$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft File: s2uXFySjur2JC3VFmJM3IPly_q8.mft (raw, json) Hash identifier: sJhFcq1FdRJ0+Wtj9Ys5oSJkGBkPxcQkzpoI/oF11pA= Subject key identifier: 72:46:2B:5D:82:CB:06:DA:15:2B:00:95:B5:98:67:D0:7D:98:BB:62 Authority key identifier: B3:6B:97:17:24:A3:BA:BD:89:0B:75:45:98:93:37:20:F9:72:FE:AF Certificate issuer: /CN=A91CE558/serialNumber=B36B971724A3BABD890B754598933720F972FEAF Certificate serial: 0BAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft Manifest number: 0B4E Signing time: Sat 18 Oct 2025 20:18:09 +0000 Manifest this update: Sat 18 Oct 2025 20:18:08 +0000 Manifest next update: Sat 25 Oct 2025 20:18:08 +0000 Files and hashes: 1: s2uXFySjur2JC3VFmJM3IPly_q8.crl (hash: o4ljsD1N4zuhqdzHMI+jVuYCNmXPWpno37egf74TqIM=) 2: 466891560ADA11ECBFAECB29C4F9AE02.roa (hash: Gi3ZB3u4tIqQA57JWptzmGj4T0h+RzUq8o/c0VetBYI=) 3: F1EB46D2717F11EEB3FA0A5EC4F9AE02.roa (hash: lgdsNT8nYBqcm8DCsobXOW7p2S7NgKOOoWUT5xQjbBE=) 4: A7470BFC33A711EBA4313B36C4F9AE02.roa (hash: 3JOJzRv4irtlrsMwD4nhQQebwbICPddO6QXSBTA7ZXU=) 5: D992FDD49B4811EFA17EB17FC4F9AE02.roa (hash: eR1CwoT+DNfBY5Fom2xgTVdBct441pK1ZuTbHGG+Djc=) 6: B66F0C58817111EFB121970CC4F9AE02.roa (hash: mu1iARnCi5kA2mbUie8M1ra9hiXhkaHe7HXaTEKFUdU=) 7: C1ACB1E819EF11EC84DBF462C4F9AE02.roa (hash: TTlhGhUAD/2NGqtgzSrC9HKcOBdgmaTheq7ErX+FNZ4=) 8: 966FD4648D2411EF9914EF63C4F9AE02.roa (hash: YF3wvRDD0dzUZakdeFWJrsLYoJUpMBgClY/hZFPMmvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.crl rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:18:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2988 (0xbac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE558, serialNumber=B36B971724A3BABD890B754598933720F972FEAF Validity Not Before: Oct 18 20:18:08 2025 GMT Not After : Oct 25 20:18:08 2025 GMT Subject: CN=68f3f601-541b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:63:78:8b:12:49:25:6e:a8:c3:4c:3d:80:cd: 96:a8:08:fe:9d:2f:d4:05:ed:c7:ed:e0:04:b9:b9: 02:10:61:f6:34:2d:69:c9:89:e2:2a:77:c4:0b:18: 0b:0a:f8:41:b5:9d:73:a8:d6:84:23:75:ae:24:f4: e7:44:6c:30:a6:c5:fd:5f:84:0b:17:e3:e7:6f:56: 72:56:6c:01:99:e6:1a:2f:cd:a3:81:8b:3b:87:a0: 55:05:f8:58:7d:21:87:5d:cb:24:f5:ec:cd:df:f4: b2:65:52:31:74:5b:3c:22:4b:b5:ac:2a:40:dd:6b: 7e:02:7a:d4:2c:da:ab:4e:b1:62:46:73:32:e2:d8: 1f:85:48:94:41:f5:00:ed:78:69:6b:12:57:a7:5e: b7:d2:1f:8f:9b:a5:82:2f:89:29:7a:ef:a4:d4:c2: 07:d8:5c:ed:e8:02:e2:29:a1:ab:a2:c5:23:b3:ab: 23:6a:8c:f6:ce:8b:dc:5d:38:c4:f7:7d:6c:58:f9: 6e:c8:79:2a:79:b2:3f:33:0f:0e:8c:d1:c9:d4:a5: ca:60:87:16:e8:f5:b5:e0:ae:e6:50:7b:c1:66:d6: 96:c9:d8:58:b0:b6:d5:7b:69:d0:93:d0:62:39:a7: 