$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft File: S0QUrmheSI9CsbZH7qAd67DE86A.mft (raw, json) Hash identifier: bRZQ8N89c6GtsriHiJ4Ww/z2N5JFtusAkpmnc8fnqlg= Subject key identifier: 25:B6:19:84:42:EB:B0:3A:BA:CC:F8:3D:32:F3:1A:4B:A6:A4:6C:A1 Authority key identifier: 4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 Certificate issuer: /CN=A91A9B1B/serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Certificate serial: 02C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft Manifest number: 02BE Signing time: Sun 19 Oct 2025 03:35:26 +0000 Manifest this update: Sun 19 Oct 2025 03:35:25 +0000 Manifest next update: Sun 26 Oct 2025 03:35:25 +0000 Files and hashes: 1: S0QUrmheSI9CsbZH7qAd67DE86A.crl (hash: yYTvEDYM69PacCnQZPqJsEog5hmmRrb4gcAR5iTfomk=) 2: B3F935160E0F11ED89E89675C4F9AE02.roa (hash: 8I7nPLTDeVoMhzykvcKCBL+451nr6Q9YVLjV2hOP4JE=) 3: B4A58FE60E0F11ED89E89675C4F9AE02.roa (hash: FBxr1bp/bDFsO8jlJkOCsgnIk2eezT2CPgOBlkwcWnc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:35:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 710 (0x2c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B1B, serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Validity Not Before: Oct 19 03:35:25 2025 GMT Not After : Oct 26 03:35:25 2025 GMT Subject: CN=68f45c7d-b2db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:cd:c5:8f:03:2a:ce:90:43:fa:ce:75:bf:36: 37:3d:98:ef:76:20:03:47:ad:d5:0f:50:2e:03:4b: 62:81:49:54:c5:50:f6:20:60:32:34:1f:1d:e0:26: 1c:0b:46:81:68:34:b3:0a:68:cd:03:46:92:b1:e1: 8c:1b:af:3b:12:65:d3:66:fe:f0:43:f7:34:06:c7: 3b:7f:02:d0:15:fb:92:fe:dd:b2:c1:fb:cb:c2:4a: cc:9c:ba:09:06:77:41:1c:d3:50:0b:7c:b4:74:08: 09:08:72:dd:b9:9e:3b:30:3c:c9:45:39:26:75:e2: 78:ba:b9:27:16:f1:20:22:23:bd:5a:45:68:e6:57: 6c:8c:41:ee:99:56:86:47:cc:66:c7:79:ee:8b:45: c5:b1:d3:d5:3a:15:6c:ef:aa:7a:75:10:fb:04:02: 16:48:90:d9:3a:8c:13:97:21:de:6a:5b:35:1f:b6: 6e:40:05:69:a0:c1:32:3e:61:50:d0:3a:1c:92:aa: 77:6b:84:8f:5a:24:d3:64:d1:0c:15:0b:9f:df:30: f3:85:33:7f:f5:7e:61:c2:d9:cd:06:d1:8b:86:dc: 0d:30:f3:f3:62:18:da:fd:3b:ee:9e:34:1d:1a:f2: ff:37:d1:22:3c:08:4a:84:8d:6b:da:d6:22:47:9b: 6f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:B6:19:84:42:EB:B0:3A:BA:CC:F8:3D:32:F3:1A:4B:A6:A4:6C:A1 X509v3 Authority Key Identifier: keyid:4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:cd:3e:02:d2:b9:06:b9:3c:38:5e:06:df:20:5e:3f:16:40: 0d:d0:25:04:6b:02:a7:7e:c9:91:b0:c6:c8:aa:48:d5:e8:6d: 8f:78:0f:c2:19:a9:6d:21:5b:43:34:09:9e:64:ba:b3:c8:04: 5d:28:87:bf:65:bc:54:e3:8c:a3:bf:51:de:93:9a:eb:0c:20: 83:63:4c:1a:e6:59:dc:39:37:b1:4d:c3:17:ea:04:dd:20:9f: 5e:04:48:e3:61:a6:11:2b:12:78:e1:75:b5:aa:4b:6c:14:16: 59:29:9b:fa:f9:19:a4:ac:d9:98:49:9e:16:5c:63:5c:22:19: b8:2e:ea:05:13:23:85:ae:ae:95:b6:e2:87:96:a4:b0:3e:24: ee:a4:f4:73:52:5d:b2:c0:fb:ca:5c:f5:42:4c:e0:8f:03:cc: 62:6f:31:ff:d6:c9:e0:0e:84:ac:0d:2f:95:dd:23:0a:b7:61: 43:0d:74:47:57:81:60:87:8c:8a:02:91:47:4c:cd:ab:6b:94: 1a:25:4f:c8:f3:65:c5:7f:d3:cf:77:cb:08:c4:e2:ea:72:fb: 76:bc:c6:2b:dc:9b:f6:7a:88:f8:c3:77:a1:f8:f0:34:51:d9: cb:a9:b5:8f:db:ec:bc:21:c9:cf:c3:b7:55:ce:44:09:99:94: b7:b1:5d:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCMUIxMTAvBgNVBAUTKDRCNDQxNEFFNjg1RTQ4OEY0MkIxQjY0N0VFQTAxREVC QjBDNEYzQTAwHhcNMjUxMDE5MDMzNTI1WhcNMjUxMDI2MDMzNTI1WjAYMRYwFAYD VQQDEw02OGY0NWM3ZC1iMmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1s3FjwMqzpBD+s51vzY3PZjvdiADR63VD1AuA0tigUlUxVD2IGAyNB8d4CYc C0aBaDSzCmjNA0aSseGMG687EmXTZv7wQ/c0Bsc7fwLQFfuS/t2ywfvLwkrMnLoJ BndBHNNQC3y0dAgJCHLduZ47MDzJRTkmdeJ4urknFvEgIiO9WkVo5ldsjEHumVaG R8xmx3nui0XFsdPVOhVs76p6dRD7BAIWSJDZOowTlyHeals1H7ZuQAVpoMEyPmFQ 0Dockqp3a4SPWiTTZNEMFQuf3zDzhTN/9X5hwtnNBtGLhtwNMPPzYhja/TvunjQd GvL/N9EiPAhKhI1r2tYiR5tvFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCW2GYRC 67A6usz4PTLzGkumpGyhMB8GA1UdIwQYMBaAFEtEFK5oXkiPQrG2R+6gHeuwxPOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIxQi80QjM4NjREODBF MEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJOUNzYlpIN3FBZDY3REU4 NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwUVVybWhlU0k5Q3NiWkg3cUFkNjdERTg2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIxQi80QjM4NjREODBFMEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJ OUNzYlpIN3FBZDY3REU4NkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYzT4C0rkGuTw4XgbfIF4/FkAN0CUEawKnfsmRsMbIqkjV6G2PeA/C GaltIVtDNAmeZLqzyARdKIe/ZbxU44yjv1Hek5rrDCCDY0wa5lncOTexTcMX6gTd IJ9eBEjjYaYRKxJ44XW1qktsFBZZKZv6+RmkrNmYSZ4WXGNcIhm4LuoFEyOFrq6V tuKHlqSwPiTupPRzUl2ywPvKXPVCTOCPA8xibzH/1sngDoSsDS+V3SMKt2FDDXRH V4Fgh4yKApFHTM2ra5QaJU/I82XFf9PPd8sIxOLqcvt2vMYr3Jv2eoj4w3eh+PA0 UdnLqbWP2+y8IcnPw7dVzkQJmZS3sV03 -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:19 2025 by rpki-client