$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft File: a-Q-axOWQ8tMGebfcyO1A8STEds.mft (raw, json) Hash identifier: xreSxxhyTu/jdOBmn9FujJfaL2YnFw1fZ7H5/D3/AiE= Subject key identifier: FD:E4:84:3E:7B:3D:D0:92:81:4D:49:8B:F3:0E:45:AE:50:73:CD:ED Authority key identifier: 6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB Certificate issuer: /CN=A91E8D27/serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Certificate serial: 344E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft Manifest number: 3431 Signing time: Sat 18 Oct 2025 15:31:08 +0000 Manifest this update: Sat 18 Oct 2025 15:31:08 +0000 Manifest next update: Sat 25 Oct 2025 15:31:08 +0000 Files and hashes: 1: a-Q-axOWQ8tMGebfcyO1A8STEds.crl (hash: sw95ciMqMkNrpzi/NG1rG7OPZuxBt0tFIXQ+2YypVNI=) 2: 56C3DC822B0B11EF97C4A74AC4F9AE02.roa (hash: CVWZvuJMAyjtpzrMYgtcHwOIm2n01TzT8z4GiPVYHFA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13390 (0x344e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8D27, serialNumber=6BE43E6B139643CB4C19E6DF7323B503C49311DB Validity Not Before: Oct 18 15:31:08 2025 GMT Not After : Oct 25 15:31:08 2025 GMT Subject: CN=68f3b2bc-f64d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4d:e7:5a:db:ea:8b:18:22:cd:3d:73:7e:ee: e2:e4:32:fa:c8:5a:a5:5a:1b:aa:15:ca:63:db:96: 44:89:78:3d:81:2e:a9:c7:03:dc:e9:51:75:fe:6f: 3f:c9:dd:5b:ef:a6:b6:5a:bc:b8:74:b1:61:6c:f7: 4a:12:be:9a:1c:2c:01:6a:fc:22:3d:ee:83:28:aa: 82:80:02:71:e0:95:5f:32:8e:e9:54:79:2d:3a:74: eb:4e:e7:85:42:03:ff:99:af:56:e0:94:6a:bb:64: 6e:d7:53:9d:78:d8:00:8f:cc:b7:25:27:4c:94:18: b8:be:14:01:bc:ae:5b:98:73:14:18:93:39:24:76: 32:c0:03:cc:5f:34:c6:86:64:d3:2d:d0:72:f8:65: 84:d8:2d:c3:43:94:8f:f9:eb:a5:ce:56:4b:a5:d4: b0:37:a5:bd:b9:d9:c0:24:64:74:9e:f5:48:5c:e3: 40:9c:91:da:64:08:c0:46:50:1e:5b:8d:b1:57:67: e3:11:1b:c4:92:b1:6d:62:7a:a7:92:1b:44:2c:35: 3f:e6:f7:96:14:05:44:c6:01:5b:bd:74:70:b4:70: 8b:f5:2c:ba:1f:60:26:71:31:0d:12:10:fa:38:7e: 6b:61:de:de:87:2e:90:a8:a6:4d:d2:d1:3b:63:e4: 2d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:E4:84:3E:7B:3D:D0:92:81:4D:49:8B:F3:0E:45:AE:50:73:CD:ED X509v3 Authority Key Identifier: keyid:6B:E4:3E:6B:13:96:43:CB:4C:19:E6:DF:73:23:B5:03:C4:93:11:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a-Q-axOWQ8tMGebfcyO1A8STEds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8D27/C0C5807042E911E29750A32E2979BB20/a-Q-axOWQ8tMGebfcyO1A8STEds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:13:62:27:ea:ca:d4:09:66:d0:f1:73:e9:27:0a:a9:aa:5a: 