$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft File: aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft (raw, json) Hash identifier: kMU6KAPyzCT30HH9gT5y/QqwDxVpNLQ6ZztyL5R6iY8= Subject key identifier: 1C:20:BE:8B:EE:5B:CA:BC:18:53:15:4E:A5:F7:0B:51:01:5D:57:FA Authority key identifier: 69:69:C2:0B:86:99:A4:8D:07:2D:4A:30:67:CF:F0:0D:5F:44:7C:98 Certificate issuer: /CN=A91C8BEE/serialNumber=6969C20B8699A48D072D4A3067CFF00D5F447C98 Certificate serial: 0758 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnCC4aZpI0HLUowZ8_wDV9EfJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft Manifest number: 0753 Signing time: Sat 18 Oct 2025 23:03:40 +0000 Manifest this update: Sat 18 Oct 2025 23:03:39 +0000 Manifest next update: Sat 25 Oct 2025 23:03:39 +0000 Files and hashes: 1: aWnCC4aZpI0HLUowZ8_wDV9EfJg.crl (hash: /PfvLHmX+6wfBdvSEj5Vr0wuf7qqJdc5mHujr2qGBP4=) 2: DE524D283F0511EBBB4C174FC4F9AE02.roa (hash: zWRikEivlVPteMMOfXpGEHZKMPXoa2S3XawXpPi4Aig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.crl rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnCC4aZpI0HLUowZ8_wDV9EfJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:03:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1880 (0x758) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8BEE, serialNumber=6969C20B8699A48D072D4A3067CFF00D5F447C98 Validity Not Before: Oct 18 23:03:39 2025 GMT Not After : Oct 25 23:03:39 2025 GMT Subject: CN=68f41ccc-190c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f2:33:50:57:04:83:22:a6:2f:a5:f9:f4:b5: 19:d4:3d:f8:3e:4a:14:81:f3:fc:ea:4b:0c:1c:4f: e9:3b:5b:68:92:0c:2a:f5:93:19:ac:45:0b:d4:dc: 82:66:b0:b0:0d:f6:0a:42:01:8e:07:a8:6c:16:ca: 7a:0b:46:8f:46:4b:9c:12:01:02:c3:af:e4:85:5a: b5:75:1d:f2:50:9d:1e:59:5b:a0:b2:be:c2:bc:4a: bd:b3:7d:d1:3a:37:90:19:7d:9a:30:f3:41:47:eb: 81:1f:d5:0e:67:e9:c8:8e:5e:9d:c8:13:d1:89:c4: ef:a1:d9:e5:d8:d0:14:2e:fa:bd:52:39:8b:c0:76: 72:08:f3:19:80:5c:b2:67:d2:e4:65:6e:e6:8a:34: fb:36:2a:29:22:95:20:6f:83:95:e9:20:24:d9:1a: fa:44:4d:38:50:56:da:2a:99:f3:1d:78:23:a1:f7: 2b:21:5a:b5:42:17:fd:91:f3:2e:01:31:87:97:ee: 54:e0:ed:cb:e1:16:f7:6c:07:46:a4:c2:63:4e:86: 08:5e:13:cc:15:70:44:29:0b:d8:de:95:4e:6d:d1: c8:da:86:09:69:b7:92:02:e4:37:f1:e4:cd:27:80: 6e:38:76:b2:aa:c9:5c:59:48:db:41:ff:d9:61:55: 7b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:20:BE:8B:EE:5B:CA:BC:18:53:15:4E:A5:F7:0B:51:01:5D:57:FA X509v3 Authority Key Identifier: keyid:69:69:C2:0B:86:99:A4:8D:07:2D:4A:30:67:CF:F0:0D:5F:44:7C:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aWnCC4aZpI0HLUowZ8_wDV9EfJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8BEE/6E0627F83F0311EBBE75B44BC4F9AE02/aWnCC4aZpI0HLUowZ8_wDV9EfJg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:99:b3:76:97:4a:b8:4c:da:2f:e2:9b:ff:c2:b5:e5:27:e7: e4:c6:c2:47:18:b5:7b:07:71:04:e5:a9:9d:e0:cb:90:ea:42: 8e:aa:14:b8:32:dd:d4:e3:4d:7e:04:39:9f:aa:11:1a:eb:59: f6:dd:41:e4:a1:57:e3:84:ae:ee:b9:3e:6d:13:e8:ff:30:f8: 39:4a:47:8f:e4:71:a7:c3:f7:6a:ab:d7:ef:66:d8:ad:b8:00: 8c:fe:a3:12:f4:26:7c:6b:14:24:46:23:e4:c4:cc:ce:94:eb: cc:5b:28:b8:43:96:22:be:ea:73:bf:cd:f6:c4:16:cc:b2:38: ff:8d:76:c6:16:1c:f7:95:03:88:2a:0b:86:67:ea:59:e7:c9: 27:bc:c1:dc:e0:ea:df:25:66:26:bd:0f:9e:91:9a:49:12:c2: dd:1d:ff:e4:12:6c:51:3e:77:30:27:3c:b5:50:a9:2f:52:7b: 04:f8:63:5a:e8:55:31:6d:47:4d:2c:fb:52:ab:4d:9e:2c:ad: 3d:00:64:41:b2:45:0f:2a:f1:3e:55:e1:f0:a1:59:8c:45:d6: c7:9f:74:80:b3:d4:c4:8d:d1:4f:f6:a4:97:da:cb:69:ce:90: f3:70:80:ce:8a:f8:67:44:28:7d:06:b3:cb:14:90:c0:b4:15: 95:59:c5:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhCRUUxMTAvBgNVBAUTKDY5NjlDMjBCODY5OUE0OEQwNzJENEEzMDY3Q0ZGMDBE NUY0NDdDOTgwHhcNMjUxMDE4MjMwMzM5WhcNMjUxMDI1MjMwMzM5WjAYMRYwFAYD VQQDEw02OGY0MWNjYy0xOTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fIzUFcEgyKmL6X59LUZ1D34PkoUgfP86ksMHE/pO1tokgwq9ZMZrEUL1NyC ZrCwDfYKQgGOB6hsFsp6C0aPRkucEgECw6/khVq1dR3yUJ0eWVugsr7CvEq9s33R OjeQGX2aMPNBR+uBH9UOZ+nIjl6dyBPRicTvodnl2NAULvq9UjmLwHZyCPMZgFyy Z9LkZW7mijT7NiopIpUgb4OV6SAk2Rr6RE04UFbaKpnzHXgjofcrIVq1Qhf9kfMu ATGHl+5U4O3L4Rb3bAdGpMJjToYIXhPMFXBEKQvY3pVObdHI2oYJabeSAuQ38eTN J4BuOHayqslcWUjbQf/ZYVV7PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwgvovu W8q8GFMVTqX3C1EBXVf6MB8GA1UdIwQYMBaAFGlpwguGmaSNBy1KMGfP8A1fRHyY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEJFRS82RTA2MjdGODNG MDMxMUVCQkU3NUI0NEJDNEY5QUUwMi9hV25DQzRhWnBJMEhMVW93Wjhfd0RWOUVm SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FXbkNDNGFacEkwSExVb3daOF93RFY5RWZKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEJFRS82RTA2MjdGODNGMDMxMUVCQkU3NUI0NEJDNEY5QUUwMi9hV25DQzRhWnBJ MEhMVW93Wjhfd0RWOUVmSmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPmbN2l0q4TNov4pv/wrXlJ+fkxsJHGLV7B3EE5amd4MuQ6kKOqhS4 Mt3U401+BDmfqhEa61n23UHkoVfjhK7uuT5tE+j/MPg5SkeP5HGnw/dqq9fvZtit uACM/qMS9CZ8axQkRiPkxMzOlOvMWyi4Q5Yivupzv832xBbMsjj/jXbGFhz3lQOI KguGZ+pZ58knvMHc4OrfJWYmvQ+ekZpJEsLdHf/kEmxRPncwJzy1UKkvUnsE+GNa 6FUxbUdNLPtSq02eLK09AGRBskUPKvE+VeHwoVmMRdbHn3SAs9TEjdFP9qSX2stp zpDzcIDOivhnRCh9BrPLFJDAtBWVWcWq -----END CERTIFICATE-----Generated at Mon Oct 20 05:37:40 2025 by rpki-client