$ rpki-client -vvf rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft File: grTScd4hLgYzXAtF5mUXtQi4NRY.mft (raw, json) Hash identifier: wX8Qkc07YN5YyRo6qPWCYv3urA2SedBoylL1FSdz4XA= Subject key identifier: 38:FD:BE:D8:57:42:0C:56:4A:09:F8:1F:3D:D8:9A:78:F2:E7:24:80 Authority key identifier: 82:B4:D2:71:DE:21:2E:06:33:5C:0B:45:E6:65:17:B5:08:B8:35:16 Certificate issuer: /CN=A91E379F/serialNumber=82B4D271DE212E06335C0B45E66517B508B83516 Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft Manifest number: F3 Signing time: Sun 19 Oct 2025 08:14:00 +0000 Manifest this update: Sun 19 Oct 2025 08:13:59 +0000 Manifest next update: Sun 26 Oct 2025 08:13:59 +0000 Files and hashes: 1: grTScd4hLgYzXAtF5mUXtQi4NRY.crl (hash: ho/nEVul95Wuvd2P004V4+jHJpZeDVHwDEY1UjW4SDE=) 2: 621428CE3CFB11EFB0BF040BC4F9AE02.roa (hash: cLX/NcpRBUgL7nqhk0rMjH0omx3nN9XKcz3vUbvy2EE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.crl rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:13:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E379F, serialNumber=82B4D271DE212E06335C0B45E66517B508B83516 Validity Not Before: Oct 19 08:13:59 2025 GMT Not After : Oct 26 08:13:59 2025 GMT Subject: CN=68f49dc7-0afc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2e:b6:47:4b:de:c3:dc:56:4d:bf:1e:3d:0a: 2b:2b:91:b2:3d:00:05:64:89:6b:63:b9:db:8e:f7: e8:f6:e8:b1:a6:8d:34:72:eb:cc:0c:e7:b4:e7:4e: 1e:ce:94:36:73:76:f8:2a:de:62:21:b4:5f:f8:2d: e8:3d:69:38:d0:b0:53:fc:13:14:98:f2:8f:48:31: 0a:4e:5c:28:96:d2:a3:a6:03:90:8a:88:9c:21:d0: 8c:30:0b:35:cd:59:00:56:1b:a9:66:f4:36:be:c8: 31:da:94:58:26:d5:d1:34:05:db:17:7d:7f:72:84: 1e:c2:e0:30:9c:bf:cc:1a:f6:77:ea:4b:5e:c5:dd: f1:85:f1:e6:bd:09:0c:98:15:79:70:40:41:21:ae: a5:1f:da:bb:9c:7d:23:de:6a:d8:33:ed:83:99:9b: 66:26:1b:69:38:b2:f1:68:56:5f:4c:73:19:88:c5: 9b:14:5c:75:26:f1:9d:ae:1a:4d:b4:a3:1c:6e:b2: 88:be:2a:6b:f5:ed:a4:ad:ba:1e:8e:8e:69:35:01: bc:ec:c8:73:f1:2d:21:fb:1e:e8:74:68:f4:09:72: 8c:9a:d1:c7:ac:4b:9e:7f:56:71:f4:de:0d:c1:c8: 06:88:8a:39:bd:c3:b2:50:1e:a0:42:87:1d:bf:ae: e6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:FD:BE:D8:57:42:0C:56:4A:09:F8:1F:3D:D8:9A:78:F2:E7:24:80 X509v3 Authority Key Identifier: keyid:82:B4:D2:71:DE:21:2E:06:33:5C:0B:45:E6:65:17:B5:08:B8:35:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grTScd4hLgYzXAtF5mUXtQi4NRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E379F/6F99D4F03CF911EFA0A06F86C4F9AE02/grTScd4hLgYzXAtF5mUXtQi4NRY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:55:65:3c:35:42:2b:12:40:2d:d5:8c:d1:80:3c:e3:12:82: 