$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft File: rg5L7FaP5v7kkvcuTTrLko2cHk8.mft (raw, json) Hash identifier: aDR+Vuulh4mD2Hbg1N+fxqIDzPXY+QFo37KTAOapqWM= Subject key identifier: 15:74:27:52:BC:74:E6:38:EA:F7:0C:C2:99:C5:84:18:5B:49:99:8E Authority key identifier: AE:0E:4B:EC:56:8F:E6:FE:E4:92:F7:2E:4D:3A:CB:92:8D:9C:1E:4F Certificate issuer: /CN=A91DBF0C/serialNumber=AE0E4BEC568FE6FEE492F72E4D3ACB928D9C1E4F Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft Manifest number: C0 Signing time: Sun 19 Oct 2025 09:03:41 +0000 Manifest this update: Sun 19 Oct 2025 09:03:40 +0000 Manifest next update: Sun 26 Oct 2025 09:03:40 +0000 Files and hashes: 1: rg5L7FaP5v7kkvcuTTrLko2cHk8.crl (hash: Nh56eeU2adig9430r78cEr9EWc4g0o8ADv9dkJqYYUM=) 2: 9E4987668C7F11EFB4290976C4F9AE02.roa (hash: cHJy1BLtElHS3p1bo+4QsrHmfc/col4vczERE1sjyMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.crl rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:03:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBF0C, serialNumber=AE0E4BEC568FE6FEE492F72E4D3ACB928D9C1E4F Validity Not Before: Oct 19 09:03:40 2025 GMT Not After : Oct 26 09:03:40 2025 GMT Subject: CN=68f4a96c-eeaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:dc:0b:a2:c9:2a:5a:51:82:da:4d:4a:0b:a9: b3:52:91:b4:b4:a9:21:f5:26:62:ce:c8:e5:a8:d9: 10:e3:fb:1c:06:02:ff:c7:f5:f5:f5:97:4e:c0:37: 35:ae:43:b1:62:a7:64:92:63:04:74:6d:88:46:33: 47:b5:9a:5f:92:bf:34:5d:33:7e:86:8c:a7:e9:d8: c4:7c:a9:e9:70:bc:29:3f:76:50:d2:f0:dc:e7:ac: c9:1c:8d:47:43:aa:23:9e:c8:b9:aa:56:d8:2a:aa: 96:b5:a6:ad:c3:c8:d8:7a:81:97:b4:d3:1e:07:de: 24:52:6b:2c:28:8e:db:92:48:e9:06:51:90:19:38: b9:4a:c1:ec:eb:8e:98:df:46:e8:5d:5f:a4:41:9c: 38:f0:c0:1b:5d:d8:d0:ee:0e:bd:a2:25:a2:85:89: fa:0d:35:29:24:ff:7e:cd:87:e6:54:bf:52:ae:bc: c4:27:bc:23:90:92:c3:47:6b:c7:1b:86:48:8a:8c: 34:88:9d:b4:eb:17:64:c3:49:31:8d:85:75:27:5a: be:df:ac:24:2d:d3:36:66:26:3b:ae:bd:b2:e4:97: cb:a0:38:af:f4:2f:4b:ac:ca:55:df:88:8f:71:a2: b9:d7:a0:03:f1:72:d4:4e:15:66:ee:84:d4:7b:b3: ef:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:74:27:52:BC:74:E6:38:EA:F7:0C:C2:99:C5:84:18:5B:49:99:8E X509v3 Authority Key Identifier: keyid:AE:0E:4B:EC:56:8F:E6:FE:E4:92:F7:2E:4D:3A:CB:92:8D:9C:1E:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rg5L7FaP5v7kkvcuTTrLko2cHk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBF0C/414850708C5B11EFA706757FC4F9AE02/rg5L7FaP5v7kkvcuTTrLko2cHk8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:ab:c5:67:a0:ae:d4:4a:4f:00:40:82:c2:e4:78:43:e6:d1: 