$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft File: 024QQmH4GdaND3C7Ka3-jvRjsu0.mft (raw, json) Hash identifier: lq3/gIx/N9ITlBrj3Nylwg9zMaReqBBfO20qBhRYuwQ= Subject key identifier: B4:EF:C0:A9:4C:AC:94:86:56:56:21:4A:E7:B2:6A:76:28:96:54:CA Authority key identifier: D3:6E:10:42:61:F8:19:D6:8D:0F:70:BB:29:AD:FE:8E:F4:63:B2:ED Certificate issuer: /CN=A91B15DC/serialNumber=D36E104261F819D68D0F70BB29ADFE8EF463B2ED Certificate serial: 92 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft Manifest number: 91 Signing time: Sun 19 Oct 2025 09:43:00 +0000 Manifest this update: Sun 19 Oct 2025 09:42:59 +0000 Manifest next update: Sun 26 Oct 2025 09:42:59 +0000 Files and hashes: 1: 024QQmH4GdaND3C7Ka3-jvRjsu0.crl (hash: mlbmuLhQdQBuuLWnOyIDbk6M3Wq651Bq6ZcJeYTR5y8=) 2: 0A65ADB6CEEE11EFAA2CA812C4F9AE02.roa (hash: BnzgVRQY1lWGd2cFrP1xnxB6cOmKQA86fc66ckx28mQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.crl rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B15DC, serialNumber=D36E104261F819D68D0F70BB29ADFE8EF463B2ED Validity Not Before: Oct 19 09:42:59 2025 GMT Not After : Oct 26 09:42:59 2025 GMT Subject: CN=68f4b2a3-686f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:53:be:34:7d:26:3d:18:85:da:35:63:f7:54: 52:92:97:62:a8:22:6e:eb:a7:10:74:64:9f:df:55: 4a:17:15:5e:06:7b:37:87:05:20:f3:3a:1a:b9:ff: 0a:f4:f9:75:fe:08:22:11:c7:35:7e:ac:a2:0e:62: d9:40:c0:1b:38:d9:5b:5e:4a:35:06:99:55:ad:b0: 2e:ad:24:28:27:50:e2:59:21:49:73:09:4a:32:d3: f2:48:5d:9a:cb:b3:64:90:3e:04:f6:ac:4b:5a:f1: 38:16:06:a0:ed:49:39:5c:52:55:30:c1:83:e4:ca: 9f:cc:5c:63:21:51:06:65:90:28:2a:e6:74:de:9d: 80:04:75:76:39:da:81:04:36:88:f6:ff:ee:cc:02: 7d:21:88:9b:c5:28:a9:f7:23:7d:29:b7:14:d9:6a: 20:2b:8d:f5:cb:29:a7:1f:e0:ed:e3:d5:1e:f7:d4: 00:44:a5:3b:05:20:23:7b:0d:54:ba:5a:2d:68:13: 84:0b:62:57:b0:10:f5:63:0f:c3:34:bb:b0:4f:1d: 3d:4b:34:41:3c:81:55:7c:25:86:b9:df:a1:e7:2f: ca:d4:c9:5e:b2:53:c8:76:d4:bc:f2:f8:6a:e7:92: 20:45:d3:7b:0c:b7:6c:88:bb:a6:66:b6:a0:c3:4f: 5b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:EF:C0:A9:4C:AC:94:86:56:56:21:4A:E7:B2:6A:76:28:96:54:CA X509v3 Authority Key Identifier: keyid:D3:6E:10:42:61:F8:19:D6:8D:0F:70:BB:29:AD:FE:8E:F4:63:B2:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:35:50:5c:94:f4:1b:00:09:37:d1:39:c0:1f:14:96:f7:d7: