$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft File: 30fOzFfqiK65ajhlVgufImC6mQ4.mft (raw, json) Hash identifier: 76uBNKUTrRj/9KnNMmwMf6G2z9IMbUFqJE4u/uMwjII= Subject key identifier: 49:33:86:09:C2:61:91:EA:05:18:ED:26:84:8E:19:E1:C5:87:A9:34 Authority key identifier: DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E Certificate issuer: /CN=A91DBA5B/serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft Manifest number: CE Signing time: Sun 19 Oct 2025 08:47:22 +0000 Manifest this update: Sun 19 Oct 2025 08:47:21 +0000 Manifest next update: Sun 26 Oct 2025 08:47:21 +0000 Files and hashes: 1: 30fOzFfqiK65ajhlVgufImC6mQ4.crl (hash: GyoURLH2hUSqYOSEa7HuKO0ZtMnXOJWGUdbKZfoz6EM=) 2: 02389B7670E811EFA8DBE571C4F9AE02.roa (hash: AxDsA8rt+K98y/uEnY4JUiHZ0XXqFDNJTlI0IgqxxqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:47:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBA5B, serialNumber=DF47CECC57EA88AEB96A3865560B9F2260BA990E Validity Not Before: Oct 19 08:47:21 2025 GMT Not After : Oct 26 08:47:21 2025 GMT Subject: CN=68f4a599-3fd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4e:7d:1e:0b:fe:2e:8d:35:5f:a3:e3:54:ac: bf:6e:fd:3d:4e:07:64:8c:f3:38:0e:6d:c3:6c:f1: 13:a7:50:47:be:ef:8a:86:9d:2b:1a:0f:70:82:f6: a5:ee:55:d1:24:d3:87:d1:8d:81:62:0c:3c:bb:59: 67:41:b0:fa:4f:dd:23:f9:ce:34:7c:0f:84:3a:02: a9:c9:8f:d2:e2:fc:b9:29:dd:09:9d:7e:5a:5c:25: 54:45:a8:be:64:32:cb:1e:d3:41:44:56:f8:74:1e: ce:d2:76:c2:d4:36:1a:d3:0c:29:36:ad:24:15:e0: 1e:a0:93:4a:b9:09:64:85:27:8f:ea:68:f6:a1:73: 37:b4:e8:45:52:55:a3:3d:a2:b9:ec:87:8e:7e:cc: a9:a0:42:d2:38:f2:91:df:b5:75:1f:a8:56:29:2c: 52:85:d1:84:8d:b4:f6:ad:2b:2a:81:66:fd:8c:1c: a9:0f:af:87:a5:39:c8:af:29:ab:96:10:ad:6e:b0: 0f:ca:f0:ca:55:20:61:d4:63:b2:76:82:c0:f3:63: eb:59:d4:c8:fc:cb:e8:6d:e3:67:0c:73:a3:8d:e5: 57:50:19:c0:5d:15:69:09:39:43:93:b4:6b:1c:c0: fc:93:9a:a8:83:0b:db:c7:ee:68:05:96:19:b8:b8: 47:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:33:86:09:C2:61:91:EA:05:18:ED:26:84:8E:19:E1:C5:87:A9:34 X509v3 Authority Key Identifier: keyid:DF:47:CE:CC:57:EA:88:AE:B9:6A:38:65:56:0B:9F:22:60:BA:99:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/30fOzFfqiK65ajhlVgufImC6mQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBA5B/58004AAA70E711EFB444AF70C4F9AE02/30fOzFfqiK65ajhlVgufImC6mQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:f5:69:49:09:c6:67:15:8c:f1:96:3e:0f:94:25:3d:8f:e4: