$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft File: aGr0G8M9rvgo-rSuSjoNWHutDT8.mft (raw, json) Hash identifier: uRpIW4ish6eiWAYAp4khtQWX0kbxzWrJa4WD59GNSrA= Subject key identifier: 4E:22:BB:D6:09:70:9B:43:EC:F0:C8:3D:14:3D:2C:64:02:6C:A1:E4 Authority key identifier: 68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F Certificate issuer: /CN=A91E4D3D/serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Certificate serial: 05ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft Manifest number: 05DC Signing time: Sun 19 Oct 2025 00:40:20 +0000 Manifest this update: Sun 19 Oct 2025 00:40:20 +0000 Manifest next update: Sun 26 Oct 2025 00:40:19 +0000 Files and hashes: 1: aGr0G8M9rvgo-rSuSjoNWHutDT8.crl (hash: ED5F46LFlBeaglxNedV5fo2Kg4MXP3cGNINgHbv5dj0=) 2: 63FEB4F8D97411EBB8CC3F40C4F9AE02.roa (hash: yGTQCTRuD+wL7C1TW/wqimXEB6uk1jKvb4AJw6pgI0Q=) 3: 40310456D8D211EB97FF5586C4F9AE02.roa (hash: 4sD3HQWKjSm5VjpYk8vQ01ZycYjzVEzhHz6+9q9It7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:40:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1517 (0x5ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=686AF41BC33DAEF828FAB4AE4A3A0D587BAD0D3F Validity Not Before: Oct 19 00:40:20 2025 GMT Not After : Oct 26 00:40:19 2025 GMT Subject: CN=68f43374-738a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3c:f2:f4:42:f1:84:29:56:5d:df:48:9d:12: e7:b0:81:c8:f5:72:c0:27:06:cd:1c:da:e4:b2:d5: 2e:e4:8d:be:db:0d:3f:e2:b9:1e:8d:b7:7d:20:0e: 01:df:cd:b1:2a:f6:cc:33:5d:fa:ad:4e:53:82:76: 27:89:8c:3c:16:d5:7e:1a:ae:22:3b:24:e9:a9:c9: 6b:8a:75:37:e2:21:1f:e6:8b:f8:26:5e:00:0e:90: 9a:89:2a:86:bc:b9:7d:d3:cc:4b:f4:1c:1f:e6:8a: 3d:45:41:36:3a:e7:12:d4:7f:e8:32:1e:f2:c9:04: 90:95:9f:eb:9c:0d:8c:39:c6:77:38:4a:99:0e:4e: 17:ab:1b:12:8b:61:da:3b:27:80:c6:d3:ee:7c:58: f1:b2:02:c2:ee:20:0f:1b:f3:8a:0c:0a:50:aa:ee: f2:5a:65:e0:9a:af:50:0e:2f:9c:c6:d1:26:40:6b: 7d:fc:9a:f4:c0:c8:90:e1:65:74:01:fb:72:9d:c9: 1c:2c:e2:c6:42:eb:dc:d7:46:83:a6:2e:28:68:7c: 93:45:09:dd:b4:07:bf:d4:8b:09:8f:50:43:5e:6d: ae:46:f0:8b:dc:d6:c4:21:1d:c5:d0:88:ae:2e:a6: df:36:e8:ff:07:12:60:a8:89:ec:21:0c:0f:13:07: 66:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:22:BB:D6:09:70:9B:43:EC:F0:C8:3D:14:3D:2C:64:02:6C:A1:E4 X509v3 Authority Key Identifier: keyid:68:6A:F4:1B:C3:3D:AE:F8:28:FA:B4:AE:4A:3A:0D:58:7B:AD:0D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aGr0G8M9rvgo-rSuSjoNWHutDT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/A70A8FEED8B911EBABC1F485C4F9AE02/aGr0G8M9rvgo-rSuSjoNWHutDT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:b1:50:2a:f9:cc:cb:6b:c6:a5:be:bf:75:26:90:b8:51:f8: 