$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft File: rC4NP0JyIX_vudMtzhozLelqOF4.mft (raw, json) Hash identifier: FakE22mHqsW6ZEO1l6fVSvWBBL3BcMRtwFCghiezroA= Subject key identifier: 79:52:D2:38:73:67:86:E3:80:A6:7C:43:54:00:59:C3:18:E5:C9:FD Authority key identifier: AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E Certificate issuer: /CN=A91DD5E1/serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Certificate serial: 08EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft Manifest number: 08E2 Signing time: Sat 18 Oct 2025 21:30:52 +0000 Manifest this update: Sat 18 Oct 2025 21:30:51 +0000 Manifest next update: Sat 25 Oct 2025 21:30:51 +0000 Files and hashes: 1: rC4NP0JyIX_vudMtzhozLelqOF4.crl (hash: yLdm3lrn4KGwtxcb4X96dIwZINoslHoJaXVcyqsErPo=) 2: E034D1A6BC6F11EA8FE53280C4F9AE02.roa (hash: r0YFlYuIRf7Aj55A1t3w3hfTwFR/8iacpEclsozeKco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:30:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2282 (0x8ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5E1, serialNumber=AC2E0D3F4272217FEFB9D32DCE1A332DE96A385E Validity Not Before: Oct 18 21:30:51 2025 GMT Not After : Oct 25 21:30:51 2025 GMT Subject: CN=68f4070b-fbca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:48:b6:2b:68:d3:98:0b:7e:aa:bf:51:a0:1b: 1c:df:56:95:c3:b6:9b:9a:22:21:62:25:38:7e:e2: 60:99:02:ff:10:01:cb:d4:8c:d6:3b:15:cc:ee:ba: e5:5b:10:29:3c:6a:04:6e:fd:49:01:33:e3:94:af: b2:af:be:b5:bf:89:ab:b7:21:be:08:69:26:2f:6f: d3:e6:63:43:21:76:6b:1f:11:2a:94:41:7f:fa:54: bb:68:55:22:d2:ee:5e:b6:7c:c4:a6:74:a2:f9:05: 8f:aa:1f:1a:54:fb:15:96:e3:b2:c2:4f:93:d6:58: ed:61:57:6f:88:9c:08:49:a2:45:b7:bb:6e:c8:0b: aa:84:3b:e8:5d:1a:40:95:24:80:32:b3:13:a1:87: cb:4f:31:e8:66:6f:35:51:24:da:9a:80:9b:37:02: 16:3c:42:a4:87:79:bf:5e:c4:9a:eb:1e:86:b4:8e: 7e:0c:a2:d0:66:73:92:d7:e7:66:1d:2f:7d:31:ad: d1:da:d5:6b:58:21:76:f7:c9:f9:ea:01:e0:c8:9c: 04:b1:ac:50:67:83:cf:ee:b0:3e:2f:d8:ae:26:45: c3:d4:b4:ec:98:86:6d:9f:18:d0:fd:df:ab:9c:c6: 4f:bb:e5:e2:ac:03:22:aa:f1:12:8a:bd:f3:aa:dd: 29:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:52:D2:38:73:67:86:E3:80:A6:7C:43:54:00:59:C3:18:E5:C9:FD X509v3 Authority Key Identifier: keyid:AC:2E:0D:3F:42:72:21:7F:EF:B9:D3:2D:CE:1A:33:2D:E9:6A:38:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rC4NP0JyIX_vudMtzhozLelqOF4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD5E1/165B7BF6BC6E11EAA5CB037DC4F9AE02/rC4NP0JyIX_vudMtzhozLelqOF4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:f5:a4:2e:ab:c0:fb:96:3e:12:ac:e6:f1:f0:3e:d2:ad:8f: 