$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft File: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft (raw, json) Hash identifier: BAWeH3eJvbQd1tnulolPCQO7SQcMsfLrcVqkp6y7Ae0= Subject key identifier: E1:56:C9:D7:B9:E6:8D:3A:C8:20:14:7E:78:C2:E4:DF:4E:FA:41:02 Authority key identifier: 3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F Certificate issuer: /CN=A91BB100/serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Certificate serial: 0476 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft Manifest number: 0472 Signing time: Sun 19 Oct 2025 02:00:50 +0000 Manifest this update: Sun 19 Oct 2025 02:00:49 +0000 Manifest next update: Sun 26 Oct 2025 02:00:49 +0000 Files and hashes: 1: P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl (hash: 0Csgqd0Aqy4ZuURsu8eFvGsT23j3RFMVOQTI9HtiVXw=) 2: FE761E84630511EC86F9726BC4F9AE02.roa (hash: RCWPaj7t0e1p3rp6/K3vTM6gR0rDSmQTnwQnVmwe2ms=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1142 (0x476) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB100, serialNumber=3F4864908C45B3A7158E832C06F9323D2341990F Validity Not Before: Oct 19 02:00:49 2025 GMT Not After : Oct 26 02:00:49 2025 GMT Subject: CN=68f44651-2310 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:95:7c:4f:a6:58:6a:8c:06:a6:3c:d8:a3:52: 4b:99:fd:89:ba:c9:10:4a:c0:d1:65:42:fb:be:18: 06:d1:d5:ea:13:d0:5f:c1:0e:42:5e:19:ea:6e:29: 57:60:8a:b7:e9:18:ae:8f:fa:97:8c:b3:4b:83:99: 86:0f:0e:7e:a5:49:69:c1:b4:47:99:ed:6e:e9:cd: f8:d3:7e:2e:f0:c6:35:70:dc:0c:87:4f:cd:9f:82: c7:7a:aa:23:5f:ed:67:dd:90:cc:d6:2c:c6:1e:a4: 12:2f:e1:d8:b4:60:df:e8:07:f5:4d:db:2c:fc:25: 01:ab:2a:c2:90:de:f5:8a:11:e4:3c:ff:b2:3e:c7: 03:e7:3b:69:3b:34:f6:4f:92:e5:42:b4:81:14:25: 39:5e:0d:ab:ce:f1:2e:a1:63:98:0c:79:9f:ab:86: 33:e5:0c:d3:48:4b:50:5a:d5:39:ce:e0:8c:f6:ba: 2f:8e:d3:55:42:0d:72:a7:73:ee:57:ad:41:da:f2: 92:3e:69:6d:95:25:d5:4c:a6:98:21:85:f2:ea:e2: 08:29:c4:9a:8d:07:63:e5:56:9d:aa:6e:09:a4:38: 08:9c:2a:36:a6:5e:20:79:78:00:45:8b:d0:63:26: e9:94:ff:04:aa:98:01:4b:02:e7:83:a4:2a:14:50: 47:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:56:C9:D7:B9:E6:8D:3A:C8:20:14:7E:78:C2:E4:DF:4E:FA:41:02 X509v3 Authority Key Identifier: keyid:3F:48:64:90:8C:45:B3:A7:15:8E:83:2C:06:F9:32:3D:23:41:99:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB100/38256B34630211ECBA4E0767C4F9AE02/P0hkkIxFs6cVjoMsBvkyPSNBmQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:31:57:99:a5:05:ab:0b:b9:12:67:ff:da:12:f5:bc:ab:27: 