$ rpki-client -vvf rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft File: H8Tf0A2sNKjrhGPTlRwio0WDesk.mft (raw, json) Hash identifier: PIoylbnquiypDndTfUrO97pNFxUiU2VW/Zpi7BQVg2A= Subject key identifier: B5:85:82:FF:90:61:83:C8:12:B0:75:0E:24:B8:27:8B:47:24:8C:72 Authority key identifier: 1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 Certificate issuer: /CN=A91B477B/serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Certificate serial: 06EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft Manifest number: 06DF Signing time: Sat 18 Oct 2025 23:29:10 +0000 Manifest this update: Sat 18 Oct 2025 23:29:09 +0000 Manifest next update: Sat 25 Oct 2025 23:29:09 +0000 Files and hashes: 1: H8Tf0A2sNKjrhGPTlRwio0WDesk.crl (hash: umyW3xRJ4k2izXPIgyViuixCzoN9EpHYHa5aJ5sbuzY=) 2: 535436609D0511F0BAF1837CC4F9AE02.roa (hash: 5BOUZnIceKppG/eOWr9McqTQMkFI46F0FXPhmOPQ3MY=) 3: 22F72E28725311EBA9C51756C4F9AE02.roa (hash: Td9ZRXmDLCaOWu5C2VPY0G2nu6GZr9orup/Cn82OpN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:29:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1774 (0x6ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B477B, serialNumber=1FC4DFD00DAC34A8EB8463D3951C22A345837AC9 Validity Not Before: Oct 18 23:29:09 2025 GMT Not After : Oct 25 23:29:09 2025 GMT Subject: CN=68f422c5-25b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:34:bf:b1:42:e5:e9:13:9d:77:99:33:4e:e7: 24:0b:53:62:94:f2:09:7e:cd:7e:f5:a3:01:a1:d0: ee:10:ce:e3:8b:06:7c:e6:74:aa:bd:79:6d:e9:6f: cb:e7:65:a0:c6:2d:48:71:a4:f3:38:a9:5f:b6:7a: e5:b1:03:40:3c:a0:95:f3:12:6f:b6:7d:e6:ef:5a: c9:e7:7f:d8:8f:63:af:7e:72:33:e8:4c:4a:9f:6d: ba:a4:84:89:58:0e:41:db:10:64:3c:2f:55:22:ca: 14:33:76:70:78:ab:6a:b7:4a:e6:54:c0:50:6e:a6: d1:f2:fa:e2:18:83:96:6b:40:50:48:d7:19:04:f2: 96:f7:26:46:4d:85:b1:25:e2:3f:c2:e3:27:e2:ce: 74:4b:39:ef:06:3e:50:09:55:86:54:e9:75:6b:26: db:12:69:47:3d:e4:ec:92:a1:11:9f:8f:25:e4:81: 92:03:23:2e:90:86:e4:66:f7:06:ad:87:6f:50:02: f6:18:47:83:a2:5b:e2:f1:95:48:f1:a2:6c:28:07: ea:36:3f:bc:a4:77:bc:a9:6c:29:92:22:58:2a:ad: 7f:4d:6f:42:3b:b3:79:88:db:6f:1e:ce:a9:8f:e0: dd:11:10:d6:26:83:22:b9:fd:65:0c:59:94:f9:fc: 61:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:85:82:FF:90:61:83:C8:12:B0:75:0E:24:B8:27:8B:47:24:8C:72 X509v3 Authority Key Identifier: keyid:1F:C4:DF:D0:0D:AC:34:A8:EB:84:63:D3:95:1C:22:A3:45:83:7A:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H8Tf0A2sNKjrhGPTlRwio0WDesk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B477B/1C256270725011EBB648F84EC4F9AE02/H8Tf0A2sNKjrhGPTlRwio0WDesk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:78:43:03:37:40:0d:40:92:db:af:5c:7f:4a:92:ca:78:b3: 