$ rpki-client -vvf rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft File: vBRJ7peREatw2N-Y2rpOJrprxls.mft (raw, json) Hash identifier: +Hq/KYXsNPRq+dm7fXrJZW/HR7DmXyWtme2ehdGRR9A= Subject key identifier: AB:62:DD:10:0C:BA:AC:56:88:29:36:0C:01:0E:53:27:F5:24:83:E5 Authority key identifier: BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B Certificate issuer: /CN=A91CCA34/serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B Certificate serial: 077B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft Manifest number: 0773 Signing time: Sat 18 Oct 2025 22:56:59 +0000 Manifest this update: Sat 18 Oct 2025 22:56:58 +0000 Manifest next update: Sat 25 Oct 2025 22:56:58 +0000 Files and hashes: 1: vBRJ7peREatw2N-Y2rpOJrprxls.crl (hash: ONaa+O6JaPjTArzKYdUWF0NCOfTZfup/Acw8cmd28xg=) 2: 7633392033B411EB98035F74C4F9AE02.roa (hash: 7jewiEiBEZ9bz5FtGjVeeC/IQVsbYDK8Mriosy8TldQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:56:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1915 (0x77b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CCA34, serialNumber=BC1449EE979111AB70D8DF98DABA4E26BA6BC65B Validity Not Before: Oct 18 22:56:58 2025 GMT Not After : Oct 25 22:56:58 2025 GMT Subject: CN=68f41b3a-0a39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:dc:73:83:dc:d1:95:28:d8:ad:c6:69:94:ae: 37:b6:7a:18:58:57:78:fe:a4:90:db:2f:78:dc:b2: 10:5e:9b:db:e7:75:91:18:7a:e7:fa:ed:56:07:4b: 94:e1:79:9e:be:62:1a:13:22:5c:91:ff:70:49:f1: 29:9a:bc:69:b7:e8:2e:f2:c8:58:fd:3d:12:0a:c2: 8a:12:c8:92:6d:d0:66:69:db:67:80:c2:11:45:34: a8:8c:13:92:82:fe:31:14:73:9a:26:ff:69:11:8b: d2:40:8f:49:e5:3e:16:5e:cd:f8:b6:c3:21:16:12: d4:9b:da:96:7d:e4:ad:54:ee:d3:71:03:02:31:d9: af:5d:60:dd:f3:b6:52:63:3f:fe:39:83:f1:11:f7: b9:02:3b:9f:be:d5:bd:ef:84:d8:77:b1:92:f8:cd: d9:ea:db:90:26:41:99:be:c6:4a:aa:ae:ef:ac:0a: ca:e0:d4:94:b9:48:0a:89:0d:23:ff:ec:a9:27:bf: 57:df:6d:97:76:98:42:94:58:51:bd:8c:80:03:47: 05:cb:ff:75:e9:44:bc:ea:f1:62:12:f4:b9:bc:29: f4:d3:ae:12:c4:bb:14:da:ed:c3:14:1f:3e:84:a0: 32:ea:de:d5:fa:c9:65:8c:15:fc:af:a6:a5:e0:40: a1:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:62:DD:10:0C:BA:AC:56:88:29:36:0C:01:0E:53:27:F5:24:83:E5 X509v3 Authority Key Identifier: keyid:BC:14:49:EE:97:91:11:AB:70:D8:DF:98:DA:BA:4E:26:BA:6B:C6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBRJ7peREatw2N-Y2rpOJrprxls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CCA34/6FAA367833B211EBA88A0A6FC4F9AE02/vBRJ7peREatw2N-Y2rpOJrprxls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:9a:3e:cb:14:ba:0b:04:da:be:e6:43:e6:8c:b3:0c:03:7e: 