$ rpki-client -vvf rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft File: MOfescUi55FZhZK2RTCIY8oADhg.mft (raw, json) Hash identifier: GShtwhlwOxPMb8ltjhKY3i9H1aasaZpD7UBqwbLEjA8= Subject key identifier: B7:12:51:FA:A3:D8:EE:D1:F9:4D:43:23:A0:2E:39:F3:48:02:42:3D Authority key identifier: 30:E7:DE:B1:C5:22:E7:91:59:85:92:B6:45:30:88:63:CA:00:0E:18 Certificate issuer: /CN=A91E76B8/serialNumber=30E7DEB1C522E791598592B645308863CA000E18 Certificate serial: 148D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft Manifest number: 1471 Signing time: Sat 18 Oct 2025 17:22:21 +0000 Manifest this update: Sat 18 Oct 2025 17:22:20 +0000 Manifest next update: Sat 25 Oct 2025 17:22:20 +0000 Files and hashes: 1: MOfescUi55FZhZK2RTCIY8oADhg.crl (hash: W43+Lr7E1ahGya0gZx3cIpOv3GAf9KddOtiS0meRMY0=) 2: ECBAA694826F11ED963DD626C4F9AE02.roa (hash: dEUjWtTlj2rNYIxixfb1q7kgTimYlRGEihBrx/cv4cU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.crl rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5261 (0x148d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E76B8, serialNumber=30E7DEB1C522E791598592B645308863CA000E18 Validity Not Before: Oct 18 17:22:20 2025 GMT Not After : Oct 25 17:22:20 2025 GMT Subject: CN=68f3cccd-79af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6e:a6:37:63:b6:43:9d:76:ff:1e:b6:3e:65: 58:46:a4:08:b1:f2:d6:3c:e6:d3:0a:da:10:2f:dc: a1:79:c3:06:c7:be:34:1f:21:4c:16:1e:67:da:de: 1b:83:62:9c:a9:bc:a2:50:a2:91:1b:2f:ec:8d:55: c1:83:64:e9:22:4f:69:8b:f6:40:60:97:e3:dc:5e: 8f:34:88:f4:71:d8:a3:9a:4b:e9:b6:86:53:99:a0: 28:c3:e7:eb:d1:d1:94:49:87:2e:4b:5e:73:fc:d7: 4d:de:70:57:ae:0d:48:4a:ff:4e:14:ae:e5:51:e7: b4:92:ad:f9:7a:4b:c9:eb:63:56:84:91:06:3b:16: 38:02:50:96:b1:69:5a:4d:09:69:f5:0d:e9:86:8b: bb:b6:60:08:3e:3d:5d:f9:27:4b:58:5e:bb:ee:fd: 77:2a:27:48:15:65:fd:39:1b:3b:de:e6:fd:54:a4: cd:88:85:20:7a:31:ab:84:90:c8:4f:af:89:43:2d: 6b:c3:e6:ab:93:73:22:b1:69:a6:4f:22:4d:69:9a: 20:f0:1d:48:20:23:a7:e4:b9:c9:3d:28:0e:13:a6: db:d8:f6:ff:c5:5f:12:cc:bf:89:ad:c1:33:6d:ef: 19:e9:e2:a5:5d:59:a6:b6:aa:29:7e:dc:df:76:4b: 2a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:12:51:FA:A3:D8:EE:D1:F9:4D:43:23:A0:2E:39:F3:48:02:42:3D X509v3 Authority Key Identifier: keyid:30:E7:DE:B1:C5:22:E7:91:59:85:92:B6:45:30:88:63:CA:00:0E:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOfescUi55FZhZK2RTCIY8oADhg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E76B8/FF1508EE7E9A11E8B69FC02DC4F9AE02/MOfescUi55FZhZK2RTCIY8oADhg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:52:cd:88:b6:65:14:7f:6f:9c:da:20:f4:03:e4:75:43:4c: 