$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft File: iH554lttHTfvHzG8WgIy-OdlFUU.mft (raw, json) Hash identifier: gmD66paeK3FcgEW2VYV0hJR56XjMh3IyyW3zgvV69Mw= Subject key identifier: 00:AD:47:94:1E:65:02:FF:27:20:63:DF:96:BB:62:BD:9B:71:4C:20 Authority key identifier: 88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 Certificate issuer: /CN=A91D9F5A/serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft Manifest number: 07FC Signing time: Sat 18 Oct 2025 22:30:23 +0000 Manifest this update: Sat 18 Oct 2025 22:30:22 +0000 Manifest next update: Sat 25 Oct 2025 22:30:22 +0000 Files and hashes: 1: iH554lttHTfvHzG8WgIy-OdlFUU.crl (hash: /FBOnPqOBRDbAoxs2NUCTyVsXCOBQoluvwlxAYWHSrc=) 2: CF6A89D86B3D11F0A0837D7FC4F9AE02.roa (hash: O05NjBwYNNvXC8JoMWk3EyZg7iktCjusVDBEEW7nGKc=) 3: CEFEDAB26B3D11F0A0837D7FC4F9AE02.roa (hash: cqaNGUAp+AM9Nk5TWMcE/5SRJKY4Makpxzc5uTKkH7g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9F5A, serialNumber=887E79E25B6D1D37EF1F31BC5A0232F8E7651545 Validity Not Before: Oct 18 22:30:22 2025 GMT Not After : Oct 25 22:30:22 2025 GMT Subject: CN=68f414fe-d398 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:19:3f:f1:cc:f8:82:fd:66:e3:70:3c:1e:07: fc:aa:f7:1a:0b:f5:d0:d9:af:31:4d:b7:4e:14:44: e2:06:ef:c1:6e:72:a3:a9:46:16:2b:9f:5a:0b:ad: db:fe:76:f7:81:14:42:df:13:02:c7:c9:5d:89:46: 90:e9:f3:bb:93:2d:f2:69:00:e6:45:61:2d:37:9d: b1:e2:ec:9f:9d:e0:2e:60:4c:9c:f2:4c:7a:d5:fd: b0:5d:da:24:b2:f1:71:01:74:ff:6a:a2:3f:ca:a8: ac:ef:00:1c:42:ca:77:09:9a:14:93:4a:20:ce:62: ce:39:52:27:31:80:55:4d:5f:01:83:66:13:94:3f: 57:99:ec:08:fa:fc:0a:42:7a:5c:ae:5b:3c:3b:b9: a6:7a:f6:1a:06:6c:25:a3:05:6e:64:f3:93:d7:ec: 3c:f9:5f:a4:a3:93:94:30:eb:6c:50:41:2c:7f:6a: 46:24:57:2f:6d:a1:54:7f:96:4b:b4:1b:24:19:7b: 95:4c:fa:65:4e:c7:d6:e5:2c:fb:33:a7:b0:0d:77: 51:86:85:14:0d:ac:67:f5:72:f2:7a:2c:54:9a:3d: e7:8d:41:60:10:94:de:64:5e:25:1f:50:0b:e6:4a: ef:f0:68:58:85:49:90:01:a9:75:44:50:1d:f8:29: fd:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:AD:47:94:1E:65:02:FF:27:20:63:DF:96:BB:62:BD:9B:71:4C:20 X509v3 Authority Key Identifier: keyid:88:7E:79:E2:5B:6D:1D:37:EF:1F:31:BC:5A:02:32:F8:E7:65:15:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iH554lttHTfvHzG8WgIy-OdlFUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9F5A/0898B23A11BA11EBBC1A584CC4F9AE02/iH554lttHTfvHzG8WgIy-OdlFUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:8b:e6:73:a6:da:71:f8:34:70:a2:e8:72:50:0f:3c:f7:8e: 