$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft File: REDuIbNImmUKYWsSDY5b5Xku4Es.mft (raw, json) Hash identifier: U9mLOF27G1e22q8Zc2LZBBXF6e0tqdt8MJd8GNabCHs= Subject key identifier: 58:DD:D2:D9:9B:61:61:65:57:D0:A0:4D:39:7C:32:ED:A8:CE:DF:E6 Authority key identifier: 44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B Certificate issuer: /CN=A91CE3A3/serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Certificate serial: 0C93 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft Manifest number: 0C8C Signing time: Mon 20 Oct 2025 18:55:26 +0000 Manifest this update: Mon 20 Oct 2025 18:55:26 +0000 Manifest next update: Mon 27 Oct 2025 18:55:26 +0000 Files and hashes: 1: REDuIbNImmUKYWsSDY5b5Xku4Es.crl (hash: GhT2l9C6U68iRSJi6mp5Ucqr97C9k0zwoW3z0IHPp40=) 2: 7155C8563E5E11EAB043A522C4F9AE02.roa (hash: kzRNRyDp5yy+6xuR6mT9mG0c89/n8LtjaHr1+0MkgX4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 18:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3219 (0xc93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE3A3, serialNumber=4440EE21B3489A650A616B120D8E5BE5792EE04B Validity Not Before: Oct 20 18:55:26 2025 GMT Not After : Oct 27 18:55:26 2025 GMT Subject: CN=68f6859e-85f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:07:b2:3f:b0:52:85:a6:2b:b6:67:23:c6:d6: ed:53:a7:87:7a:70:f6:af:c4:d3:a9:8a:5b:45:75: 9f:5b:da:cb:a0:5b:c3:ba:9f:b6:b5:4d:57:f9:45: 48:05:71:d7:60:3c:13:c3:22:10:bc:5d:ed:5c:08: 06:a9:e5:2e:01:9b:b3:e0:74:80:19:25:0b:b7:6a: 79:92:32:30:18:0d:72:4e:fb:42:16:e7:9e:3e:bf: 4d:d7:b0:2d:50:a6:8d:83:d3:44:14:0c:b2:b9:28: 8d:48:57:ba:84:d9:01:af:bc:bd:cf:71:c1:9e:62: 34:cc:b2:bd:30:c2:d4:54:f2:3e:fa:c2:46:33:e8: 59:25:9e:2f:11:f0:83:94:04:0c:0d:cb:94:5c:37: 6f:87:82:fc:54:60:1e:7d:44:e3:54:a3:f4:7b:24: 38:ad:f8:ae:95:8a:08:6d:41:12:d3:13:24:80:38: 26:92:92:da:b9:63:c2:93:ec:15:89:a5:18:a3:68: f7:68:18:74:3f:64:dc:91:b9:a5:0d:d6:ac:7c:e8: 8a:de:04:fc:04:73:f2:45:52:54:37:6b:16:62:1a: 33:4a:d0:0e:67:32:66:d0:d7:78:3f:95:c1:91:32: d4:b2:cd:2b:95:b3:fb:1c:91:1f:01:76:c7:f0:3f: b8:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:DD:D2:D9:9B:61:61:65:57:D0:A0:4D:39:7C:32:ED:A8:CE:DF:E6 X509v3 Authority Key Identifier: keyid:44:40:EE:21:B3:48:9A:65:0A:61:6B:12:0D:8E:5B:E5:79:2E:E0:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/REDuIbNImmUKYWsSDY5b5Xku4Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE3A3/18823C8C050111EABD9B202CC4F9AE02/REDuIbNImmUKYWsSDY5b5Xku4Es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:ff:75:26:c2:cf:11:ff:f4:ed:84:3a:af:6a:37:dc:d2:b9: 