$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft File: 44pe3hloyTdeUVUfrpiIigu1RJA.mft (raw, json) Hash identifier: cr56VXyQyXtfFaDb4XwqZ3LSEAx+u/Dd+d+oAJicXv4= Subject key identifier: 52:F2:DA:A1:37:44:48:5D:2B:55:2B:2B:BF:58:5F:D2:E8:08:DD:78 Authority key identifier: E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 Certificate issuer: /CN=A91AAC4B/serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft Manifest number: 92 Signing time: Sun 19 Oct 2025 09:41:51 +0000 Manifest this update: Sun 19 Oct 2025 09:41:50 +0000 Manifest next update: Sun 26 Oct 2025 09:41:50 +0000 Files and hashes: 1: 44pe3hloyTdeUVUfrpiIigu1RJA.crl (hash: U78GYWjRwT4TzC96bFUWYd2HPqHC/h8kDRXCTOglfFg=) 2: B6A31094CD7E11EFBBAE2137C4F9AE02.roa (hash: f1IFYkIgMkQ3+JyMSl70ACqIsH3T9EI7K8/rW2krDH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:41:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAC4B, serialNumber=E38A5EDE1968C9375E51551FAE98888A0BB54490 Validity Not Before: Oct 19 09:41:50 2025 GMT Not After : Oct 26 09:41:50 2025 GMT Subject: CN=68f4b25f-1bce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1d:26:08:75:47:fd:05:95:0e:4a:12:e8:f5: 3c:da:98:94:6b:98:dc:b2:a0:08:24:0a:ee:1b:2a: 2e:dd:1b:a3:5b:18:50:1d:60:b8:1e:fa:44:ad:d4: ce:2b:89:5d:47:40:e3:90:b4:d8:7e:ec:a1:84:5e: 9c:88:96:df:82:22:ff:cc:ff:01:7c:40:5b:87:17: ee:70:61:87:44:76:62:ad:93:07:88:ae:76:0a:5b: 62:28:ce:c6:ca:4d:b6:6e:44:27:63:3f:fa:40:a5: 9c:08:81:01:c7:61:ec:4b:64:a5:2c:26:6e:a3:21: f1:38:ad:a1:6c:ea:9f:9b:57:e0:9a:9e:98:f9:b8: 1a:d4:14:9d:22:2f:f7:55:83:63:a4:1b:94:5d:3e: f8:f5:ba:1c:4e:d4:71:d5:08:b7:fa:4f:df:3e:0f: 9e:ef:ed:37:fd:9c:0f:cf:84:0c:35:8d:7b:59:f9: 5d:81:70:cf:0b:22:8d:98:87:10:c1:7a:d8:d2:7a: d6:24:1f:76:aa:ad:55:cb:43:7b:1e:31:f7:b5:27: 78:ed:f0:1e:52:5f:74:fd:4c:0d:98:05:4c:4a:fe: 2d:a8:d6:23:da:68:48:40:41:48:9c:46:51:98:d9: 8c:3e:bd:84:10:0d:ac:64:4e:79:11:12:cd:92:8e: 88:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F2:DA:A1:37:44:48:5D:2B:55:2B:2B:BF:58:5F:D2:E8:08:DD:78 X509v3 Authority Key Identifier: keyid:E3:8A:5E:DE:19:68:C9:37:5E:51:55:1F:AE:98:88:8A:0B:B5:44:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/44pe3hloyTdeUVUfrpiIigu1RJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAC4B/DE3F889ACD7D11EFAA07230AC4F9AE02/44pe3hloyTdeUVUfrpiIigu1RJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:59:ad:75:c9:dd:04:fb:af:f6:0a:22:ee:bb:bf:f4:d0:61: