$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft File: _k_aOWcBbBE6yAe4STQKxlIPCAI.mft (raw, json) Hash identifier: vPkalUlv0wQMI7HvLQZ+x7qRtTWlFtbPqKTvl+2h1n8= Subject key identifier: 2D:38:FD:7A:8C:89:5E:CD:E9:4F:B6:58:B0:80:97:37:6D:43:EF:46 Authority key identifier: FE:4F:DA:39:67:01:6C:11:3A:C8:07:B8:49:34:0A:C6:52:0F:08:02 Certificate issuer: /CN=A91E9580/serialNumber=FE4FDA3967016C113AC807B849340AC6520F0802 Certificate serial: 0A44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft Manifest number: 0A21 Signing time: Mon 20 Oct 2025 20:34:53 +0000 Manifest this update: Mon 20 Oct 2025 20:34:53 +0000 Manifest next update: Mon 27 Oct 2025 20:34:53 +0000 Files and hashes: 1: _k_aOWcBbBE6yAe4STQKxlIPCAI.crl (hash: 8cdFPXgrguUPgCqV4V/dmnCTeygLkgNfvON2mlQnCJs=) 2: 699CD772C2B911EBBB4C8928C4F9AE02.roa (hash: yfdf5Mv/GJ9tUDZNlDnmM6hHiINUq2OvlkNbS0rVles=) 3: DE76B04EC2BA11EB99E5E36FC4F9AE02.roa (hash: qU5SgxuYfj9EbloGsgp5NlU+LGZow7QsAYGZSye/EIM=) 4: 91F5867070B811EDB6E1F81BC4F9AE02.roa (hash: PgZPVHxtNUmnyrhnnwVcg3kijll4dZA2GpurrS7x078=) 5: 1E9514207F9311EA8177A82DC4F9AE02.roa (hash: mCrr4AsBoN0UqBzrLZ/+kB+0BpCUxnU7wJAUdq4LZdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.crl rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 20:34:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2628 (0xa44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9580, serialNumber=FE4FDA3967016C113AC807B849340AC6520F0802 Validity Not Before: Oct 20 20:34:53 2025 GMT Not After : Oct 27 20:34:53 2025 GMT Subject: CN=68f69ced-96b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:69:3b:b4:36:24:9c:3a:13:d6:32:4d:ac:6c: cd:9e:d4:32:a7:f8:22:ec:f2:83:d0:b6:aa:9c:98: 29:0a:c9:ee:c4:74:f5:b1:c2:73:95:d1:84:44:ef: 86:97:05:28:96:71:4f:a7:40:6e:3a:8c:1d:88:d8: 0b:17:f5:4e:7c:f6:fe:78:67:04:7b:9b:0a:ee:37: ca:07:36:bd:88:b6:83:5e:2b:1e:e8:58:3b:7e:86: 0a:71:84:f7:dc:f6:15:66:53:7a:6b:92:f1:bd:0d: 51:2c:8e:e0:04:76:47:f7:79:2a:e4:7e:00:3d:75: 3d:c3:fe:44:22:aa:2a:c2:da:7c:11:35:f5:f3:f9: b8:59:ab:20:b1:32:b4:ae:a0:06:e5:26:6c:82:47: 49:52:91:d0:e7:89:5d:29:41:d7:0b:02:3d:4c:fb: 9f:23:7c:b2:bd:0e:ed:07:46:3c:4c:9d:bd:c8:e2: 2c:24:2b:4f:a0:c3:d6:a1:ae:f7:78:9c:df:5f:2a: 4c:b4:cb:ef:ca:d6:f3:40:bf:02:7e:b2:28:dc:73: 13:c4:52:b5:2f:ff:12:1a:22:3c:49:ee:be:47:12: f2:22:c2:74:4e:06:e6:31:98:a9:1a:6b:d5:4b:79: 33:0b:c3:9f:09:db:83:c5:2a:2d:31:53:5b:c5:48: 8f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:38:FD:7A:8C:89:5E:CD:E9:4F:B6:58:B0:80:97:37:6D:43:EF:46 X509v3 Authority Key Identifier: