$ rpki-client -vvf rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft File: X45P1KbdY15DeC5aBVYiyrJlSjc.mft (raw, json) Hash identifier: 587Zn9O/Kfb1ruw93vMQGOHXALVTg6KWt0jOhYIlXrg= Subject key identifier: 21:51:BE:2B:E2:E8:E6:B2:DC:9A:E9:97:0E:02:9D:40:BB:39:39:9A Authority key identifier: 5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 Certificate issuer: /CN=A91BCF31/serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Certificate serial: 0946 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft Manifest number: 093F Signing time: Sat 18 Oct 2025 21:16:44 +0000 Manifest this update: Sat 18 Oct 2025 21:16:43 +0000 Manifest next update: Sat 25 Oct 2025 21:16:43 +0000 Files and hashes: 1: X45P1KbdY15DeC5aBVYiyrJlSjc.crl (hash: nwrQsHXxMCvrnZixFAfdVcC9notq3bs85yzba4ZN1OI=) 2: B757FF4EAB8311EA9983D717C4F9AE02.roa (hash: q5IkP0u3/4X3zrB3YXKIdUEoegOtePooQhqPih9d+0I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2374 (0x946) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BCF31, serialNumber=5F8E4FD4A6DD635E43782E5A055622CAB2654A37 Validity Not Before: Oct 18 21:16:43 2025 GMT Not After : Oct 25 21:16:43 2025 GMT Subject: CN=68f403bc-20e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:61:fc:8b:89:fa:7d:a4:67:a3:ab:34:e6:db: 4d:ca:52:70:b8:14:1f:24:f6:2e:b8:63:86:3d:9b: 19:8a:dc:75:42:a5:d6:38:0d:bc:9e:49:86:7d:06: 05:68:ad:b9:ed:fb:69:e4:52:f0:73:2c:84:cb:dd: 78:52:9c:25:ec:0a:4e:6c:f1:67:ee:fa:f7:b4:1e: ce:5c:b9:ce:d3:9f:dd:0e:f6:8f:f7:ef:a3:3f:39: 88:46:3c:d2:e0:c1:da:7f:20:ea:73:fc:7e:59:9e: ce:f6:a2:d6:63:56:af:64:4c:86:56:23:e2:fb:8a: 2e:27:e2:05:9d:eb:74:db:23:50:5b:be:53:0f:57: e7:fd:60:50:45:7c:46:e8:45:cd:ce:aa:7b:a0:ef: 35:64:d5:3f:49:48:dd:e7:69:85:62:92:ee:1a:93: d5:ac:77:5e:f9:8c:d6:87:3a:32:a6:66:e0:f8:94: 6d:9b:3e:56:10:ce:32:05:4f:70:a2:d2:cf:10:9c: 6f:02:2c:41:21:cb:15:ef:47:32:7b:c1:37:37:04: 20:b2:a0:fe:86:a5:ab:71:6b:ca:8b:21:40:c5:0f: 74:34:21:72:36:60:c3:a8:8d:58:8f:60:4b:bf:77: af:85:fe:f4:7a:b8:b1:f4:3f:57:0f:cb:ec:7c:cb: df:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:51:BE:2B:E2:E8:E6:B2:DC:9A:E9:97:0E:02:9D:40:BB:39:39:9A X509v3 Authority Key Identifier: keyid:5F:8E:4F:D4:A6:DD:63:5E:43:78:2E:5A:05:56:22:CA:B2:65:4A:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X45P1KbdY15DeC5aBVYiyrJlSjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BCF31/AF7FED62AA4E11EA9D8EC782C4F9AE02/X45P1KbdY15DeC5aBVYiyrJlSjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:35:e3:82:1b:1e:11:05:71:bc:09:a2:af:63:a1:34:e9:fe: 