$ rpki-client -vvf rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft File: rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft (raw, json) Hash identifier: /mgvgyMMcUGcAs3B9kl5P/vGgrp1fdRvai6fQDdUJvs= Subject key identifier: 11:2E:76:EB:2C:79:31:95:B2:5D:AE:13:E2:80:A0:4D:55:82:68:79 Authority key identifier: AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 Certificate issuer: /CN=A91B97DB/serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Certificate serial: 0C5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft Manifest number: 0C55 Signing time: Sat 18 Oct 2025 19:21:54 +0000 Manifest this update: Sat 18 Oct 2025 19:21:53 +0000 Manifest next update: Sat 25 Oct 2025 19:21:52 +0000 Files and hashes: 1: rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl (hash: 1aT2pMuRTJEoGWnljFB5I9VXFc2joD53EtTDyX7jFNQ=) 2: 5A0FAE220F7011EAB8E21167C4F9AE02.roa (hash: TQZLfyrNNm4rH/joKuV/c0LtGb3rqWKsaid6lV6en3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:21:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3166 (0xc5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B97DB, serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Validity Not Before: Oct 18 19:21:53 2025 GMT Not After : Oct 25 19:21:52 2025 GMT Subject: CN=68f3e8d1-a3b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ff:e7:ea:6c:e7:fd:df:5c:cf:0d:e5:2a:0e: 00:35:dd:c3:fe:8c:fe:86:52:f5:1e:2e:64:01:6a: cd:24:ff:72:1f:28:11:31:a1:f7:81:15:46:b1:89: 5f:56:11:ab:0a:4a:37:3a:88:34:ce:14:d6:c7:ee: 82:08:62:65:f7:bc:6b:8d:bb:64:33:60:70:ae:7b: 10:61:21:c9:d9:e5:e1:ce:5b:b2:77:d8:ae:2e:83: 5e:c3:74:0a:ad:47:23:23:ae:5e:76:10:93:45:37: 9e:86:8c:e7:b4:ad:44:08:2c:9e:98:22:d0:93:99: d1:53:a3:9d:2b:ed:4d:10:fa:21:9c:15:1d:50:9b: 5a:61:1d:dd:66:e9:97:15:7d:62:5c:40:95:85:d9: df:96:3a:c1:20:85:f2:2f:c9:ae:28:5b:7f:92:ed: 82:e3:4a:8f:cd:09:f3:32:fa:42:67:26:44:5b:c3: 81:66:23:b1:f9:7d:7a:0b:ba:33:d9:5e:a3:5c:ed: 37:f0:c5:66:6c:b4:67:4f:b6:ef:af:1b:bd:07:e0: 6d:fc:02:42:37:c0:0b:95:97:ac:75:3f:6f:56:f5: 52:40:04:19:6a:2d:66:fa:f0:09:da:eb:12:c4:7e: d2:49:e5:e2:4f:24:6c:50:72:d4:e0:0a:26:13:47: ec:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:2E:76:EB:2C:79:31:95:B2:5D:AE:13:E2:80:A0:4D:55:82:68:79 X509v3 Authority Key Identifier: keyid:AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:39:a6:08:47:25:d0:88:fd:6e:ac:ef:d5:3a:3b:11:d3:db: 77:40:85:f5:34:6a:6a:89:26:98:ed:48:46:17:33:74:de:00: 0d:d7:30:84:0d:90:d1:17:95:0e:18:c7:a8:bb:9d:02:76:bb: 44:5e:68:c5:ef:0d:b6:84:68:4f:e5:d6:9d:d3:e7:7d:e5:c5: 83:a5:0f:02:f7:39:17:e4:9d:98:54:b1:98:6b:8a:48:cb:cd: 70:52:d0:cd:03:10:fb:bd:d0:0d:2f:0d:01:b0:09:68:20:a7: 1c:8d:4d:ad:ee:84:98:51:46:77:a5:b7:57:45:f0:21:40:07: 16:33:1e:d7:b4:88:1f:9c:95:1f:be:fb:38:e6:a5:bd:84:96: ad:af:ec:89:56:82:75:2f:22:3d:e6:22:16:ac:96:33:fb:80: 6c:d4:3a:74:2b:92:0d:18:77:c7:66:2e:40:02:80:c7:b6:a5: f7:a9:b4:5a:2a:da:8b:ae:ca:56:27:c0:e3:ab:98:73:18:18: b3:98:c8:43:9c:82:1b:27:b6:33:a9:95:8d:f5:fe:e4:b5:65: 8a:dd:6a:fd:2d:ab:7a:4c:51:57:13:48:5a:20:c7:f2:6c:17: 3f:71:57:5d:41:42:e4:41:cd:94:76:27:06:b2:00:ac:13:b1: cd:45:8e:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3REIxMTAvBgNVBAUTKEFEM0Q4NzAzODUwQjEyNzFFOEYzMUFFMDNFM0NDOUFD NDY2MEQ5NDIwHhcNMjUxMDE4MTkyMTUzWhcNMjUxMDI1MTkyMTUyWjAYMRYwFAYD VQQDEw02OGYzZThkMS1hM2IzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsf/n6mzn/d9czw3lKg4ANd3D/oz+hlL1Hi5kAWrNJP9yHygRMaH3gRVGsYlf VhGrCko3Oog0zhTWx+6CCGJl97xrjbtkM2BwrnsQYSHJ2eXhzluyd9iuLoNew3QK rUcjI65edhCTRTeehozntK1ECCyemCLQk5nRU6OdK+1NEPohnBUdUJtaYR3dZumX FX1iXECVhdnfljrBIIXyL8muKFt/ku2C40qPzQnzMvpCZyZEW8OBZiOx+X16C7oz 2V6jXO038MVmbLRnT7bvrxu9B+Bt/AJCN8ALlZesdT9vVvVSQAQZai1m+vAJ2usS xH7SSeXiTyRsUHLU4AomE0fsJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBEuduss eTGVsl2uE+KAoE1Vgmh5MB8GA1UdIwQYMBaAFK09hwOFCxJx6PMa4D48yaxGYNlC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTdEQi80RTQxMEFDRTBG NkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVuSG84eHJnUGp6SnJFWmcy VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUMkhBNFVMRW5Ibzh4cmdQanpKckVaZzJVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTdEQi80RTQxMEFDRTBGNkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVu SG84eHJnUGp6SnJFWmcyVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTOaYIRyXQiP1urO/VOjsR09t3QIX1NGpqiSaY7UhGFzN03gAN1zCE DZDRF5UOGMeou50CdrtEXmjF7w22hGhP5dad0+d95cWDpQ8C9zkX5J2YVLGYa4pI y81wUtDNAxD7vdANLw0BsAloIKccjU2t7oSYUUZ3pbdXRfAhQAcWMx7XtIgfnJUf vvs45qW9hJatr+yJVoJ1LyI95iIWrJYz+4Bs1Dp0K5INGHfHZi5AAoDHtqX3qbRa KtqLrspWJ8Djq5hzGBizmMhDnIIbJ7YzqZWN9f7ktWWK3Wr9Lat6TFFXE0haIMfy bBc/cVddQULkQc2UdicGsgCsE7HNRY5z -----END CERTIFICATE-----Generated at Mon Oct 20 07:09:05 2025 by rpki-client