$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft File: fvLsMxvWVD0y25gMUGJsBAfKiYI.mft (raw, json) Hash identifier: G/43F3SVjyz6ZbqRq/DBU5Pzv18bmadp9hFSdsDhkog= Subject key identifier: 4B:D8:B5:84:D8:BA:BD:04:27:4E:87:2D:45:98:4C:96:A1:33:47:ED Authority key identifier: 7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 Certificate issuer: /CN=A91D5E23/serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Certificate serial: 0923 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft Manifest number: 091D Signing time: Mon 20 Oct 2025 21:07:37 +0000 Manifest this update: Mon 20 Oct 2025 21:07:36 +0000 Manifest next update: Mon 27 Oct 2025 21:07:36 +0000 Files and hashes: 1: fvLsMxvWVD0y25gMUGJsBAfKiYI.crl (hash: LJ8iAY4SwvGC16U6so/yp9aPVSlOpWWwYbsSpfZRG7w=) 2: 70C35E88B07511EA8C0EC372C4F9AE02.roa (hash: uh8Xk70gWxRTmNYaCNUAB+Hh9CL9zqsYHo9ULlX8dpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 21:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2339 (0x923) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5E23, serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Validity Not Before: Oct 20 21:07:36 2025 GMT Not After : Oct 27 21:07:36 2025 GMT Subject: CN=68f6a499-953b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c6:3c:23:4f:fe:84:3b:c6:ff:84:89:cd:93: 27:26:32:35:b3:45:86:59:80:51:e5:f7:65:dd:e0: 1a:5d:0a:24:a8:d7:95:f1:fe:b6:15:c4:1f:ad:20: 5b:9c:93:57:d9:97:57:72:4e:30:f6:72:45:3d:70: 5c:f0:37:8e:c5:82:34:4d:e8:70:cf:36:c1:20:b7: 9a:90:59:2d:0b:a2:1c:d0:13:50:9e:bf:d5:c9:34: 87:94:14:85:16:19:45:2d:d7:63:93:41:e9:25:27: 80:80:a3:b2:76:f2:ff:e0:14:3b:c7:ae:52:a6:54: 40:c7:7d:21:e6:95:c6:65:fe:9a:78:51:9c:9d:5b: 05:9c:aa:8f:0e:4c:3f:6f:b3:8c:c2:7b:2e:c2:4e: f9:b6:40:19:2d:28:f2:33:7c:f2:58:6c:36:77:e4: cb:59:45:2b:85:c5:79:d1:cf:41:fe:0b:f2:68:37: 5e:1a:f3:42:43:f3:44:d7:5b:83:26:5d:dc:75:ff: 73:77:e2:50:00:1e:3b:a1:a7:fc:4c:4f:61:e9:4a: e7:a4:c2:e6:eb:17:60:44:de:31:a7:89:2c:f6:67: 1f:6c:5d:de:55:4b:88:c2:ff:d9:4d:71:44:b1:fa: 99:bb:f8:60:53:17:09:25:4c:3a:f2:be:a8:42:d3: 32:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:D8:B5:84:D8:BA:BD:04:27:4E:87:2D:45:98:4C:96:A1:33:47:ED X509v3 Authority Key Identifier: keyid:7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:d3:6f:bd:16:26:8a:fc:f1:3c:50:9d:ef:cd:62:77:ed:59: 6a:6e:e9:d7:99:5f:47:60:35:11:b5:df:a4:76:ba:c2:53:46: 9b:8f:ba:1b:c0:7a:d6:2e:7b:90:68:4d:7d:e9:b5:39:cc:a3: 00:e7:b7:91:52:0b:0c:3f:a2:12:de:bc:f3:9e:17:85:fd:2a: 1a:be:cc:bd:0c:e9:6d:cf:36:2a:22:47:6f:4d:9f:1c:56:42: 71:55:44:f9:2a:05:ec:2d:59:6c:37:88:07:56:e0:08:fe:c7: 15:e0:83:25:72:b8:09:a0:37:a7:25:8f:7b:5f:a7:98:f9:f2: e5:db:a6:4e:85:25:d5:eb:61:3b:76:99:67:af:10:be:c5:af: 4b:59:14:c3:b1:48:cf:9d:10:68:5e:c8:42:1d:7c:ea:43:1b: 87:7f:7e:7b:e9:57:7f:d3:5a:a1:16:16:43:d0:d2:60:b2:20: 87:e1:ec:3e:b2:df:f5:ea:37:d5:05:be:e7:83:e9:f6:cc:53: 76:d0:63:f7:08:86:27:c6:fd:34:00:33:e3:b1:ba:db:98:8d: fb:aa:bc:68:04:b5:93:2e:5a:66:19:43:10:f2:ca:1c:6e:fe: 4f:c7:ad:b7:73:8c:fc:ef:b9:b7:a5:c8:df:48:51:60:23:81: 44:b8:f1:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVFMjMxMTAvBgNVBAUTKDdFRjJFQzMzMUJENjU0M0QzMkRCOTgwQzUwNjI2QzA0 MDdDQTg5ODIwHhcNMjUxMDIwMjEwNzM2WhcNMjUxMDI3MjEwNzM2WjAYMRYwFAYD VQQDEw02OGY2YTQ5OS05NTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcY8I0/+hDvG/4SJzZMnJjI1s0WGWYBR5fdl3eAaXQokqNeV8f62FcQfrSBb nJNX2ZdXck4w9nJFPXBc8DeOxYI0TehwzzbBILeakFktC6Ic0BNQnr/VyTSHlBSF FhlFLddjk0HpJSeAgKOydvL/4BQ7x65SplRAx30h5pXGZf6aeFGcnVsFnKqPDkw/ b7OMwnsuwk75tkAZLSjyM3zyWGw2d+TLWUUrhcV50c9B/gvyaDdeGvNCQ/NE11uD Jl3cdf9zd+JQAB47oaf8TE9h6UrnpMLm6xdgRN4xp4ks9mcfbF3eVUuIwv/ZTXFE sfqZu/hgUxcJJUw68r6oQtMyZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEvYtYTY ur0EJ06HLUWYTJahM0ftMB8GA1UdIwQYMBaAFH7y7DMb1lQ9MtuYDFBibAQHyomC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUUyMy84NjJBODNDQUIw NzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZEMHkyNWdNVUdKc0JBZktp WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z2THNNeHZXVkQweTI1Z01VR0pzQkFmS2lZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUUyMy84NjJBODNDQUIwNzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZE MHkyNWdNVUdKc0JBZktpWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa02+9FiaK/PE8UJ3vzWJ37VlqbunXmV9HYDURtd+kdrrCU0abj7ob wHrWLnuQaE196bU5zKMA57eRUgsMP6IS3rzznheF/Soavsy9DOltzzYqIkdvTZ8c VkJxVUT5KgXsLVlsN4gHVuAI/scV4IMlcrgJoDenJY97X6eY+fLl26ZOhSXV62E7 dplnrxC+xa9LWRTDsUjPnRBoXshCHXzqQxuHf3576Vd/01qhFhZD0NJgsiCH4ew+ st/16jfVBb7ng+n2zFN20GP3CIYnxv00ADPjsbrbmI37qrxoBLWTLlpmGUMQ8soc bv5Px623c4z877m3pcjfSFFgI4FEuPHH -----END CERTIFICATE-----Generated at Tue Oct 21 04:46:13 2025 by rpki-client