$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft File: 148wkE5135TOt1lmr4OOdj6ol2I.mft (raw, json) Hash identifier: ShcAwE0cQFaj46Hzs4UWpfs6a8BB8tmNWyELm4SVR5w= Subject key identifier: E6:5D:35:F8:5D:82:39:E6:69:39:32:C6:FB:45:8C:52:C8:07:CD:41 Authority key identifier: D7:8F:30:90:4E:75:DF:94:CE:B7:59:66:AF:83:8E:76:3E:A8:97:62 Certificate issuer: /CN=A91CE403/serialNumber=D78F30904E75DF94CEB75966AF838E763EA89762 Certificate serial: 010C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft Manifest number: 010A Signing time: Sun 19 Oct 2025 07:52:44 +0000 Manifest this update: Sun 19 Oct 2025 07:52:43 +0000 Manifest next update: Sun 26 Oct 2025 07:52:43 +0000 Files and hashes: 1: 148wkE5135TOt1lmr4OOdj6ol2I.crl (hash: HpOJ0JVQ0sfGp1tLhR+yqPPNVVC0Kd3+CvLQaidRJgo=) 2: B74BF7F018BF11EFB54AFB20C4F9AE02.roa (hash: 3q4SG/qlGVDYq4EV5cqZmr+jLzfEittQVkz7pS+z/KE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.crl rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:52:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE403, serialNumber=D78F30904E75DF94CEB75966AF838E763EA89762 Validity Not Before: Oct 19 07:52:43 2025 GMT Not After : Oct 26 07:52:43 2025 GMT Subject: CN=68f498cc-0323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:49:6c:75:b1:a2:ce:a3:2e:2e:fe:b9:2b:ad: 0b:d3:b0:41:90:0a:55:a3:a6:c4:4e:be:ed:70:37: 63:70:40:23:d2:a6:b7:11:1a:a6:23:d5:c3:f0:77: a2:35:04:74:ce:af:e5:c0:08:13:4c:da:23:ac:72: d9:96:3e:d0:68:36:d9:92:66:ca:a2:ba:16:61:52: 80:82:d2:68:5f:3a:69:41:68:25:0b:7d:fd:91:c1: 9d:bd:2f:b5:27:16:ff:b5:13:7a:e4:06:0f:8d:55: 9d:cc:76:39:61:64:1d:e3:7f:89:d3:8f:4d:0c:11: 76:01:db:2c:fd:4d:b6:85:48:43:f9:7d:4a:69:c8: ea:3f:24:55:62:cb:0f:3a:dd:4a:3d:41:0e:a1:f8: 23:48:aa:26:13:6d:0b:bd:eb:63:a4:a0:22:b6:b2: 04:38:78:6c:c1:96:10:87:2c:9a:0c:58:2c:a6:5a: 3a:55:eb:de:f2:36:6d:cf:71:89:d2:a5:2d:9d:5e: b0:1e:29:36:1a:4a:e2:b4:e4:8b:3c:33:1c:5b:d5: 96:47:be:b3:02:eb:7c:95:1f:71:65:51:6e:d0:8b: 13:83:0e:5b:d6:03:1f:bf:2b:40:b7:b8:08:3c:e3: 4d:02:d3:10:88:a8:50:22:72:93:9b:80:83:c7:f1: 60:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:5D:35:F8:5D:82:39:E6:69:39:32:C6:FB:45:8C:52:C8:07:CD:41 X509v3 Authority Key Identifier: keyid:D7:8F:30:90:4E:75:DF:94:CE:B7:59:66:AF:83:8E:76:3E:A8:97:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/148wkE5135TOt1lmr4OOdj6ol2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE403/802072E818BE11EFADA7E51DC4F9AE02/148wkE5135TOt1lmr4OOdj6ol2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:52:b4:63:dc:0a:41:15:7d:03:9b:5c:e9:84:b5:9d:bc:57: 