$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft File: MIoPBCNx10Tky2KrUekE9wys03o.mft (raw, json) Hash identifier: vr40e574KtqpSDqrhBtcRcNlqWdLWaK6bl8+pnaDp84= Subject key identifier: 97:B4:0B:57:2C:45:A0:AF:2B:7F:A1:B6:80:A6:B2:B2:50:B3:31:AE Authority key identifier: 30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A Certificate issuer: /CN=A91B2252/serialNumber=308A0F042371D744E4CB62AB51E904F70CACD37A Certificate serial: 081E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft Manifest number: 0813 Signing time: Sat 18 Oct 2025 22:07:53 +0000 Manifest this update: Sat 18 Oct 2025 22:07:53 +0000 Manifest next update: Sat 25 Oct 2025 22:07:53 +0000 Files and hashes: 1: MIoPBCNx10Tky2KrUekE9wys03o.crl (hash: Dxnc4l6f1En3IGtyoy9WI1h1RHK7Ctq96uC6tv85h7I=) 2: 727EECD2678811EF99602F53C4F9AE02.roa (hash: IPe594JnZ2N3gd3dB/i0h0vHj/VgJ8oN3r//4wdEFp8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.crl rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:07:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2078 (0x81e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2252, serialNumber=308A0F042371D744E4CB62AB51E904F70CACD37A Validity Not Before: Oct 18 22:07:53 2025 GMT Not After : Oct 25 22:07:53 2025 GMT Subject: CN=68f40fb9-97f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:9e:58:c7:c7:5e:85:7e:21:40:20:1f:c1:45: 40:a0:8d:a0:5a:1a:b0:96:60:91:2c:be:64:a1:49: a9:c5:43:dc:49:d2:15:d5:6b:26:13:83:66:02:c3: a6:da:e5:43:e5:55:07:a7:21:c8:27:17:93:87:f8: 32:7a:de:bf:70:33:33:fa:77:de:ae:f4:fe:c3:0d: 3d:ef:62:c9:86:ca:67:cb:61:0f:e2:10:ca:39:22: 01:5f:44:58:c1:7a:b3:31:23:17:33:8c:63:e0:98: 76:fe:f2:6a:cb:af:b4:d1:c7:15:ff:61:4f:c2:7b: b9:c6:52:13:45:19:d8:43:78:87:e3:3e:3e:36:11: d2:fe:ce:21:92:b5:4a:ec:bd:33:b5:a8:93:13:0b: f3:e2:03:94:e0:49:0d:d4:44:bb:a4:e8:24:43:02: e3:ce:85:c4:b3:e3:f2:9f:3c:b4:77:1b:3e:1d:7a: 8b:78:ec:3f:ce:f5:0e:d6:25:31:7c:3b:d8:0f:f9: 03:80:6b:a4:59:2d:d0:30:e4:bb:de:bf:1d:75:50: 1e:31:9a:84:db:5f:8d:81:78:ee:71:a8:d2:0a:02: a9:61:aa:21:30:2b:00:46:d8:57:03:58:6c:75:32: 27:5e:cb:94:24:cd:f5:72:25:bc:b1:c5:ba:42:99: d8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B4:0B:57:2C:45:A0:AF:2B:7F:A1:B6:80:A6:B2:B2:50:B3:31:AE X509v3 Authority Key Identifier: keyid:30:8A:0F:04:23:71:D7:44:E4:CB:62:AB:51:E9:04:F7:0C:AC:D3:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MIoPBCNx10Tky2KrUekE9wys03o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2252/C58F8B7AF63A11EAB70A361FC4F9AE02/MIoPBCNx10Tky2KrUekE9wys03o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:90:17:31:0b:3b:61:71:0c:fe:6f:23:63:9e:c7:2c:fa:fe: c2:48:5a:b3:8e:b6:db:bf:0d:fc:a3:a5:78:0f:a8:01:28:3f: 92:ea:54:e5:2c:2e:15:6c:60:54:7e:05:87:c6:7c:4e:b2:fe: 01:19:cf:2d:9b:14:8a:93:df:2f:26:d1:61:7d:86:84:64:5d: 4d:5a:e0:f1:ea:1b:e6:cf:13:3c:36:8c:54:df:06:98:68:29: e6:93:b8:b9:57:41:a8:bb:9f:c9:a5:f1:f9:04:44:3f:6a:f9: de:ba:be:32:e6:1a:0e:58:3c:84:a8:80:b1:5b:74:a1:4e:43: 59:06:d6:a7:39:3f:07:1d:d1:2c:fe:80:4b:93:ae:2b:5e:e3: 86:36:fc:94:c6:73:75:dc:49:22:3d:19:89:d8:b7:4b:8b:6c: be:5d:80:e4:80:60:6c:26:11:92:f1:dd:9a:1c:b0:a1:cb:c9: e6:3d:b9:63:dc:64:93:7a:18:0b:fd:cb:46:dd:29:fa:43:29: 13:ae:06:c3:9b:79:31:fb:54:51:25:0c:92:3d:c8:28:d7:8b: e4:e7:90:51:49:5a:42:31:24:e1:a2:e8:85:04:9a:fa:e2:c1: c6:25:9f:3e:f1:2f:24:30:45:ea:3b:11:46:c1:16:2e:96:ac: dd:ab:7e:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIyNTIxMTAvBgNVBAUTKDMwOEEwRjA0MjM3MUQ3NDRFNENCNjJBQjUxRTkwNEY3 MENBQ0QzN0EwHhcNMjUxMDE4MjIwNzUzWhcNMjUxMDI1MjIwNzUzWjAYMRYwFAYD VQQDEw02OGY0MGZiOS05N2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5J5Yx8dehX4hQCAfwUVAoI2gWhqwlmCRLL5koUmpxUPcSdIV1WsmE4NmAsOm 2uVD5VUHpyHIJxeTh/gyet6/cDMz+nfervT+ww0972LJhspny2EP4hDKOSIBX0RY wXqzMSMXM4xj4Jh2/vJqy6+00ccV/2FPwnu5xlITRRnYQ3iH4z4+NhHS/s4hkrVK 7L0ztaiTEwvz4gOU4EkN1ES7pOgkQwLjzoXEs+Pynzy0dxs+HXqLeOw/zvUO1iUx fDvYD/kDgGukWS3QMOS73r8ddVAeMZqE21+NgXjucajSCgKpYaohMCsARthXA1hs dTInXsuUJM31ciW8scW6QpnYEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJe0C1cs RaCvK3+htoCmsrJQszGuMB8GA1UdIwQYMBaAFDCKDwQjcddE5Mtiq1HpBPcMrNN6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjI1Mi9DNThGOEI3QUY2 M0ExMUVBQjcwQTM2MUZDNEY5QUUwMi9NSW9QQkNOeDEwVGt5MktyVWVrRTl3eXMw M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01Jb1BCQ054MTBUa3kyS3JVZWtFOXd5czAzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MjI1Mi9DNThGOEI3QUY2M0ExMUVBQjcwQTM2MUZDNEY5QUUwMi9NSW9QQkNOeDEw VGt5MktyVWVrRTl3eXMwM28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvkBcxCzthcQz+byNjnscs+v7CSFqzjrbbvw38o6V4D6gBKD+S6lTl LC4VbGBUfgWHxnxOsv4BGc8tmxSKk98vJtFhfYaEZF1NWuDx6hvmzxM8NoxU3waY aCnmk7i5V0Gou5/JpfH5BEQ/avneur4y5hoOWDyEqICxW3ShTkNZBtanOT8HHdEs /oBLk64rXuOGNvyUxnN13EkiPRmJ2LdLi2y+XYDkgGBsJhGS8d2aHLChy8nmPblj 3GSTehgL/ctG3Sn6QykTrgbDm3kx+1RRJQySPcgo14vk55BRSVpCMSThouiFBJr6 4sHGJZ8+8S8kMEXqOxFGwRYulqzdq34t -----END CERTIFICATE-----Generated at Mon Oct 20 21:37:01 2025 by rpki-client