$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft File: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft (raw, json) Hash identifier: 04RcU+GFcc/mXByHHbFzAHJ1Ec1XhESBE7OA+iQhLXY= Subject key identifier: 1F:E9:DF:6D:98:1C:D5:57:04:15:B9:32:C5:A6:5B:73:EA:F3:54:D5 Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 358F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft Manifest number: 352A Signing time: Sat 18 Oct 2025 14:59:04 +0000 Manifest this update: Sat 18 Oct 2025 14:59:03 +0000 Manifest next update: Sat 25 Oct 2025 14:59:03 +0000 Files and hashes: 1: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl (hash: P15EIpBk0weO6kAhBDchXlYRuAJS+9YdYztcJOO7SnI=) 2: 64E2B628BE4911EE897F291BC4F9AE02.roa (hash: oj9MA2Xl79Ulu/1U7XExVD59vw2GZhJkFrHTogIDTCg=) 3: E6F73E22B99E11EEBF189021C4F9AE02.roa (hash: 1mDu3Q1bdiSa3axtc15ZDTGlc4zW4OxSySLPwHbTbvE=) 4: DDF4B0D2F08C11EEB70A1F76C4F9AE02.roa (hash: 3IhKk2ns73ug1cPcItokkvNYGQWI9rs7b4nF6YtsTSc=) 5: D79607EEDCDD11EE85DBEB12C4F9AE02.roa (hash: vltJ7Buw53igWVIfCgs9blss6VeKEkgF9l7xhGZDnwo=) 6: 29F7413CBB6011EEB59E5D81C4F9AE02.roa (hash: ZqgeyChgSkuAuEy8E4XBqCcFOmGTEjV9SXx7odN3pv4=) 7: D1EE6884F06C11EEA5BAA656C4F9AE02.roa (hash: 8K4hb6GJHcWswysfKKK+VFXlsdhKy8EjS5fIz+8731Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:59:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13711 (0x358f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: Oct 18 14:59:03 2025 GMT Not After : Oct 25 14:59:03 2025 GMT Subject: CN=68f3ab37-1145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e1:a9:e7:8d:ea:e6:ac:53:65:df:90:82:ec: 8e:6e:d2:cb:5e:b7:ba:2a:de:b0:81:9a:d7:05:93: e4:f0:5f:52:a6:11:1c:dc:bc:c4:be:de:ef:22:7e: b2:0f:3e:56:ac:0e:9b:68:05:e0:b7:36:f9:aa:2e: e9:74:18:21:8c:ea:b2:2b:34:4f:25:e5:fd:b0:80: 59:e5:ac:84:73:73:86:98:ff:34:cc:a6:fe:19:74: 17:e8:be:0f:52:62:6f:21:39:77:31:10:9e:55:b5: 57:0c:2d:4c:8f:12:ec:d7:75:0d:74:a1:a6:99:94: 8c:ab:74:fd:bb:27:9f:97:4c:dd:0b:1b:49:53:86: c1:d1:bc:85:34:4c:c6:e8:a9:13:d5:36:78:75:66: a7:0b:44:b3:56:11:74:0c:47:27:70:10:e8:d4:d5: cf:76:55:5f:b5:58:e7:8c:b0:e8:23:2d:5b:b1:89: fd:ec:90:15:8b:2f:80:bf:0b:2d:c2:a1:75:fc:aa: df:d1:3c:30:be:2a:2b:2f:5d:cb:d7:fa:90:de:c3: fb:df:08:95:95:8e:e8:d3:84:7c:68:5e:1a:0e:7b: f1:ab:12:7f:af:6f:9a:1b:bc:5b:8c:f5:a1:ef:39: 6d:69:c0:da:2c:e7:5a:b6:9b:f2:ef:0b:63:e5:81: 96:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:E9:DF:6D:98:1C:D5:57:04:15:B9:32:C5:A6:5B:73:EA:F3:54:D5 X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8c:a9:c0:39:b2:aa:ba:45:4a:d7:7e:e0:2e:3f:8a:c4:c0:cf: 7c:fa:fb:ae:d0:5b:08:b3:55:e5:7e:7d:d9:39:9f:d6:b5:08: fa:aa:28:80:f4:ab:71:a2:25:7c:38:5f:4f:58:0e:3c:8a:99: df:b9:a6:28:45:b3:f1:06:ce:6a:23:9f:d7:6b:b1:20:56:ba: 94:c0:76:ee:9e:08:1c:5d:11:b3:5b:07:d0:28:f8:b5:7e:cd: 79:16:94:72:48:c5:3c:a8:8d:83:6f:df:87:c4:b7:8f:f8:c0: d8:5c:0b:f8:1d:c3:d8:de:94:e8:dd:3f:72:5a:e0:14:9d:ce: 17:1a:d0:a9:a0:df:7c:47:d6:96:21:fc:52:1c:d8:8c:50:16: 04:7c:cb:a4:d3:a4:66:34:cb:a0:9a:d4:86:82:98:17:7f:bb: 85:08:70:90:79:90:37:fb:88:42:0e:66:3e:fe:d1:f2:f5:c9: 2f:aa:a8:69:3c:de:47:6a:dc:02:6b:9a:d4:f5:ba:31:f5:c6: e7:15:e1:b3:ee:53:76:95:af:4a:11:16:2d:ed:44:76:11:9d: 6b:1b:b9:65:9a:b4:d1:28:2b:9b:90:63:8a:96:b5:71:a3:60: 39:41:23:8e:cb:89:9a:ad:41:f1:69:b1:9b:14:66:67:da:74: 62:2e:0e:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNY8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjUxMDE4MTQ1OTAzWhcNMjUxMDI1MTQ1OTAzWjAYMRYwFAYD VQQDEw02OGYzYWIzNy0xMTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+Gp543q5qxTZd+QguyObtLLXre6Kt6wgZrXBZPk8F9SphEc3LzEvt7vIn6y Dz5WrA6baAXgtzb5qi7pdBghjOqyKzRPJeX9sIBZ5ayEc3OGmP80zKb+GXQX6L4P UmJvITl3MRCeVbVXDC1MjxLs13UNdKGmmZSMq3T9uyefl0zdCxtJU4bB0byFNEzG 6KkT1TZ4dWanC0SzVhF0DEcncBDo1NXPdlVftVjnjLDoIy1bsYn97JAViy+Avwst wqF1/Krf0TwwviorL13L1/qQ3sP73wiVlY7o04R8aF4aDnvxqxJ/r2+aG7xbjPWh 7zltacDaLOdatpvy7wtj5YGWewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/p322Y HNVXBBW5MsWmW3Pq81TVMB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC8zMjIzRjM1RTFEOTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMy bVZJc2s5Sm5jX0RmZzVicjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCMqcA5sqq6RUrXfuAuP4rEwM98+vuu0FsIs1Xlfn3ZOZ/WtQj6qiiA 9KtxoiV8OF9PWA48ipnfuaYoRbPxBs5qI5/Xa7EgVrqUwHbunggcXRGzWwfQKPi1 fs15FpRySMU8qI2Db9+HxLeP+MDYXAv4HcPY3pTo3T9yWuAUnc4XGtCpoN98R9aW IfxSHNiMUBYEfMuk06RmNMugmtSGgpgXf7uFCHCQeZA3+4hCDmY+/tHy9ckvqqhp PN5HatwCa5rU9box9cbnFeGz7lN2la9KERYt7UR2EZ1rG7llmrTRKCubkGOKlrVx o2A5QSOOy4marUHxabGbFGZn2nRiLg5L -----END CERTIFICATE-----Generated at Mon Oct 20 08:04:57 2025 by rpki-client