$ rpki-client -vvf rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.mft File: ROq4zxyb1totteNCtBx0fuOkUF8.mft (raw, json) Hash identifier: Qc7b2CjIi9KN5mu/S2OENDIFcKwy2tRiNnX+6EgPHso= Subject key identifier: 01:68:7C:AF:3C:CB:30:ED:D8:8C:0F:EF:3E:92:02:AE:E9:2C:50:B8 Authority key identifier: 44:EA:B8:CF:1C:9B:D6:DA:2D:B5:E3:42:B4:1C:74:7E:E3:A4:50:5F Certificate issuer: /CN=A91B00B6/serialNumber=44EAB8CF1C9BD6DA2DB5E342B41C747EE3A4505F Certificate serial: 0A50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ROq4zxyb1totteNCtBx0fuOkUF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.mft Manifest number: 0A4A Signing time: Sat 18 Oct 2025 20:40:54 +0000 Manifest this update: Sat 18 Oct 2025 20:40:53 +0000 Manifest next update: Sat 25 Oct 2025 20:40:53 +0000 Files and hashes: 1: ROq4zxyb1totteNCtBx0fuOkUF8.crl (hash: r7yHqWq8gPc5k+BbYvw194DabDnZHqyws9O7AwT84WI=) 2: 800EC4AE756F11EAAA2E0F6CC4F9AE02.roa (hash: yZGCclZoBxnBhfhgaEtvdMtpamiVGJaHMeM0i3edazA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.crl rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ROq4zxyb1totteNCtBx0fuOkUF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:40:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2640 (0xa50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B00B6, serialNumber=44EAB8CF1C9BD6DA2DB5E342B41C747EE3A4505F Validity Not Before: Oct 18 20:40:53 2025 GMT Not After : Oct 25 20:40:53 2025 GMT Subject: CN=68f3fb55-372b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c5:60:a6:08:45:5c:5f:06:f9:a4:ed:80:63: 87:bb:e4:e6:b8:13:c8:a1:80:11:32:80:82:28:45: e8:77:2d:b0:db:e0:52:68:67:2a:18:74:a4:76:42: 62:71:86:db:cd:96:4a:a6:68:1b:3e:16:d7:7f:57: 2e:dd:31:73:f7:be:86:76:eb:3b:94:81:36:48:3e: db:1b:64:3f:fc:20:0e:03:f1:5f:b8:21:63:54:e5: ac:ec:bf:c8:10:74:77:93:2c:f7:7c:02:6b:ec:c7: d1:6e:ef:2b:d1:e8:f5:e9:97:ac:0b:26:77:6d:63: e7:e1:0f:4a:71:7f:3c:80:3b:72:92:e0:71:5e:05: 54:45:54:e9:d8:68:77:dc:98:12:16:88:5b:ad:1c: 54:5a:54:c8:26:46:19:ee:25:89:fb:b8:88:70:da: f8:d0:8b:cd:4e:a2:17:ac:c8:7a:42:eb:4f:8d:3e: 8a:67:69:ad:ca:ee:75:0a:18:4e:bb:6e:98:24:87: 8a:28:c1:4f:6d:14:97:d6:6a:6d:ee:b9:d1:c6:5d: e6:7f:86:1e:df:12:83:85:01:68:bd:68:75:48:b5: 0e:21:66:ae:ac:bf:e3:eb:88:a6:7b:e9:8b:f7:04: 0d:cf:e6:c1:d5:5e:80:ef:fc:b0:c4:2a:81:74:b4: 95:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:68:7C:AF:3C:CB:30:ED:D8:8C:0F:EF:3E:92:02:AE:E9:2C:50:B8 X509v3 Authority Key Identifier: