$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft File: W2pwDO4aU9VRnlolxk0a0ro3zac.mft (raw, json) Hash identifier: AN1T5kL8oE1R0XQHtdhuQ0WAmkdUsTxbZrmbnnEeQc0= Subject key identifier: 07:AC:6A:29:2F:49:9A:27:E8:E6:E3:B9:B1:F1:5F:EA:71:12:90:23 Authority key identifier: 5B:6A:70:0C:EE:1A:53:D5:51:9E:5A:25:C6:4D:1A:D2:BA:37:CD:A7 Certificate issuer: /CN=A91AAB94/serialNumber=5B6A700CEE1A53D5519E5A25C64D1AD2BA37CDA7 Certificate serial: 02AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft Manifest number: 02A8 Signing time: Sun 19 Oct 2025 03:42:44 +0000 Manifest this update: Sun 19 Oct 2025 03:42:43 +0000 Manifest next update: Sun 26 Oct 2025 03:42:43 +0000 Files and hashes: 1: W2pwDO4aU9VRnlolxk0a0ro3zac.crl (hash: SR98FMzzYrIRjly4zoiIqq+RsGpY88ZXqFmhKl6N5BU=) 2: 53AA673C16A911ED88058C80C4F9AE02.roa (hash: TZ/n2fdCp6It0G4ugsLwMjkFuDgasyyKStMAe77+R34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.crl rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:42:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 684 (0x2ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAB94, serialNumber=5B6A700CEE1A53D5519E5A25C64D1AD2BA37CDA7 Validity Not Before: Oct 19 03:42:43 2025 GMT Not After : Oct 26 03:42:43 2025 GMT Subject: CN=68f45e34-c317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:4e:d7:3c:bb:94:a8:c9:75:fa:b0:5c:28:54: be:90:56:de:02:06:8b:1a:ee:2c:79:ee:61:da:fa: b6:b3:73:bc:a8:bf:f2:bd:01:11:19:5f:f6:11:1c: 17:b2:e1:b0:0a:e8:2c:11:ff:61:fc:2f:79:b4:e8: 3a:a9:5e:55:fe:a4:fb:69:6a:b6:f5:9f:7a:47:f4: 0a:07:57:01:db:5f:c7:e7:f0:a5:2d:62:fb:56:fc: 3b:9b:8f:70:88:da:0f:c4:22:21:ff:32:08:d2:18: 25:d6:50:64:31:b1:59:df:0b:66:68:29:46:d2:a0: 4f:1c:99:d6:94:ff:04:3b:61:6d:98:bb:e7:98:4e: 70:84:fa:1b:a9:df:88:d4:fc:76:a8:39:b0:fb:2d: 6b:d8:0a:b4:fb:dd:97:9d:e2:14:c6:1a:c5:e9:6d: cf:6d:e7:6d:39:1f:e1:dd:ca:02:0a:5c:db:a1:f8: 37:ee:b8:12:1a:34:ff:c9:53:6c:e7:b1:ad:48:60: e2:b1:96:ed:a6:4f:69:62:53:af:a0:b4:73:de:2c: 70:64:51:b9:93:81:0b:5c:d2:82:56:a7:f7:51:ec: 34:45:e4:31:d1:6e:3b:c2:50:30:ab:5a:96:d9:78: 8d:b5:d3:37:5a:ee:8c:d4:88:f2:a8:9e:15:f5:8f: cb:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:AC:6A:29:2F:49:9A:27:E8:E6:E3:B9:B1:F1:5F:EA:71:12:90:23 X509v3 Authority Key Identifier: keyid:5B:6A:70:0C:EE:1A:53:D5:51:9E:5A:25:C6:4D:1A:D2:BA:37:CD:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W2pwDO4aU9VRnlolxk0a0ro3zac.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAB94/707023FA16A611EDAC3CA17DC4F9AE02/W2pwDO4aU9VRnlolxk0a0ro3zac.