$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft File: EHo5wcwE8nzHJmPb97rm2SqVA4A.mft (raw, json) Hash identifier: OwZLf1HOAxl2PTw24Q0/NKtkXETKHYKFr7QnUfpotrw= Subject key identifier: 6D:DE:47:90:4D:98:B1:73:79:B6:5E:13:A7:81:FF:15:6F:E4:66:97 Authority key identifier: 10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80 Certificate issuer: /CN=A91AFBDA/serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380 Certificate serial: 012F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft Manifest number: 012B Signing time: Sun 19 Oct 2025 07:28:25 +0000 Manifest this update: Sun 19 Oct 2025 07:28:25 +0000 Manifest next update: Sun 26 Oct 2025 07:28:25 +0000 Files and hashes: 1: EHo5wcwE8nzHJmPb97rm2SqVA4A.crl (hash: W1tB/cgcf1HlV8eR2Yr8EaYYzM3WUCKZQXQ7kMk/THI=) 2: 62246EC4E67E11EEAD030482C4F9AE02.roa (hash: J5vtQMTwpL/xmHDO4Uy4YqCD/INA3rpqnN+ZrH/2hAs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.crl rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:28:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFBDA, serialNumber=107A39C1CC04F27CC72663DBF7BAE6D92A950380 Validity Not Before: Oct 19 07:28:25 2025 GMT Not After : Oct 26 07:28:25 2025 GMT Subject: CN=68f49319-c52d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:c1:18:0e:51:c3:35:43:b1:b6:20:06:13:e8: 9b:a0:35:a0:e6:29:44:51:7c:14:f5:ae:69:65:0b: 4e:b3:65:a8:9e:4f:07:0b:56:0b:66:db:57:b5:49: 98:3b:8b:cf:d4:fb:74:ce:c9:78:1a:f6:05:41:4b: ef:aa:56:38:dd:37:61:54:79:62:dc:29:a4:8b:a7: b2:9d:9d:db:cf:d8:a9:89:53:24:56:b6:1a:b9:58: 12:de:2d:97:8e:20:5d:1d:b0:67:11:bf:e5:c3:8a: 04:0c:ba:21:43:aa:50:24:d4:a7:f7:13:4b:d0:16: 0f:55:43:a6:a3:ed:40:a6:9e:05:cb:83:19:ff:1a: 34:5d:dd:13:60:2c:e7:ec:8a:b9:cc:2a:93:52:f1: c2:f4:cd:4b:45:fd:ef:b0:7f:f6:cf:21:21:87:6b: 16:53:cb:b9:12:5b:23:60:df:3a:8b:14:f8:41:44: e6:66:8b:eb:54:4b:f3:8e:b2:de:69:fd:5c:52:66: 8b:9b:28:a5:73:86:70:c5:7a:47:34:d4:b0:f9:da: c4:27:43:3d:02:cf:1a:d3:db:78:c4:e8:6b:58:e7: 83:ce:da:33:19:75:a8:0e:7d:9b:10:cc:bd:6b:82: 54:09:17:b6:8a:a7:11:b2:55:0d:92:4b:59:b4:ea: 79:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:DE:47:90:4D:98:B1:73:79:B6:5E:13:A7:81:FF:15:6F:E4:66:97 X509v3 Authority Key Identifier: keyid:10:7A:39:C1:CC:04:F2:7C:C7:26:63:DB:F7:BA:E6:D9:2A:95:03:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EHo5wcwE8nzHJmPb97rm2SqVA4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFBDA/6AD374AAE65D11EEB6123E41C4F9AE02/EHo5wcwE8nzHJmPb97rm2SqVA4A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:a2:9e:1e:0c:70:e9:2d:24:6e:7d:d1:6b:8d:c6:90:c5:87: 