$ rpki-client -vvf rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft File: 0rwrzA84njpcUzzEc6fENrsbdNk.mft (raw, json) Hash identifier: gdoletEjQsVifmLbl8BL8D/dUglTry/j7gVouD+VFCM= Subject key identifier: 57:2B:DC:27:AF:F9:1A:30:41:FE:5C:6D:FC:9E:1B:AB:D9:86:32:CA Authority key identifier: D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 Certificate issuer: /CN=A91C21C7/serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Certificate serial: 2DB4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft Manifest number: 2D8F Signing time: Mon 20 Oct 2025 15:39:09 +0000 Manifest this update: Mon 20 Oct 2025 15:39:08 +0000 Manifest next update: Mon 27 Oct 2025 15:39:08 +0000 Files and hashes: 1: 0rwrzA84njpcUzzEc6fENrsbdNk.crl (hash: kFM28WK9EdeuAN15Axwi1jd25Jpox3Sokx9hu1h71bs=) 2: E2AD90E813E811E9B287C144C4F9AE02.roa (hash: CwjqOoJS53tpi81tzFuwu956lUr2HE8GT6aAkGCmQ3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 15:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11700 (0x2db4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C21C7, serialNumber=D2BC2BCC0F389E3A5C533CC473A7C436BB1B74D9 Validity Not Before: Oct 20 15:39:08 2025 GMT Not After : Oct 27 15:39:08 2025 GMT Subject: CN=68f6579c-e0b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:15:5b:60:43:37:7b:8b:65:bb:d2:e1:ea:1e: 83:5f:95:71:32:66:82:2b:8d:b1:b0:ef:1b:4a:06: cd:fa:c6:57:2a:fb:4d:80:fd:2c:2c:fb:a7:32:e6: 1b:cf:a9:08:70:34:1f:fb:48:4e:72:a3:35:a6:39: a0:2a:d5:23:c9:80:fc:32:cb:95:9c:23:cf:c3:67: 60:4c:8f:6b:eb:b7:b5:ac:6e:44:dd:2e:80:00:93: ea:7b:41:2e:71:98:b7:7c:2f:5d:56:ed:31:19:9b: d8:33:9d:ab:2e:cf:94:91:4e:46:e2:bb:56:5f:5d: 08:25:79:ea:1f:af:80:77:07:4e:87:53:2c:a5:83: 98:22:c1:51:d5:6a:5b:af:17:b3:6b:d5:d4:e4:99: 71:6e:41:31:27:6e:54:40:90:f5:2d:35:26:3d:6e: 76:70:d9:47:42:ec:39:c9:2d:0e:f2:ec:34:02:d1: 7f:91:9b:01:38:62:19:36:df:0e:96:4e:19:9f:f6: dd:96:dd:0f:23:6c:f4:fe:0c:f9:11:e9:46:e8:ef: 03:8c:ba:66:19:26:65:d8:d5:e2:1f:2e:4c:d8:2d: 70:c9:e8:1a:14:15:1c:ea:96:f2:e8:95:3f:aa:12: dc:4c:a3:70:65:33:61:10:33:36:26:f4:4a:c0:24: 08:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:2B:DC:27:AF:F9:1A:30:41:FE:5C:6D:FC:9E:1B:AB:D9:86:32:CA X509v3 Authority Key Identifier: keyid:D2:BC:2B:CC:0F:38:9E:3A:5C:53:3C:C4:73:A7:C4:36:BB:1B:74:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rwrzA84njpcUzzEc6fENrsbdNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C21C7/54222FD08FAB11E39362EF355911EA32/0rwrzA84njpcUzzEc6fENrsbdNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:f7:a6:91:4d:3d:21:8f:9a:1e:d1:f5:13:2a:e2:1e:fd:25: da:74:e8:4d:f6:f8:f1:ea:27:88:06:cc:c6:04:8b:91:82:ce: a8:cd:65:7e:08:ac:82:0e:b0:38:11:11:a2:19:2f:2a:d8:e4: e1:b3:f9:8e:b1:a8:ed:30:d0:59:32:1a:ed:af:88:b3:c2:1c: bf:72:9f:ac:89:0b:c9:bf:ec:d2:b1:5b:25:aa:f9:91:fd:89: 67:5d:5a:4e:de:68:dd:4c:39:7c:2f:06:0a:3c:5f:80:8e:58: ea:bf:f9:c3:d0:9a:49:99:fc:50:f7:9d:97:d8:30:44:5f:95: d1:ba:4e:28:fc:3e:6d:ae:7a:9b:f9:0a:9e:a5:91:28:83:eb: 13:77:65:90:66:4c:43:e1:eb:4d:ba:46:fb:c3:95:86:95:56: 89:31:a2:6f:9b:0f:e9:9d:44:12:05:70:7a:16:43:d9:25:c6: 03:ef:bb:5a:d8:eb:53:2b:e6:d3:47:13:90:a0:66:7d:42:53: 03:1a:26:30:10:91:e6:f0:68:2e:c9:4d:0d:65:a3:74:af:93: 87:2b:c0:a9:9f:56:c8:ab:5b:e7:8b:ee:dc:ed:6b:16:76:56: e6:9a:8c:49:0d:ce:41:ab:96:73:74:93:7f:fd:09:bd:08:b8: b6:eb:04:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIxQzcxMTAvBgNVBAUTKEQyQkMyQkNDMEYzODlFM0E1QzUzM0NDNDczQTdDNDM2 QkIxQjc0RDkwHhcNMjUxMDIwMTUzOTA4WhcNMjUxMDI3MTUzOTA4WjAYMRYwFAYD VQQDEw02OGY2NTc5Yy1lMGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBVbYEM3e4tlu9Lh6h6DX5VxMmaCK42xsO8bSgbN+sZXKvtNgP0sLPunMuYb z6kIcDQf+0hOcqM1pjmgKtUjyYD8MsuVnCPPw2dgTI9r67e1rG5E3S6AAJPqe0Eu cZi3fC9dVu0xGZvYM52rLs+UkU5G4rtWX10IJXnqH6+AdwdOh1MspYOYIsFR1Wpb rxeza9XU5JlxbkExJ25UQJD1LTUmPW52cNlHQuw5yS0O8uw0AtF/kZsBOGIZNt8O lk4Zn/bdlt0PI2z0/gz5EelG6O8DjLpmGSZl2NXiHy5M2C1wyegaFBUc6pby6JU/ qhLcTKNwZTNhEDM2JvRKwCQIqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFcr3Cev +RowQf5cbfyeG6vZhjLKMB8GA1UdIwQYMBaAFNK8K8wPOJ46XFM8xHOnxDa7G3TZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjFDNy81NDIyMkZEMDhG QUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5qcGNVenpFYzZmRU5yc2Jk TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzByd3J6QTg0bmpwY1V6ekVjNmZFTnJzYmROay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjFDNy81NDIyMkZEMDhGQUIxMUUzOTM2MkVGMzU1OTExRUEzMi8wcndyekE4NG5q cGNVenpFYzZmRU5yc2JkTmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCg96aRTT0hj5oe0fUTKuIe/SXadOhN9vjx6ieIBszGBIuRgs6ozWV+ CKyCDrA4ERGiGS8q2OThs/mOsajtMNBZMhrtr4izwhy/cp+siQvJv+zSsVslqvmR /YlnXVpO3mjdTDl8LwYKPF+Ajljqv/nD0JpJmfxQ952X2DBEX5XRuk4o/D5trnqb +QqepZEog+sTd2WQZkxD4etNukb7w5WGlVaJMaJvmw/pnUQSBXB6FkPZJcYD77ta 2OtTK+bTRxOQoGZ9QlMDGiYwEJHm8GguyU0NZaN0r5OHK8Cpn1bIq1vni+7c7WsW dlbmmoxJDc5Bq5ZzdJN//Qm9CLi26wRT -----END CERTIFICATE-----Generated at Tue Oct 21 01:04:03 2025 by rpki-client