$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft File: _10TK8Zqqiu89lw-X-iaDDcdizo.mft (raw, json) Hash identifier: rWOmBcXLtPObc9ysfPWTrOXL2XJPUJruADJIdsOu2CU= Subject key identifier: FF:FB:C7:29:87:2F:BA:98:CB:73:E5:C3:95:29:E9:EC:A7:AC:BF:78 Authority key identifier: FF:5D:13:2B:C6:6A:AA:2B:BC:F6:5C:3E:5F:E8:9A:0C:37:1D:8B:3A Certificate issuer: /CN=A91C1FA7/serialNumber=FF5D132BC66AAA2BBCF65C3E5FE89A0C371D8B3A Certificate serial: 0230 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft Manifest number: 022B Signing time: Sun 19 Oct 2025 04:11:56 +0000 Manifest this update: Sun 19 Oct 2025 04:11:55 +0000 Manifest next update: Sun 26 Oct 2025 04:11:55 +0000 Files and hashes: 1: _10TK8Zqqiu89lw-X-iaDDcdizo.crl (hash: aWg4so3Nq7h0k9m8hYj8cnhrket03A9FUBCUgoqqizs=) 2: 064042F259F511EDB22E3F2BC4F9AE02.roa (hash: JoMqVSrjZm4JfXMaz6xrPhG5LHTOXjmhXw4j9hZGE8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.crl rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 560 (0x230) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1FA7, serialNumber=FF5D132BC66AAA2BBCF65C3E5FE89A0C371D8B3A Validity Not Before: Oct 19 04:11:55 2025 GMT Not After : Oct 26 04:11:55 2025 GMT Subject: CN=68f4650b-e731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ca:f6:3b:1a:4d:97:7f:a0:e9:dd:27:fa:6b: f3:46:83:23:71:af:ee:ad:be:3e:99:7e:9d:4b:b7: 44:58:63:5d:6e:71:17:1b:bc:c0:b0:81:22:48:88: cd:6a:09:4d:5f:68:4a:53:98:c8:b6:1f:2e:69:c4: 67:ec:58:bf:44:d1:c8:87:e4:83:79:e6:aa:6c:94: 14:a7:96:42:bc:e6:40:9d:2b:70:b5:73:82:12:49: bb:d0:22:4d:a3:04:c5:a8:89:49:f6:56:d3:d7:a2: b6:39:a4:80:b7:27:93:d0:8f:ab:86:3a:2d:d7:d0: bc:d7:85:45:02:54:3f:21:ad:6a:b2:28:ae:28:1b: 3f:90:2e:c3:c8:56:78:29:f2:f3:b6:a7:c8:a1:a3: b1:63:41:7d:ad:d1:62:cd:9b:ac:68:bf:5c:e5:95: 7b:cd:ed:c4:b2:3e:61:c9:9f:c1:2b:16:b4:42:98: e4:4d:b6:d3:b2:aa:02:ef:01:b0:87:af:21:93:f7: 4a:73:95:57:7a:26:58:25:f8:52:8a:44:2f:e0:8a: 37:e6:76:36:07:ec:a4:4d:a4:b9:72:c4:34:84:e6: 57:f1:86:8a:f2:17:b1:fd:d9:3d:0b:02:6f:b2:24: 59:a8:7a:1c:76:5f:f3:73:bc:6f:01:4f:9f:66:4a: cf:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:FB:C7:29:87:2F:BA:98:CB:73:E5:C3:95:29:E9:EC:A7:AC:BF:78 X509v3 Authority Key Identifier: keyid:FF:5D:13:2B:C6:6A:AA:2B:BC:F6:5C:3E:5F:E8:9A:0C:37:1D:8B:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:85:5c:ab:80:62:59:18:d2:64:36:91:0f:ac:68:d7:47:4d: 