$ rpki-client -vvf rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft File: sJELB8hrD_owClKsfDH8tSwFMtc.mft (raw, json) Hash identifier: ewew+0evjAAKuj9HXLn+qcEJS1HqtaTLCCv63f+rvQQ= Subject key identifier: 02:A0:C7:38:CD:45:E9:52:34:7C:9F:D6:15:B1:4D:19:C7:EB:83:14 Authority key identifier: B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 Certificate issuer: /CN=A91B777C/serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Certificate serial: 0638 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft Manifest number: 0632 Signing time: Sun 19 Oct 2025 00:19:30 +0000 Manifest this update: Sun 19 Oct 2025 00:19:29 +0000 Manifest next update: Sun 26 Oct 2025 00:19:29 +0000 Files and hashes: 1: sJELB8hrD_owClKsfDH8tSwFMtc.crl (hash: dCMh2F+Ry+P7lPXsiWFQ5lm1dFJFB6DX4fIuZi5TfTs=) 2: 9095FC2CB2E811EBADBB3753C4F9AE02.roa (hash: h5dvfa3FRBYPtcjjdPkOqAVQA/qeLJ42SQi+kECAh1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:19:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1592 (0x638) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B777C, serialNumber=B0910B07C86B0FFA300A52AC7C31FCB52C0532D7 Validity Not Before: Oct 19 00:19:29 2025 GMT Not After : Oct 26 00:19:29 2025 GMT Subject: CN=68f42e92-f8d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3d:33:85:87:f3:ce:4d:fd:f8:be:55:d1:29: 8e:51:27:55:c4:e2:88:7d:4e:23:09:75:f1:c6:36: 77:9d:8d:1e:d4:9f:e7:49:56:3e:e3:a7:ef:29:27: 75:f7:98:76:8d:6a:1a:54:57:20:1e:9d:2f:8f:de: 32:6a:aa:2a:b5:3f:2d:d3:1f:b7:03:d6:ab:24:b6: eb:c8:4d:d7:76:85:9e:3d:1c:d2:29:4d:4d:83:d3: 68:cc:b4:c6:59:e9:9d:25:eb:01:0d:22:f4:2e:b6: 70:3e:db:b7:25:e8:c2:f0:ed:dd:bc:4c:fd:83:8c: b1:da:b8:21:b2:1c:1f:f1:71:2e:d5:fa:4c:07:d9: 31:11:96:1c:22:37:3b:82:b3:29:98:fe:58:d0:a6: e7:2f:e9:9a:09:5e:f0:b4:95:6d:ed:2e:59:c8:98: b2:22:c8:21:ae:e1:a5:9e:ac:06:95:47:d0:52:80: aa:1b:06:68:54:ae:db:48:cd:3d:e3:4b:5d:39:5b: 8d:0c:c3:f6:42:69:0b:0c:43:e4:0e:98:f7:1d:1e: 15:12:b3:d2:57:98:cc:3b:38:d3:cf:c7:0b:1c:49: ef:3c:f6:f8:7f:1c:68:23:9a:e7:04:4c:3b:44:4c: 1e:9f:26:be:be:5b:dd:b7:ad:ee:15:ed:5f:5c:c7: d8:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:A0:C7:38:CD:45:E9:52:34:7C:9F:D6:15:B1:4D:19:C7:EB:83:14 X509v3 Authority Key Identifier: keyid:B0:91:0B:07:C8:6B:0F:FA:30:0A:52:AC:7C:31:FC:B5:2C:05:32:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sJELB8hrD_owClKsfDH8tSwFMtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B777C/62D03E8CB2DA11EB8B384A60C4F9AE02/sJELB8hrD_owClKsfDH8tSwFMtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:b6:be:3f:45:85:d1:89:ca:18:ea:85:6b:8f:be:21:a3:91: 