b9:0b:db:3a:f8:18:88:91:62:a4:46:b4:84:55:87:27:5e:de: 65:aa:75:79:52:48:6c:cf:e3:c4:27:9b:a5:36:6d:99:fb:33: 27:92:9f:8e:c5:28:5c:d1:0f:ab:a4:cc:58:a0:4a:e0:b6:85: 13:02:bb:af:9a:93:f5:5d:e4:29:77:37:49:29:e0:0e:d0:c7: 44:ba:51:ee:0f:9e:61:e1:ca:e3:2f:f2:61:4a:44:9e:e8:71: a8:9b:95:22:4d:d7:c0:97:64:bb:a5:b3:9e:50:e5:de:a9:3b: cf:8f:59:92:ea:ff:32:15:6b:59:6a:1a:31:39:75:42:be:3c: f2:8d:23:df:4a:ce:3c:1b:b0:5c:62:fe:0c:a3:46:13:27:2a: f9:e8:3f:55:24:00:77:f2:a9:40:21:ef:1f:f2:6c:08:46:72: 85:9c:19:fe:16:47:3b:5d:10:d3:42:fa:02:cb:2b:c0:9e:68: 28:68:cd:5a:39:ee:f5:dc:0c:ab:08:e6:9a:3e:45:70:0c:56: f3:4a:7f:80:37:48:1c:5a:01:e4:dd:5e:e8:05:78:37:da:b5: 8d:ee:a4:e7:3c:43:74:22:b9:83:66:07:67:5d:62:62:d5:95: a4:0c:3c:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE1REMxMTAvBgNVBAUTKEQzNkUxMDQyNjFGODE5RDY4RDBGNzBCQjI5QURGRThF RjQ2M0IyRUQwHhcNMjUxMDE5MDk0MjU5WhcNMjUxMDI2MDk0MjU5WjAYMRYwFAYD VQQDEw02OGY0YjJhMy02ODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFO+NH0mPRiF2jVj91RSkpdiqCJu66cQdGSf31VKFxVeBns3hwUg8zoauf8K 9Pl1/ggiEcc1fqyiDmLZQMAbONlbXko1BplVrbAurSQoJ1DiWSFJcwlKMtPySF2a y7NkkD4E9qxLWvE4Fgag7Uk5XFJVMMGD5MqfzFxjIVEGZZAoKuZ03p2ABHV2OdqB BDaI9v/uzAJ9IYibxSip9yN9KbcU2WogK431yymnH+Dt49Ue99QARKU7BSAjew1U ulotaBOEC2JXsBD1Yw/DNLuwTx09SzRBPIFVfCWGud+h5y/K1MleslPIdtS88vhq 55IgRdN7DLdsiLumZragw09bZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLTvwKlM rJSGVlYhSueyanYollTKMB8GA1UdIwQYMBaAFNNuEEJh+BnWjQ9wuymt/o70Y7Lt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTVEQy80RkVDMUMwNENF RUQxMUVGQkQ2NTU1MTFDNEY5QUUwMi8wMjRRUW1INEdkYU5EM0M3S2EzLWp2Umpz dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzAyNFFRbUg0R2RhTkQzQzdLYTMtanZSanN1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTVEQy80RkVDMUMwNENFRUQxMUVGQkQ2NTU1MTFDNEY5QUUwMi8wMjRRUW1INEdk YU5EM0M3S2EzLWp2UmpzdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtNVBclPQbAAk30TnAHxSW99e5C9s6+BiIkWKkRrSEVYcnXt5lqnV5 Ukhsz+PEJ5ulNm2Z+zMnkp+OxShc0Q+rpMxYoErgtoUTAruvmpP1XeQpdzdJKeAO 0MdEulHuD55h4crjL/JhSkSe6HGom5UiTdfAl2S7pbOeUOXeqTvPj1mS6v8yFWtZ ahoxOXVCvjzyjSPfSs48G7BcYv4Mo0YTJyr56D9VJAB38qlAIe8f8mwIRnKFnBn+ Fkc7XRDTQvoCyyvAnmgoaM1aOe713AyrCOaaPkVwDFbzSn+AN0gcWgHk3V7oBXg3 2rWN7qTnPEN0IrmDZgdnXWJi1ZWkDDxX -----END CERTIFICATE-----Generated at Tue Oct 21 02:05:05 2025 by rpki-client