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:bf:c9:5d:ef:3e:f4:48:27:13:6f:a7:2e:81:6c:92:e2:12: fe:90:ca:8a:78:dd:5b:5a:13:bf:e8:92:ee:a4:05:fb:1c:c2: 75:c7:a0:e9:0d:34:cf:4c:61:78:f3:c4:12:33:c2:de:ee:0b: 25:13:a6:2f:34:db:a9:9b:05:4b:00:2c:88:3e:8b:3b:37:97: a1:24:2e:15:1e:8c:3b:74:3f:9c:a9:e7:c1:8c:c7:c2:8f:a2: 1e:1a:86:22:76:dd:a1:91:3a:1a:b1:1a:17:ff:8b:f4:cc:4e: 59:4f:e4:f0:c6:b0:04:dc:a5:0a:26:e5:75:e2:b2:4f:b7:99: 83:bd:6d:17:a8:ed:81:27:bf:94:54:35:8e:d6:8a:26:46:f7: d8:26:7f:57:03:f4:fd:98:18:a7:9f:b1:06:8e:15:0a:3d:fa: 32:19:ad:fe:b1:82:0f:5a:f4:63:da:d1:56:6a:8c:65:f6:08: 5c:8a:4b:b5:f7:a3:b3:10:8e:4d:a6:d3:bb:7e:36:a6:d3:a7: c7:e9:93:11:2f:21:63:04:ff:45:b2:b9:2b:b0:cf:f2:82:c4: f5:6b:30:71:7c:9b:0d:0f:93:8f:2c:de:2c:a7:af:55:15:18: 80:6f:bf:8b:85:89:69:e6:0e:5f:ef:64:58:49:4d:e1:be:e7: 7f:84:7f:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFCOTQxMTAvBgNVBAUTKDVCNkE3MDBDRUUxQTUzRDU1MTlFNUEyNUM2NEQxQUQy QkEzN0NEQTcwHhcNMjUxMDE5MDM0MjQzWhcNMjUxMDI2MDM0MjQzWjAYMRYwFAYD VQQDEw02OGY0NWUzNC1jMzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6E7XPLuUqMl1+rBcKFS+kFbeAgaLGu4see5h2vq2s3O8qL/yvQERGV/2ERwX suGwCugsEf9h/C95tOg6qV5V/qT7aWq29Z96R/QKB1cB21/H5/ClLWL7Vvw7m49w iNoPxCIh/zII0hgl1lBkMbFZ3wtmaClG0qBPHJnWlP8EO2FtmLvnmE5whPobqd+I 1Px2qDmw+y1r2Aq0+92XneIUxhrF6W3PbedtOR/h3coCClzbofg37rgSGjT/yVNs 57GtSGDisZbtpk9pYlOvoLRz3ixwZFG5k4ELXNKCVqf3Uew0ReQx0W47wlAwq1qW 2XiNtdM3Wu6M1IjyqJ4V9Y/L7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAesaikv SZon6ObjubHxX+pxEpAjMB8GA1UdIwQYMBaAFFtqcAzuGlPVUZ5aJcZNGtK6N82n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUI5NC83MDcwMjNGQTE2 QTYxMUVEQUMzQ0ExN0RDNEY5QUUwMi9XMnB3RE80YVU5VlJubG9seGswYTBybzN6 YWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1cycHdETzRhVTlWUm5sb2x4azBhMHJvM3phYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUI5NC83MDcwMjNGQTE2QTYxMUVEQUMzQ0ExN0RDNEY5QUUwMi9XMnB3RE80YVU5 VlJubG9seGswYTBybzN6YWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPv8ld7z70SCcTb6cugWyS4hL+kMqKeN1bWhO/6JLupAX7HMJ1x6Dp DTTPTGF488QSM8Le7gslE6YvNNupmwVLACyIPos7N5ehJC4VHow7dD+cqefBjMfC j6IeGoYidt2hkToasRoX/4v0zE5ZT+TwxrAE3KUKJuV14rJPt5mDvW0XqO2BJ7+U VDWO1oomRvfYJn9XA/T9mBinn7EGjhUKPfoyGa3+sYIPWvRj2tFWaoxl9ghciku1 96OzEI5NptO7fjam06fH6ZMRLyFjBP9FsrkrsM/ygsT1azBxfJsND5OPLN4sp69V FRiAb7+LhYlp5g5f72RYSU3hvud/hH/K -----END CERTIFICATE-----Generated at Mon Oct 20 04:18:55 2025 by rpki-client