$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft File: pSvwKHcZGUlxLT2tKdSreid57EM.mft (raw, json) Hash identifier: F4y0KaUAG5fBqXtRo4BSizU+epaRgWvtc1s9j3at7tI= Subject key identifier: 71:B1:DE:44:D2:56:B1:7A:3D:A4:90:FE:F3:DC:13:90:13:9A:81:86 Authority key identifier: A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 Certificate issuer: /CN=A91AA618/serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Certificate serial: F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft Manifest number: F6 Signing time: Sun 19 Oct 2025 08:13:13 +0000 Manifest this update: Sun 19 Oct 2025 08:13:12 +0000 Manifest next update: Sun 26 Oct 2025 08:13:12 +0000 Files and hashes: 1: pSvwKHcZGUlxLT2tKdSreid57EM.crl (hash: ho/L/6zxqwrD6ZlihXtdUQGEhWDcbLWxaQOenS25084=) 2: 88F562E83DAD11EFAA46E417C4F9AE02.roa (hash: n9WiQjAGu9O9bLeoq38kpAQ+Tw7nAmw19T1TLy6Ivwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:13:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA618, serialNumber=A52BF02877191949712D3DAD29D4AB7A2779EC43 Validity Not Before: Oct 19 08:13:12 2025 GMT Not After : Oct 26 08:13:12 2025 GMT Subject: CN=68f49d99-8b24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4c:7c:0d:fd:7b:dc:05:b2:29:37:18:60:99: 1d:b7:0c:20:07:82:33:bc:c5:c4:64:c8:8b:52:e5: f3:d2:c0:14:a9:b4:32:cd:73:fd:70:02:75:f6:93: 23:42:d2:e1:98:1f:b6:31:dd:ac:69:42:8f:f8:fe: 59:d2:58:3e:88:23:4f:9e:6e:2a:66:a7:d7:6c:1c: 8b:23:ba:d7:fb:b7:62:b2:dd:b0:db:a2:f7:57:43: 48:83:73:b0:45:b1:99:e7:06:00:b8:dd:bf:96:bb: 70:96:55:9d:1f:ef:fd:9a:27:e5:f4:9f:43:51:ce: 8b:28:ca:11:45:ca:58:93:41:e0:7e:f6:aa:cb:13: 6d:62:7d:1e:08:d8:c3:3a:41:30:5d:34:3b:d9:63: e5:35:fc:97:3a:44:97:4f:30:28:da:77:7c:4c:ff: 55:c9:16:63:67:49:ea:99:c1:13:66:23:72:13:27: 6e:78:0c:ac:69:83:02:58:ea:57:46:05:cb:72:92: 79:bd:c1:e0:2f:c2:6f:20:0b:c3:71:85:95:6d:51: 40:60:00:ea:d1:d5:4f:de:87:97:52:f0:e2:74:6f: 8d:99:fb:2d:04:5e:09:9b:84:fd:81:64:4b:c7:7b: b0:89:41:f9:ac:d4:e2:94:c4:11:e8:1b:8d:88:26: 99:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:B1:DE:44:D2:56:B1:7A:3D:A4:90:FE:F3:DC:13:90:13:9A:81:86 X509v3 Authority Key Identifier: keyid:A5:2B:F0:28:77:19:19:49:71:2D:3D:AD:29:D4:AB:7A:27:79:EC:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pSvwKHcZGUlxLT2tKdSreid57EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA618/557EAB3C3ABE11EF8619D220C4F9AE02/pSvwKHcZGUlxLT2tKdSreid57EM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:df:3f:d4:d2:c3:d3:e1:88:40:08:7f:21:3f:a1:eb:30:05: 