01:7b:60:e7:58:01:20:8b:6b:bd:fa:37:a9:ab:72:a2:d0:b7: 21:5a:84:f7:f7:5c:f3:35:dd:cf:57:51:b9:81:07:9e:29:5f: 55:cf:ba:2d:3b:0b:e0:71:a0:bb:52:30:b4:80:51:94:38:2b: 0d:16:76:50:02:a4:50:de:e1:4e:86:62:37:ba:95:9c:8a:5a: 5b:30:0f:5f:92:1a:a9:e2:fe:c1:61:dd:af:ee:67:1d:f0:4f: 24:d5:c8:bf:4b:64:05:4b:a7:5c:84:d9:fc:10:22:cb:d7:aa: 27:5d:d2:8e:71:69:fe:e9:fb:b8:30:e5:1d:11:36:c3:f2:e4: a8:6a:61:22:34:48:62:e9:1f:28:0f:27:11:b2:15:a3:1d:81: 93:e1:c6:fc:d4:73:43:98:9d:03:5b:d6:e9:64:5b:61:22:2e: 76:31:92:35:bf:db:7d:26:58:0a:a7:ab:0c:f6:af:aa:8f:10: 0e:35:19:c3:d0:e8:d8:4e:03:6b:1f:7e:a9:a5:a1:22:93:ab: 45:5f:cb:07:a9:f9:00:d7:2e:d7:f6:ba:1d:28:39:fa:c2:33: 3e:00:ba:af:99:a8:54:bd:2b:26:fe:06:c5:76:a9:d6:47:31: e2:88:b8:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkIxMDAxMTAvBgNVBAUTKDNGNDg2NDkwOEM0NUIzQTcxNThFODMyQzA2RjkzMjNE MjM0MTk5MEYwHhcNMjUxMDE5MDIwMDQ5WhcNMjUxMDI2MDIwMDQ5WjAYMRYwFAYD VQQDEw02OGY0NDY1MS0yMzEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpV8T6ZYaowGpjzYo1JLmf2JuskQSsDRZUL7vhgG0dXqE9BfwQ5CXhnqbilX YIq36Riuj/qXjLNLg5mGDw5+pUlpwbRHme1u6c34034u8MY1cNwMh0/Nn4LHeqoj X+1n3ZDM1izGHqQSL+HYtGDf6Af1Tdss/CUBqyrCkN71ihHkPP+yPscD5ztpOzT2 T5LlQrSBFCU5Xg2rzvEuoWOYDHmfq4Yz5QzTSEtQWtU5zuCM9rovjtNVQg1yp3Pu V61B2vKSPmltlSXVTKaYIYXy6uIIKcSajQdj5Vadqm4JpDgInCo2pl4geXgARYvQ YybplP8EqpgBSwLng6QqFFBHpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFWyde5 5o06yCAUfnjC5N9O+kECMB8GA1UdIwQYMBaAFD9IZJCMRbOnFY6DLAb5Mj0jQZkP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjEwMC8zODI1NkIzNDYz MDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2Y1Zqb01zQnZreVBTTkJt UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AwaGtrSXhGczZjVmpvTXNCdmt5UFNOQm1ROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjEwMC8zODI1NkIzNDYzMDIxMUVDQkE0RTA3NjdDNEY5QUUwMi9QMGhra0l4RnM2 Y1Zqb01zQnZreVBTTkJtUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMMVeZpQWrC7kSZ//aEvW8qycBe2DnWAEgi2u9+jepq3Ki0LchWoT3 91zzNd3PV1G5gQeeKV9Vz7otOwvgcaC7UjC0gFGUOCsNFnZQAqRQ3uFOhmI3upWc ilpbMA9fkhqp4v7BYd2v7mcd8E8k1ci/S2QFS6dchNn8ECLL16onXdKOcWn+6fu4 MOUdETbD8uSoamEiNEhi6R8oDycRshWjHYGT4cb81HNDmJ0DW9bpZFthIi52MZI1 v9t9JlgKp6sM9q+qjxAONRnD0OjYTgNrH36ppaEik6tFX8sHqfkA1y7X9rodKDn6 wjM+ALqvmahUvSsm/gbFdqnWRzHiiLiw -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:29 2025 by rpki-client