4c:ad:f6:48:1d:57:11:da:32:29:2f:70:c7:1c:7c:a9:bd:8f: cb:b2:ed:3f:fd:43:8b:75:5e:ce:bc:33:e8:37:ca:d0:e7:cd: 34:5e:d3:4f:d8:b5:28:a3:a9:55:db:e3:c8:84:9a:06:d2:a9: 5d:51:d5:7e:7a:d1:b2:30:fa:73:cd:56:d6:c4:55:6f:55:7a: 06:d5:59:2c:41:88:6b:5f:f9:3d:71:60:18:50:4e:98:64:6b: 2e:ce:1c:36:7e:14:8d:d0:69:21:7b:9e:14:00:20:86:d1:c8: b8:6f:89:a1:ae:7e:60:9e:59:94:52:82:f0:be:94:84:f0:dd: 45:36:c2:b4:cc:ad:e7:4b:b8:4c:48:86:a8:19:f5:cc:3f:5c: 0a:d3:6f:31:cb:6d:79:08:97:eb:97:fa:a5:c3:4e:7e:9d:e6: f5:bf:d5:7d:93:f5:44:c1:fa:aa:ab:26:39:69:29:82:e1:4e: de:7a:ef:a9:fa:fd:e3:f6:06:e1:28:98:45:d8:93:a7:be:dd: 26:8c:5a:4a:e1:67:85:93:31:21:8b:54:6a:69:2f:a3:f3:41: ee:45:ef:49:7a:a3:0d:12:3c:44:7b:5f:7c:59:2c:95:4c:62: 25:36:06:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM3OUYxMTAvBgNVBAUTKDgyQjREMjcxREUyMTJFMDYzMzVDMEI0NUU2NjUxN0I1 MDhCODM1MTYwHhcNMjUxMDE5MDgxMzU5WhcNMjUxMDI2MDgxMzU5WjAYMRYwFAYD VQQDEw02OGY0OWRjNy0wYWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtS62R0vew9xWTb8ePQorK5GyPQAFZIlrY7nbjvfo9uixpo00cuvMDOe0504e zpQ2c3b4Kt5iIbRf+C3oPWk40LBT/BMUmPKPSDEKTlwoltKjpgOQioicIdCMMAs1 zVkAVhupZvQ2vsgx2pRYJtXRNAXbF31/coQewuAwnL/MGvZ36ktexd3xhfHmvQkM mBV5cEBBIa6lH9q7nH0j3mrYM+2DmZtmJhtpOLLxaFZfTHMZiMWbFFx1JvGdrhpN tKMcbrKIvipr9e2krboejo5pNQG87Mhz8S0h+x7odGj0CXKMmtHHrEuef1Zx9N4N wcgGiIo5vcOyUB6gQocdv67mnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDj9vthX QgxWSgn4Hz3Ymnjy5ySAMB8GA1UdIwQYMBaAFIK00nHeIS4GM1wLReZlF7UIuDUW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzc5Ri82Rjk5RDRGMDND RjkxMUVGQTBBMDZGODZDNEY5QUUwMi9nclRTY2Q0aExnWXpYQXRGNW1VWHRRaTRO UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dyVFNjZDRoTGdZelhBdEY1bVVYdFFpNE5SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Mzc5Ri82Rjk5RDRGMDNDRjkxMUVGQTBBMDZGODZDNEY5QUUwMi9nclRTY2Q0aExn WXpYQXRGNW1VWHRRaTROUlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIVWU8NUIrEkAt1YzRgDzjEoJMrfZIHVcR2jIpL3DHHHypvY/Lsu0/ /UOLdV7OvDPoN8rQ5800XtNP2LUoo6lV2+PIhJoG0qldUdV+etGyMPpzzVbWxFVv VXoG1VksQYhrX/k9cWAYUE6YZGsuzhw2fhSN0Gkhe54UACCG0ci4b4mhrn5gnlmU UoLwvpSE8N1FNsK0zK3nS7hMSIaoGfXMP1wK028xy215CJfrl/qlw05+neb1v9V9 k/VEwfqqqyY5aSmC4U7eeu+p+v3j9gbhKJhF2JOnvt0mjFpK4WeFkzEhi1RqaS+j 80HuRe9JeqMNEjxEe198WSyVTGIlNga/ -----END CERTIFICATE-----Generated at Mon Oct 20 04:40:35 2025 by rpki-client