$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft File: We3oFpsKLDIUaf8RsWKL3gwfLEE.mft (raw, json) Hash identifier: 1eGwKJn0ebcnynPaB1y3bjChP/ZWJV6iANbwaU8KK6Q= Subject key identifier: 06:32:A6:5C:33:12:A6:6A:AA:EE:D0:F0:3D:9D:E9:1F:4A:2B:E6:3E Authority key identifier: 59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 Certificate issuer: /CN=A91DEFAF/serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Certificate serial: 0752 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft Manifest number: 0747 Signing time: Sat 18 Oct 2025 23:08:17 +0000 Manifest this update: Sat 18 Oct 2025 23:08:16 +0000 Manifest next update: Sat 25 Oct 2025 23:08:16 +0000 Files and hashes: 1: We3oFpsKLDIUaf8RsWKL3gwfLEE.crl (hash: GFa6xi1MNYdHgn2ONkI39L9doBZB1UeLq1N5VhIhseU=) 2: FD9457225B1011F0A31EF763C4F9AE02.roa (hash: f2u+VQYSLCUV6iKDxcf/7BZ46ThgcrDUrUJ8DXZ7tUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:08:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1874 (0x752) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEFAF, serialNumber=59EDE8169B0A2C321469FF11B1628BDE0C1F2C41 Validity Not Before: Oct 18 23:08:16 2025 GMT Not After : Oct 25 23:08:16 2025 GMT Subject: CN=68f41de1-225b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d2:22:80:f5:aa:e0:4e:ed:56:5f:b8:f6:dd: c4:4f:ba:6d:c0:5b:17:f0:a0:bd:6d:76:94:a3:0a: 0c:78:bd:21:b8:38:c1:bb:6d:e1:f7:11:1c:3e:85: 6a:79:7f:79:68:ae:01:94:f6:9e:52:37:7c:48:95: a9:7a:8d:a4:9a:88:95:8e:c0:57:4b:d5:2d:2b:27: a5:af:aa:02:8e:01:10:72:b9:e7:f4:3e:35:f1:27: c4:e6:cc:db:df:67:e9:36:d4:e4:51:76:da:c9:b0: 9e:52:26:11:a8:7c:ee:ab:60:74:45:21:ed:75:e3: b9:e1:9f:19:f9:b5:ed:fc:db:d1:38:84:1e:6c:70: a6:84:bf:36:8d:34:ad:08:c6:d6:c3:00:cb:af:b1: 22:32:af:e8:d0:d1:f3:73:79:16:ed:6b:4f:42:25: 85:f6:a4:13:87:09:56:7b:12:d2:95:d2:b8:cb:99: 2b:19:8f:d0:b5:fe:ea:f1:6f:cc:e0:5a:94:7a:41: 0b:ea:69:d4:36:e6:96:ac:5d:2a:2a:62:2d:d7:ad: a9:cd:c5:4d:83:e7:69:7c:35:bc:e5:1f:74:4b:e3: 43:d6:2d:5a:91:69:5b:b9:ea:f2:3a:4a:08:28:88: 6d:3a:0e:aa:3b:f7:c4:28:b5:d2:5a:b9:0b:97:b6: b3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:32:A6:5C:33:12:A6:6A:AA:EE:D0:F0:3D:9D:E9:1F:4A:2B:E6:3E X509v3 Authority Key Identifier: keyid:59:ED:E8:16:9B:0A:2C:32:14:69:FF:11:B1:62:8B:DE:0C:1F:2C:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/We3oFpsKLDIUaf8RsWKL3gwfLEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEFAF/07176240492C11EBA981BF52C4F9AE02/We3oFpsKLDIUaf8RsWKL3gwfLEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:c4:00:fb:15:18:a2:fc:a0:a3:e4:6b:0f:a8:b1:c7:6c:3e: f9:01:03:62:cb:25:30:73:b5:af:64:16:86:22:13:18:83:1e: a2:69:24:60:37:9b:e6:e4:19:31:84:e7:d7:40:86:a7:3a:d8: 8a:4b:2e:7e:09:23:36:1c:7e:39:92:e8:5d:6b:e1:ac:bf:02: 3b:6e:c5:cf:af:73:ff:7d:f0:08:8d:9d:fe:e1:de:20:ab:6a: 3f:14:6c:a1:13:c3:d9:ba:27:9f:eb:d3:bb:f5:9c:24:53:d2: e9:5e:ec:00:87:1c:6d:20:f4:7f:72:de:71:8f:cf:c7:f8:52: ad:81:ca:d9:46:5b:ad:fa:43:6f:d4:3d:16:68:e4:cb:c7:f8: 92:8c:ce:06:68:58:1b:60:2b:6f:ad:9a:41:92:03:c9:a2:05: fa:17:da:cf:61:d0:fc:24:b7:0a:43:c7:57:92:d8:d3:c8:bc: 52:23:c8:48:14:af:f7:8e:22:a1:e6:15:82:3b:c2:49:9c:c0: 12:82:04:55:8f:26:4e:3d:cf:b5:61:c7:10:a9:3e:28:bc:de: d5:c3:92:d2:f0:5e:a0:fb:fb:61:b6:f3:5d:84:81:c7:16:fe: d0:25:3c:17:f0:21:89:f8:16:1e:45:d6:c9:ec:e6:12:d9:8d: 2d:04:d8:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGQUYxMTAvBgNVBAUTKDU5RURFODE2OUIwQTJDMzIxNDY5RkYxMUIxNjI4QkRF MEMxRjJDNDEwHhcNMjUxMDE4MjMwODE2WhcNMjUxMDI1MjMwODE2WjAYMRYwFAYD VQQDEw02OGY0MWRlMS0yMjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtIigPWq4E7tVl+49t3ET7ptwFsX8KC9bXaUowoMeL0huDjBu23h9xEcPoVq eX95aK4BlPaeUjd8SJWpeo2kmoiVjsBXS9UtKyelr6oCjgEQcrnn9D418SfE5szb 32fpNtTkUXbaybCeUiYRqHzuq2B0RSHtdeO54Z8Z+bXt/NvROIQebHCmhL82jTSt CMbWwwDLr7EiMq/o0NHzc3kW7WtPQiWF9qQThwlWexLSldK4y5krGY/Qtf7q8W/M 4FqUekEL6mnUNuaWrF0qKmIt162pzcVNg+dpfDW85R90S+ND1i1akWlbueryOkoI KIhtOg6qO/fEKLXSWrkLl7az1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAYyplwz EqZqqu7Q8D2d6R9KK+Y+MB8GA1UdIwQYMBaAFFnt6BabCiwyFGn/EbFii94MHyxB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUZBRi8wNzE3NjI0MDQ5 MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xESVVhZjhSc1dLTDNnd2ZM RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dlM29GcHNLTERJVWFmOFJzV0tMM2d3ZkxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUZBRi8wNzE3NjI0MDQ5MkMxMUVCQTk4MUJGNTJDNEY5QUUwMi9XZTNvRnBzS0xE SVVhZjhSc1dLTDNnd2ZMRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7xAD7FRii/KCj5GsPqLHHbD75AQNiyyUwc7WvZBaGIhMYgx6iaSRg N5vm5BkxhOfXQIanOtiKSy5+CSM2HH45kuhda+GsvwI7bsXPr3P/ffAIjZ3+4d4g q2o/FGyhE8PZuief69O79ZwkU9LpXuwAhxxtIPR/ct5xj8/H+FKtgcrZRlut+kNv 1D0WaOTLx/iSjM4GaFgbYCtvrZpBkgPJogX6F9rPYdD8JLcKQ8dXktjTyLxSI8hI FK/3jiKh5hWCO8JJnMASggRVjyZOPc+1YccQqT4ovN7Vw5LS8F6g+/thtvNdhIHH Fv7QJTwX8CGJ+BYeRdbJ7OYS2Y0tBNjx -----END CERTIFICATE-----Generated at Mon Oct 20 16:18:34 2025 by rpki-client