$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft File: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft (raw, json) Hash identifier: O95U0DblyTcXKwG+pW5S8F4Mgx7yuvebwdlUq/QQXC8= Subject key identifier: 98:6D:E9:5F:76:1A:EA:67:CA:C1:65:4F:2E:91:CD:B6:D5:1B:DC:A7 Authority key identifier: F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 Certificate issuer: /CN=A91D3102/serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Certificate serial: 2E1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft Manifest number: 2E07 Signing time: Sat 18 Oct 2025 15:41:00 +0000 Manifest this update: Sat 18 Oct 2025 15:40:59 +0000 Manifest next update: Sat 25 Oct 2025 15:40:59 +0000 Files and hashes: 1: -Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl (hash: kWm5YhwWq5ElAYGi/nU8VhmdDwqtuj6OcG3Pc1D733Y=) 2: 611D8094B13D11E59299870AC4F9AE02.roa (hash: Ge8zFlpjpqEtuKQN0h56H1Urr1O0D0HMkBD9jJfCPmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:40:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11807 (0x2e1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3102, serialNumber=F91A3A98314384C403A8FF22A453BCA1A3BA6CD8 Validity Not Before: Oct 18 15:40:59 2025 GMT Not After : Oct 25 15:40:59 2025 GMT Subject: CN=68f3b50b-e5cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:23:dd:cb:80:69:d0:77:bc:f2:fa:f9:a4:bd: 53:2c:6a:61:e0:a7:5e:a0:8d:e2:de:9a:28:a7:3d: e3:3d:e1:72:ae:0b:cd:17:f6:24:79:eb:10:63:57: 96:a7:1c:b5:f7:29:00:a2:52:01:f5:4b:37:9d:72: b0:ed:94:52:04:b3:80:7f:cd:4f:0a:9b:1c:d2:c5: e6:ca:6b:20:7b:7e:e9:1d:86:ec:2b:f1:40:dc:6b: 5d:0b:3a:81:7e:50:ed:de:41:6b:73:66:2a:00:02: ff:d2:65:83:4f:75:aa:d2:36:4b:f5:bf:ab:8f:b3: 7d:4e:11:eb:04:ea:44:0f:a3:6e:a8:70:9b:cb:95: c7:1d:4f:b5:55:f2:68:b4:ac:c5:02:81:fc:a8:80: 17:a1:79:dd:62:df:2e:f4:33:e6:12:76:da:e2:99: b4:8e:f0:6a:5a:89:62:24:0a:36:d4:4c:4b:a9:8d: b4:23:db:74:b3:c1:63:47:48:0a:74:3b:97:24:6d: 2c:68:5e:cb:43:d1:94:be:8b:f0:1e:f1:fe:f4:85: ed:1e:65:09:a4:56:f9:3e:53:e1:ae:dc:91:2d:1d: 4b:b4:05:23:51:96:c0:8a:c9:55:de:75:90:43:6e: a8:10:b4:fc:ba:a1:63:ef:e5:76:ac:b4:d8:70:32: 40:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:6D:E9:5F:76:1A:EA:67:CA:C1:65:4F:2E:91:CD:B6:D5:1B:DC:A7 X509v3 Authority Key Identifier: keyid:F9:1A:3A:98:31:43:84:C4:03:A8:FF:22:A4:53:BC:A1:A3:BA:6C:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3102/D4AEE2C8768E11E399A957455911EA32/-Ro6mDFDhMQDqP8ipFO8oaO6bNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:85:be:05:b2:ef:3c:fe:4d:4f:10:90:cc:ec:c5:7d:36:a5: 