keyid:44:EA:B8:CF:1C:9B:D6:DA:2D:B5:E3:42:B4:1C:74:7E:E3:A4:50:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ROq4zxyb1totteNCtBx0fuOkUF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B00B6/9F9AF7A8756E11EA9914236BC4F9AE02/ROq4zxyb1totteNCtBx0fuOkUF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:cf:fe:3f:3d:99:f7:d4:78:33:82:20:b8:67:37:76:ec:c5: 68:7f:82:50:8e:28:f5:99:b5:17:db:8d:f8:e0:b6:7b:09:23: 8d:85:b2:30:21:fa:1e:21:95:03:00:5e:ba:ee:67:c4:8c:68: 16:33:67:d3:69:ea:87:1b:48:5c:a6:b4:30:d2:da:ac:c9:cb: f1:1a:0b:38:37:95:0c:59:82:05:e1:67:29:c4:ad:95:16:95: 5d:7c:c7:e9:0a:53:2e:95:64:bb:de:8e:e1:2f:85:65:e3:42: 49:4a:73:2f:83:49:f7:42:ff:22:94:00:cc:11:fa:b4:be:b3: fd:15:11:ab:d4:b9:21:cb:7b:ad:de:69:2b:a8:51:32:d5:93: dc:a1:53:43:41:ff:2e:2a:d1:0e:a7:bf:bc:0f:0f:91:ae:57: 38:3d:eb:bd:0d:72:d4:2a:7e:a6:bc:02:a5:b3:87:90:35:0e: 63:c1:0f:02:2a:1f:8d:82:91:a9:8a:6b:d2:3d:47:21:3c:6e: e0:8d:2b:0a:30:a0:57:38:e8:fd:78:b9:c5:bb:bb:ef:cd:3e: 3f:66:85:93:75:02:ce:99:8c:a0:45:05:56:67:f2:d3:27:71: 21:aa:03:05:17:ed:23:41:55:5b:2d:52:c6:06:fd:68:1c:bd: bc:39:07:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAwQjYxMTAvBgNVBAUTKDQ0RUFCOENGMUM5QkQ2REEyREI1RTM0MkI0MUM3NDdF RTNBNDUwNUYwHhcNMjUxMDE4MjA0MDUzWhcNMjUxMDI1MjA0MDUzWjAYMRYwFAYD VQQDEw02OGYzZmI1NS0zNzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo8VgpghFXF8G+aTtgGOHu+TmuBPIoYARMoCCKEXody2w2+BSaGcqGHSkdkJi cYbbzZZKpmgbPhbXf1cu3TFz976Gdus7lIE2SD7bG2Q//CAOA/FfuCFjVOWs7L/I EHR3kyz3fAJr7MfRbu8r0ej16ZesCyZ3bWPn4Q9KcX88gDtykuBxXgVURVTp2Gh3 3JgSFohbrRxUWlTIJkYZ7iWJ+7iIcNr40IvNTqIXrMh6QutPjT6KZ2mtyu51ChhO u26YJIeKKMFPbRSX1mpt7rnRxl3mf4Ye3xKDhQFovWh1SLUOIWaurL/j64ime+mL 9wQNz+bB1V6A7/ywxCqBdLSVPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAFofK88 yzDt2IwP7z6SAq7pLFC4MB8GA1UdIwQYMBaAFETquM8cm9baLbXjQrQcdH7jpFBf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDBCNi85RjlBRjdBODc1 NkUxMUVBOTkxNDIzNkJDNEY5QUUwMi9ST3E0enh5YjF0b3R0ZU5DdEJ4MGZ1T2tV RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JPcTR6eHliMXRvdHRlTkN0QngwZnVPa1VGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDBCNi85RjlBRjdBODc1NkUxMUVBOTkxNDIzNkJDNEY5QUUwMi9ST3E0enh5YjF0 b3R0ZU5DdEJ4MGZ1T2tVRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuz/4/PZn31HgzgiC4Zzd27MVof4JQjij1mbUX24344LZ7CSONhbIw IfoeIZUDAF667mfEjGgWM2fTaeqHG0hcprQw0tqsycvxGgs4N5UMWYIF4WcpxK2V FpVdfMfpClMulWS73o7hL4Vl40JJSnMvg0n3Qv8ilADMEfq0vrP9FRGr1Lkhy3ut 3mkrqFEy1ZPcoVNDQf8uKtEOp7+8Dw+Rrlc4Peu9DXLUKn6mvAKls4eQNQ5jwQ8C Kh+NgpGpimvSPUchPG7gjSsKMKBXOOj9eLnFu7vvzT4/ZoWTdQLOmYygRQVWZ/LT J3EhqgMFF+0jQVVbLVLGBv1oHL28OQcD -----END CERTIFICATE-----Generated at Mon Oct 20 21:36:19 2025 by rpki-client