61:e1:22:53:2d:23:d1:78:f9:d8:12:d8:ce:67:db:b8:3a:d5: 54:10:22:a1:21:da:75:9c:30:35:08:72:8d:d7:ae:87:89:c2: 35:04:6d:13:0c:d9:61:83:30:69:c1:42:c6:73:1b:f4:18:2c: ca:b7:ca:49:cd:fb:20:aa:a9:c0:33:23:e4:9c:e0:e1:78:a9: 7c:e3:1e:9c:7c:3e:d5:2a:14:80:fa:07:f8:b0:5c:a4:8e:23: e0:11:e4:2d:0f:1f:76:e2:dc:2b:c8:1f:74:f3:3e:68:99:b2: c7:60:d4:d4:0d:83:04:11:fd:55:6b:a3:dc:8a:4a:5a:fe:67: 88:01:e1:47:f4:8d:e8:ed:64:71:44:34:c4:59:7e:65:26:06: 27:b5:47:63:2e:b9:78:82:03:35:49:51:d6:87:7c:7f:57:e5: cf:43:de:26:ff:8c:ef:82:a8:27:ca:6d:f2:92:52:7c:99:fd: af:27:bb:c9:10:a4:1f:02:9e:c4:ad:d7:cb:c2:a0:57:b9:a3: 64:d8:e2:cb:43:d5:a7:66:f2:28:6a:0a:41:c4:1e:d4:c1:d6: e4:2d:ef:49:93:f6:06:a3:86:fb:5d:c0:01:e0:d9:fd:74:d7: d6:69:75:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkNGMzExMTAvBgNVBAUTKDVGOEU0RkQ0QTZERDYzNUU0Mzc4MkU1QTA1NTYyMkNB QjI2NTRBMzcwHhcNMjUxMDE4MjExNjQzWhcNMjUxMDI1MjExNjQzWjAYMRYwFAYD VQQDEw02OGY0MDNiYy0yMGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoGH8i4n6faRno6s05ttNylJwuBQfJPYuuGOGPZsZitx1QqXWOA28nkmGfQYF aK257ftp5FLwcyyEy914Upwl7ApObPFn7vr3tB7OXLnO05/dDvaP9++jPzmIRjzS 4MHafyDqc/x+WZ7O9qLWY1avZEyGViPi+4ouJ+IFnet02yNQW75TD1fn/WBQRXxG 6EXNzqp7oO81ZNU/SUjd52mFYpLuGpPVrHde+YzWhzoypmbg+JRtmz5WEM4yBU9w otLPEJxvAixBIcsV70cye8E3NwQgsqD+hqWrcWvKiyFAxQ90NCFyNmDDqI1Yj2BL v3evhf70erix9D9XD8vsfMvfBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCFRvivi 6Oay3Jrplw4CnUC7OTmaMB8GA1UdIwQYMBaAFF+OT9Sm3WNeQ3guWgVWIsqyZUo3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQ0YzMS9BRjdGRUQ2MkFB NEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkxNURlQzVhQlZZaXlySmxT amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0NVAxS2JkWTE1RGVDNWFCVllpeXJKbFNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC Q0YzMS9BRjdGRUQ2MkFBNEUxMUVBOUQ4RUM3ODJDNEY5QUUwMi9YNDVQMUtiZFkx NURlQzVhQlZZaXlySmxTamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWNeOCGx4RBXG8CaKvY6E06f5h4SJTLSPRePnYEtjOZ9u4OtVUECKh Idp1nDA1CHKN166HicI1BG0TDNlhgzBpwULGcxv0GCzKt8pJzfsgqqnAMyPknODh eKl84x6cfD7VKhSA+gf4sFykjiPgEeQtDx924twryB908z5ombLHYNTUDYMEEf1V a6Pcikpa/meIAeFH9I3o7WRxRDTEWX5lJgYntUdjLrl4ggM1SVHWh3x/V+XPQ94m /4zvgqgnym3yklJ8mf2vJ7vJEKQfAp7ErdfLwqBXuaNk2OLLQ9WnZvIoagpBxB7U wdbkLe9Jk/YGo4b7XcAB4Nn9dNfWaXWB -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:24 2025 by rpki-client