67:ee:92:45:e0:d0:0a:ad:bb:41:fb:e0:1f:e4:b1:6a:47:e6: af:aa:11:e9:69:da:0f:98:d9:32:c7:d4:6a:bf:20:83:90:0f: 3b:c3:13:46:e6:1f:79:ab:96:09:67:b9:4a:7a:34:92:cc:5e: 0a:14:1c:90:b6:3f:26:c2:28:73:11:18:c3:4e:5c:f4:e0:f2: c3:ce:36:4a:c4:b0:61:4f:43:25:bc:10:7e:89:ca:3b:c5:96: 93:ed:5a:6a:57:c3:03:b4:e6:62:b2:65:d9:c2:77:b0:0d:e8: f4:b5:d1:4d:8b:7b:76:60:b1:cd:89:f0:52:a5:73:58:ac:01: 3e:82:b7:d6:94:57:52:da:40:0b:6c:ea:86:65:cf:06:6a:6e: 17:e6:74:9f:a6:cd:63:de:ab:8b:cf:2d:86:de:dd:51:16:b9: 63:94:69:f0:0b:e0:96:51:ce:ca:cf:53:ed:7d:ad:4e:fc:34: 5e:d7:b6:6d:9f:f0:ac:ed:2c:29:44:fc:5d:9d:6b:71:0a:fa: 4d:63:5b:16:2d:8f:65:0b:c2:9f:81:55:68:56:0b:29:39:8d: 02:66:d5:20:49:f2:05:f7:96:df:72:0d:69:c7:32:c3:36:bd: 20:04:e3:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFGQTcxMTAvBgNVBAUTKEZGNUQxMzJCQzY2QUFBMkJCQ0Y2NUMzRTVGRTg5QTBD MzcxRDhCM0EwHhcNMjUxMDE5MDQxMTU1WhcNMjUxMDI2MDQxMTU1WjAYMRYwFAYD VQQDEw02OGY0NjUwYi1lNzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2sr2OxpNl3+g6d0n+mvzRoMjca/urb4+mX6dS7dEWGNdbnEXG7zAsIEiSIjN aglNX2hKU5jIth8uacRn7Fi/RNHIh+SDeeaqbJQUp5ZCvOZAnStwtXOCEkm70CJN owTFqIlJ9lbT16K2OaSAtyeT0I+rhjot19C814VFAlQ/Ia1qsiiuKBs/kC7DyFZ4 KfLztqfIoaOxY0F9rdFizZusaL9c5ZV7ze3Esj5hyZ/BKxa0QpjkTbbTsqoC7wGw h68hk/dKc5VXeiZYJfhSikQv4Io35nY2B+ykTaS5csQ0hOZX8YaK8hex/dk9CwJv siRZqHocdl/zc7xvAU+fZkrPbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP/7xymH L7qYy3Plw5Up6eynrL94MB8GA1UdIwQYMBaAFP9dEyvGaqorvPZcPl/omgw3HYs6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUZBNy8yRDk5MUNEMDU5 OUYxMUVEQjk2N0FFMzlDNEY5QUUwMi9fMTBUSzhacXFpdTg5bHctWC1pYUREY2Rp em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18xMFRLOFpxcWl1ODlsdy1YLWlhRERjZGl6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MUZBNy8yRDk5MUNEMDU5OUYxMUVEQjk2N0FFMzlDNEY5QUUwMi9fMTBUSzhacXFp dTg5bHctWC1pYUREY2Rpem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAghVyrgGJZGNJkNpEPrGjXR01n7pJF4NAKrbtB++Af5LFqR+avqhHp adoPmNkyx9RqvyCDkA87wxNG5h95q5YJZ7lKejSSzF4KFByQtj8mwihzERjDTlz0 4PLDzjZKxLBhT0MlvBB+ico7xZaT7VpqV8MDtOZismXZwnewDej0tdFNi3t2YLHN ifBSpXNYrAE+grfWlFdS2kALbOqGZc8Gam4X5nSfps1j3quLzy2G3t1RFrljlGnw C+CWUc7Kz1Ptfa1O/DRe17Ztn/Cs7SwpRPxdnWtxCvpNY1sWLY9lC8KfgVVoVgsp OY0CZtUgSfIF95bfcg1pxzLDNr0gBOPl -----END CERTIFICATE-----Generated at Mon Oct 20 08:37:17 2025 by rpki-client