d3:a5:fc:28:e0:b9:59:f8:60:cc:b2:b7:4b:68:ab:08:d3:cf: 64:a9:9f:fb:30:b2:c2:7f:10:24:1e:e5:f0:84:4e:2c:6e:93: 8e:fd:fb:6d:54:34:3a:46:db:68:a4:54:71:1a:83:14:d5:f4: 5a:fc:37:ef:85:a6:90:c5:de:94:d1:80:e6:a2:3e:00:52:5a: d2:38:5a:4e:2d:bc:75:4f:66:f3:04:b1:93:97:4a:90:64:ff: 96:f8:fd:43:b9:55:1e:03:c8:72:e5:a9:0f:57:93:99:57:01: 92:18:ae:c9:42:28:50:fb:99:37:af:a1:e0:64:74:e2:8a:2c: e1:f1:8c:b1:03:df:30:1f:48:b8:65:a6:b4:84:a4:c4:bd:c0: 74:02:79:92:34:35:6e:98:84:6d:5b:fa:03:10:56:79:6d:69: 99:a1:ad:70:ab:35:f3:42:5a:5d:c1:84:36:5b:cf:88:68:6e: 51:47:0a:2d:3a:6e:ea:7d:25:68:fd:a6:a2:ed:12:14:07:68: 4e:38:82:16:2a:9c:3c:f6:b3:b2:67:9b:83:80:a0:84:19:30: e9:93:55:ad:16:b2:fa:80:75:0c:e5:ed:84:37:cd:91:86:bd: 56:3e:89:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFDNEIxMTAvBgNVBAUTKEUzOEE1RURFMTk2OEM5Mzc1RTUxNTUxRkFFOTg4ODhB MEJCNTQ0OTAwHhcNMjUxMDE5MDk0MTUwWhcNMjUxMDI2MDk0MTUwWjAYMRYwFAYD VQQDEw02OGY0YjI1Zi0xYmNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArB0mCHVH/QWVDkoS6PU82piUa5jcsqAIJAruGyou3RujWxhQHWC4HvpErdTO K4ldR0DjkLTYfuyhhF6ciJbfgiL/zP8BfEBbhxfucGGHRHZirZMHiK52CltiKM7G yk22bkQnYz/6QKWcCIEBx2HsS2SlLCZuoyHxOK2hbOqfm1fgmp6Y+bga1BSdIi/3 VYNjpBuUXT749bocTtRx1Qi3+k/fPg+e7+03/ZwPz4QMNY17WfldgXDPCyKNmIcQ wXrY0nrWJB92qq1Vy0N7HjH3tSd47fAeUl90/UwNmAVMSv4tqNYj2mhIQEFInEZR mNmMPr2EEA2sZE55ERLNko6IdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFLy2qE3 REhdK1UrK79YX9LoCN14MB8GA1UdIwQYMBaAFOOKXt4ZaMk3XlFVH66YiIoLtUSQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUM0Qi9ERTNGODg5QUNE N0QxMUVGQUEwNzIzMEFDNEY5QUUwMi80NHBlM2hsb3lUZGVVVlVmcnBpSWlndTFS SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQ0cGUzaGxveVRkZVVWVWZycGlJaWd1MVJKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QUM0Qi9ERTNGODg5QUNEN0QxMUVGQUEwNzIzMEFDNEY5QUUwMi80NHBlM2hsb3lU ZGVVVlVmcnBpSWlndTFSSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOWa11yd0E+6/2CiLuu7/00GHTpfwo4LlZ+GDMsrdLaKsI089kqZ/7 MLLCfxAkHuXwhE4sbpOO/fttVDQ6RttopFRxGoMU1fRa/DfvhaaQxd6U0YDmoj4A UlrSOFpOLbx1T2bzBLGTl0qQZP+W+P1DuVUeA8hy5akPV5OZVwGSGK7JQihQ+5k3 r6HgZHTiiizh8YyxA98wH0i4Zaa0hKTEvcB0AnmSNDVumIRtW/oDEFZ5bWmZoa1w qzXzQlpdwYQ2W8+IaG5RRwotOm7qfSVo/aai7RIUB2hOOIIWKpw89rOyZ5uDgKCE GTDpk1WtFrL6gHUM5e2EN82Rhr1WPokS -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:39 2025 by rpki-client