41:01:f9:9b:de:7f:1e:8a:ba:b0:84:81:39:13:65:a0:3d:23: 6f:14:fc:ed:6a:95:c1:e9:09:9d:0e:f2:35:d5:8c:8d:0e:bc: 35:bd:94:74:50:55:1a:47:8f:f2:c7:4d:e3:5f:57:f4:c1:78: 03:38:a1:02:1b:a7:f7:56:ff:e8:b9:39:29:26:54:df:0d:a3: 1f:16:d8:cf:4d:5f:87:ac:0f:35:45:1b:3c:7b:9b:a2:b0:6f: a2:ea:b0:d1:97:41:a2:ac:b1:49:97:4d:20:ce:d0:0b:9f:96: ad:5e:50:ea:5c:71:3e:a0:36:02:61:ff:55:a4:9d:2e:44:e9: db:68:b0:5e:2d:f2:bb:7c:62:45:12:7c:82:ac:cd:c6:ad:6d: 58:5e:b4:e1:82:1e:21:2b:d9:06:a2:6a:7a:a3:3d:0f:38:4e: 6b:cf:c5:b0:3b:96:d2:dd:b9:8b:49:b2:fc:b8:59:9d:98:0c: 06:93:a1:b2:29:5d:46:24:c9:ba:d5:2c:f3:12:32:c9:b9:bf: 61:20:94:e6:fc:fd:0a:10:6c:13:b2:b7:c2:99:c0:2a:db:1a: df:16:cd:18:5e:04:71:4e:41:49:8f:03:e4:9e:9f:58:98:58: 87:1b:91:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThEMjcxMTAvBgNVBAUTKDZCRTQzRTZCMTM5NjQzQ0I0QzE5RTZERjczMjNCNTAz QzQ5MzExREIwHhcNMjUxMDE4MTUzMTA4WhcNMjUxMDI1MTUzMTA4WjAYMRYwFAYD VQQDEw02OGYzYjJiYy1mNjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyE3nWtvqixgizT1zfu7i5DL6yFqlWhuqFcpj25ZEiXg9gS6pxwPc6VF1/m8/ yd1b76a2Wry4dLFhbPdKEr6aHCwBavwiPe6DKKqCgAJx4JVfMo7pVHktOnTrTueF QgP/ma9W4JRqu2Ru11OdeNgAj8y3JSdMlBi4vhQBvK5bmHMUGJM5JHYywAPMXzTG hmTTLdBy+GWE2C3DQ5SP+eulzlZLpdSwN6W9udnAJGR0nvVIXONAnJHaZAjARlAe W42xV2fjERvEkrFtYnqnkhtELDU/5veWFAVExgFbvXRwtHCL9Sy6H2AmcTENEhD6 OH5rYd7ehy6QqKZN0tE7Y+QtqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP3khD57 PdCSgU1Ji/MORa5Qc83tMB8GA1UdIwQYMBaAFGvkPmsTlkPLTBnm33MjtQPEkxHb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEQyNy9DMEM1ODA3MDQy RTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4dE1HZWJmY3lPMUE4U1RF ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EtUS1heE9XUTh0TUdlYmZjeU8xQThTVEVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEQyNy9DMEM1ODA3MDQyRTkxMUUyOTc1MEEzMkUyOTc5QkIyMC9hLVEtYXhPV1E4 dE1HZWJmY3lPMUE4U1RFZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhE2In6srUCWbQ8XPpJwqpqlpBAfmb3n8eirqwhIE5E2WgPSNvFPzt apXB6QmdDvI11YyNDrw1vZR0UFUaR4/yx03jX1f0wXgDOKECG6f3Vv/ouTkpJlTf DaMfFtjPTV+HrA81RRs8e5uisG+i6rDRl0GirLFJl00gztALn5atXlDqXHE+oDYC Yf9VpJ0uROnbaLBeLfK7fGJFEnyCrM3GrW1YXrThgh4hK9kGomp6oz0POE5rz8Ww O5bS3bmLSbL8uFmdmAwGk6GyKV1GJMm61SzzEjLJub9hIJTm/P0KEGwTsrfCmcAq 2xrfFs0YXgRxTkFJjwPknp9YmFiHG5EP -----END CERTIFICATE-----Generated at Mon Oct 20 04:05:47 2025 by rpki-client