$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft File: tIGYczHh7UCLUcuf2O9KZQrIZpo.mft (raw, json) Hash identifier: 2SWhQj7MPqtWwtXbR+vDwzkrqdTuabvdlwpiUtMe8Vw= Subject key identifier: 34:5A:6A:38:45:5D:3E:39:25:BD:09:69:DB:C8:82:B1:4F:A7:E9:08 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 0202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft Manifest number: 01F0 Signing time: Sun 19 Oct 2025 05:09:38 +0000 Manifest this update: Sun 19 Oct 2025 05:09:38 +0000 Manifest next update: Sun 26 Oct 2025 05:09:38 +0000 Files and hashes: 1: tIGYczHh7UCLUcuf2O9KZQrIZpo.crl (hash: fTSteAwBn8mJ9M4DcbF0wTz2lcAXKGbAQzDvC5u2IOE=) 2: 7D22B44E249D11EFAC24EF6CC4F9AE02.roa (hash: A2YwzeZCV7lXuESZaxuoNr3XCXQA1+q4ChTmE99OOZ8=) 3: 9772767EB69A11EFBEB6CE0CC4F9AE02.roa (hash: 7OwaJrudjWnecoz7BCK7kPXjzB+3R7tWJ8DmqplI2rk=) 4: 9C6F02C6249D11EF9532356DC4F9AE02.roa (hash: Ah9DA9XDU6AgPBrVhyRA7IEj119ByF47rhFGR96tGKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:09:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: Oct 19 05:09:38 2025 GMT Not After : Oct 26 05:09:38 2025 GMT Subject: CN=68f47292-6593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e8:d9:46:2a:b9:46:20:22:ed:33:f7:b5:6e: dc:55:ff:6b:46:ae:b3:ec:2a:23:0c:40:8e:c3:c1: 96:a3:53:58:35:e4:b0:b0:67:93:52:a7:9c:17:90: cc:54:70:f3:ad:8f:12:11:b1:14:a9:d2:70:0d:07: d7:05:1d:c2:a6:9f:a2:94:55:f4:38:39:52:87:79: f7:97:b1:f4:6e:4a:2f:fe:44:6e:4b:e2:9e:d7:10: 16:ab:24:95:a4:a1:bf:a0:c4:bb:2c:cb:b4:d7:0a: 1f:24:ab:2d:ff:b3:e4:03:f2:65:eb:c4:a6:40:1f: e6:9b:4b:c7:32:5a:59:e0:c2:b4:56:f2:bc:26:9c: 37:1d:5d:b4:c6:af:af:ac:48:1d:dc:d8:3c:d7:c5: 74:31:61:ce:cf:6d:68:ff:a4:aa:46:e4:2f:34:17: 57:84:cd:89:6b:78:a4:23:af:03:ec:03:98:39:5a: 4b:f4:d1:a7:ae:0b:05:31:5d:c4:c0:3b:34:94:bc: f9:72:c8:f1:eb:22:f7:06:fd:a7:00:70:20:9a:45: 1b:64:17:42:32:b5:c7:9e:f7:b3:b3:2a:35:1f:ad: 91:98:4a:3f:a7:1c:82:2d:36:e4:e9:29:23:dc:c1: e5:f2:49:f0:03:98:4c:55:15:d0:88:f8:3c:85:04: f1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:5A:6A:38:45:5D:3E:39:25:BD:09:69:DB:C8:82:B1:4F:A7:E9:08 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:97:f1:25:a8:89:1c:2f:55:6f:2f:ce:54:c7:a0:04:9f:0e: 15:ed:22:62:6a:2f:0a:88:17:47:ff:6c:59:0d:1e:8b:8f:d8: 13:2d:52:7b:9a:5d:1e:7d:50:2f:1a:e2:16:c7:41:06:0d:df: e6:2b:89:de:f2:77:c2:8f:ba:17:cf:f5:58:51:7c:d5:05:5b: ce:7b:c2:ab:0b:bc:fe:08:99:07:e9:75:e3:cc:ae:94:9a:4f: d5:f4:83:40:45:d3:bb:5d:30:45:aa:96:55:17:18:92:08:39: 76:bc:61:a1:ee:8c:bb:ad:8b:77:71:36:c8:fc:0c:86:73:ae: 8c:43:b4:9c:63:6f:73:b4:6f:2e:e9:51:ba:be:27:93:6b:f1: f8:71:fb:6d:1c:02:0b:61:df:fe:77:60:4a:2f:13:0a:cd:ce: 9a:24:ff:95:d7:ca:24:92:af:79:4d:d5:62:ca:f5:a2:08:b2: 01:2e:e1:25:a2:6c:ee:04:86:ba:5c:fe:53:ae:33:b6:7c:2a: e2:ba:5d:1c:a7:b6:fe:a9:cb:84:ed:e1:f7:81:3d:14:79:2f: df:27:f7:75:1b:d8:5d:4a:6c:95:e8:63:c3:66:df:10:b2:2e: ed:ad:c6:02:53:3c:02:99:90:76:27:33:ac:3f:7d:cc:6a:c6: 36:f4:b2:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjUxMDE5MDUwOTM4WhcNMjUxMDI2MDUwOTM4WjAYMRYwFAYD VQQDEw02OGY0NzI5Mi02NTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxujZRiq5RiAi7TP3tW7cVf9rRq6z7CojDECOw8GWo1NYNeSwsGeTUqecF5DM VHDzrY8SEbEUqdJwDQfXBR3Cpp+ilFX0ODlSh3n3l7H0bkov/kRuS+Ke1xAWqySV pKG/oMS7LMu01wofJKst/7PkA/Jl68SmQB/mm0vHMlpZ4MK0VvK8Jpw3HV20xq+v rEgd3Ng818V0MWHOz21o/6SqRuQvNBdXhM2Ja3ikI68D7AOYOVpL9NGnrgsFMV3E wDs0lLz5csjx6yL3Bv2nAHAgmkUbZBdCMrXHnvezsyo1H62RmEo/pxyCLTbk6Skj 3MHl8knwA5hMVRXQiPg8hQTxXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDRaajhF XT45Jb0JadvIgrFPp+kIMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjhFMi85NTJGQTYzMkQyRTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdV Q0xVY3VmMk85S1pRcklacG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUl/ElqIkcL1VvL85Ux6AEnw4V7SJiai8KiBdH/2xZDR6Lj9gTLVJ7 ml0efVAvGuIWx0EGDd/mK4ne8nfCj7oXz/VYUXzVBVvOe8KrC7z+CJkH6XXjzK6U mk/V9INARdO7XTBFqpZVFxiSCDl2vGGh7oy7rYt3cTbI/AyGc66MQ7ScY29ztG8u 6VG6vieTa/H4cfttHAILYd/+d2BKLxMKzc6aJP+V18okkq95TdViyvWiCLIBLuEl omzuBIa6XP5TrjO2fCriul0cp7b+qcuE7eH3gT0UeS/fJ/d1G9hdSmyV6GPDZt8Q si7trcYCUzwCmZB2JzOsP33MasY29LLL -----END CERTIFICATE-----Generated at Mon Oct 20 01:46:06 2025 by rpki-client