$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft File: phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft (raw, json) Hash identifier: gDzuYBPk1Dohn8pp9d7Wp7ZjDdycfhvs6Oj/MMYhT5k= Subject key identifier: EB:40:3A:E0:F7:94:42:95:81:02:F2:6E:1B:2F:27:34:59:87:3E:70 Authority key identifier: A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D Certificate issuer: /CN=A91D1623/serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft Manifest number: 01BB Signing time: Sun 19 Oct 2025 05:37:50 +0000 Manifest this update: Sun 19 Oct 2025 05:37:49 +0000 Manifest next update: Sun 26 Oct 2025 05:37:49 +0000 Files and hashes: 1: phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl (hash: d4Qhur/goU8T0amiYzf4v7JvtKwPZjqnF8Y+Ur/ahVM=) 2: 939530627B6311F0BF7B4936C4F9AE02.roa (hash: 3WTSm0ARO6OxYTvyrfdEmxZEWxigI2p51l76SgzYhn8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:37:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1623, serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Validity Not Before: Oct 19 05:37:49 2025 GMT Not After : Oct 26 05:37:49 2025 GMT Subject: CN=68f4792d-1fc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1c:18:00:e1:0b:b7:48:94:78:8e:7f:ee:0a: 1b:ba:93:bd:46:fb:80:fa:43:23:6b:1d:6e:33:5c: d7:6e:6d:62:ab:48:a8:2b:b7:c9:e0:13:2c:c3:ca: 1a:63:71:2e:e8:9c:da:58:9b:9c:41:2f:4f:1c:1f: bf:a0:59:21:5c:b0:eb:a7:87:d1:53:80:c4:d9:ee: dd:9b:cc:ad:10:25:f1:57:fe:48:59:c1:d7:32:49: 3f:42:7a:35:19:36:24:b3:6f:5c:c4:96:12:ae:50: d3:8b:16:a4:ae:db:cb:3e:33:5f:ae:5a:aa:13:87: 27:92:11:6e:6d:2f:4d:08:9c:dc:39:79:d7:34:47: 4d:7a:e4:34:91:44:08:7c:ad:e3:8a:9a:3e:7a:51: 22:fa:93:ef:f7:16:f6:cd:69:60:fd:09:b7:fe:b7: 1b:e4:e9:07:70:76:20:f4:bc:ce:a3:85:0e:64:64: dc:6d:0d:f7:2e:7b:e1:4b:7d:da:c4:52:34:ed:45: 52:84:c1:aa:c1:76:da:1f:b6:32:cb:b7:95:6a:3f: 9b:e4:2a:9f:da:93:b7:53:fc:7a:9c:3d:e1:ea:5b: 65:55:11:fe:a8:8f:0d:cb:ae:3f:eb:d3:ec:db:79: d3:91:7f:03:28:4d:ca:6e:03:c8:72:b6:f6:91:ab: b9:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:40:3A:E0:F7:94:42:95:81:02:F2:6E:1B:2F:27:34:59:87:3E:70 X509v3 Authority Key Identifier: keyid:A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:71:d4:f6:2c:35:10:d2:56:5d:dc:d6:57:64:35:0d:6f:01: b8:48:3a:3e:3b:8e:4e:f9:2b:f1:0f:95:16:6c:8b:4f:55:e7: e3:b2:49:4f:f3:70:c9:0b:19:61:1a:dc:d9:1a:20:62:cf:02: 2e:cd:2f:ea:d7:15:aa:91:df:89:0a:4f:09:11:c3:04:70:99: 40:bc:a5:e7:77:76:be:10:77:60:a7:6b:f7:7b:02:d8:31:32: 72:7a:68:54:b8:60:a2:0c:06:2b:f6:28:ec:9f:41:89:79:6d: d7:80:1d:29:e9:4f:a8:79:6b:fd:5f:49:10:f1:28:8f:ac:b7: 48:f7:4c:96:40:7d:e4:a9:f8:27:ed:af:55:68:29:22:61:86: bc:b7:66:d9:4a:10:4a:58:de:83:61:8b:08:61:55:a0:bf:46: 8d:17:5b:c9:1b:a1:64:57:3b:30:3c:eb:68:4f:b5:d1:b7:82: a4:a0:b3:8e:8f:2e:cc:07:54:78:15:18:0e:2c:75:c4:f1:a9: 93:74:fa:be:dc:69:c5:40:83:56:0c:6a:cb:da:a2:ce:a8:2c: 66:94:fc:40:a7:37:4d:f8:4f:d1:87:1b:de:32:8d:e7:83:f2: e6:c4:27:9c:1d:05:85:18:52:4b:81:78:00:ad:ae:a5:e6:86: fa:0e:85:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2MjMxMTAvBgNVBAUTKEE2MTUwNzgwRTBCQTExRUEwQURDNDM0QUVEMzgzQzhC ODJBODk2MUQwHhcNMjUxMDE5MDUzNzQ5WhcNMjUxMDI2MDUzNzQ5WjAYMRYwFAYD VQQDEw02OGY0NzkyZC0xZmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxwYAOELt0iUeI5/7gobupO9RvuA+kMjax1uM1zXbm1iq0ioK7fJ4BMsw8oa Y3Eu6JzaWJucQS9PHB+/oFkhXLDrp4fRU4DE2e7dm8ytECXxV/5IWcHXMkk/Qno1 GTYks29cxJYSrlDTixakrtvLPjNfrlqqE4cnkhFubS9NCJzcOXnXNEdNeuQ0kUQI fK3jipo+elEi+pPv9xb2zWlg/Qm3/rcb5OkHcHYg9LzOo4UOZGTcbQ33LnvhS33a xFI07UVShMGqwXbaH7Yyy7eVaj+b5Cqf2pO3U/x6nD3h6ltlVRH+qI8Ny64/69Ps 23nTkX8DKE3KbgPIcrb2kau5+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOtAOuD3 lEKVgQLybhsvJzRZhz5wMB8GA1UdIwQYMBaAFKYVB4DguhHqCtxDSu04PIuCqJYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTYyMy80MTA3MzVDQTE0 OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVlb0szRU5LN1RnOGk0S29s aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BoVUhnT0M2RWVvSzNFTks3VGc4aTRLb2xoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTYyMy80MTA3MzVDQTE0OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVl b0szRU5LN1RnOGk0S29saDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjcdT2LDUQ0lZd3NZXZDUNbwG4SDo+O45O+SvxD5UWbItPVefjsklP 83DJCxlhGtzZGiBizwIuzS/q1xWqkd+JCk8JEcMEcJlAvKXnd3a+EHdgp2v3ewLY MTJyemhUuGCiDAYr9ijsn0GJeW3XgB0p6U+oeWv9X0kQ8SiPrLdI90yWQH3kqfgn 7a9VaCkiYYa8t2bZShBKWN6DYYsIYVWgv0aNF1vJG6FkVzswPOtoT7XRt4KkoLOO jy7MB1R4FRgOLHXE8amTdPq+3GnFQINWDGrL2qLOqCxmlPxApzdN+E/RhxveMo3n g/LmxCecHQWFGFJLgXgAra6l5ob6DoUC -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:48 2025 by rpki-client