9d:80:3b:20:8f:88:6a:25:ff:8b:4d:91:df:3d:7f: 4a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:46:2B:5D:82:CB:06:DA:15:2B:00:95:B5:98:67:D0:7D:98:BB:62 X509v3 Authority Key Identifier: keyid:B3:6B:97:17:24:A3:BA:BD:89:0B:75:45:98:93:37:20:F9:72:FE:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:f3:53:47:da:19:18:45:9a:51:ad:8b:cd:f5:63:ba:3a:b2: e8:df:a8:05:b5:fc:d0:c0:25:81:39:59:63:a6:fb:d2:8b:63: 3e:fc:b1:4e:35:68:c6:ff:2f:be:6d:ca:37:16:7d:6b:2a:0c: 45:57:bd:95:7e:b5:d7:d5:10:84:a1:41:92:24:7e:a9:a7:8a: 02:76:7e:f3:f2:20:4f:08:c8:18:a6:8f:41:3e:af:63:fd:b4: bf:2e:36:04:c4:11:1b:62:c8:89:a9:cf:f3:13:64:ac:20:08: e5:1e:cf:33:44:f8:c5:c4:36:c5:16:85:77:ea:67:3b:b0:07: e9:aa:8d:0e:d6:21:0c:a5:f0:95:c4:2e:72:23:89:86:78:c1: fb:d5:90:87:ab:2d:45:58:90:73:2e:05:5d:b0:99:f8:67:b5: 24:a0:be:28:a7:fa:bb:1a:1b:88:d9:91:ea:fe:2e:c1:32:b0: c7:86:53:2c:be:98:94:fa:77:83:a0:95:35:f8:3b:75:d4:28: c7:d0:d5:05:0f:29:f7:84:7b:d2:dc:b6:c7:52:a2:4d:07:c6: ee:19:7f:f9:6b:ad:78:24:98:d5:6c:8d:7d:73:6d:3f:2a:aa: 7c:f8:36:78:b9:e3:95:96:db:19:8b:d8:f0:94:11:8a:00:9f: c9:8a:3a:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1NTgxMTAvBgNVBAUTKEIzNkI5NzE3MjRBM0JBQkQ4OTBCNzU0NTk4OTMzNzIw Rjk3MkZFQUYwHhcNMjUxMDE4MjAxODA4WhcNMjUxMDI1MjAxODA4WjAYMRYwFAYD VQQDEw02OGYzZjYwMS01NDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmN4ixJJJW6ow0w9gM2WqAj+nS/UBe3H7eAEubkCEGH2NC1pyYniKnfECxgL CvhBtZ1zqNaEI3WuJPTnRGwwpsX9X4QLF+Pnb1ZyVmwBmeYaL82jgYs7h6BVBfhY fSGHXcsk9ezN3/SyZVIxdFs8Iku1rCpA3Wt+AnrULNqrTrFiRnMy4tgfhUiUQfUA 7XhpaxJXp1630h+Pm6WCL4kpeu+k1MIH2Fzt6ALiKaGrosUjs6sjaoz2zovcXTjE 931sWPluyHkqebI/Mw8OjNHJ1KXKYIcW6PW14K7mUHvBZtaWydhYsLbVe2nQk9Bi OaedgDsgj4hqJf+LTZHfPX9KxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJGK12C ywbaFSsAlbWYZ9B9mLtiMB8GA1UdIwQYMBaAFLNrlxcko7q9iQt1RZiTNyD5cv6v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTU1OC8zREYxNEYwODUz OTQxMUVBQkY2QjRGNUZDNEY5QUUwMi9zMnVYRnlTanVyMkpDM1ZGbUpNM0lQbHlf cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MydVhGeVNqdXIySkMzVkZtSk0zSVBseV9xOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTU1OC8zREYxNEYwODUzOTQxMUVBQkY2QjRGNUZDNEY5QUUwMi9zMnVYRnlTanVy MkpDM1ZGbUpNM0lQbHlfcTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCB81NH2hkYRZpRrYvN9WO6OrLo36gFtfzQwCWBOVljpvvSi2M+/LFO NWjG/y++bco3Fn1rKgxFV72VfrXX1RCEoUGSJH6pp4oCdn7z8iBPCMgYpo9BPq9j /bS/LjYExBEbYsiJqc/zE2SsIAjlHs8zRPjFxDbFFoV36mc7sAfpqo0O1iEMpfCV xC5yI4mGeMH71ZCHqy1FWJBzLgVdsJn4Z7UkoL4op/q7GhuI2ZHq/i7BMrDHhlMs vpiU+neDoJU1+Dt11CjH0NUFDyn3hHvS3LbHUqJNB8buGX/5a614JJjVbI19c20/ Kqp8+DZ4ueOVltsZi9jwlBGKAJ/JijpZ -----END CERTIFICATE-----Generated at Mon Oct 20 03:46:29 2025 by rpki-client