3f:b4:d1:f2:ed:f6:35:c6:61:f1:7e:82:7e:4e:4c:b8:d0:9d: 85:cf:fa:ea:a8:c4:01:1f:7c:df:5c:1c:15:45:1f:34:c9:96: 8c:36:d7:af:04:fe:2e:88:87:f9:15:18:62:38:35:be:58:cd: 25:a8:eb:a4:8d:30:4e:75:38:c1:68:0d:2c:7f:0e:db:ea:b7: f0:b7:28:a6:43:af:3e:eb:47:ae:da:eb:6e:b6:db:9c:c9:a3: 7b:a9:f2:37:b2:45:9f:4b:8a:a0:4b:9d:7a:25:93:0c:5c:ad: 4f:19:04:e3:71:d7:49:04:b8:80:c8:0a:10:54:49:4e:c7:39: 03:bf:a9:8c:9f:60:44:3d:66:9c:cd:13:4b:a2:10:17:b3:5f: d2:e5:ae:50:9d:83:d6:c2:a3:e9:a5:f9:7b:58:8f:9a:50:84: d8:8a:44:cd:96:50:d9:31:b1:34:e1:23:6f:c0:68:24:f9:5b: 9a:02:81:f8:bb:41:af:e4:87:37:c8:71:40:fb:4f:4a:7c:5f: 40:d9:e8:94:15:8f:e7:33:0e:76:48:b5:3b:71:8d:e4:eb:4e: f2:a3:4f:66:08:3e:cf:45:c5:42:69:55:aa:b7:57:cb:a8:e8: c6:a1:9d:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3N0MxMTAvBgNVBAUTKEIwOTEwQjA3Qzg2QjBGRkEzMDBBNTJBQzdDMzFGQ0I1 MkMwNTMyRDcwHhcNMjUxMDE5MDAxOTI5WhcNMjUxMDI2MDAxOTI5WjAYMRYwFAYD VQQDEw02OGY0MmU5Mi1mOGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvj0zhYfzzk39+L5V0SmOUSdVxOKIfU4jCXXxxjZ3nY0e1J/nSVY+46fvKSd1 95h2jWoaVFcgHp0vj94yaqoqtT8t0x+3A9arJLbryE3XdoWePRzSKU1Ng9NozLTG WemdJesBDSL0LrZwPtu3JejC8O3dvEz9g4yx2rghshwf8XEu1fpMB9kxEZYcIjc7 grMpmP5Y0KbnL+maCV7wtJVt7S5ZyJiyIsghruGlnqwGlUfQUoCqGwZoVK7bSM09 40tdOVuNDMP2QmkLDEPkDpj3HR4VErPSV5jMOzjTz8cLHEnvPPb4fxxoI5rnBEw7 REwenya+vlvdt63uFe1fXMfYHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKgxzjN RelSNHyf1hWxTRnH64MUMB8GA1UdIwQYMBaAFLCRCwfIaw/6MApSrHwx/LUsBTLX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzc3Qy82MkQwM0U4Q0Iy REExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRfb3dDbEtzZkRIOHRTd0ZN dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NKRUxCOGhyRF9vd0NsS3NmREg4dFN3Rk10Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Nzc3Qy82MkQwM0U4Q0IyREExMUVCOEIzODRBNjBDNEY5QUUwMi9zSkVMQjhockRf b3dDbEtzZkRIOHRTd0ZNdGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVtr4/RYXRicoY6oVrj74ho5E/tNHy7fY1xmHxfoJ+Tky40J2Fz/rq qMQBH3zfXBwVRR80yZaMNtevBP4uiIf5FRhiODW+WM0lqOukjTBOdTjBaA0sfw7b 6rfwtyimQ68+60eu2ututtucyaN7qfI3skWfS4qgS516JZMMXK1PGQTjcddJBLiA yAoQVElOxzkDv6mMn2BEPWaczRNLohAXs1/S5a5QnYPWwqPppfl7WI+aUITYikTN llDZMbE04SNvwGgk+VuaAoH4u0Gv5Ic3yHFA+09KfF9A2eiUFY/nMw52SLU7cY3k 607yo09mCD7PRcVCaVWqt1fLqOjGoZ3w -----END CERTIFICATE-----Generated at Mon Oct 20 21:24:36 2025 by rpki-client