41:57:94:81:be:61:ad:5f:8f:93:8f:25:70:a3:4a:19:35:34: b6:66:a9:b0:2f:a5:41:63:47:ad:6c:f7:b6:d5:06:49:32:00: 4e:ad:b3:ea:cd:6b:92:3e:f9:c6:be:bf:59:5c:24:3f:ea:a3: fa:c9:95:21:6b:4e:72:3e:91:c1:34:21:86:20:0a:cd:86:9e: 72:19:d1:0c:b0:85:a2:ac:02:bb:17:c4:82:d5:cc:07:a7:fb: e9:0d:c3:f2:9a:cf:1a:72:b9:c3:b6:a9:bd:69:d0:22:35:ca: c3:c5:e4:bb:c3:06:4c:74:38:3a:2d:96:0d:64:82:53:64:58: 9f:4e:52:a5:71:59:fc:f7:63:d8:a3:ab:0e:45:09:d3:35:2e: 96:43:e3:da:cf:44:40:88:39:5e:1e:14:84:4a:09:60:39:25: 25:76:99:bc:bc:17:de:e4:3c:49:12:5d:d3:55:94:0a:91:30: de:be:b5:44:bb:9e:8d:12:a5:6d:bb:21:a9:76:f0:df:52:9b: d0:63:25:1d:16:e6:33:7a:81:8a:92:37:bd:18:a7:c3:b5:2c: fa:8a:84:3b:ae:62:82:5d:de:74:a8:a1:27:95:27:92:ca:dc: 70:60:c1:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCREExMTAvBgNVBAUTKDEwN0EzOUMxQ0MwNEYyN0NDNzI2NjNEQkY3QkFFNkQ5 MkE5NTAzODAwHhcNMjUxMDE5MDcyODI1WhcNMjUxMDI2MDcyODI1WjAYMRYwFAYD VQQDEw02OGY0OTMxOS1jNTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2cEYDlHDNUOxtiAGE+iboDWg5ilEUXwU9a5pZQtOs2Wonk8HC1YLZttXtUmY O4vP1Pt0zsl4GvYFQUvvqlY43TdhVHli3Cmki6eynZ3bz9ipiVMkVrYauVgS3i2X jiBdHbBnEb/lw4oEDLohQ6pQJNSn9xNL0BYPVUOmo+1App4Fy4MZ/xo0Xd0TYCzn 7Iq5zCqTUvHC9M1LRf3vsH/2zyEhh2sWU8u5ElsjYN86ixT4QUTmZovrVEvzjrLe af1cUmaLmyilc4ZwxXpHNNSw+drEJ0M9As8a09t4xOhrWOeDztozGXWoDn2bEMy9 a4JUCRe2iqcRslUNkktZtOp56wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3eR5BN mLFzebZeE6eB/xVv5GaXMB8GA1UdIwQYMBaAFBB6OcHMBPJ8xyZj2/e65tkqlQOA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkJEQS82QUQzNzRBQUU2 NUQxMUVFQjYxMjNFNDFDNEY5QUUwMi9FSG81d2N3RThuekhKbVBiOTdybTJTcVZB NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VIbzV3Y3dFOG56SEptUGI5N3JtMlNxVkE0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkJEQS82QUQzNzRBQUU2NUQxMUVFQjYxMjNFNDFDNEY5QUUwMi9FSG81d2N3RThu ekhKbVBiOTdybTJTcVZBNEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcop4eDHDpLSRufdFrjcaQxYdBV5SBvmGtX4+TjyVwo0oZNTS2Zqmw L6VBY0etbPe21QZJMgBOrbPqzWuSPvnGvr9ZXCQ/6qP6yZUha05yPpHBNCGGIArN hp5yGdEMsIWirAK7F8SC1cwHp/vpDcPyms8acrnDtqm9adAiNcrDxeS7wwZMdDg6 LZYNZIJTZFifTlKlcVn892PYo6sORQnTNS6WQ+Paz0RAiDleHhSESglgOSUldpm8 vBfe5DxJEl3TVZQKkTDevrVEu56NEqVtuyGpdvDfUpvQYyUdFuYzeoGKkje9GKfD tSz6ioQ7rmKCXd50qKEnlSeSytxwYMEU -----END CERTIFICATE-----Generated at Mon Oct 20 04:06:00 2025 by rpki-client