44:37:c0:8f:8b:80:28:76:83:81:18:fa:d0:b5:30:b1:8f:44: 9b:1b:9e:b6:e4:22:58:40:31:63:31:c5:17:99:10:59:aa:0a: 2d:42:b5:90:7a:4e:6e:bf:4a:43:1c:47:ac:50:dc:bb:47:05: 4b:10:eb:36:ed:01:e4:dc:01:62:b8:08:6b:82:0f:1e:62:b4: d4:64:2e:73:0d:56:c4:85:fd:28:4f:2e:01:e4:cb:c4:39:83: b1:31:ff:60:bd:dc:15:ec:31:17:d5:c8:fe:78:d0:67:e6:8e: 52:22:13:3e:a9:ab:06:c6:7b:13:90:20:19:ed:30:5a:1d:3b: 69:68:2d:96:a8:59:db:ff:cb:48:c3:33:1e:6d:0b:ca:64:59: 08:1f:1b:c3:3a:ab:19:4e:97:cb:9b:27:fb:c8:61:b5:e7:65: a9:76:d8:09:7c:04:44:81:2a:09:a6:51:04:69:a8:b7:6e:98: 43:d0:55:be:0e:3d:aa:89:15:31:a2:3f:33:0c:5f:f3:61:16: d0:f2:28:3f:26:30:a4:62:d5:b4:37:78:51:a8:5e:42:50:c1: c5:16:f5:3d:a0:b9:3a:c0:24:9a:f0:74:f1:c2:99:a7:78:37: 37:2e:be:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ1RTExMTAvBgNVBAUTKEFDMkUwRDNGNDI3MjIxN0ZFRkI5RDMyRENFMUEzMzJE RTk2QTM4NUUwHhcNMjUxMDE4MjEzMDUxWhcNMjUxMDI1MjEzMDUxWjAYMRYwFAYD VQQDEw02OGY0MDcwYi1mYmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoki2K2jTmAt+qr9RoBsc31aVw7abmiIhYiU4fuJgmQL/EAHL1IzWOxXM7rrl WxApPGoEbv1JATPjlK+yr761v4mrtyG+CGkmL2/T5mNDIXZrHxEqlEF/+lS7aFUi 0u5etnzEpnSi+QWPqh8aVPsVluOywk+T1ljtYVdviJwISaJFt7tuyAuqhDvoXRpA lSSAMrMToYfLTzHoZm81USTamoCbNwIWPEKkh3m/XsSa6x6GtI5+DKLQZnOS1+dm HS99Ma3R2tVrWCF298n56gHgyJwEsaxQZ4PP7rA+L9iuJkXD1LTsmIZtnxjQ/d+r nMZPu+XirAMiqvESir3zqt0pewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHlS0jhz Z4bjgKZ8Q1QAWcMY5cn9MB8GA1UdIwQYMBaAFKwuDT9CciF/77nTLc4aMy3pajhe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDVFMS8xNjVCN0JGNkJD NkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlYX3Z1ZE10emhvekxlbHFP RjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JDNE5QMEp5SVhfdnVkTXR6aG96TGVscU9GNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RDVFMS8xNjVCN0JGNkJDNkUxMUVBQTVDQjAzN0RDNEY5QUUwMi9yQzROUDBKeUlY X3Z1ZE10emhvekxlbHFPRjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCu9aQuq8D7lj4SrObx8D7SrY9EN8CPi4AodoOBGPrQtTCxj0SbG562 5CJYQDFjMcUXmRBZqgotQrWQek5uv0pDHEesUNy7RwVLEOs27QHk3AFiuAhrgg8e YrTUZC5zDVbEhf0oTy4B5MvEOYOxMf9gvdwV7DEX1cj+eNBn5o5SIhM+qasGxnsT kCAZ7TBaHTtpaC2WqFnb/8tIwzMebQvKZFkIHxvDOqsZTpfLmyf7yGG152WpdtgJ fAREgSoJplEEaai3bphD0FW+Dj2qiRUxoj8zDF/zYRbQ8ig/JjCkYtW0N3hRqF5C UMHFFvU9oLk6wCSa8HTxwpmneDc3Lr5V -----END CERTIFICATE-----Generated at Mon Oct 20 09:24:33 2025 by rpki-client