$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft File: ficJop5GIOVCf3NfN8A0c-NrWXo.mft (raw, json) Hash identifier: pUPhjNa1dUA9uTR72hQcjX7T3iXzpHTTkQE3dr1M0F0= Subject key identifier: 5B:8C:F8:D1:86:70:57:48:45:FD:2E:72:CF:DF:6F:4F:9C:05:ED:B6 Authority key identifier: 7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A Certificate issuer: /CN=A91DD0A4/serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Certificate serial: 0953 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft Manifest number: 094A Signing time: Sat 18 Oct 2025 21:16:51 +0000 Manifest this update: Sat 18 Oct 2025 21:16:51 +0000 Manifest next update: Sat 25 Oct 2025 21:16:51 +0000 Files and hashes: 1: ficJop5GIOVCf3NfN8A0c-NrWXo.crl (hash: h2q2Nqs008pqPr3xSYoWzSRvp/3oo0uE2EHCuumLknI=) 2: C8CCE2CCAA7411EA9DF2E685C4F9AE02.roa (hash: EY5IebdCRceAV1N2Sno2htu2PUjjGh0mWkvzE1zUnnE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:16:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2387 (0x953) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD0A4, serialNumber=7E2709A29E4620E5427F735F37C03473E36B597A Validity Not Before: Oct 18 21:16:51 2025 GMT Not After : Oct 25 21:16:51 2025 GMT Subject: CN=68f403c3-d37e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:13:9a:93:b0:1f:96:65:aa:34:e3:0d:ee:fa: d6:29:bd:d7:8c:c3:6e:58:83:23:28:b3:4f:1b:70: 65:d9:b3:a3:55:8b:24:e7:f0:13:59:86:6a:d8:39: 9f:53:2d:9c:84:96:0e:be:58:f7:13:57:4a:9e:6d: fd:c6:d6:d6:62:69:a5:d6:4a:62:9c:b9:e4:9f:e7: fe:df:d2:ae:c2:83:1e:b0:92:2c:e1:35:f1:31:63: c8:73:52:f3:4c:59:77:4c:c4:65:60:60:83:c9:d9: f9:a8:51:a9:92:39:10:c6:fb:f5:f4:ee:64:98:ec: d3:11:bb:b4:31:fa:5f:d0:03:92:84:48:76:a1:4c: 66:3d:7a:b9:78:a1:6a:ae:5a:c2:d8:7a:2e:dc:0b: 7f:69:0f:e7:77:c7:cc:97:7c:80:55:90:95:ea:d2: ed:9c:81:0c:bd:d3:25:ca:59:98:92:c8:72:02:db: b2:91:22:f7:05:6f:6c:38:52:c1:2b:10:77:9e:e5: 3c:99:fe:20:bb:72:cc:79:49:30:06:be:f7:4e:a6: 7c:5e:46:8e:7f:b5:57:be:d0:6c:b0:4c:3e:be:0b: 89:76:d9:06:66:78:c0:42:23:c9:a8:9a:b4:ba:b6: 1e:ff:ae:f3:73:3c:c4:da:17:b3:a4:56:ef:b7:b7: 0d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:8C:F8:D1:86:70:57:48:45:FD:2E:72:CF:DF:6F:4F:9C:05:ED:B6 X509v3 Authority Key Identifier: keyid:7E:27:09:A2:9E:46:20:E5:42:7F:73:5F:37:C0:34:73:E3:6B:59:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ficJop5GIOVCf3NfN8A0c-NrWXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD0A4/95D5E392AA7311EAA10ACC84C4F9AE02/ficJop5GIOVCf3NfN8A0c-NrWXo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:76:13:ef:62:c6:88:9c:87:09:a9:09:2c:bd:d7:66:15:f2: