$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft File: vELDvIdcBnayn9eryfgbSpH9iok.mft (raw, json) Hash identifier: XblCY/4/DEtEF6M0rrJLqiKpIWem6IkazAo230U0Rhw= Subject key identifier: A6:F3:81:DA:52:0B:BE:D8:FE:4C:B4:7B:13:13:C0:76:E1:CB:E8:D2 Authority key identifier: BC:42:C3:BC:87:5C:06:76:B2:9F:D7:AB:C9:F8:1B:4A:91:FD:8A:89 Certificate issuer: /CN=A91B7D14/serialNumber=BC42C3BC875C0676B29FD7ABC9F81B4A91FD8A89 Certificate serial: D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft Manifest number: CF Signing time: Sun 19 Oct 2025 08:48:49 +0000 Manifest this update: Sun 19 Oct 2025 08:48:48 +0000 Manifest next update: Sun 26 Oct 2025 08:48:48 +0000 Files and hashes: 1: vELDvIdcBnayn9eryfgbSpH9iok.crl (hash: aRkGZwrqsCGAgFnmqpLG1m4FeD8zh8vzff+3PqDP8UI=) 2: AAA33A7A74B011EF85E1C348C4F9AE02.roa (hash: Yfem0ULzhAFhugiZ6EqgmTLw2PppG/xG3d5GVT5T2K4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.crl rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:48:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7D14, serialNumber=BC42C3BC875C0676B29FD7ABC9F81B4A91FD8A89 Validity Not Before: Oct 19 08:48:48 2025 GMT Not After : Oct 26 08:48:48 2025 GMT Subject: CN=68f4a5f1-f2b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:eb:96:2a:d4:f6:b4:c9:6d:c2:00:0f:61:7e: b6:ea:1a:e3:de:57:1c:f1:83:f9:22:d1:b2:49:c3: 45:3c:9c:52:3c:f2:0b:a3:05:58:bb:e7:5a:22:4c: e5:93:8d:5e:38:04:0f:95:6d:a1:8f:e6:c1:3d:53: c2:4f:4c:29:56:18:90:1b:64:e9:95:a7:97:13:df: cd:44:49:10:bc:52:54:16:29:d1:dc:c5:45:25:d0: 8d:ae:5c:a1:cb:ca:87:8d:23:f9:f4:80:f7:53:7e: 30:21:c5:29:f2:ed:fc:05:f6:d5:c8:a6:54:36:21: 27:b4:5a:31:cf:b1:72:d7:a6:2f:98:6b:01:1c:1a: fc:93:38:4c:4f:67:1f:ac:21:55:91:94:1e:7e:52: 5c:df:b5:0c:cf:e0:2b:7a:6c:b1:59:d4:6c:31:39: 70:32:fe:78:b6:9f:23:8b:3a:8e:37:4b:c4:aa:4d: 90:0f:6f:89:d1:bf:6c:7a:05:22:6e:76:37:07:a3: 7d:58:51:2b:b9:cc:3f:a2:8d:91:ab:c5:6e:d4:8f: 9f:ea:cc:77:31:dd:e3:1b:4d:44:19:cc:7f:e2:e1: f3:4d:9f:c1:e5:21:16:36:35:f6:93:96:60:3a:ba: 1a:02:c5:c5:fe:30:f6:76:ff:da:d5:02:20:0c:1a: bf:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:F3:81:DA:52:0B:BE:D8:FE:4C:B4:7B:13:13:C0:76:E1:CB:E8:D2 X509v3 Authority Key Identifier: keyid:BC:42:C3:BC:87:5C:06:76:B2:9F:D7:AB:C9:F8:1B:4A:91:FD:8A:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vELDvIdcBnayn9eryfgbSpH9iok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7D14/CDB3B9AA74AF11EF91A66146C4F9AE02/vELDvIdcBnayn9eryfgbSpH9iok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:15:07:ed:6c:9e:31:f2:86:16:66:a7:a6:10:ef:6d:60:2f: ac:89:66:71:81:2a:89:52:8c:4b:88:59:76:19:c7:8d:51:25: d3:01:85:0c:64:66:11:be:13:e8:2a:f1:2a:ad:35:95:77:78: 48:f0:dc:71:bd:a3:4f:3a:e4:5f:cd:60:f0:c0:e7:b7:26:dc: d9:ab:0a:41:81:4e:02:fb:2a:90:e1:7d:2c:b5:fb:ec:da:35: 47:52:f4:d3:21:30:d2:0e:e6:63:42:11:5f:79:92:b8:36:dd: 1c:22:aa:75:42:f9:ab:4d:34:e9:21:7f:06:d3:50:f3:f6:e4: 2a:28:a1:7b:2f:5b:9a:a1:2f:cc:1d:7d:4e:93:7e:51:ea:a3: 64:9b:c8:5d:78:bb:2e:43:60:7e:4f:05:98:97:3b:cc:82:e3: f3:1a:15:3a:92:ae:aa:dc:47:9b:80:b4:19:1f:db:d5:24:77: d0:c7:7e:ac:9e:79:f7:d7:84:79:0e:d2:c2:92:15:61:6a:a5: 49:fa:a2:6d:23:56:ac:14:04:90:36:b1:f6:0c:49:75:34:f8: fd:3f:3b:e0:d3:5c:54:aa:a5:6e:d7:2e:d4:92:dd:33:ca:56: b6:0c:da:bd:49:ee:f8:72:32:5c:22:64:29:53:2c:2d:a8:e7: bc:5d:c4:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEMTQxMTAvBgNVBAUTKEJDNDJDM0JDODc1QzA2NzZCMjlGRDdBQkM5RjgxQjRB OTFGRDhBODkwHhcNMjUxMDE5MDg0ODQ4WhcNMjUxMDI2MDg0ODQ4WjAYMRYwFAYD VQQDEw02OGY0YTVmMS1mMmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeuWKtT2tMltwgAPYX626hrj3lcc8YP5ItGyScNFPJxSPPILowVYu+daIkzl k41eOAQPlW2hj+bBPVPCT0wpVhiQG2TplaeXE9/NREkQvFJUFinR3MVFJdCNrlyh y8qHjSP59ID3U34wIcUp8u38BfbVyKZUNiEntFoxz7Fy16YvmGsBHBr8kzhMT2cf rCFVkZQeflJc37UMz+AremyxWdRsMTlwMv54tp8jizqON0vEqk2QD2+J0b9segUi bnY3B6N9WFErucw/oo2Rq8Vu1I+f6sx3Md3jG01EGcx/4uHzTZ/B5SEWNjX2k5Zg OroaAsXF/jD2dv/a1QIgDBq/TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKbzgdpS C77Y/ky0exMTwHbhy+jSMB8GA1UdIwQYMBaAFLxCw7yHXAZ2sp/Xq8n4G0qR/YqJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0QxNC9DREIzQjlBQTc0 QUYxMUVGOTFBNjYxNDZDNEY5QUUwMi92RUxEdklkY0JuYXluOWVyeWZnYlNwSDlp b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZFTER2SWRjQm5heW45ZXJ5ZmdiU3BIOWlvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0QxNC9DREIzQjlBQTc0QUYxMUVGOTFBNjYxNDZDNEY5QUUwMi92RUxEdklkY0Ju YXluOWVyeWZnYlNwSDlpb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3FQftbJ4x8oYWZqemEO9tYC+siWZxgSqJUoxLiFl2GceNUSXTAYUM ZGYRvhPoKvEqrTWVd3hI8NxxvaNPOuRfzWDwwOe3JtzZqwpBgU4C+yqQ4X0stfvs 2jVHUvTTITDSDuZjQhFfeZK4Nt0cIqp1QvmrTTTpIX8G01Dz9uQqKKF7L1uaoS/M HX1Ok35R6qNkm8hdeLsuQ2B+TwWYlzvMguPzGhU6kq6q3EebgLQZH9vVJHfQx36s nnn314R5DtLCkhVhaqVJ+qJtI1asFASQNrH2DEl1NPj9Pzvg01xUqqVu1y7Ukt0z yla2DNq9Se74cjJcImQpUywtqOe8XcSo -----END CERTIFICATE-----Generated at Tue Oct 21 07:17:33 2025 by rpki-client