21:c9:b9:df:c2:43:d4:16:a0:71:af:40:c4:db:f6:a3:7b:63: 1f:7b:99:5e:c3:b7:bf:93:ea:34:65:b1:21:34:78:72:b3:19: cb:b9:08:1b:fb:9d:84:b5:1b:12:3e:d6:ab:c4:87:eb:4c:d6: 75:bc:60:f5:cf:eb:8e:73:58:a1:f6:22:8f:83:a1:e8:c6:98: 7d:cd:df:b4:e8:6d:e6:31:2c:33:16:0c:32:08:98:4e:b6:a3: c1:64:08:8a:dc:02:79:e1:6c:ee:73:c2:64:84:43:29:37:7c: f7:b5:ba:11:ad:b3:0d:2c:b0:a2:de:66:db:f4:62:97:8d:7f: 86:84:48:f4:ef:57:95:0c:82:6f:ff:fc:be:3f:59:8f:bb:5f: 39:c7:f4:71:6c:05:21:64:bd:ad:d6:41:3d:d8:95:77:e6:81: c0:39:04:b0:ae:1a:94:8f:2a:6f:ca:6b:1e:8a:b9:b9:9b:26: 87:2e:04:31:2d:89:e1:90:66:51:23:25:28:80:41:8e:01:f9: c5:fe:19:7a:ec:2b:6e:d4:eb:40:30:02:67:36:47:30:d9:66: 22:eb:e5:cd:a1:a5:e7:bf:02:55:28:b3:de:60:14:79:73:a0: 1e:ca:f9:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc2QjgxMTAvBgNVBAUTKDMwRTdERUIxQzUyMkU3OTE1OTg1OTJCNjQ1MzA4ODYz Q0EwMDBFMTgwHhcNMjUxMDE4MTcyMjIwWhcNMjUxMDI1MTcyMjIwWjAYMRYwFAYD VQQDEw02OGYzY2NjZC03OWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwW6mN2O2Q512/x62PmVYRqQIsfLWPObTCtoQL9yhecMGx740HyFMFh5n2t4b g2KcqbyiUKKRGy/sjVXBg2TpIk9pi/ZAYJfj3F6PNIj0cdijmkvptoZTmaAow+fr 0dGUSYcuS15z/NdN3nBXrg1ISv9OFK7lUee0kq35ekvJ62NWhJEGOxY4AlCWsWla TQlp9Q3phou7tmAIPj1d+SdLWF677v13KidIFWX9ORs73ub9VKTNiIUgejGrhJDI T6+JQy1rw+ark3MisWmmTyJNaZog8B1IICOn5LnJPSgOE6bb2Pb/xV8SzL+JrcEz be8Z6eKlXVmmtqopftzfdksqHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcSUfqj 2O7R+U1DI6AuOfNIAkI9MB8GA1UdIwQYMBaAFDDn3rHFIueRWYWStkUwiGPKAA4Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzZCOC9GRjE1MDhFRTdF OUExMUU4QjY5RkMwMkRDNEY5QUUwMi9NT2Zlc2NVaTU1RlpoWksyUlRDSVk4b0FE aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PZmVzY1VpNTVGWmhaSzJSVENJWThvQURoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NzZCOC9GRjE1MDhFRTdFOUExMUU4QjY5RkMwMkRDNEY5QUUwMi9NT2Zlc2NVaTU1 RlpoWksyUlRDSVk4b0FEaGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIUs2ItmUUf2+c2iD0A+R1Q0whybnfwkPUFqBxr0DE2/aje2Mfe5le w7e/k+o0ZbEhNHhysxnLuQgb+52EtRsSPtarxIfrTNZ1vGD1z+uOc1ih9iKPg6Ho xph9zd+06G3mMSwzFgwyCJhOtqPBZAiK3AJ54Wzuc8JkhEMpN3z3tboRrbMNLLCi 3mbb9GKXjX+GhEj071eVDIJv//y+P1mPu185x/RxbAUhZL2t1kE92JV35oHAOQSw rhqUjypvymseirm5myaHLgQxLYnhkGZRIyUogEGOAfnF/hl67Ctu1OtAMAJnNkcw 2WYi6+XNoaXnvwJVKLPeYBR5c6Aeyvk8 -----END CERTIFICATE-----Generated at Mon Oct 20 09:27:56 2025 by rpki-client