$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft File: FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft (raw, json) Hash identifier: J/xL/HF/rSM8vJIbZi5TvjEECUFTLVXjOtZJi0+N9iE= Subject key identifier: 15:40:1C:5A:5A:8B:76:AA:69:78:C7:04:80:C3:73:29:14:19:90:5C Authority key identifier: 14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A Certificate issuer: /CN=A91DEC3C/serialNumber=147A0E048711B62506B09F088A05992A3A31020A Certificate serial: 01F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft Manifest number: 01EC Signing time: Sun 19 Oct 2025 04:59:46 +0000 Manifest this update: Sun 19 Oct 2025 04:59:46 +0000 Manifest next update: Sun 26 Oct 2025 04:59:46 +0000 Files and hashes: 1: FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl (hash: omTBuy0oZOnHgschk8ZTdZl24RjPraYAKT/ndOi+IhU=) 2: 5153E9DAC0B911ED99A12312C4F9AE02.roa (hash: A4mMoOgqhrpbmnUE3oA6zWgyEjfGMI0KKDHAWWwT+kY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:59:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 497 (0x1f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEC3C, serialNumber=147A0E048711B62506B09F088A05992A3A31020A Validity Not Before: Oct 19 04:59:46 2025 GMT Not After : Oct 26 04:59:46 2025 GMT Subject: CN=68f47042-18a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:57:8f:6c:7d:13:e3:b8:45:83:fa:50:64:2e: 40:55:e5:58:84:ab:0b:f7:b4:83:80:19:fd:4f:a0: d5:a9:1d:f3:fb:06:77:43:03:c2:f0:06:61:5a:7e: ff:be:b6:0a:95:ef:04:35:39:bf:bf:23:8b:cf:dd: e4:68:dd:54:ca:58:15:b6:57:4d:79:f2:5b:f4:d9: 9f:93:0a:0c:16:c9:c9:d0:aa:56:ad:11:74:e9:8a: bc:50:e1:b1:e4:d8:96:7c:a5:6e:34:61:54:ee:5b: da:82:3d:d8:20:4d:0a:34:1a:26:90:bd:06:be:c1: d2:81:90:2f:fb:a9:c8:a5:8e:51:03:b8:c5:72:65: 20:87:42:53:de:00:bc:0f:1b:14:af:dc:37:5f:e7: 8d:54:d0:84:16:da:c8:0f:22:90:1e:b3:0b:53:d1: a4:ba:aa:56:0d:d0:be:44:b9:a0:3f:38:fb:dc:a6: 5a:7e:b3:db:85:b7:7c:a9:a7:cc:3f:8b:38:cf:e0: 27:0d:02:8e:6e:2f:40:89:e5:0b:54:65:78:7a:f2: b8:93:1b:4e:a9:f8:96:a9:08:23:13:59:79:a3:c3: 01:10:d5:3b:e2:2a:62:79:00:37:5f:64:98:6f:90: 98:fd:39:ee:ab:7a:e7:8c:2b:bd:3d:af:4d:a9:6b: 98:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:40:1C:5A:5A:8B:76:AA:69:78:C7:04:80:C3:73:29:14:19:90:5C X509v3 Authority Key Identifier: keyid:14:7A:0E:04:87:11:B6:25:06:B0:9F:08:8A:05:99:2A:3A:31:02:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FHoOBIcRtiUGsJ8IigWZKjoxAgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEC3C/F6308094C0B411EDA77F700EC4F9AE02/FHoOBIcRtiUGsJ8IigWZKjoxAgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:7c:e4:eb:84:01:9e:f0:26:34:f2:00:46:55:d9:12:9d:c8: e1:78:a9:18:84:bc:0b:63:28:17:09:4d:e0:ea:c9:ac:a7:ac: 86:61:68:87:96:8d:af:54:e9:37:9c:05:e8:cf:5c:e2:e8:3c: 87:21:44:5a:c1:32:81:e3:bf:1e:f9:de:8e:ee:4c:ac:af:66: 61:d2:d7:00:96:2b:da:b8:d5:a6:a8:7a:e8:8c:ef:9d:d3:0a: 19:f0:e1:f5:63:f8:f8:13:00:d7:4d:ad:69:7a:c4:a3:ab:d4: 2d:7f:59:96:11:19:45:92:97:69:58:e7:66:b3:ac:27:a0:83: 1f:a7:3e:a7:4f:2e:74:2f:27:b2:bb:e0:e3:1c:02:8d:24:76: 74:c3:00:13:e1:2d:25:64:e5:7e:f5:19:f7:4f:56:3f:5a:8d: 31:b9:55:40:8f:e8:6a:14:52:b7:88:d7:13:9c:e4:40:0f:97: b3:de:e7:1f:6e:f9:c3:15:4f:6d:20:4c:ef:21:09:f3:f4:90: 10:de:48:f6:23:5e:51:2c:f3:96:d3:14:ef:c8:a9:85:b6:bb: 4b:54:59:88:9a:77:45:2b:ce:53:ee:1f:c4:6d:b9:4d:fa:b9: ce:5e:5c:9d:a7:2e:d8:65:1f:c7:e2:54:53:05:d4:fa:f0:73: eb:bf:6a:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVDM0MxMTAvBgNVBAUTKDE0N0EwRTA0ODcxMUI2MjUwNkIwOUYwODhBMDU5OTJB M0EzMTAyMEEwHhcNMjUxMDE5MDQ1OTQ2WhcNMjUxMDI2MDQ1OTQ2WjAYMRYwFAYD VQQDEw02OGY0NzA0Mi0xOGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9FePbH0T47hFg/pQZC5AVeVYhKsL97SDgBn9T6DVqR3z+wZ3QwPC8AZhWn7/ vrYKle8ENTm/vyOLz93kaN1UylgVtldNefJb9NmfkwoMFsnJ0KpWrRF06Yq8UOGx 5NiWfKVuNGFU7lvagj3YIE0KNBomkL0GvsHSgZAv+6nIpY5RA7jFcmUgh0JT3gC8 DxsUr9w3X+eNVNCEFtrIDyKQHrMLU9GkuqpWDdC+RLmgPzj73KZafrPbhbd8qafM P4s4z+AnDQKObi9AieULVGV4evK4kxtOqfiWqQgjE1l5o8MBENU74ipieQA3X2SY b5CY/Tnuq3rnjCu9Pa9NqWuYIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVAHFpa i3aqaXjHBIDDcykUGZBcMB8GA1UdIwQYMBaAFBR6DgSHEbYlBrCfCIoFmSo6MQIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUMzQy9GNjMwODA5NEMw QjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRpVUdzSjhJaWdXWktqb3hB Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZIb09CSWNSdGlVR3NKOElpZ1daS2pveEFnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUMzQy9GNjMwODA5NEMwQjQxMUVEQTc3RjcwMEVDNEY5QUUwMi9GSG9PQkljUnRp VUdzSjhJaWdXWktqb3hBZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAifOTrhAGe8CY08gBGVdkSncjheKkYhLwLYygXCU3g6smsp6yGYWiH lo2vVOk3nAXoz1zi6DyHIURawTKB478e+d6O7kysr2Zh0tcAlivauNWmqHrojO+d 0woZ8OH1Y/j4EwDXTa1pesSjq9Qtf1mWERlFkpdpWOdms6wnoIMfpz6nTy50Lyey u+DjHAKNJHZ0wwAT4S0lZOV+9Rn3T1Y/Wo0xuVVAj+hqFFK3iNcTnORAD5ez3ucf bvnDFU9tIEzvIQnz9JAQ3kj2I15RLPOW0xTvyKmFtrtLVFmImndFK85T7h/EbblN +rnOXlydpy7YZR/H4lRTBdT68HPrv2q8 -----END CERTIFICATE-----Generated at Mon Oct 20 01:50:06 2025 by rpki-client