$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft File: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft (raw, json) Hash identifier: U1L99xS1MHbXVbYl447lShaixu62PiVp/s5YezjiZSE= Subject key identifier: 74:D7:E9:C8:EB:2A:E3:33:CC:E7:7B:52:F4:3C:96:0B:C7:16:21:40 Authority key identifier: D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 Certificate issuer: /CN=A91AE08E/serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Certificate serial: 08E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft Manifest number: 08D5 Signing time: Sat 18 Oct 2025 21:32:54 +0000 Manifest this update: Sat 18 Oct 2025 21:32:53 +0000 Manifest next update: Sat 25 Oct 2025 21:32:53 +0000 Files and hashes: 1: 0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl (hash: LRL9sYdJka4GAkSqJ0KBClt3nLy3A68YAbCrOlEYhTs=) 2: 6E038820BF6211EA94C2957CC4F9AE02.roa (hash: PLkHHx8GaTekc9dmC5heFwXjJ3zz86/8Y8QSgJQ+mrU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:32:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2272 (0x8e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE08E, serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Validity Not Before: Oct 18 21:32:53 2025 GMT Not After : Oct 25 21:32:53 2025 GMT Subject: CN=68f40786-d5d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c4:6a:36:a7:c9:a7:2b:18:1c:29:4a:fb:84: b4:b8:7e:d8:0f:5a:14:5a:8c:dc:09:b6:af:a2:92: ab:ee:e3:3b:51:50:db:65:41:eb:07:c0:e8:c9:e9: 93:30:f2:9c:5e:19:cc:a1:fc:f5:b4:40:41:0c:32: c0:ab:7f:5b:76:d5:69:4a:48:ee:61:f3:78:d0:bd: cc:ab:cb:07:54:14:b1:6c:d5:fb:c1:89:65:a4:1f: 4d:ed:a0:54:45:3e:9f:92:14:c9:77:28:9b:0b:b5: cb:78:f7:3e:35:c1:27:ab:e2:07:eb:f1:a2:f5:9c: d1:1c:32:0b:20:fc:e8:f4:6e:0b:95:66:8e:7e:eb: fc:e2:2c:53:4b:56:3e:36:d1:60:2a:30:f1:81:d9: 5a:b8:57:2d:0e:90:da:b7:9e:05:40:c5:cc:24:f5: 50:cd:77:63:73:0f:b9:18:c4:c8:21:f8:2c:98:26: 6b:96:d6:6d:46:e0:ce:6d:87:04:bb:2c:63:ec:02: 4d:07:de:6a:2f:0d:db:d7:40:b0:81:73:1a:32:6a: 51:01:20:91:3a:54:b9:cc:e6:23:5a:72:3b:91:14: 58:7a:f9:fd:e5:74:c0:d2:c2:29:82:c3:72:8a:6a: 55:e3:81:cb:ab:5c:15:9e:5b:a6:7f:93:48:9b:45: 36:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:D7:E9:C8:EB:2A:E3:33:CC:E7:7B:52:F4:3C:96:0B:C7:16:21:40 X509v3 Authority Key Identifier: keyid:D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:07:c8:b2:dc:f9:89:98:95:24:10:80:a1:ee:72:6f:3d:0e: ba:8d:8a:96:ee:90:d3:8c:bc:71:28:7b:47:d6:11:c8:7e:57: ac:cc:53:33:4b:15:e8:53:a2:02:04:a8:e5:9d:99:30:f3:30: b4:81:3c:d4:04:9f:85:3b:6b:92:10:e8:ee:5f:3e:0a:28:00: 1a:c8:63:c0:cf:e2:0f:ae:d0:87:e8:00:05:91:3c:f6:1b:b9: 81:87:da:15:9c:fe:f3:c6:4b:a5:1d:e6:41:7f:bf:ef:b8:96: 08:ba:ef:10:84:20:08:f1:12:d8:2f:e8:80:f0:fe:29:27:35: 64:97:1d:21:9a:fa:21:19:12:4f:98:22:21:24:de:fb:d2:b5: fa:c0:42:98:e6:59:22:73:80:4d:c0:99:cc:97:5e:6e:47:8b: dd:f9:e1:23:87:6b:62:a1:f4:dd:5c:4d:c1:a4:9b:dd:49:80: 45:70:4f:ef:35:89:63:53:3c:5e:c9:cb:0b:70:05:37:3b:32: a6:5a:52:97:eb:80:a3:ed:8e:ab:3b:cf:6b:62:85:31:92:39: e7:b5:9a:a7:40:0f:81:9c:af:a7:25:f1:54:b1:4d:39:0c:0c: 74:fa:f2:db:78:73:74:3c:a0:1b:0b:6e:bb:87:4e:27:2e:80: f1:03:42:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUwOEUxMTAvBgNVBAUTKEQyOTBERDE2NzIyMkMzOUIxMzRGODFFNTI3RjAyMkQ4 NUVERjIzRjQwHhcNMjUxMDE4MjEzMjUzWhcNMjUxMDI1MjEzMjUzWjAYMRYwFAYD VQQDEw02OGY0MDc4Ni1kNWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcRqNqfJpysYHClK+4S0uH7YD1oUWozcCbavopKr7uM7UVDbZUHrB8DoyemT MPKcXhnMofz1tEBBDDLAq39bdtVpSkjuYfN40L3Mq8sHVBSxbNX7wYllpB9N7aBU RT6fkhTJdyibC7XLePc+NcEnq+IH6/Gi9ZzRHDILIPzo9G4LlWaOfuv84ixTS1Y+ NtFgKjDxgdlauFctDpDat54FQMXMJPVQzXdjcw+5GMTIIfgsmCZrltZtRuDObYcE uyxj7AJNB95qLw3b10CwgXMaMmpRASCROlS5zOYjWnI7kRRYevn95XTA0sIpgsNy impV44HLq1wVnlumf5NIm0U2QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTX6cjr KuMzzOd7UvQ8lgvHFiFAMB8GA1UdIwQYMBaAFNKQ3RZyIsObE0+B5SfwIthe3yP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTA4RS9CMkEzQzIzQ0JG NEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1c1RUNEhsSl9BaTJGN2ZJ X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBwRGRGbklpdzVzVFQ0SGxKX0FpMkY3ZklfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTA4RS9CMkEzQzIzQ0JGNEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1 c1RUNEhsSl9BaTJGN2ZJX1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPB8iy3PmJmJUkEICh7nJvPQ66jYqW7pDTjLxxKHtH1hHIfleszFMz SxXoU6ICBKjlnZkw8zC0gTzUBJ+FO2uSEOjuXz4KKAAayGPAz+IPrtCH6AAFkTz2 G7mBh9oVnP7zxkulHeZBf7/vuJYIuu8QhCAI8RLYL+iA8P4pJzVklx0hmvohGRJP mCIhJN770rX6wEKY5lkic4BNwJnMl15uR4vd+eEjh2tiofTdXE3BpJvdSYBFcE/v NYljUzxeycsLcAU3OzKmWlKX64Cj7Y6rO89rYoUxkjnntZqnQA+BnK+nJfFUsU05 DAx0+vLbeHN0PKAbC267h04nLoDxA0KL -----END CERTIFICATE-----Generated at Mon Oct 20 05:44:54 2025 by rpki-client