$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft File: tDpaYNRoBqaf_vfGdiGexLqLo20.mft (raw, json) Hash identifier: oqbtSIqFZdGQF4cYTgw9S0HU6679vn1e/fRBHwZhieM= Subject key identifier: 73:7D:45:24:6D:7A:B2:A9:FD:CE:85:22:20:AE:44:BF:95:9C:8A:A7 Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2BD8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft Manifest number: 2BB4 Signing time: Sat 18 Oct 2025 15:44:36 +0000 Manifest this update: Sat 18 Oct 2025 15:44:35 +0000 Manifest next update: Sat 25 Oct 2025 15:44:35 +0000 Files and hashes: 1: tDpaYNRoBqaf_vfGdiGexLqLo20.crl (hash: e5wH+x9ophlUX7joo9NN7nIE2Kg8aWZlK0Agqkqmf8c=) 2: 2815E7D4BF4211E9A93A3957C4F9AE02.roa (hash: q2QK7nleDfVKJdydH1BhBELt50ggXZGsQHTMsb+GgzQ=) 3: 43487B18BF1811E9A2C00E63C4F9AE02.roa (hash: R7GiqDFWTFG5/KzmRDTnU8CgA9M5hlMTeWah7zEstzM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:44:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11224 (0x2bd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5, serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Oct 18 15:44:35 2025 GMT Not After : Oct 25 15:44:35 2025 GMT Subject: CN=68f3b5e4-bd5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c6:f1:b8:6a:60:3f:30:a1:e2:9c:57:9d:72: 23:2f:37:16:18:e8:0a:7d:58:fc:0c:49:38:09:0d: 9e:74:04:e3:45:0a:da:e1:ac:b5:e6:dd:67:cc:9e: 52:6b:d3:eb:d2:28:be:e7:d8:01:32:8d:64:9f:c1: e8:19:0e:ea:ee:be:ac:dc:90:c9:10:1a:e8:86:b4: e9:79:8f:db:26:b3:46:bb:b3:ec:63:e7:02:3d:18: f3:fa:ab:9e:fc:9f:64:3b:4f:29:05:1b:2a:1d:34: 12:10:6d:e3:a7:08:92:39:6e:e1:1e:97:ee:64:f6: 89:a7:71:99:9f:01:4f:bf:1f:65:25:03:14:d0:72: 0f:18:e5:13:8d:0c:f2:00:9a:0b:56:8a:ee:a3:b9: 6c:4f:34:ea:a2:0b:a5:8b:91:f5:e7:c5:5a:da:b3: 13:f0:24:81:7a:96:3b:af:e1:25:ee:c2:43:2e:4e: 2e:8b:e0:61:91:00:91:41:80:39:4f:fa:01:b3:55: f7:e7:03:af:19:e0:24:79:b3:06:26:d0:f0:63:16: a8:c6:e8:7a:0d:76:18:66:6a:1a:de:57:97:2b:dc: 8b:27:81:77:c5:14:7e:bb:30:fe:b3:44:3a:b0:68: 4d:83:d4:30:6d:6b:1d:74:2e:ac:44:e2:f9:09:ac: 00:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:7D:45:24:6D:7A:B2:A9:FD:CE:85:22:20:AE:44:BF:95:9C:8A:A7 X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:a9:f0:76:56:3b:9f:af:cd:49:5f:c7:29:29:76:25:be:d7: ba:0d:2c:ed:62:7a:77:83:0f:92:d4:e1:ca:82:c8:3f:12:3e: b7:45:8b:c0:8c:1b:18:15:aa:77:ed:32:26:94:40:30:49:ac: d3:71:b6:e8:71:ed:17:e2:9a:38:ea:c8:66:6c:68:80:75:b7: e9:f9:6e:87:ef:90:29:3b:c2:ee:70:3e:c1:15:70:4e:79:d0: 41:73:fc:97:4e:fc:e4:b8:34:b4:b9:0b:d6:f9:03:f4:92:cc: 44:92:c8:8e:02:7f:c2:be:51:2e:3b:62:80:8c:a1:34:fb:b0: f2:74:ee:c9:2a:8a:45:5a:3a:c6:7c:c9:df:b4:a4:36:8a:45: 34:38:fe:6e:8e:b1:08:6b:3e:49:06:b2:9f:b6:06:16:b2:19: 3a:ff:da:00:44:8a:b2:10:93:9a:0d:9b:59:60:89:97:f9:ec: 2e:3f:1b:2b:c7:0c:4f:fc:9b:4a:de:c1:f1:c2:dc:14:34:dc: a4:cd:02:f1:72:8e:6c:53:47:9a:00:3b:fa:a7:e7:f7:51:ea: 79:f0:32:2c:41:ed:cf:59:5a:1b:c6:ad:95:90:b1:37:b8:87: 96:fd:bf:2d:99:c7:77:46:a1:b7:80:7c:d5:ea:33:eb:10:76: ea:ef:a5:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICK9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjUxMDE4MTU0NDM1WhcNMjUxMDI1MTU0NDM1WjAYMRYwFAYD VQQDEw02OGYzYjVlNC1iZDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlsbxuGpgPzCh4pxXnXIjLzcWGOgKfVj8DEk4CQ2edATjRQra4ay15t1nzJ5S a9Pr0ii+59gBMo1kn8HoGQ7q7r6s3JDJEBrohrTpeY/bJrNGu7PsY+cCPRjz+que /J9kO08pBRsqHTQSEG3jpwiSOW7hHpfuZPaJp3GZnwFPvx9lJQMU0HIPGOUTjQzy AJoLVoruo7lsTzTqoguli5H158Va2rMT8CSBepY7r+El7sJDLk4ui+BhkQCRQYA5 T/oBs1X35wOvGeAkebMGJtDwYxaoxuh6DXYYZmoa3leXK9yLJ4F3xRR+uzD+s0Q6 sGhNg9QwbWsddC6sROL5CawAXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHN9RSRt erKp/c6FIiCuRL+VnIqnMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkFFNS84RDNFNTRFQUVENTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0Jx YWZfdmZHZGlHZXhMcUxvMjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7qfB2Vjufr81JX8cpKXYlvte6DSztYnp3gw+S1OHKgsg/Ej63RYvA jBsYFap37TImlEAwSazTcbboce0X4po46shmbGiAdbfp+W6H75ApO8LucD7BFXBO edBBc/yXTvzkuDS0uQvW+QP0ksxEksiOAn/CvlEuO2KAjKE0+7DydO7JKopFWjrG fMnftKQ2ikU0OP5ujrEIaz5JBrKftgYWshk6/9oARIqyEJOaDZtZYImX+ewuPxsr xwxP/JtK3sHxwtwUNNykzQLxco5sU0eaADv6p+f3Uep58DIsQe3PWVobxq2VkLE3 uIeW/b8tmcd3RqG3gHzV6jPrEHbq76VJ -----END CERTIFICATE-----Generated at Mon Oct 20 13:49:36 2025 by rpki-client