$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft File: 1gwwsan1nJWa1JZ_L21XKst1KZw.mft (raw, json) Hash identifier: e1AUI46KnF0EyrjZiCxcZVqZGgAAjfKfIfHTGbcsRpw= Subject key identifier: 1D:3F:2A:F9:D1:8A:68:A1:D1:FD:A5:34:8D:AD:A8:B8:5D:17:31:23 Authority key identifier: D6:0C:30:B1:A9:F5:9C:95:9A:D4:96:7F:2F:6D:57:2A:CB:75:29:9C Certificate issuer: /CN=A91E5EEA/serialNumber=D60C30B1A9F59C959AD4967F2F6D572ACB75299C Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft Manifest number: 94 Signing time: Sun 19 Oct 2025 09:48:13 +0000 Manifest this update: Sun 19 Oct 2025 09:48:13 +0000 Manifest next update: Sun 26 Oct 2025 09:48:13 +0000 Files and hashes: 1: 1gwwsan1nJWa1JZ_L21XKst1KZw.crl (hash: A3lTHoxFJevGPM/lcktm2hXbtPqYeeqdo0IjKHy+4AA=) 2: 2B6A4C480CDC11F0BAA65183C4F9AE02.roa (hash: PQLVpWWHthzNnD5URwix2MJ4GqKKAheIHq2d7TmXEW0=) 3: A7C0D96E0CDD11F0A8463D28C4F9AE02.roa (hash: QHLRTEx6Qgh4+lTDIbuuL3PGb+4V0jC1oeBCPhaLkPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.crl rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5EEA, serialNumber=D60C30B1A9F59C959AD4967F2F6D572ACB75299C Validity Not Before: Oct 19 09:48:13 2025 GMT Not After : Oct 26 09:48:13 2025 GMT Subject: CN=68f4b3dd-6dfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2d:66:cb:f4:00:bf:2a:13:48:33:48:80:da: c3:04:74:f7:1c:c8:5c:02:c8:34:ac:eb:f1:77:fb: 1f:dc:18:93:03:4c:0e:02:26:84:4f:32:8d:60:6d: 2b:2d:b1:55:f2:39:13:c6:ed:d5:0a:5c:9b:40:c5: c7:29:aa:aa:49:47:29:fb:78:29:74:1b:5b:d4:fc: 87:4d:19:1f:ca:8d:bc:e9:c3:de:7f:fc:be:45:be: 62:db:9b:52:d9:87:fd:8a:fe:01:4e:56:b1:61:79: 7c:82:7f:44:13:f7:34:58:be:f2:0a:8e:d0:18:26: 6a:eb:ae:41:f9:c6:51:b9:0f:4c:de:42:fe:6c:5a: 04:f4:23:75:74:5a:e7:f8:d2:25:6d:41:5f:e5:9a: 55:8e:3d:7c:20:a0:d1:e4:cf:fa:e4:76:5d:bd:f3: 85:6f:c6:d1:ca:b8:0b:24:c5:34:48:5e:95:b5:7a: 90:c2:d0:74:da:28:55:be:7c:b3:d2:6a:c4:f5:45: e3:f5:78:fc:7b:b9:7b:9d:ca:77:32:b2:fa:0d:1e: 89:f8:1d:fe:2f:c8:2c:f6:d9:ba:9e:63:8a:fe:a4: 56:d7:62:5c:69:0c:e3:f2:48:ed:c5:87:f0:0e:e7: 0a:3c:80:4b:d6:7e:15:da:a7:0a:f3:82:5d:60:6d: 69:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:3F:2A:F9:D1:8A:68:A1:D1:FD:A5:34:8D:AD:A8:B8:5D:17:31:23 X509v3 Authority Key Identifier: keyid:D6:0C:30:B1:A9:F5:9C:95:9A:D4:96:7F:2F:6D:57:2A:CB:75:29:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:34:2d:7b:e3:87:58:e0:7c:94:5c:da:c0:e8:b7:0d:f2:f6: 