83:66:36:0d:96:8a:a8:f8:47:30:92:ae:89:c9:1a:f0:09:33: f6:2f:0b:f8:7e:49:69:02:ea:e0:1d:27:08:5d:b9:a7:54:8e: ad:9f:b3:3e:22:06:f1:36:54:6e:42:ec:d2:0b:6d:4a:32:40: 26:ff:44:72:67:26:ec:06:37:39:5b:33:62:f4:a7:bf:b8:02: 21:98:d2:aa:7b:f3:c0:83:55:9f:ac:4f:59:28:39:f9:ac:b7: bd:88:b2:ec:fa:b9:d8:e4:cd:ca:7a:c1:c6:db:df:e5:80:e4: b7:e0:8c:73:15:8f:ff:10:6e:76:81:ca:93:fe:72:52:ec:71: 51:79:e1:0e:01:3c:e9:c0:02:09:b7:db:a2:56:70:e5:01:49: e5:28:20:ce:e5:0d:b6:ed:1a:f0:44:cf:07:01:bb:9a:01:90: 19:4d:be:aa:32:3f:7e:fa:10:f3:8f:8d:af:99:f8:b8:00:a5: 64:48:ff:2b:2e:82:60:80:5b:ba:05:7a:c3:4a:0f:28:ee:0f: 1b:ba:a6:1e:40:29:6c:68:3a:20:0e:ed:3e:53:24:16:2c:c8: 1c:bc:7c:35:b9:5c:34:29:22:80:4b:56:27:27:b7:ea:c0:2d: a7:b8:ab:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE2MTgxMTAvBgNVBAUTKEE1MkJGMDI4NzcxOTE5NDk3MTJEM0RBRDI5RDRBQjdB Mjc3OUVDNDMwHhcNMjUxMDE5MDgxMzEyWhcNMjUxMDI2MDgxMzEyWjAYMRYwFAYD VQQDEw02OGY0OWQ5OS04YjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0x8Df173AWyKTcYYJkdtwwgB4IzvMXEZMiLUuXz0sAUqbQyzXP9cAJ19pMj QtLhmB+2Md2saUKP+P5Z0lg+iCNPnm4qZqfXbByLI7rX+7dist2w26L3V0NIg3Ow RbGZ5wYAuN2/lrtwllWdH+/9mifl9J9DUc6LKMoRRcpYk0HgfvaqyxNtYn0eCNjD OkEwXTQ72WPlNfyXOkSXTzAo2nd8TP9VyRZjZ0nqmcETZiNyEydueAysaYMCWOpX RgXLcpJ5vcHgL8JvIAvDcYWVbVFAYADq0dVP3oeXUvDidG+NmfstBF4Jm4T9gWRL x3uwiUH5rNTilMQR6BuNiCaZUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHGx3kTS VrF6PaSQ/vPcE5ATmoGGMB8GA1UdIwQYMBaAFKUr8Ch3GRlJcS09rSnUq3oneexD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTYxOC81NTdFQUIzQzNB QkUxMUVGODYxOUQyMjBDNEY5QUUwMi9wU3Z3S0hjWkdVbHhMVDJ0S2RTcmVpZDU3 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BTdndLSGNaR1VseExUMnRLZFNyZWlkNTdFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTYxOC81NTdFQUIzQzNBQkUxMUVGODYxOUQyMjBDNEY5QUUwMi9wU3Z3S0hjWkdV bHhMVDJ0S2RTcmVpZDU3RU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA53z/U0sPT4YhACH8hP6HrMAWDZjYNloqo+Ecwkq6JyRrwCTP2Lwv4 fklpAurgHScIXbmnVI6tn7M+IgbxNlRuQuzSC21KMkAm/0RyZybsBjc5WzNi9Ke/ uAIhmNKqe/PAg1WfrE9ZKDn5rLe9iLLs+rnY5M3KesHG29/lgOS34IxzFY//EG52 gcqT/nJS7HFReeEOATzpwAIJt9uiVnDlAUnlKCDO5Q227RrwRM8HAbuaAZAZTb6q Mj9++hDzj42vmfi4AKVkSP8rLoJggFu6BXrDSg8o7g8buqYeQClsaDogDu0+UyQW LMgcvHw1uVw0KSKAS1YnJ7fqwC2nuKv9 -----END CERTIFICATE-----Generated at Mon Oct 20 13:59:42 2025 by rpki-client