7a:48:00:a2:d3:42:bc:c3:7f:b4:20:23:44:b1:74:3c:25:7f: 56:76:e6:64:b0:a1:85:6e:38:7d:e3:e0:2e:b0:79:95:0a:6d: f7:28:24:1d:ff:6a:56:69:00:1a:6e:b3:cb:46:73:99:ab:72: 38:bc:e5:f8:92:17:02:80:81:20:b3:02:7c:98:ff:7d:ce:a0: 15:a8:2c:b4:59:7d:c1:37:57:7f:0c:36:94:f2:05:c2:8c:3c: 76:e0:14:01:49:cd:66:bd:21:54:d5:4a:dc:a0:ce:ea:8e:f8: 4f:cc:0f:b8:7d:54:e6:2a:b6:85:b7:33:bc:05:b7:90:83:d0: 34:61:e4:b6:fc:9c:64:14:1e:3b:a8:59:c1:97:90:3c:d8:17: 8c:86:89:0a:f8:27:81:38:51:8e:0b:1a:54:b8:9a:8d:fb:1e: 47:19:bb:8f:15:6c:9f:a6:1d:0d:6b:1d:be:9b:c4:0b:17:30: cf:48:56:1b:ba:35:43:ab:95:8d:58:22:53:28:d9:3d:4e:0d: aa:6a:1a:23:d7:e3:f1:75:34:a2:3b:33:23:74:55:c4:9b:d3: 1f:d1:db:14:40:50:24:75:0c:e0:8b:ce:8c:80:c9:c9:4a:b0: 4b:1a:55:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U0MDMxMTAvBgNVBAUTKEQ3OEYzMDkwNEU3NURGOTRDRUI3NTk2NkFGODM4RTc2 M0VBODk3NjIwHhcNMjUxMDE5MDc1MjQzWhcNMjUxMDI2MDc1MjQzWjAYMRYwFAYD VQQDEw02OGY0OThjYy0wMzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxElsdbGizqMuLv65K60L07BBkApVo6bETr7tcDdjcEAj0qa3ERqmI9XD8Hei NQR0zq/lwAgTTNojrHLZlj7QaDbZkmbKoroWYVKAgtJoXzppQWglC339kcGdvS+1 Jxb/tRN65AYPjVWdzHY5YWQd43+J049NDBF2Adss/U22hUhD+X1KacjqPyRVYssP Ot1KPUEOofgjSKomE20LvetjpKAitrIEOHhswZYQhyyaDFgsplo6Veve8jZtz3GJ 0qUtnV6wHik2GkritOSLPDMcW9WWR76zAut8lR9xZVFu0IsTgw5b1gMfvytAt7gI PONNAtMQiKhQInKTm4CDx/FgkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZdNfhd gjnmaTkyxvtFjFLIB81BMB8GA1UdIwQYMBaAFNePMJBOdd+UzrdZZq+DjnY+qJdi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTQwMy84MDIwNzJFODE4 QkUxMUVGQURBN0U1MURDNEY5QUUwMi8xNDh3a0U1MTM1VE90MWxtcjRPT2RqNm9s MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzE0OHdrRTUxMzVUT3QxbG1yNE9PZGo2b2wySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTQwMy84MDIwNzJFODE4QkUxMUVGQURBN0U1MURDNEY5QUUwMi8xNDh3a0U1MTM1 VE90MWxtcjRPT2RqNm9sMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZUrRj3ApBFX0Dm1zphLWdvFd6SACi00K8w3+0ICNEsXQ8JX9WduZk sKGFbjh94+AusHmVCm33KCQd/2pWaQAabrPLRnOZq3I4vOX4khcCgIEgswJ8mP99 zqAVqCy0WX3BN1d/DDaU8gXCjDx24BQBSc1mvSFU1UrcoM7qjvhPzA+4fVTmKraF tzO8BbeQg9A0YeS2/JxkFB47qFnBl5A82BeMhokK+CeBOFGOCxpUuJqN+x5HGbuP FWyfph0Nax2+m8QLFzDPSFYbujVDq5WNWCJTKNk9Tg2qahoj1+PxdTSiOzMjdFXE m9Mf0dsUQFAkdQzgi86MgMnJSrBLGlWV -----END CERTIFICATE-----Generated at Mon Oct 20 14:00:36 2025 by rpki-client