07:5e:be:f1:a7:ea:70:d4:da:11:5d:4e:ff:99:8b:1f:8a:3d: b7:92:d8:6f:06:2d:64:ff:35:92:a8:dc:b5:83:71:bd:fa:79: e1:6d:17:42:a7:54:f5:25:64:7a:44:e0:ae:fa:9f:8f:fb:24: 8b:fd:e4:60:f8:42:08:ca:60:97:74:32:58:e2:ee:fa:5d:68: b9:fa:6d:17:69:c2:fe:e2:29:34:cf:68:e1:e1:82:d6:10:b2: 06:43:9b:c4:5a:34:26:36:92:61:d3:bd:a5:24:d9:84:a7:50: 91:9f:0a:3b:2e:01:5e:00:de:dd:9d:a0:7d:65:89:06:a2:53: 55:ae:b4:04:02:d9:5d:2b:9b:5f:1c:a9:76:36:03:05:18:d3: d3:04:29:e9:00:1b:5c:29:3a:e6:30:bb:4f:b0:f2:1e:89:20: ce:97:ea:87:34:b1:21:cf:75:c6:ac:27:67:2e:2f:2c:3b:de: 7f:3e:87:40:c1:89:39:aa:bb:82:11:2b:35:a3:74:a0:64:89: 9a:99:13:49:3e:ab:41:d9:45:bf:39:33:e8:c4:59:e9:84:e3: 15:74:51:3d:66:be:29:e3:2a:84:21:20:5c:df:1b:52:48:11: fe:f3:00:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVFRUExMTAvBgNVBAUTKEQ2MEMzMEIxQTlGNTlDOTU5QUQ0OTY3RjJGNkQ1NzJB Q0I3NTI5OUMwHhcNMjUxMDE5MDk0ODEzWhcNMjUxMDI2MDk0ODEzWjAYMRYwFAYD VQQDEw02OGY0YjNkZC02ZGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1C1my/QAvyoTSDNIgNrDBHT3HMhcAsg0rOvxd/sf3BiTA0wOAiaETzKNYG0r LbFV8jkTxu3VClybQMXHKaqqSUcp+3gpdBtb1PyHTRkfyo286cPef/y+Rb5i25tS 2Yf9iv4BTlaxYXl8gn9EE/c0WL7yCo7QGCZq665B+cZRuQ9M3kL+bFoE9CN1dFrn +NIlbUFf5ZpVjj18IKDR5M/65HZdvfOFb8bRyrgLJMU0SF6VtXqQwtB02ihVvnyz 0mrE9UXj9Xj8e7l7ncp3MrL6DR6J+B3+L8gs9tm6nmOK/qRW12JcaQzj8kjtxYfw DucKPIBL1n4V2qcK84JdYG1plwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0/KvnR imih0f2lNI2tqLhdFzEjMB8GA1UdIwQYMBaAFNYMMLGp9ZyVmtSWfy9tVyrLdSmc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUVFQS9FM0ZDRDE0NEQ0 Q0YxMUVGOThERjk4MkJDNEY5QUUwMi8xZ3d3c2FuMW5KV2ExSlpfTDIxWEtzdDFL WncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFnd3dzYW4xbkpXYTFKWl9MMjFYS3N0MUtady5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUVFQS9FM0ZDRDE0NEQ0Q0YxMUVGOThERjk4MkJDNEY5QUUwMi8xZ3d3c2FuMW5K V2ExSlpfTDIxWEtzdDFLWncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhNC1744dY4HyUXNrA6LcN8vYHXr7xp+pw1NoRXU7/mYsfij23kthv Bi1k/zWSqNy1g3G9+nnhbRdCp1T1JWR6ROCu+p+P+ySL/eRg+EIIymCXdDJY4u76 XWi5+m0XacL+4ik0z2jh4YLWELIGQ5vEWjQmNpJh072lJNmEp1CRnwo7LgFeAN7d naB9ZYkGolNVrrQEAtldK5tfHKl2NgMFGNPTBCnpABtcKTrmMLtPsPIeiSDOl+qH NLEhz3XGrCdnLi8sO95/PodAwYk5qruCESs1o3SgZImamRNJPqtB2UW/OTPoxFnp hOMVdFE9Zr4p4yqEISBc3xtSSBH+8wBt -----END CERTIFICATE-----Generated at Mon Oct 20 21:24:31 2025 by rpki-client