8a:2d:7d:4c:db:ce:97:49:eb:17:85:09:8a:b0:dc:c6:79:68: cf:2c:10:88:79:20:39:60:5d:62:4d:2f:0c:ae:bd:63:ca:f3: 13:85:34:ee:6c:50:31:65:2c:d2:77:a6:60:a6:10:a7:a9:d5: c1:90:ee:93:6c:bd:08:f6:05:09:b5:f3:45:d1:56:41:43:f7: 94:38:bd:f2:7c:55:a5:a4:a4:a5:40:9a:32:1a:3c:08:a7:ab: 32:30:dc:36:65:28:7f:62:78:54:0b:44:34:62:e9:d0:a2:19: b7:70:9d:bb:2f:67:05:2a:05:53:6e:da:2a:62:1a:df:00:53: 35:65:3a:3e:fd:98:03:08:cb:92:d7:42:0e:8e:29:80:1d:46: ef:c9:c6:5a:df:24:6c:86:20:cb:69:98:59:c3:4e:80:a9:ba: 66:b0:2d:08:2b:08:b1:78:55:61:44:d1:b7:80:aa:04:ac:32: 73:d0:fa:05:80:37:79:63:f0:c8:24:91:c0:2e:ff:f7:0c:09: f8:77:d7:73:46:2a:9b:22:d3:ac:1a:a8:bc:35:38:2d:13:33: c4:26:75:c1:54:75:b3:9b:0d:ca:e9:5e:ae:84:0e:c5:e7:61: 94:72:f9:56 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUY1QTExMC8GA1UEBRMoODg3RTc5RTI1QjZEMUQzN0VGMUYzMUJDNUEwMjMyRjhF NzY1MTU0NTAeFw0yNTEwMTgyMjMwMjJaFw0yNTEwMjUyMjMwMjJaMBgxFjAUBgNV BAMTDTY4ZjQxNGZlLWQzOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjGT/xzPiC/WbjcDweB/yq9xoL9dDZrzFNt04UROIG78FucqOpRhYrn1oLrdv+ dveBFELfEwLHyV2JRpDp87uTLfJpAOZFYS03nbHi7J+d4C5gTJzyTHrV/bBd2iSy 8XEBdP9qoj/KqKzvABxCyncJmhSTSiDOYs45UicxgFVNXwGDZhOUP1eZ7Aj6/ApC elyuWzw7uaZ69hoGbCWjBW5k85PX7Dz5X6Sjk5Qw62xQQSx/akYkVy9toVR/lku0 GyQZe5VM+mVOx9blLPszp7ANd1GGhRQNrGf1cvJ6LFSaPeeNQWAQlN5kXiUfUAvm Su/waFiFSZABqXVEUB34Kf0fAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUAK1HlB5l Av8nIGPflrtivZtxTCAwHwYDVR0jBBgwFoAUiH554lttHTfvHzG8WgIy+OdlFUUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5RjVBLzA4OThCMjNBMTFC QTExRUJCQzFBNTg0Q0M0RjlBRTAyL2lINTU0bHR0SFRmdkh6RzhXZ0l5LU9kbEZV VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUg1NTRsdHRIVGZ2SHpHOFdnSXktT2RsRlVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 RjVBLzA4OThCMjNBMTFCQTExRUJCQzFBNTg0Q0M0RjlBRTAyL2lINTU0bHR0SFRm dkh6RzhXZ0l5LU9kbEZVVS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH2L5nOm2nH4NHCi6HJQDzz3jootfUzbzpdJ6xeFCYqw3MZ5aM8sEIh5 IDlgXWJNLwyuvWPK8xOFNO5sUDFlLNJ3pmCmEKep1cGQ7pNsvQj2BQm180XRVkFD 95Q4vfJ8VaWkpKVAmjIaPAinqzIw3DZlKH9ieFQLRDRi6dCiGbdwnbsvZwUqBVNu 2ipiGt8AUzVlOj79mAMIy5LXQg6OKYAdRu/JxlrfJGyGIMtpmFnDToCpumawLQgr CLF4VWFE0beAqgSsMnPQ+gWAN3lj8MgkkcAu//cMCfh313NGKpsi06waqLw1OC0T M8QmdcFUdbObDcrpXq6EDsXnYZRy+VY= -----END CERTIFICATE-----Generated at Mon Oct 20 20:19:20 2025 by rpki-client