$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft File: IHitW73x1MW5cLvik02aNV2zHOg.mft (raw, json) Hash identifier: shBKWI4AtTGmmeYcyk4hv1wn38o4v9w9eHLteFGrgZ4= Subject key identifier: 20:D8:37:F2:49:F7:71:C4:CE:6D:EF:26:0B:EA:D4:94:8A:85:9F:CC Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 053D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft Manifest number: 0533 Signing time: Sun 19 Oct 2025 01:16:34 +0000 Manifest this update: Sun 19 Oct 2025 01:16:34 +0000 Manifest next update: Sun 26 Oct 2025 01:16:33 +0000 Files and hashes: 1: IHitW73x1MW5cLvik02aNV2zHOg.crl (hash: WJ4T+pXWkuRxXHHPo2PKu15AJIx+nmcm8qYjJ68dauY=) 2: 5EAA75CC28E511F0BE4DF317C4F9AE02.roa (hash: aZ97R0qET0w8nFTTAAMLi629/SQxZPM4icyK4OVkGiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:16:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1341 (0x53d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA, serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Oct 19 01:16:34 2025 GMT Not After : Oct 26 01:16:33 2025 GMT Subject: CN=68f43bf2-6313 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a5:63:75:da:15:fe:36:a6:83:05:01:2c:97: 37:6a:33:4e:6e:91:e8:a2:84:28:32:64:ab:11:c0: 22:38:c1:99:0f:38:98:b2:c6:93:08:c4:e1:34:61: 54:aa:5b:4b:59:9f:d3:77:0e:8e:5d:19:33:af:58: c5:4d:23:0a:e7:20:65:63:0d:8e:66:de:7e:ef:cb: 0a:be:2d:b4:02:27:e6:d7:68:3f:70:cb:5b:cf:97: 6c:29:53:08:63:9b:4b:da:58:09:bb:70:fc:86:01: 7a:8c:9e:9b:09:bd:29:8c:06:7c:a5:6f:02:3e:24: 3e:36:f5:81:55:71:bd:ad:28:4f:71:48:6b:7e:21: 9c:45:39:31:3a:18:4f:f8:61:3d:3e:eb:ad:1e:7f: f5:e6:a3:ab:b0:e5:f0:93:64:f4:d7:50:a0:0a:48: ee:0f:84:5d:49:ad:d0:6f:79:37:3c:81:15:c9:a2: ab:a5:0e:54:bd:57:c7:eb:6c:34:62:95:83:ce:79: fc:b6:e6:21:30:48:3e:8c:8e:f9:21:da:c3:96:ed: 26:b0:34:d6:10:26:ff:88:e4:2d:cc:d3:26:9c:8f: 4e:95:a7:b6:c0:99:93:b7:2a:9d:81:f7:2b:ed:96: df:c8:a0:f2:23:85:f4:28:4e:1c:ba:38:3e:8b:11: 46:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:D8:37:F2:49:F7:71:C4:CE:6D:EF:26:0B:EA:D4:94:8A:85:9F:CC X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:55:4c:d3:e1:d7:70:39:fc:b9:72:9a:02:ca:fc:10:a2:b7: 1d:d1:bc:aa:4d:4d:5b:fa:3d:43:3d:58:37:e7:b9:6b:28:56: c0:71:94:36:3f:1e:d3:45:59:bd:d8:06:7e:53:fb:f1:05:92: 2d:2e:43:62:dc:06:c5:a5:29:65:cd:74:a1:01:95:7a:32:20: bb:17:39:1c:da:dd:6e:63:6f:09:06:4a:a8:0e:9a:be:85:5a: ea:07:39:13:60:f7:e6:ac:d9:b2:a5:73:3d:9a:22:37:b4:b8: ca:33:4b:3e:50:80:cd:30:c5:9d:9c:dc:5c:8f:6f:e0:42:65: 03:fb:8d:83:a1:ac:18:48:4e:fb:46:1a:28:39:91:cc:66:21: 1c:d3:4e:a1:02:8e:38:d4:79:5e:09:9b:d7:2c:8c:16:ce:b1: 10:00:62:ed:2b:1a:83:c7:b5:9d:e0:68:bb:2f:12:e9:6b:ff: 0a:09:99:ff:c3:50:95:88:99:68:df:b4:c0:35:dd:c2:6e:87: 71:00:06:85:93:35:27:3b:78:e2:d8:f9:73:d4:a6:6a:43:d4: 7f:a7:d3:3e:7b:d8:d9:6f:48:f6:ce:42:94:2e:a0:50:e8:74: 42:f0:f8:13:d0:ca:2a:f1:08:c4:79:cd:be:ec:b0:2d:6f:a8: 3a:2e:0c:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjUxMDE5MDExNjM0WhcNMjUxMDI2MDExNjMzWjAYMRYwFAYD VQQDEw02OGY0M2JmMi02MzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6VjddoV/jamgwUBLJc3ajNObpHoooQoMmSrEcAiOMGZDziYssaTCMThNGFU qltLWZ/Tdw6OXRkzr1jFTSMK5yBlYw2OZt5+78sKvi20Aifm12g/cMtbz5dsKVMI Y5tL2lgJu3D8hgF6jJ6bCb0pjAZ8pW8CPiQ+NvWBVXG9rShPcUhrfiGcRTkxOhhP +GE9PuutHn/15qOrsOXwk2T011CgCkjuD4RdSa3Qb3k3PIEVyaKrpQ5UvVfH62w0 YpWDznn8tuYhMEg+jI75IdrDlu0msDTWECb/iOQtzNMmnI9Olae2wJmTtyqdgfcr 7ZbfyKDyI4X0KE4cujg+ixFGiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDYN/JJ 93HEzm3vJgvq1JSKhZ/MMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NERGQS84NDU5ODRDRTFBODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFN VzVjTHZpazAyYU5WMnpIT2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApVUzT4ddwOfy5cpoCyvwQorcd0byqTU1b+j1DPVg357lrKFbAcZQ2 Px7TRVm92AZ+U/vxBZItLkNi3AbFpSllzXShAZV6MiC7Fzkc2t1uY28JBkqoDpq+ hVrqBzkTYPfmrNmypXM9miI3tLjKM0s+UIDNMMWdnNxcj2/gQmUD+42DoawYSE77 RhooOZHMZiEc006hAo441HleCZvXLIwWzrEQAGLtKxqDx7Wd4Gi7LxLpa/8KCZn/ w1CViJlo37TANd3CbodxAAaFkzUnO3ji2Plz1KZqQ9R/p9M+e9jZb0j2zkKULqBQ 6HRC8PgT0Moq8QjEec2+7LAtb6g6LgzR -----END CERTIFICATE-----Generated at Mon Oct 20 04:05:57 2025 by rpki-client