24:d7:f5:94:ca:c9:e6:5a:d3:21:8b:49:f4:1f:d6:01:73:28: 03:58:a4:e5:53:3c:7c:8f:72:05:89:2c:06:d8:85:c4:70:db: cf:d1:e2:a1:d9:f2:52:d3:46:f6:9c:51:b6:c3:0d:20:4a:f3: 08:b2:16:04:26:ce:8b:6c:54:d4:16:54:26:25:bc:a0:27:e6: c8:2d:c3:3e:aa:7b:eb:3b:95:6c:7b:dd:21:b3:31:d3:b8:1f: 87:73:d8:15:37:e8:b7:9c:42:4f:8d:1d:45:1a:62:da:20:fd: 02:33:f8:3b:b9:a5:9f:0c:20:c1:5a:90:eb:47:7d:8d:43:1b: 31:e6:3c:12:9d:69:19:16:2a:91:1d:40:6a:17:59:e9:d4:03: a5:25:45:6a:c3:9e:15:a1:57:e7:bf:95:5e:19:50:fa:05:72: 65:2f:5d:64:4a:3a:eb:7b:25:3b:fd:62:5b:f9:d6:c6:99:9d: ec:38:2d:5f:85:f6:46:da:82:12:9c:77:0f:29:7e:2a:26:99: 40:38:69:3d:65:d5:c9:59:29:5d:1b:d3:20:f1:b7:20:8b:f7: 31:37:e7:06:d0:98:8b:23:d9:4b:ce:97:26:09:78:e4:98:3a: ef:f9:70:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJGMEMxMTAvBgNVBAUTKEFFMEU0QkVDNTY4RkU2RkVFNDkyRjcyRTREM0FDQjky OEQ5QzFFNEYwHhcNMjUxMDE5MDkwMzQwWhcNMjUxMDI2MDkwMzQwWjAYMRYwFAYD VQQDEw02OGY0YTk2Yy1lZWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4dwLoskqWlGC2k1KC6mzUpG0tKkh9SZizsjlqNkQ4/scBgL/x/X19ZdOwDc1 rkOxYqdkkmMEdG2IRjNHtZpfkr80XTN+hoyn6djEfKnpcLwpP3ZQ0vDc56zJHI1H Q6ojnsi5qlbYKqqWtaatw8jYeoGXtNMeB94kUmssKI7bkkjpBlGQGTi5SsHs646Y 30boXV+kQZw48MAbXdjQ7g69oiWihYn6DTUpJP9+zYfmVL9SrrzEJ7wjkJLDR2vH G4ZIiow0iJ206xdkw0kxjYV1J1q+36wkLdM2ZiY7rr2y5JfLoDiv9C9LrMpV34iP caK516AD8XLUThVm7oTUe7PvKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBV0J1K8 dOY46vcMwpnFhBhbSZmOMB8GA1UdIwQYMBaAFK4OS+xWj+b+5JL3Lk06y5KNnB5P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkYwQy80MTQ4NTA3MDhD NUIxMUVGQTcwNjc1N0ZDNEY5QUUwMi9yZzVMN0ZhUDV2N2trdmN1VFRyTGtvMmNI azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JnNUw3RmFQNXY3a2t2Y3VUVHJMa28yY0hrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkYwQy80MTQ4NTA3MDhDNUIxMUVGQTcwNjc1N0ZDNEY5QUUwMi9yZzVMN0ZhUDV2 N2trdmN1VFRyTGtvMmNIazgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC/q8VnoK7USk8AQILC5HhD5tEk1/WUysnmWtMhi0n0H9YBcygDWKTl Uzx8j3IFiSwG2IXEcNvP0eKh2fJS00b2nFG2ww0gSvMIshYEJs6LbFTUFlQmJbyg J+bILcM+qnvrO5Vse90hszHTuB+Hc9gVN+i3nEJPjR1FGmLaIP0CM/g7uaWfDCDB WpDrR32NQxsx5jwSnWkZFiqRHUBqF1np1AOlJUVqw54VoVfnv5VeGVD6BXJlL11k SjrreyU7/WJb+dbGmZ3sOC1fhfZG2oISnHcPKX4qJplAOGk9ZdXJWSldG9Mg8bcg i/cxN+cG0JiLI9lLzpcmCXjkmDrv+XAm -----END CERTIFICATE-----Generated at Mon Oct 20 21:24:21 2025 by rpki-client