$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.mft File: -2uUY2HwxcguKwZ0DUuosLmTU_g.mft (raw, json) Hash identifier: AJ5b7x1FQu6FFvKwo6TKfGFUQH9yHWtpLLuscUXRdiA= Subject key identifier: 75:CC:37:E4:FC:FF:F0:A1:14:FB:F0:4F:EC:FF:E1:54:80:B4:DD:A1 Authority key identifier: FB:6B:94:63:61:F0:C5:C8:2E:2B:06:74:0D:4B:A8:B0:B9:93:53:F8 Certificate issuer: /CN=A91C6A35/serialNumber=FB6B946361F0C5C82E2B06740D4BA8B0B99353F8 Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-2uUY2HwxcguKwZ0DUuosLmTU_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.mft Manifest number: 8D Signing time: Sun 19 Oct 2025 09:47:40 +0000 Manifest this update: Sun 19 Oct 2025 09:47:39 +0000 Manifest next update: Sun 26 Oct 2025 09:47:39 +0000 Files and hashes: 1: -2uUY2HwxcguKwZ0DUuosLmTU_g.crl (hash: V+pryJijnecAnYHJk8Xuevh1WpZiduXEgHqHI7Z6awI=) 2: 06D77958D49411EFA8DF5E69C4F9AE02.roa (hash: SIysPbQ0shw6SImSP7LGItvtceoka+GBhE2dzjDub+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.crl rsync://rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-2uUY2HwxcguKwZ0DUuosLmTU_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:47:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6A35, serialNumber=FB6B946361F0C5C82E2B06740D4BA8B0B99353F8 Validity Not Before: Oct 19 09:47:39 2025 GMT Not After : Oct 26 09:47:39 2025 GMT Subject: CN=68f4b3bc-b176 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4c:fb:60:a6:93:48:26:dd:69:16:02:6c:82: a8:2d:f1:68:8e:36:47:25:3b:c7:3f:0b:3a:54:76: dd:e6:a0:b9:96:8b:5c:e8:79:cb:01:1b:9d:c4:eb: f0:09:b4:7b:42:22:57:ee:c2:25:e4:8e:6e:46:ff: aa:eb:b0:75:94:22:99:e1:a8:e7:ce:45:81:1c:26: 85:47:c0:e3:6f:89:05:fb:c4:d5:fc:67:53:33:00: 9d:27:88:98:4d:ff:83:13:67:39:29:71:fe:e5:c9: 99:e7:89:8c:6c:3a:6c:c7:40:d1:83:43:13:45:1e: e1:0d:41:2f:47:28:12:da:47:33:4b:d9:9e:12:25: 33:2a:c7:17:43:75:34:1f:f5:af:a7:95:36:f1:12: 0b:bb:22:9b:e0:fb:cf:8e:91:00:80:03:71:18:f9: 93:72:0f:b5:c7:87:63:c7:9c:66:64:21:89:5a:00: 9c:22:d9:ec:14:4c:46:25:30:ee:aa:32:27:91:0e: 4a:0c:bb:b9:39:e8:23:a9:c8:0f:3a:9d:cb:57:aa: 52:af:a4:12:e7:0d:c9:75:9b:21:f4:9e:0c:62:b1: 32:b5:bf:bb:7e:27:80:3d:98:a4:a1:c4:a3:fe:37: a4:84:68:30:c3:98:b7:85:0f:df:5b:93:34:39:8d: 90:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:CC:37:E4:FC:FF:F0:A1:14:FB:F0:4F:EC:FF:E1:54:80:B4:DD:A1 X509v3 Authority Key Identifier: keyid:FB:6B:94:63:61:F0:C5:C8:2E:2B:06:74:0D:4B:A8:B0:B9:93:53:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-2uUY2HwxcguKwZ0DUuosLmTU_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6A35/A159F782D49211EFB564DE62C4F9AE02/-2uUY2HwxcguKwZ0DUuosLmTU_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:b9:98:bd:23:6f:ee:4c:01:f4:40:fc:12:16:cb:8a:19:ec: 57:c8:4a:51:d9:36:d6:61:10:cd:10:72:5c:27:bb:86:ef:fd: e0:68:c1:f8:52:e0:69:ca:8a:5f:13:58:05:a2:b0:d8:73:ff: 40:89:1e:8d:cc:f2:c6:5a:5e:bc:4d:a3:d6:b1:56:2c:41:5a: aa:08:66:a3:22:0f:df:a3:12:74:ab:18:46:06:59:22:16:87: 16:19:e9:bb:2c:46:23:52:ca:48:80:5b:91:48:25:cd:1d:53: 20:12:f6:93:1e:c0:30:e9:f8:f5:19:89:c9:55:dc:35:3a:b9: af:fa:27:62:3b:74:25:4e:90:f3:30:85:81:30:24:a4:2f:36: 7a:4d:25:4b:dd:a9:ea:35:05:fc:cb:e6:10:35:a5:21:bc:65: df:dc:83:49:30:bd:9a:b9:66:fe:7a:7b:67:90:ae:eb:11:84: ac:4d:ce:2a:15:1f:38:e6:bf:1d:25:bc:2f:f2:8f:68:4b:79: ff:0a:a3:d8:5e:58:f8:71:3d:3a:8d:41:f3:82:39:7a:dd:d8: a2:96:fd:7e:37:85:3b:53:c5:81:15:17:98:bf:a8:9d:1f:21: 41:92:a8:70:f5:8b:0a:67:5a:79:9e:da:7f:f5:71:18:26:ad: 41:66:3a:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZBMzUxMTAvBgNVBAUTKEZCNkI5NDYzNjFGMEM1QzgyRTJCMDY3NDBENEJBOEIw Qjk5MzUzRjgwHhcNMjUxMDE5MDk0NzM5WhcNMjUxMDI2MDk0NzM5WjAYMRYwFAYD VQQDEw02OGY0YjNiYy1iMTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA10z7YKaTSCbdaRYCbIKoLfFojjZHJTvHPws6VHbd5qC5lotc6HnLARudxOvw CbR7QiJX7sIl5I5uRv+q67B1lCKZ4ajnzkWBHCaFR8Djb4kF+8TV/GdTMwCdJ4iY Tf+DE2c5KXH+5cmZ54mMbDpsx0DRg0MTRR7hDUEvRygS2kczS9meEiUzKscXQ3U0 H/Wvp5U28RILuyKb4PvPjpEAgANxGPmTcg+1x4djx5xmZCGJWgCcItnsFExGJTDu qjInkQ5KDLu5OegjqcgPOp3LV6pSr6QS5w3JdZsh9J4MYrEytb+7fieAPZikocSj /jekhGgww5i3hQ/fW5M0OY2Q8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXMN+T8 //ChFPvwT+z/4VSAtN2hMB8GA1UdIwQYMBaAFPtrlGNh8MXILisGdA1LqLC5k1P4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkEzNS9BMTU5Rjc4MkQ0 OTIxMUVGQjU2NERFNjJDNEY5QUUwMi8tMnVVWTJId3hjZ3VLd1owRFV1b3NMbVRV X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy0ydVVZMkh3eGNndUt3WjBEVXVvc0xtVFVfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkEzNS9BMTU5Rjc4MkQ0OTIxMUVGQjU2NERFNjJDNEY5QUUwMi8tMnVVWTJId3hj Z3VLd1owRFV1b3NMbVRVX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIuZi9I2/uTAH0QPwSFsuKGexXyEpR2TbWYRDNEHJcJ7uG7/3gaMH4 UuBpyopfE1gForDYc/9AiR6NzPLGWl68TaPWsVYsQVqqCGajIg/foxJ0qxhGBlki FocWGem7LEYjUspIgFuRSCXNHVMgEvaTHsAw6fj1GYnJVdw1Ormv+idiO3QlTpDz MIWBMCSkLzZ6TSVL3anqNQX8y+YQNaUhvGXf3INJML2auWb+entnkK7rEYSsTc4q FR845r8dJbwv8o9oS3n/CqPYXlj4cT06jUHzgjl63diilv1+N4U7U8WBFReYv6id HyFBkqhw9YsKZ1p5ntp/9XEYJq1BZjpl -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:37 2025 by rpki-client