f0:9c:ed:46:4d:22:fa:93:c7:2a:55:34:94:49:3f:58:d6:a8: 87:4b:ad:86:d1:75:51:44:87:3f:77:68:dd:47:ad:ab:94:72: 50:7c:7f:80:31:11:d0:43:cb:8b:c9:db:dd:23:68:74:46:c1: 58:34:88:00:10:07:a3:2a:26:3a:56:38:c3:80:bb:e7:14:e6: 7f:c8:aa:53:ef:66:92:f9:fb:89:6f:89:68:cc:4d:99:35:d6: 2b:c3:16:c9:96:a1:ba:6f:3a:30:e0:19:d5:53:cb:c1:97:4d: 29:cf:b8:0e:9b:57:79:31:cc:25:21:14:d5:ca:62:0e:5b:ed: 92:26:f8:f4:2c:ab:c0:de:49:cf:48:65:66:7e:da:67:9e:12: 65:b7:51:c7:ac:d4:fe:c5:75:d9:4c:1f:23:10:a8:a4:fe:04: 99:f9:9f:4f:57:a8:87:83:54:78:ad:bf:ab:ea:7a:78:b0:ea: a0:fe:21:b4:06:4c:4f:11:00:35:46:e4:dc:b8:e8:cc:b3:8c: 67:5e:9c:4f:5a:bf:32:f2:e7:dd:ab:7f:b4:55:c9:37:24:be: 71:b9:d3:9b:4a:41:24:83:3d:25:dd:7e:2d:d0:3c:9c:0e:17: 7f:a2:61:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJBNUIxMTAvBgNVBAUTKERGNDdDRUNDNTdFQTg4QUVCOTZBMzg2NTU2MEI5RjIy NjBCQTk5MEUwHhcNMjUxMDE5MDg0NzIxWhcNMjUxMDI2MDg0NzIxWjAYMRYwFAYD VQQDEw02OGY0YTU5OS0zZmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyU59Hgv+Lo01X6PjVKy/bv09TgdkjPM4Dm3DbPETp1BHvu+Khp0rGg9wgval 7lXRJNOH0Y2BYgw8u1lnQbD6T90j+c40fA+EOgKpyY/S4vy5Kd0JnX5aXCVURai+ ZDLLHtNBRFb4dB7O0nbC1DYa0wwpNq0kFeAeoJNKuQlkhSeP6mj2oXM3tOhFUlWj PaK57IeOfsypoELSOPKR37V1H6hWKSxShdGEjbT2rSsqgWb9jBypD6+HpTnIrymr lhCtbrAPyvDKVSBh1GOydoLA82PrWdTI/MvobeNnDHOjjeVXUBnAXRVpCTlDk7Rr HMD8k5qogwvbx+5oBZYZuLhH/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEkzhgnC YZHqBRjtJoSOGeHFh6k0MB8GA1UdIwQYMBaAFN9HzsxX6oiuuWo4ZVYLnyJgupkO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkE1Qi81ODAwNEFBQTcw RTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi8zMGZPekZmcWlLNjVhamhsVmd1ZkltQzZt UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMwZk96RmZxaUs2NWFqaGxWZ3VmSW1DNm1RNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkE1Qi81ODAwNEFBQTcwRTcxMUVGQjQ0NEFGNzBDNEY5QUUwMi8zMGZPekZmcWlL NjVhamhsVmd1ZkltQzZtUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDC9WlJCcZnFYzxlj4PlCU9j+TwnO1GTSL6k8cqVTSUST9Y1qiHS62G 0XVRRIc/d2jdR62rlHJQfH+AMRHQQ8uLydvdI2h0RsFYNIgAEAejKiY6VjjDgLvn FOZ/yKpT72aS+fuJb4lozE2ZNdYrwxbJlqG6bzow4BnVU8vBl00pz7gOm1d5Mcwl IRTVymIOW+2SJvj0LKvA3knPSGVmftpnnhJlt1HHrNT+xXXZTB8jEKik/gSZ+Z9P V6iHg1R4rb+r6np4sOqg/iG0BkxPEQA1RuTcuOjMs4xnXpxPWr8y8ufdq3+0Vck3 JL5xudObSkEkgz0l3X4t0DycDhd/omHA -----END CERTIFICATE-----Generated at Mon Oct 20 19:49:12 2025 by rpki-client