keyid:FE:4F:DA:39:67:01:6C:11:3A:C8:07:B8:49:34:0A:C6:52:0F:08:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_k_aOWcBbBE6yAe4STQKxlIPCAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9580/C7CE2E107F8D11EAAD8CD51EC4F9AE02/_k_aOWcBbBE6yAe4STQKxlIPCAI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:3a:f6:61:07:05:e1:9a:bc:60:9b:2c:38:4a:36:dc:56:1f: 9d:23:64:96:f7:cd:25:fe:54:ec:b5:38:88:8c:09:1d:65:0d: ab:d3:61:c1:d2:dd:55:77:0c:db:2c:37:e5:ac:53:b6:ee:94: c6:a8:ee:90:3e:dc:ed:03:2d:c5:63:33:40:c7:5b:ea:2b:15: 58:9c:31:19:36:d3:8d:4b:b4:be:75:c1:48:4a:5d:75:9d:1b: cb:44:9b:3f:2b:59:c7:2e:c5:43:f1:11:ce:4c:2f:71:3a:05: 88:3b:d9:62:56:e8:23:bf:bd:32:da:d0:52:45:f6:af:9e:8a: ec:a8:2b:67:b5:06:55:cf:54:cc:c9:ad:0c:3a:73:08:db:9f: c6:5f:af:72:9d:71:ad:bf:5f:3c:1c:8c:50:12:99:81:24:db: cb:31:72:89:af:a7:21:29:fc:8d:bc:a4:8a:e0:4b:98:d9:39: 24:55:c8:89:29:e9:c7:a9:4d:f0:3a:30:29:8b:f5:a9:dc:e8: 3f:21:d5:b4:96:d8:65:00:cb:34:cd:7a:58:12:23:20:f4:d0: 4f:14:44:b5:37:ee:46:88:13:51:31:57:cc:3e:03:d6:62:fc: e5:59:3a:0b:c4:e4:ae:64:19:14:5a:6f:a6:ce:fe:67:8d:e8: ba:95:1b:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1ODAxMTAvBgNVBAUTKEZFNEZEQTM5NjcwMTZDMTEzQUM4MDdCODQ5MzQwQUM2 NTIwRjA4MDIwHhcNMjUxMDIwMjAzNDUzWhcNMjUxMDI3MjAzNDUzWjAYMRYwFAYD VQQDEw02OGY2OWNlZC05NmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmk7tDYknDoT1jJNrGzNntQyp/gi7PKD0LaqnJgpCsnuxHT1scJzldGERO+G lwUolnFPp0BuOowdiNgLF/VOfPb+eGcEe5sK7jfKBza9iLaDXise6Fg7foYKcYT3 3PYVZlN6a5LxvQ1RLI7gBHZH93kq5H4APXU9w/5EIqoqwtp8ETX18/m4WasgsTK0 rqAG5SZsgkdJUpHQ54ldKUHXCwI9TPufI3yyvQ7tB0Y8TJ29yOIsJCtPoMPWoa73 eJzfXypMtMvvytbzQL8CfrIo3HMTxFK1L/8SGiI8Se6+RxLyIsJ0TgbmMZipGmvV S3kzC8OfCduDxSotMVNbxUiPZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC04/XqM iV7N6U+2WLCAlzdtQ+9GMB8GA1UdIwQYMBaAFP5P2jlnAWwROsgHuEk0CsZSDwgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTU4MC9DN0NFMkUxMDdG OEQxMUVBQUQ4Q0Q1MUVDNEY5QUUwMi9fa19hT1djQmJCRTZ5QWU0U1RRS3hsSVBD QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19rX2FPV2NCYkJFNnlBZTRTVFFLeGxJUENBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTU4MC9DN0NFMkUxMDdGOEQxMUVBQUQ4Q0Q1MUVDNEY5QUUwMi9fa19hT1djQmJC RTZ5QWU0U1RRS3hsSVBDQUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPOvZhBwXhmrxgmyw4SjbcVh+dI2SW980l/lTstTiIjAkdZQ2r02HB 0t1VdwzbLDflrFO27pTGqO6QPtztAy3FYzNAx1vqKxVYnDEZNtONS7S+dcFISl11 nRvLRJs/K1nHLsVD8RHOTC9xOgWIO9liVugjv70y2tBSRfavnorsqCtntQZVz1TM ya0MOnMI25/GX69ynXGtv188HIxQEpmBJNvLMXKJr6chKfyNvKSK4EuY2TkkVciJ KenHqU3wOjApi/Wp3Og/IdW0lthlAMs0zXpYEiMg9NBPFES1N+5GiBNRMVfMPgPW YvzlWToLxOSuZBkUWm+mzv5njei6lRsf -----END CERTIFICATE-----Generated at Tue Oct 21 09:10:08 2025 by rpki-client