$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft File: _edM0WVtTsrysOa7wxNdTrhAeCs.mft (raw, json) Hash identifier: VG0uA2g/1PK54y96Ne54qxRUSRXH/JdauTPU5yjiTqU= Subject key identifier: 5B:E5:93:2C:45:DA:9E:B1:30:53:BF:53:A0:D2:31:4E:6F:30:B3:99 Authority key identifier: FD:E7:4C:D1:65:6D:4E:CA:F2:B0:E6:BB:C3:13:5D:4E:B8:40:78:2B Certificate issuer: /CN=A91DA898/serialNumber=FDE74CD1656D4ECAF2B0E6BBC3135D4EB840782B Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_edM0WVtTsrysOa7wxNdTrhAeCs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft Manifest number: 8F Signing time: Mon 20 Oct 2025 14:38:46 +0000 Manifest this update: Mon 20 Oct 2025 14:38:45 +0000 Manifest next update: Mon 27 Oct 2025 14:38:45 +0000 Files and hashes: 1: _edM0WVtTsrysOa7wxNdTrhAeCs.crl (hash: tylvmH51lxWOksxpFQzplJa5ij6wuyx6MOfgpz72QyM=) 2: 22B4D1705AF911F09FF3D30BC4F9AE02.roa (hash: HitZiMXiwNMvF13mhcDQf6XM4HwHI8hyTa9V9MVcrDg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.crl rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_edM0WVtTsrysOa7wxNdTrhAeCs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:38:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA898, serialNumber=FDE74CD1656D4ECAF2B0E6BBC3135D4EB840782B Validity Not Before: Oct 20 14:38:45 2025 GMT Not After : Oct 27 14:38:45 2025 GMT Subject: CN=68f64975-cc54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:80:91:9b:1c:ca:da:42:8e:34:51:1e:ff:e6: 88:81:f5:08:d4:6b:7f:98:fe:62:b9:af:f3:ed:db: 92:cb:30:c4:59:0f:e0:49:09:77:f9:8a:8b:89:68: eb:96:cd:2d:96:e4:dd:03:97:fa:8f:30:e7:f8:ec: e4:c3:74:bd:a3:ff:b1:b4:c6:ab:6b:e4:ba:d0:43: 32:9c:33:55:bd:19:9f:19:c9:cd:84:f4:0d:b3:7b: cf:d5:de:91:4d:28:35:6b:6d:d4:65:ca:e8:5f:75: 1c:f7:71:d9:4f:fb:4e:87:b7:aa:47:8d:cb:db:b9: a5:ff:5d:99:c4:f0:0e:6c:94:0a:40:c2:02:fd:82: 97:30:40:e7:1c:01:46:a4:c3:e3:cb:5d:52:67:2d: eb:cb:0d:5a:bd:a2:e8:44:30:89:e5:29:36:c2:66: 3d:39:f5:7f:e1:30:5a:0c:fa:f8:bc:b3:f5:c1:87: 15:67:0c:10:52:6d:de:ef:c5:e7:56:9f:c0:4d:38: d1:8f:b0:ea:9a:2c:66:c4:f1:48:3d:e0:4e:72:08: 8b:53:1c:06:4a:03:64:bb:f9:54:60:10:39:80:5f: ba:0f:e5:d0:b9:9d:6c:8c:68:c4:09:9f:89:24:7a: e5:89:56:f1:4c:62:2e:95:2d:69:45:0d:d8:df:9b: 91:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:E5:93:2C:45:DA:9E:B1:30:53:BF:53:A0:D2:31:4E:6F:30:B3:99 X509v3 Authority Key Identifier: keyid:FD:E7:4C:D1:65:6D:4E:CA:F2:B0:E6:BB:C3:13:5D:4E:B8:40:78:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_edM0WVtTsrysOa7wxNdTrhAeCs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA898/407A25EAD87F11EF91CC5346C4F9AE02/_edM0WVtTsrysOa7wxNdTrhAeCs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:80:b8:aa:ac:9c:e3:2b:91:40:8d:ff:9c:bb:b4:5d:22:09: 98:d8:e3:41:1a:c7:4e:5b:56:c9:45:05:e2:0b:c7:61:25:47: ea:90:44:bf:c3:2b:58:b7:ae:17:93:70:56:61:65:6f:f9:a7: 7b:75:00:89:46:ec:2e:17:39:97:eb:da:0e:d1:f6:99:21:9a: 0b:18:ef:31:c8:62:0e:ed:0d:c6:d5:be:07:bb:cd:99:a7:5f: 41:e3:14:26:ac:69:b9:3a:f0:3a:24:1d:47:8d:db:4a:26:b1: 53:ef:3f:3c:40:28:38:40:44:86:20:d5:c0:97:37:14:cf:bb: a0:39:35:63:ea:e1:40:dd:cd:83:2a:26:e3:e4:f1:67:98:94: cf:fa:49:79:de:11:8c:28:fb:09:f0:4f:6d:ef:73:73:ca:d4: c9:43:95:29:97:f5:9c:f3:b9:f3:cb:66:2e:1f:79:13:f1:3d: 4f:20:97:4f:3d:ad:b7:ec:7b:db:64:e8:1f:bd:36:ba:82:61: 4e:8a:52:51:c9:58:9d:90:00:3c:90:3e:7c:6d:67:f3:37:88: bf:6d:7b:a1:7b:85:00:4c:cb:9f:d4:4f:fe:5d:3e:a7:79:e0: 45:f6:8d:d9:89:66:db:98:9b:8f:58:07:5c:f8:2d:73:25:df: 71:51:d3:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE4OTgxMTAvBgNVBAUTKEZERTc0Q0QxNjU2RDRFQ0FGMkIwRTZCQkMzMTM1RDRF Qjg0MDc4MkIwHhcNMjUxMDIwMTQzODQ1WhcNMjUxMDI3MTQzODQ1WjAYMRYwFAYD VQQDEw02OGY2NDk3NS1jYzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoYCRmxzK2kKONFEe/+aIgfUI1Gt/mP5iua/z7duSyzDEWQ/gSQl3+YqLiWjr ls0tluTdA5f6jzDn+Ozkw3S9o/+xtMara+S60EMynDNVvRmfGcnNhPQNs3vP1d6R TSg1a23UZcroX3Uc93HZT/tOh7eqR43L27ml/12ZxPAObJQKQMIC/YKXMEDnHAFG pMPjy11SZy3ryw1avaLoRDCJ5Sk2wmY9OfV/4TBaDPr4vLP1wYcVZwwQUm3e78Xn Vp/ATTjRj7DqmixmxPFIPeBOcgiLUxwGSgNku/lUYBA5gF+6D+XQuZ1sjGjECZ+J JHrliVbxTGIulS1pRQ3Y35uRiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFvlkyxF 2p6xMFO/U6DSMU5vMLOZMB8GA1UdIwQYMBaAFP3nTNFlbU7K8rDmu8MTXU64QHgr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTg5OC80MDdBMjVFQUQ4 N0YxMUVGOTFDQzUzNDZDNEY5QUUwMi9fZWRNMFdWdFRzcnlzT2E3d3hOZFRyaEFl Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL19lZE0wV1Z0VHNyeXNPYTd3eE5kVHJoQWVDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTg5OC80MDdBMjVFQUQ4N0YxMUVGOTFDQzUzNDZDNEY5QUUwMi9fZWRNMFdWdFRz cnlzT2E3d3hOZFRyaEFlQ3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsgLiqrJzjK5FAjf+cu7RdIgmY2ONBGsdOW1bJRQXiC8dhJUfqkES/ wytYt64Xk3BWYWVv+ad7dQCJRuwuFzmX69oO0faZIZoLGO8xyGIO7Q3G1b4Hu82Z p19B4xQmrGm5OvA6JB1HjdtKJrFT7z88QCg4QESGINXAlzcUz7ugOTVj6uFA3c2D Kibj5PFnmJTP+kl53hGMKPsJ8E9t73NzytTJQ5Upl/Wc87nzy2YuH3kT8T1PIJdP Pa237HvbZOgfvTa6gmFOilJRyVidkAA8kD58bWfzN4i/bXuhe4UATMuf1E/+XT6n eeBF9o3ZiWbbmJuPWAdc+C1zJd9xUdMX -----END CERTIFICATE-----Generated at Tue Oct 21 15:10:29 2025 by rpki-client