWRlu+6i5CHr7ms8VsswS8YjX1FJZAJsqLA6p9kWlCtd/ LU0b1yn8KOs9Vb91COZ0ojNF8Ukds2rxEtHe7TwD1s2phEGEmMVx98kikgvvQxSn DMzm2GDXDEOZLVD8kEfj01retdMjnF6YaRTAjjaJjX3Uh4RNpu3FQzWmtMHmwntQ omO9qtSiVOHjMEw2PA35IFtbjrJ9VxR3+plwi2alR3P/qG6Vb+GRJQ2h0RwmgqGs JyYj3pEd5h85Iic32FGta1ZGxb8PibgdYrRJxRCeQFSoUw4RaM+8mRFCldDvmt+W bm31e7VJNXHroriMf9iWcr60W6ubrB/z -----END CERTIFICATE-----Generated at Mon Oct 20 19:13:39 2025 by rpki-client