$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft File: cNpFkZHpBoa9sKxHq9owqcPhdPo.mft (raw, json) Hash identifier: 1GfYCL5eHAIDEJ2npx2mwgGVX2B9JlpFewrgmwArvds= Subject key identifier: 1E:AB:2B:E2:F5:52:15:62:F2:29:93:44:E3:50:A1:8E:ED:9E:FB:9E Authority key identifier: 70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA Certificate issuer: /CN=A91AF145/serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft Manifest number: 01A5 Signing time: Sun 19 Oct 2025 05:55:39 +0000 Manifest this update: Sun 19 Oct 2025 05:55:38 +0000 Manifest next update: Sun 26 Oct 2025 05:55:38 +0000 Files and hashes: 1: cNpFkZHpBoa9sKxHq9owqcPhdPo.crl (hash: RPHMWvLPnkJWdfi2vt9HpNca6GixVo9VU2C5X3oWlUQ=) 2: 43E9CB90DFF511EF8E4E3982C4F9AE02.roa (hash: ed3VnRz1sRChg/cFQmGXFi6QslMtcDU5X1xXHCQiW6k=) 3: 971B23D236EA11EE802E9246C4F9AE02.roa (hash: 4S5HT3Umab8tv1JR8LX9cjuccjEduaZGTp680hfQmts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:55:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF145, serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Validity Not Before: Oct 19 05:55:38 2025 GMT Not After : Oct 26 05:55:38 2025 GMT Subject: CN=68f47d5b-297a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:44:8f:ae:bd:df:3f:1d:ec:d6:1e:5e:e0:56: 67:3e:1b:06:fd:c3:34:cd:f0:8c:3e:4b:88:eb:bc: 69:dd:6f:40:8b:5e:6f:ca:93:8a:45:c9:c9:be:cb: 11:63:7a:e6:d9:86:24:64:45:c5:a5:47:36:35:f1: 61:fe:cc:72:8f:77:f1:45:33:65:66:ee:c0:85:4e: e8:5d:01:27:90:04:c7:d1:6c:b5:c8:b2:a6:8a:05: 97:e6:81:6d:24:79:61:06:d9:2f:3a:a5:88:89:67: a5:e6:87:46:6e:83:bd:68:77:c8:77:4e:68:38:50: 33:1d:50:f4:4e:d4:8d:4a:78:ad:41:b0:0b:10:74: 8e:61:8e:44:3a:d4:97:8e:29:d9:22:ab:15:b8:48: f4:1a:75:2d:e0:f9:ed:a0:a7:ba:dc:95:d6:07:dc: d4:26:a1:b3:8c:e0:ab:57:1d:82:02:bd:b5:06:a2: 10:fe:4b:0f:0d:86:b2:47:12:1b:78:59:b6:f4:a5: 72:eb:fb:05:16:c2:44:b2:f7:e1:ad:5c:72:97:49: bc:dc:33:46:70:22:f0:65:c5:38:0d:d8:1f:43:fd: e0:4e:9f:c8:25:c9:d7:5c:3d:7a:cd:78:d2:ca:91: 56:62:7e:94:75:55:03:17:67:3b:da:2b:bd:32:cc: 6d:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:AB:2B:E2:F5:52:15:62:F2:29:93:44:E3:50:A1:8E:ED:9E:FB:9E X509v3 Authority Key Identifier: keyid:70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:53:2b:2e:d9:0b:dd:ae:82:c3:8c:75:92:4b:b8:74:db:78: bf:e3:23:0d:f1:d1:f9:f8:29:f4:57:91:f5:ab:49:10:8c:08: 24:49:75:3a:19:8e:af:f7:6d:23:97:57:a1:95:93:6e:ad:aa: ca:88:f0:b2:1b:3c:ea:99:a1:25:c9:d0:95:e1:0b:a0:ba:37: 6e:70:87:f4:46:07:f3:c0:09:3b:c7:0c:3e:51:f0:41:05:e6: b4:e9:8d:c9:eb:d7:3e:8f:d7:fb:e9:84:58:43:0f:1a:d4:1b: 47:ff:dd:24:82:b8:b6:bc:5a:3f:24:01:7d:76:71:b7:fc:cb: 7f:c5:b7:08:0b:e2:28:a2:5f:d8:17:67:0e:6d:91:c8:27:de: 66:0b:42:7e:a2:f9:e3:49:b8:e9:58:9d:c9:db:1b:22:da:d4: 08:6c:98:54:f4:18:80:59:2a:74:ed:a3:0b:ba:74:4c:0c:09: 61:d9:c2:e9:9e:e5:3d:3c:e2:b2:8d:04:62:06:24:aa:e7:ba: 5c:75:b1:3b:08:eb:7a:5f:ce:e3:2e:66:2c:09:2f:d2:44:ef: 18:ab:6b:87:70:9f:63:a7:a0:5e:7e:b6:1d:db:4b:38:4d:f5: b0:2f:66:40:f2:d6:23:1f:96:6c:6e:a1:78:29:05:69:85:f8: f1:5f:4f:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYxNDUxMTAvBgNVBAUTKDcwREE0NTkxOTFFOTA2ODZCREIwQUM0N0FCREEzMEE5 QzNFMTc0RkEwHhcNMjUxMDE5MDU1NTM4WhcNMjUxMDI2MDU1NTM4WjAYMRYwFAYD VQQDEw02OGY0N2Q1Yi0yOTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApkSPrr3fPx3s1h5e4FZnPhsG/cM0zfCMPkuI67xp3W9Ai15vypOKRcnJvssR Y3rm2YYkZEXFpUc2NfFh/sxyj3fxRTNlZu7AhU7oXQEnkATH0Wy1yLKmigWX5oFt JHlhBtkvOqWIiWel5odGboO9aHfId05oOFAzHVD0TtSNSnitQbALEHSOYY5EOtSX jinZIqsVuEj0GnUt4PntoKe63JXWB9zUJqGzjOCrVx2CAr21BqIQ/ksPDYayRxIb eFm29KVy6/sFFsJEsvfhrVxyl0m83DNGcCLwZcU4DdgfQ/3gTp/IJcnXXD16zXjS ypFWYn6UdVUDF2c72iu9Msxt3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6rK+L1 UhVi8imTRONQoY7tnvueMB8GA1UdIwQYMBaAFHDaRZGR6QaGvbCsR6vaMKnD4XT6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjE0NS8yNzgwNzNDRTM2 RUExMUVFQUUxMEFBNDVDNEY5QUUwMi9jTnBGa1pIcEJvYTlzS3hIcTlvd3FjUGhk UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NOcEZrWkhwQm9hOXNLeEhxOW93cWNQaGRQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjE0NS8yNzgwNzNDRTM2RUExMUVFQUUxMEFBNDVDNEY5QUUwMi9jTnBGa1pIcEJv YTlzS3hIcTlvd3FjUGhkUG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkUysu2QvdroLDjHWSS7h023i/4yMN8dH5+Cn0V5H1q0kQjAgkSXU6 GY6v920jl1ehlZNurarKiPCyGzzqmaElydCV4QugujducIf0RgfzwAk7xww+UfBB Bea06Y3J69c+j9f76YRYQw8a1BtH/90kgri2vFo/JAF9dnG3/Mt/xbcIC+Iool/Y F2cObZHIJ95mC0J+ovnjSbjpWJ3J2xsi2tQIbJhU9BiAWSp07aMLunRMDAlh2cLp nuU9POKyjQRiBiSq57pcdbE7COt6X87jLmYsCS/SRO8Yq2uHcJ9jp6BefrYd20s4 TfWwL2ZA8tYjH5ZsbqF4KQVphfjxX0+Y -----END CERTIFICATE-----Generated at Mon Oct 20 04:24:41 2025 by rpki-client