78:d0:ba:f9:ba:ed:1b:c2:cb:c2:7e:5f:a1:65:3f:e3:8d:a7: 34:65:eb:a5:3e:c7:40:05:08:58:40:88:d8:4a:4c:8e:01:6d: 54:4f:da:a9:21:66:f1:0a:fe:b2:87:a0:ff:d7:a8:31:ec:eb: db:83:0f:5f:e2:5d:ed:43:21:48:99:b7:f8:46:01:5c:7a:78: 0e:fd:2e:dd:37:96:ab:b7:95:65:eb:8c:a2:92:36:f3:5d:8f: e9:6c:30:bf:59:75:f5:d2:6c:83:d3:45:8f:a3:45:21:eb:30: e8:11:e5:ac:eb:99:d0:d8:f0:ba:f9:c5:2e:ed:b7:44:8f:c4: 6e:e0:2b:1b:c2:bd:56:3e:77:a6:62:5e:14:d2:b8:30:42:b2: bc:48:91:96:67:43:d0:c0:16:04:da:9c:2d:61:55:b0:cc:a9: 25:67:4b:da:25:84:c8:d0:e9:24:5d:be:6d:e0:57:f3:2d:ba: 9b:e0:b5:d9:86:94:03:e5:28:af:08:3e:64:5d:74:05:fa:bb: e8:b0:94:57:79:34:c2:82:7e:a3:d4:62:fb:6d:e9:89:dc:2f: ac:2b:f9:b0:86:2a:5e:ca:a1:99:04:76:58:cd:22:40:6d:07: dc:65:0f:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UzQTMxMTAvBgNVBAUTKDQ0NDBFRTIxQjM0ODlBNjUwQTYxNkIxMjBEOEU1QkU1 NzkyRUUwNEIwHhcNMjUxMDIwMTg1NTI2WhcNMjUxMDI3MTg1NTI2WjAYMRYwFAYD VQQDEw02OGY2ODU5ZS04NWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuQeyP7BShaYrtmcjxtbtU6eHenD2r8TTqYpbRXWfW9rLoFvDup+2tU1X+UVI BXHXYDwTwyIQvF3tXAgGqeUuAZuz4HSAGSULt2p5kjIwGA1yTvtCFueePr9N17At UKaNg9NEFAyyuSiNSFe6hNkBr7y9z3HBnmI0zLK9MMLUVPI++sJGM+hZJZ4vEfCD lAQMDcuUXDdvh4L8VGAefUTjVKP0eyQ4rfiulYoIbUES0xMkgDgmkpLauWPCk+wV iaUYo2j3aBh0P2TckbmlDdasfOiK3gT8BHPyRVJUN2sWYhozStAOZzJm0Nd4P5XB kTLUss0rlbP7HJEfAXbH8D+4fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFjd0tmb YWFlV9CgTTl8Mu2ozt/mMB8GA1UdIwQYMBaAFERA7iGzSJplCmFrEg2OW+V5LuBL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTNBMy8xODgyM0M4QzA1 MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1tVUtZV3NTRFk1YjVYa3U0 RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JFRHVJYk5JbW1VS1lXc1NEWTViNVhrdTRFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTNBMy8xODgyM0M4QzA1MDExMUVBQkQ5QjIwMkNDNEY5QUUwMi9SRUR1SWJOSW1t VUtZV3NTRFk1YjVYa3U0RXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN/3Umws8R//TthDqvajfc0rl40Lr5uu0bwsvCfl+hZT/jjac0Zeul PsdABQhYQIjYSkyOAW1UT9qpIWbxCv6yh6D/16gx7Ovbgw9f4l3tQyFImbf4RgFc engO/S7dN5art5Vl64yikjbzXY/pbDC/WXX10myD00WPo0Uh6zDoEeWs65nQ2PC6 +cUu7bdEj8Ru4Csbwr1WPnemYl4U0rgwQrK8SJGWZ0PQwBYE2pwtYVWwzKklZ0va JYTI0OkkXb5t4FfzLbqb4LXZhpQD5SivCD5kXXQF+rvosJRXeTTCgn6j1GL7bemJ 3C+sK/mwhipeyqGZBHZYzSJAbQfcZQ/v -----END CERTIFICATE-----Generated at Tue Oct 21 07:51:17 2025 by rpki-client