80:03:7a:41:44:cb:ce:da:22:72:c9:eb:89:fe:ad:a3:07:39: 3e:b6:fe:8a:c2:ea:b2:d7:1d:63:ef:ed:4f:46:90:96:34:b8: 1e:0f:c9:98:78:2f:04:6d:4c:54:e8:03:64:46:66:7f:f9:07: a7:01:44:05:23:de:fe:c6:47:58:59:ab:9b:13:be:6a:dd:11: 7c:ac:18:5b:20:8b:ab:9a:79:90:bf:06:e8:4d:09:88:5d:ef: 15:0e:aa:b5:9f:02:a5:ad:ab:f0:fc:45:8c:18:6d:06:7c:9c: 46:59:14:ed:f6:56:33:6b:70:b3:e5:51:50:92:96:dc:fd:be: b5:e6:7f:63:d0:1c:c4:49:fa:75:5a:f2:65:25:51:a3:bd:fa: 2f:43:fb:65:0c:dd:0b:73:2d:ad:85:67:09:3e:df:80:a4:14: ec:0a:de:3e:b1:82:74:cf:ae:fe:7e:da:3c:bd:e7:d1:f4:c1: eb:c8:3a:36:f0:55:7f:d2:3f:16:73:83:47:e4:d8:e6:bc:de: 57:94:fc:28:e1:34:67:76:86:21:4e:e0:e9:5a:61:99:53:de: 74:f5:46:f4:70:d2:41:97:eb:eb:a5:13:67:af:90:d9:a6:d0: 0c:de:48:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0NBMzQxMTAvBgNVBAUTKEJDMTQ0OUVFOTc5MTExQUI3MEQ4REY5OERBQkE0RTI2 QkE2QkM2NUIwHhcNMjUxMDE4MjI1NjU4WhcNMjUxMDI1MjI1NjU4WjAYMRYwFAYD VQQDEw02OGY0MWIzYS0wYTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttxzg9zRlSjYrcZplK43tnoYWFd4/qSQ2y943LIQXpvb53WRGHrn+u1WB0uU 4XmevmIaEyJckf9wSfEpmrxpt+gu8shY/T0SCsKKEsiSbdBmadtngMIRRTSojBOS gv4xFHOaJv9pEYvSQI9J5T4WXs34tsMhFhLUm9qWfeStVO7TcQMCMdmvXWDd87ZS Yz/+OYPxEfe5AjufvtW974TYd7GS+M3Z6tuQJkGZvsZKqq7vrArK4NSUuUgKiQ0j /+ypJ79X322XdphClFhRvYyAA0cFy/916US86vFiEvS5vCn0064SxLsU2u3DFB8+ hKAy6t7V+slljBX8r6al4EChHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKti3RAM uqxWiCk2DAEOUyf1JIPlMB8GA1UdIwQYMBaAFLwUSe6XkRGrcNjfmNq6Tia6a8Zb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQ0EzNC82RkFBMzY3ODMz QjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVhdHcyTi1ZMnJwT0pycHJ4 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZCUko3cGVSRWF0dzJOLVkycnBPSnJwcnhscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Q0EzNC82RkFBMzY3ODMzQjIxMUVCQTg4QTBBNkZDNEY5QUUwMi92QlJKN3BlUkVh dHcyTi1ZMnJwT0pycHJ4bHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwmj7LFLoLBNq+5kPmjLMMA36AA3pBRMvO2iJyyeuJ/q2jBzk+tv6K wuqy1x1j7+1PRpCWNLgeD8mYeC8EbUxU6ANkRmZ/+QenAUQFI97+xkdYWaubE75q 3RF8rBhbIIurmnmQvwboTQmIXe8VDqq1nwKlravw/EWMGG0GfJxGWRTt9lYza3Cz 5VFQkpbc/b615n9j0BzESfp1WvJlJVGjvfovQ/tlDN0Lcy2thWcJPt+ApBTsCt4+ sYJ0z67+fto8vefR9MHryDo28FV/0j8Wc4NH5NjmvN5XlPwo4TRndoYhTuDpWmGZ U9509Ub0cNJBl+vrpRNnr5DZptAM3khO -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:53 2025 by rpki-client