$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft File: rKpuJqXy3KoUzfyezI6c9oKaQCE.mft (raw, json) Hash identifier: 5UviYp0ws/U41WcxGgdSuDMWQpTwvGuvBBFQfEcQI+M= Subject key identifier: 9C:45:8C:99:0D:43:14:5E:14:5A:C4:7E:7B:5F:C9:CE:40:A5:69:FE Authority key identifier: AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 Certificate issuer: /CN=A91AEF45/serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Certificate serial: 03DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft Manifest number: 03D9 Signing time: Sun 19 Oct 2025 02:33:31 +0000 Manifest this update: Sun 19 Oct 2025 02:33:31 +0000 Manifest next update: Sun 26 Oct 2025 02:33:31 +0000 Files and hashes: 1: rKpuJqXy3KoUzfyezI6c9oKaQCE.crl (hash: dIk2eAIL76OzZdXYd8hwVXyjAg9dKjUhiJfPmE1wQSk=) 2: 1AE323249F2D11EC897FD30CC4F9AE02.roa (hash: n9RCBLHpgjOAFQhIl7OXxEtavy0mL+5/7gM0zNsjfBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:33:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 990 (0x3de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEF45, serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Validity Not Before: Oct 19 02:33:31 2025 GMT Not After : Oct 26 02:33:31 2025 GMT Subject: CN=68f44dfb-f7c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4d:68:44:0d:50:67:1f:18:da:d5:b7:5d:9e: cb:fb:42:06:4c:54:10:6c:49:39:98:44:ae:4d:69: 8d:4f:9f:f8:1d:6e:29:81:e1:89:5c:d3:23:5d:19: b0:3c:91:c6:4e:49:a7:6f:6e:62:ef:60:bd:54:42: ce:b6:1c:d4:a8:e7:98:41:1a:4a:1c:5e:2a:d4:25: a3:98:52:7d:96:24:86:c2:16:e3:d1:ea:8b:50:1d: bc:b2:8b:b7:ec:f9:15:8b:f3:70:63:73:73:db:41: f9:0b:8e:e2:2a:6f:b8:e4:9d:19:c1:79:df:38:e3: 91:8f:f5:cd:05:95:6e:4c:ac:f1:96:d4:1b:c3:e8: 1c:d6:5d:c1:cd:96:3a:a2:86:42:57:4f:1c:42:d4: 5b:0a:46:92:d2:37:1e:d9:83:22:15:75:da:8c:70: 1b:30:80:ae:49:46:33:db:dc:00:da:06:94:64:64: 72:80:07:3b:56:64:21:4e:d3:5f:09:40:15:05:71: c3:70:e8:55:ea:3a:8a:3b:f6:98:e7:7e:f8:6f:f6: e8:97:83:10:85:f0:b1:ec:7d:45:4b:84:17:48:96: a1:c6:6a:1e:8e:a1:66:b8:44:c7:a0:58:7d:e1:43: 7f:77:e7:4f:39:c6:6d:72:c5:6e:99:a9:9c:4e:cc: c0:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:45:8C:99:0D:43:14:5E:14:5A:C4:7E:7B:5F:C9:CE:40:A5:69:FE X509v3 Authority Key Identifier: keyid:AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:4a:1b:78:73:39:10:9b:a8:3f:fb:02:dd:e4:98:3c:e7:6b: b0:d2:cc:9e:ab:f2:dd:c9:7f:5d:73:eb:0d:8a:c9:f8:70:8c: 5c:5d:b5:0c:e5:9b:bb:ac:11:e5:cc:ba:8c:df:68:fa:53:af: 6b:44:5c:f7:7a:fa:8f:9c:94:09:41:95:63:9c:f0:46:5f:b7: 72:18:1a:ef:a0:8d:6f:67:1b:bf:97:b2:ee:25:07:9d:90:28: 16:5c:26:3a:a6:7f:3e:cb:97:85:6b:1a:2a:24:28:12:2f:a8: bd:ef:d2:f2:9e:66:c4:aa:47:e7:e2:6c:34:b1:37:f9:f2:25: 7e:61:32:64:14:7d:ac:a9:95:d3:f6:fd:b1:e9:1c:32:91:6e: 3e:a4:51:dc:62:f6:5b:5f:37:e7:03:43:89:5c:09:18:f4:78: c7:03:96:0b:19:52:10:3a:6d:ab:63:c8:ab:d7:a4:bf:6a:30: 7a:9d:fe:48:74:ba:de:6a:98:c0:ab:66:46:7e:b5:ca:d0:19: f3:bf:58:c5:89:3e:8a:de:aa:bc:0c:30:e3:63:cf:6d:46:fe: 3a:74:91:ef:c1:ac:e9:b5:e0:de:3c:18:07:bb:50:af:38:26: a8:e0:a9:3c:76:d4:29:d6:4d:6f:21:ae:3e:07:49:56:52:f9: 66:ad:28:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVGNDUxMTAvBgNVBAUTKEFDQUE2RTI2QTVGMkRDQUExNENERkM5RUNDOEU5Q0Y2 ODI5QTQwMjEwHhcNMjUxMDE5MDIzMzMxWhcNMjUxMDI2MDIzMzMxWjAYMRYwFAYD VQQDEw02OGY0NGRmYi1mN2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuE1oRA1QZx8Y2tW3XZ7L+0IGTFQQbEk5mESuTWmNT5/4HW4pgeGJXNMjXRmw PJHGTkmnb25i72C9VELOthzUqOeYQRpKHF4q1CWjmFJ9liSGwhbj0eqLUB28sou3 7PkVi/NwY3Nz20H5C47iKm+45J0ZwXnfOOORj/XNBZVuTKzxltQbw+gc1l3BzZY6 ooZCV08cQtRbCkaS0jce2YMiFXXajHAbMICuSUYz29wA2gaUZGRygAc7VmQhTtNf CUAVBXHDcOhV6jqKO/aY5374b/bol4MQhfCx7H1FS4QXSJahxmoejqFmuETHoFh9 4UN/d+dPOcZtcsVumamcTszAqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJxFjJkN QxReFFrEfntfyc5ApWn+MB8GA1UdIwQYMBaAFKyqbial8tyqFM38nsyOnPaCmkAh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUY0NS81RDhCOUI4MjlG MkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNLb1V6Znllekk2YzlvS2FR Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JLcHVKcVh5M0tvVXpmeWV6STZjOW9LYVFDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUY0NS81RDhCOUI4MjlGMkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNL b1V6Znllekk2YzlvS2FRQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtSht4czkQm6g/+wLd5Jg852uw0syeq/LdyX9dc+sNisn4cIxcXbUM 5Zu7rBHlzLqM32j6U69rRFz3evqPnJQJQZVjnPBGX7dyGBrvoI1vZxu/l7LuJQed kCgWXCY6pn8+y5eFaxoqJCgSL6i979LynmbEqkfn4mw0sTf58iV+YTJkFH2sqZXT 9v2x6RwykW4+pFHcYvZbXzfnA0OJXAkY9HjHA5YLGVIQOm2rY8ir16S/ajB6nf5I dLreapjAq2ZGfrXK0Bnzv1jFiT6K3qq8DDDjY89tRv46dJHvwazpteDePBgHu1Cv OCao4Kk8dtQp1k1vIa4+B0lWUvlmrSgl -----END CERTIFICATE-----Generated at Mon Oct 20 19:12:57 2025 by rpki-client