89:ef:72:6b:b4:72:6e:cb:08:42:d5:1f:2f:2c:27:5a:ac:44: fa:11:a1:91:58:42:40:23:3d:e7:3d:e7:ab:d4:3d:02:73:47: ae:dd:0c:83:1d:d5:15:cc:7b:4a:e5:95:08:35:23:c4:5a:7d: 33:2f:ab:ed:e2:d3:12:5d:02:04:4f:a4:a5:0d:e9:9a:1e:83: 4c:a4:e7:a7:39:a8:50:00:78:21:f2:fe:8f:0b:d5:0a:32:07: ae:f5:60:9c:4b:52:06:0d:32:67:d1:bc:86:ab:75:ed:ba:06: ed:f2:d5:33:77:56:bb:be:7c:cd:d2:a3:a2:0d:da:bb:03:78: 59:43:b3:62:f0:f8:32:ff:20:c9:b3:32:65:31:15:b7:8a:93: 65:4a:09:4e:9c:0f:c6:f6:9c:95:ca:84:5a:fc:e8:8b:ac:5c: be:f5:b3:88:29:f8:2e:68:9f:21:e2:6d:9a:f4:f9:3c:56:04: 02:8b:f8:00:2d:d9:34:cc:3a:96:84:30:59:f5:db:40:50:53: f9:34:0b:e0:04:ac:92:8a:88:31:27:7b:c0:6c:6e:1d:73:84: 90:f5:24:e1:86:29:f3:66:41:a8:29:81:f9:7b:f5:e5:3c:06: 5e:ed:f7:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQ3N0IxMTAvBgNVBAUTKDFGQzRERkQwMERBQzM0QThFQjg0NjNEMzk1MUMyMkEz NDU4MzdBQzkwHhcNMjUxMDE4MjMyOTA5WhcNMjUxMDI1MjMyOTA5WjAYMRYwFAYD VQQDEw02OGY0MjJjNS0yNWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTS/sULl6ROdd5kzTuckC1NilPIJfs1+9aMBodDuEM7jiwZ85nSqvXlt6W/L 52Wgxi1IcaTzOKlftnrlsQNAPKCV8xJvtn3m71rJ53/Yj2OvfnIz6ExKn226pISJ WA5B2xBkPC9VIsoUM3ZweKtqt0rmVMBQbqbR8vriGIOWa0BQSNcZBPKW9yZGTYWx JeI/wuMn4s50SznvBj5QCVWGVOl1aybbEmlHPeTskqERn48l5IGSAyMukIbkZvcG rYdvUAL2GEeDolvi8ZVI8aJsKAfqNj+8pHe8qWwpkiJYKq1/TW9CO7N5iNtvHs6p j+DdERDWJoMiuf1lDFmU+fxh+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLWFgv+Q YYPIErB1DiS4J4tHJIxyMB8GA1UdIwQYMBaAFB/E39ANrDSo64Rj05UcIqNFg3rJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDc3Qi8xQzI1NjI3MDcy NTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05LanJoR1BUbFJ3aW8wV0Rl c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g4VGYwQTJzTktqcmhHUFRsUndpbzBXRGVzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDc3Qi8xQzI1NjI3MDcyNTAxMUVCQjY0OEY4NEVDNEY5QUUwMi9IOFRmMEEyc05L anJoR1BUbFJ3aW8wV0Rlc2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQeEMDN0ANQJLbr1x/SpLKeLOJ73JrtHJuywhC1R8vLCdarET6EaGR WEJAIz3nPeer1D0Cc0eu3QyDHdUVzHtK5ZUINSPEWn0zL6vt4tMSXQIET6SlDema HoNMpOenOahQAHgh8v6PC9UKMgeu9WCcS1IGDTJn0byGq3Xtugbt8tUzd1a7vnzN 0qOiDdq7A3hZQ7Ni8Pgy/yDJszJlMRW3ipNlSglOnA/G9pyVyoRa/OiLrFy+9bOI KfguaJ8h4m2a9Pk8VgQCi/gALdk0zDqWhDBZ9dtAUFP5NAvgBKySiogxJ3vAbG4d c4SQ9SThhinzZkGoKYH5e/XlPAZe7ffo -----END CERTIFICATE-----Generated at Sun Oct 19 23:28:49 2025 by rpki-client