0e:29:91:ba:15:cd:58:48:f6:91:af:60:07:95:43:5f:b7:ef: 50:ba:1c:3d:22:b4:f2:f5:54:24:00:f5:7d:85:bd:18:3d:cb: 13:48:9a:cc:32:aa:cc:2c:75:f5:33:27:0a:1c:1f:8c:e4:f2: 0a:53:b6:c4:1d:84:1e:f4:cb:43:63:21:70:f9:d2:f7:2c:38: 48:44:bd:5b:1d:4c:23:37:6d:9a:bf:3e:9b:e4:4f:23:9e:2b: 3a:cd:2b:42:1e:99:6f:00:62:07:66:d9:7e:95:0c:86:73:b2: dd:72:83:54:df:6f:4f:15:68:72:41:e7:dd:8d:1c:aa:46:fc: 83:a6:6e:1b:4d:b9:9e:a0:2e:bf:b1:7e:c9:f1:1a:79:8f:1e: 81:00:62:91:8e:f7:27:1a:17:50:94:32:e5:d5:84:64:18:34: 1a:63:b5:cf:b7:ef:9d:03:b5:a6:8a:bb:86:77:03:06:33:7a: 1d:8a:9a:9b:d7:70:0c:b8:e0:c1:1f:f7:11:47:cb:8f:0c:1e: 19:df:43:ad:15:3f:2d:e8:5d:98:ff:ad:2f:9f:a5:d0:04:ef: b1:98:b4:07:a1:2a:b5:ca:39:e6:c0:44:a2:e5:41:0d:35:f0: 48:ef:7e:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMxMDIxMTAvBgNVBAUTKEY5MUEzQTk4MzE0Mzg0QzQwM0E4RkYyMkE0NTNCQ0Ex QTNCQTZDRDgwHhcNMjUxMDE4MTU0MDU5WhcNMjUxMDI1MTU0MDU5WjAYMRYwFAYD VQQDEw02OGYzYjUwYi1lNWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSPdy4Bp0He88vr5pL1TLGph4KdeoI3i3poopz3jPeFyrgvNF/YkeesQY1eW pxy19ykAolIB9Us3nXKw7ZRSBLOAf81PCpsc0sXmymsge37pHYbsK/FA3GtdCzqB flDt3kFrc2YqAAL/0mWDT3Wq0jZL9b+rj7N9ThHrBOpED6NuqHCby5XHHU+1VfJo tKzFAoH8qIAXoXndYt8u9DPmEnba4pm0jvBqWoliJAo21ExLqY20I9t0s8FjR0gK dDuXJG0saF7LQ9GUvovwHvH+9IXtHmUJpFb5PlPhrtyRLR1LtAUjUZbAislV3nWQ Q26oELT8uqFj7+V2rLTYcDJAfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJht6V92 GupnysFlTy6RzbbVG9ynMB8GA1UdIwQYMBaAFPkaOpgxQ4TEA6j/IqRTvKGjumzY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzEwMi9ENEFFRTJDODc2 OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhNUURxUDhpcEZPOG9hTzZi TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1SbzZtREZEaE1RRHFQOGlwRk84b2FPNmJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzEwMi9ENEFFRTJDODc2OEUxMUUzOTlBOTU3NDU1OTExRUEzMi8tUm82bURGRGhN UURxUDhpcEZPOG9hTzZiTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCahb4Fsu88/k1PEJDM7MV9NqUOKZG6Fc1YSPaRr2AHlUNft+9Quhw9 IrTy9VQkAPV9hb0YPcsTSJrMMqrMLHX1MycKHB+M5PIKU7bEHYQe9MtDYyFw+dL3 LDhIRL1bHUwjN22avz6b5E8jnis6zStCHplvAGIHZtl+lQyGc7LdcoNU329PFWhy QefdjRyqRvyDpm4bTbmeoC6/sX7J8Rp5jx6BAGKRjvcnGhdQlDLl1YRkGDQaY7XP t++dA7WmiruGdwMGM3odipqb13AMuODBH/cRR8uPDB4Z30OtFT8t6F2Y/60vn6XQ BO+xmLQHoSq1yjnmwESi5UENNfBI7366 -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:19 2025 by rpki-client