e8:4a:0b:02:31:fd:96:96:af:ab:b5:4c:6b:57:21:1b:17:51: bc:15:29:df:e6:cf:3c:62:06:da:4d:6b:33:2b:74:bf:c0:b6: 1c:fa:95:1e:84:4c:7c:ef:7f:7e:0b:f3:78:76:c2:97:5d:09: a0:36:b8:27:0c:5e:cb:05:32:8a:86:37:79:4a:e0:81:36:4c: 83:b2:62:e9:ed:38:72:69:30:4f:e5:7d:b1:37:21:69:de:19: a3:c0:6e:e1:a2:79:4e:f8:53:cd:5b:75:88:d4:8a:69:cc:fb: a1:54:57:90:58:35:f5:bf:86:6c:de:77:a4:dd:b0:ba:b7:96: 0d:3b:ff:d9:b2:a1:54:36:4c:53:1e:78:5a:57:e9:e7:8d:e7: 01:4c:d7:36:89:0b:17:0d:33:19:af:b8:06:6c:37:b0:b2:54: b3:6d:7a:79:3f:3c:af:b8:68:52:55:5a:a1:32:43:f5:a4:b3: 40:15:68:3e:3a:73:5a:5e:71:91:94:46:15:a2:36:ac:29:bc: d7:49:6d:59:2b:39:19:b2:4e:dd:dd:49:94:95:49:94:47:c8: cc:d4:2d:22:fc:93:9c:0f:ca:5b:7e:95:c2:87:75:62:6c:61: 23:e7:6c:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQwQTQxMTAvBgNVBAUTKDdFMjcwOUEyOUU0NjIwRTU0MjdGNzM1RjM3QzAzNDcz RTM2QjU5N0EwHhcNMjUxMDE4MjExNjUxWhcNMjUxMDI1MjExNjUxWjAYMRYwFAYD VQQDEw02OGY0MDNjMy1kMzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hOak7AflmWqNOMN7vrWKb3XjMNuWIMjKLNPG3Bl2bOjVYsk5/ATWYZq2Dmf Uy2chJYOvlj3E1dKnm39xtbWYmml1kpinLnkn+f+39KuwoMesJIs4TXxMWPIc1Lz TFl3TMRlYGCDydn5qFGpkjkQxvv19O5kmOzTEbu0Mfpf0AOShEh2oUxmPXq5eKFq rlrC2Hou3At/aQ/nd8fMl3yAVZCV6tLtnIEMvdMlylmYkshyAtuykSL3BW9sOFLB KxB3nuU8mf4gu3LMeUkwBr73TqZ8XkaOf7VXvtBssEw+vguJdtkGZnjAQiPJqJq0 urYe/67zczzE2hezpFbvt7cNLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFuM+NGG cFdIRf0ucs/fb0+cBe22MB8GA1UdIwQYMBaAFH4nCaKeRiDlQn9zXzfANHPja1l6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDBBNC85NUQ1RTM5MkFB NzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lPVkNmM05mTjhBMGMtTnJX WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZpY0pvcDVHSU9WQ2YzTmZOOEEwYy1OcldYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDBBNC85NUQ1RTM5MkFBNzMxMUVBQTEwQUNDODRDNEY5QUUwMi9maWNKb3A1R0lP VkNmM05mTjhBMGMtTnJXWG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEdhPvYsaInIcJqQksvddmFfLoSgsCMf2Wlq+rtUxrVyEbF1G8FSnf 5s88YgbaTWszK3S/wLYc+pUehEx8739+C/N4dsKXXQmgNrgnDF7LBTKKhjd5SuCB NkyDsmLp7ThyaTBP5X2xNyFp3hmjwG7honlO+FPNW3WI1IppzPuhVFeQWDX1v4Zs 3nek3bC6t5YNO//ZsqFUNkxTHnhaV+nnjecBTNc2iQsXDTMZr7gGbDewslSzbXp5 PzyvuGhSVVqhMkP1pLNAFWg+OnNaXnGRlEYVojasKbzXSW1ZKzkZsk7d3UmUlUmU R8jM1C0i/JOcD8pbfpXCh3VibGEj52wQ -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:46 2025 by rpki-client