09:7d:f2:59:83:6b:24:88:8e:47:45:f4:33:ac:55:75:32:78: 36:1f:d9:96:e2:ba:f7:1f:cb:af:1a:c5:6f:56:a6:fb:69:85: a0:bb:1a:95:2d:8c:85:e7:8d:28:24:2e:24:36:1e:a9:03:03: be:ce:c4:1d:9d:f3:87:ab:83:bf:f8:2a:57:70:bb:86:0f:93: 07:58:37:01:19:e4:49:0d:8d:af:63:0f:56:6c:3b:51:44:7b: 80:b7:f4:8f:bd:67:b5:38:ac:93:57:0e:a4:86:4a:00:93:10: 7c:b4:dc:3a:b3:6c:fb:fe:6c:d4:d4:ed:de:4c:25:09:a5:ac: 74:4e:64:61:4d:d1:4b:07:5e:ab:41:27:b6:5c:9c:ef:04:44: 1f:d3:da:04:c6:b9:81:4e:e0:87:ab:05:22:9d:06:4b:3c:67: 20:ee:d8:db:3f:f9:8a:e8:80:f0:6b:a3:96:b9:c0:b8:fe:07: a3:c4:ad:03:cd:f3:6a:1f:ec:85:3b:5a:7e:0f:bf:95:6f:ee: 89:d1:4c:03:1f:dd:2c:68:e3:c4:6a:88:2c:0a:fb:6d:64:0f: 3b:d9:bc:28:c3:80:f0:99:ea:90:21:ee:08:73:08:a8:bc:25: d7:41:e2:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKDY4NkFGNDFCQzMzREFFRjgyOEZBQjRBRTRBM0EwRDU4 N0JBRDBEM0YwHhcNMjUxMDE5MDA0MDIwWhcNMjUxMDI2MDA0MDE5WjAYMRYwFAYD VQQDEw02OGY0MzM3NC03MzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjzy9ELxhClWXd9InRLnsIHI9XLAJwbNHNrkstUu5I2+2w0/4rkejbd9IA4B 382xKvbMM136rU5TgnYniYw8FtV+Gq4iOyTpqclrinU34iEf5ov4Jl4ADpCaiSqG vLl908xL9Bwf5oo9RUE2OucS1H/oMh7yyQSQlZ/rnA2MOcZ3OEqZDk4XqxsSi2Ha OyeAxtPufFjxsgLC7iAPG/OKDApQqu7yWmXgmq9QDi+cxtEmQGt9/Jr0wMiQ4WV0 AftynckcLOLGQuvc10aDpi4oaHyTRQndtAe/1IsJj1BDXm2uRvCL3NbEIR3F0Iiu LqbfNuj/BxJgqInsIQwPEwdmmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE4iu9YJ cJtD7PDIPRQ9LGQCbKHkMB8GA1UdIwQYMBaAFGhq9BvDPa74KPq0rko6DVh7rQ0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9BNzBBOEZFRUQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2Z28tclN1U2pvTldIdXRE VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FHcjBHOE05cnZnby1yU3VTam9OV0h1dERUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9BNzBBOEZFRUQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi9hR3IwRzhNOXJ2 Z28tclN1U2pvTldIdXREVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALsVAq+czLa8alvr91JpC4UfgJffJZg2skiI5HRfQzrFV1Mng2H9mW 4rr3H8uvGsVvVqb7aYWguxqVLYyF540oJC4kNh6pAwO+zsQdnfOHq4O/+CpXcLuG D5MHWDcBGeRJDY2vYw9WbDtRRHuAt/SPvWe1OKyTVw6khkoAkxB8tNw6s2z7/mzU 1O3eTCUJpax0TmRhTdFLB16rQSe2XJzvBEQf09oExrmBTuCHqwUinQZLPGcg7tjb P/mK6IDwa6OWucC4/gejxK0DzfNqH+yFO1p+D7+Vb+6J0UwDH90saOPEaogsCvtt ZA872bwow4DwmeqQIe4IcwiovCXXQeJs -----END CERTIFICATE-----Generated at Mon Oct 20 20:41:26 2025 by rpki-client