$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft File: MGcPYbflDgsLiOclHeh4TAPJ5GI.mft (raw, json) Hash identifier: lpIlrmDhBUGzFTebXPxJOVrrIeQadxzDVNgvgw98/tI= Subject key identifier: DD:E3:74:00:2E:DA:A0:A8:33:6D:F8:66:ED:26:54:74:83:F8:C7:3C Authority key identifier: 30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 Certificate issuer: /CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft Manifest number: 0103 Signing time: Mon 20 Oct 2025 15:55:40 +0000 Manifest this update: Mon 20 Oct 2025 15:55:40 +0000 Manifest next update: Mon 27 Oct 2025 15:55:40 +0000 Files and hashes: 1: MGcPYbflDgsLiOclHeh4TAPJ5GI.crl (hash: SelH20KNZK6zN/PwN78ahMD1DqkZScNg6/106ZtJ06k=) 2: 038610FC2D1E11EFA25C6D16C4F9AE02.roa (hash: fWZETNQO/nq4+BYBCH9MSAL8N1aF88n2/dhae6ZuhiQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 15:55:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Validity Not Before: Oct 20 15:55:40 2025 GMT Not After : Oct 27 15:55:40 2025 GMT Subject: CN=68f65b7c-367e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:40:8b:3c:ee:38:a6:4a:ff:a7:24:c5:78:1d: 93:6c:e8:3f:9b:bd:09:78:c1:04:f1:34:1c:af:57: 38:ba:10:8a:b5:6c:de:de:ff:09:47:4d:63:f3:6f: af:5b:c7:f6:81:80:36:89:3f:5e:97:b0:4c:a4:8c: b7:0f:c9:18:e8:88:4e:69:4b:6f:e3:27:d4:f8:b0: cf:fb:9f:ec:ae:a4:a9:10:ec:c4:ac:21:be:e1:d9: 58:bf:9b:73:9d:d5:29:45:38:11:ae:9a:17:0e:3a: 4a:09:41:6d:0d:9d:7e:ad:ba:7c:11:c1:75:01:e6: 2d:ff:be:ca:cf:1e:8f:5b:6c:7c:80:2d:35:00:b2: a4:e0:46:06:45:4a:83:90:2c:26:b2:2f:fa:a6:f4: 57:9c:5a:e6:7f:e7:1f:29:72:cc:09:73:13:a5:0b: 8b:31:07:ce:e1:1a:69:33:60:f9:61:7a:14:e1:fb: b2:54:75:f6:17:42:10:d5:ef:90:1b:01:09:cd:09: 8e:de:d2:b6:0d:b7:15:62:94:5a:dd:04:38:d9:75: 5a:cc:47:f7:f0:d1:b4:c5:7f:a1:be:43:89:63:09: e6:45:bf:d4:14:db:45:89:4a:c8:36:11:c2:e1:6f: d7:5a:ff:b6:00:b8:f1:be:41:60:04:a6:78:07:55: da:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:E3:74:00:2E:DA:A0:A8:33:6D:F8:66:ED:26:54:74:83:F8:C7:3C X509v3 Authority Key Identifier: keyid:30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:95:9a:4e:0c:49:f1:f9:5d:91:ba:53:31:f0:30:0d:b7:64: 48:ce:8b:65:c3:5a:da:81:49:c3:33:05:f7:d5:97:12:96:49: c9:2b:8d:34:98:bd:5a:1f:61:9d:58:5e:b8:b7:1e:d9:ab:75: ba:71:1f:74:97:1d:22:5f:34:6b:38:20:2c:b4:c6:14:ea:dd: 86:c9:29:91:02:82:88:9a:20:45:da:10:1e:ae:eb:ae:1f:8d: 71:7a:9b:27:95:40:df:a3:30:8b:a0:b0:a8:01:de:81:b7:45: 3b:c5:16:96:94:77:a3:9d:9e:bc:17:26:06:2b:6c:3d:66:d1: b4:a9:8b:f2:42:db:7f:04:a9:f0:35:de:7c:87:1b:48:43:c9: c9:fd:c9:96:fb:c8:ac:b1:42:c8:8d:7a:b8:0f:1d:39:aa:a6: 50:76:46:30:ab:dd:18:61:11:1e:9f:ec:08:aa:a2:1c:be:70: 51:68:e5:5a:f9:1f:bd:1a:74:6b:30:44:33:46:90:73:db:32: 72:18:c4:e5:fb:12:31:f1:d1:e1:6c:85:62:a9:d5:d2:b0:c5: 94:92:cb:2a:f4:9c:80:36:2c:d8:a7:6c:f9:d0:e0:cc:6b:3c: a5:18:40:f2:2b:c6:a6:32:97:ef:d2:9f:98:d8:a8:12:b3:88: 2c:a8:a3:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKDMwNjcwRjYxQjdFNTBFMEIwQjg4RTcyNTFERTg3ODRD MDNDOUU0NjIwHhcNMjUxMDIwMTU1NTQwWhcNMjUxMDI3MTU1NTQwWjAYMRYwFAYD VQQDEw02OGY2NWI3Yy0zNjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkCLPO44pkr/pyTFeB2TbOg/m70JeMEE8TQcr1c4uhCKtWze3v8JR01j82+v W8f2gYA2iT9el7BMpIy3D8kY6IhOaUtv4yfU+LDP+5/srqSpEOzErCG+4dlYv5tz ndUpRTgRrpoXDjpKCUFtDZ1+rbp8EcF1AeYt/77Kzx6PW2x8gC01ALKk4EYGRUqD kCwmsi/6pvRXnFrmf+cfKXLMCXMTpQuLMQfO4RppM2D5YXoU4fuyVHX2F0IQ1e+Q GwEJzQmO3tK2DbcVYpRa3QQ42XVazEf38NG0xX+hvkOJYwnmRb/UFNtFiUrINhHC 4W/XWv+2ALjxvkFgBKZ4B1XaoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN3jdAAu 2qCoM234Zu0mVHSD+Mc8MB8GA1UdIwQYMBaAFDBnD2G35Q4LC4jnJR3oeEwDyeRi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy8wODJBODlGMDJB MjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERnc0xpT2NsSGVoNFRBUEo1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HY1BZYmZsRGdzTGlPY2xIZWg0VEFQSjVHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZFQy8wODJBODlGMDJBMjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERn c0xpT2NsSGVoNFRBUEo1R0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVlZpODEnx+V2RulMx8DANt2RIzotlw1ragUnDMwX31ZcSlknJK400 mL1aH2GdWF64tx7Zq3W6cR90lx0iXzRrOCAstMYU6t2GySmRAoKImiBF2hAeruuu H41xepsnlUDfozCLoLCoAd6Bt0U7xRaWlHejnZ68FyYGK2w9ZtG0qYvyQtt/BKnw Nd58hxtIQ8nJ/cmW+8issULIjXq4Dx05qqZQdkYwq90YYREen+wIqqIcvnBRaOVa +R+9GnRrMEQzRpBz2zJyGMTl+xIx8dHhbIViqdXSsMWUkssq9JyANizYp2z50ODM azylGEDyK8amMpfv0p+Y2KgSs4gsqKM5 -----END CERTIFICATE-----Generated at Mon Oct 20 18:39:17 2025 by rpki-client