$ rpki-client -vvf rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft File: IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft (raw, json) Hash identifier: Fsw2jOyPT3wtt65NqXDlAWtb316XGsyXphGnOH8Pd+4= Subject key identifier: 3E:EE:E5:71:34:C3:9F:08:29:2A:5F:D5:28:5F:30:39:EE:43:E3:FC Authority key identifier: 21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B Certificate issuer: /CN=A91E96D9/serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Certificate serial: 089D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft Manifest number: 0868 Signing time: Sat 18 Oct 2025 21:56:34 +0000 Manifest this update: Sat 18 Oct 2025 21:56:33 +0000 Manifest next update: Sat 25 Oct 2025 21:56:33 +0000 Files and hashes: 1: IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl (hash: Q/JoW/rfTl6fJrkBlbuaTmyvVbpqFULbPZK++lmRnOM=) 2: EF40C4AC404611EFA2014651C4F9AE02.roa (hash: czaYuAZrmltxjeFq6mD06OZKMChDyKz2TsFDBFMIxYw=) 3: 4A06FF10FF2711EAB7D5F235C4F9AE02.roa (hash: IR0gL9HuGQPasCSDeDXOONGQSnX5FqddD0h9jerJFTk=) 4: C8C64A4AED4D11EA895BC037C4F9AE02.roa (hash: RgPF5melWGZf5AFZ9hv+NJPKC/EOsjcNRxGMLnUAhvk=) 5: 35D16082404911EFBC4C610EC4F9AE02.roa (hash: CZyYnpg8fZRv7/01XkAyfUiNYVCaEIGt11t+Ww7CLyk=) 6: BAEB4B28FBDF11EA8B73595BC4F9AE02.roa (hash: 5tsj3TAsFxb8qTqVXGn9He+Eq077vpR4YIaSiSHaTqQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:56:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2205 (0x89d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E96D9, serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Validity Not Before: Oct 18 21:56:33 2025 GMT Not After : Oct 25 21:56:33 2025 GMT Subject: CN=68f40d11-690f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2e:e4:c9:11:37:5c:28:3a:fa:14:39:a3:40: ee:a5:a8:fa:fd:5c:7b:c1:d9:b6:fa:ca:df:c3:e6: 93:2f:46:a3:0a:a2:72:f8:a8:29:c1:00:ff:00:80: 5c:1e:67:f9:bd:a3:77:5d:20:8e:31:3c:6e:4b:cc: 1f:50:99:60:88:e0:1f:e5:75:f5:99:97:0c:a6:be: 57:12:70:82:45:3a:82:e2:f7:f8:36:c1:ff:ca:30: bf:3b:1b:c8:6c:f5:de:aa:fc:20:05:36:d8:07:a3: 4b:b9:ce:1a:4d:4f:1e:5a:86:4d:67:41:6f:d4:81: c1:4b:cf:bc:8e:d6:c2:bd:c6:cb:17:aa:60:d6:fe: a3:79:96:dd:e6:b1:56:99:08:3b:f7:1b:a1:df:4b: d8:99:71:dd:2a:b5:55:2b:6f:27:07:bd:6f:6c:4a: b9:8a:4c:79:db:c5:8b:45:cb:76:6a:7e:d2:66:c8: 9a:e4:25:1e:0b:5a:b2:02:f3:98:7d:85:b3:1f:5f: 3e:e8:2f:a7:b2:c7:14:41:f3:c7:72:c7:ab:be:c7: 69:7c:08:63:4c:b3:24:39:ab:fd:97:bf:8a:62:47: c0:0d:f6:42:9c:9e:d6:b5:c2:27:b3:ec:7d:3f:b6: 9e:aa:25:60:df:bd:90:52:f8:31:86:5a:82:ec:65: 88:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:EE:E5:71:34:C3:9F:08:29:2A:5F:D5:28:5F:30:39:EE:43:E3:FC X509v3 Authority Key Identifier: keyid:21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:e9:dc:38:0a:cb:3c:30:75:f5:4f:9a:c1:a0:97:a6:9b:f3: b0:3a:ae:07:d6:a9:ff:34:98:e9:94:bd:17:f7:33:38:6d:15: 6d:6c:a0:72:05:5e:f8:59:3a:91:88:70:7a:d4:3f:18:61:8d: 1e:fb:e7:e1:e5:25:45:be:71:43:75:5a:b1:9e:d4:d9:33:61: fb:e4:7d:54:88:00:52:05:7a:5d:74:78:d9:4c:7b:de:8d:f8: 88:15:de:54:0b:5c:7c:b6:6e:e3:25:bd:dd:7d:d6:f4:d2:29: 3b:c7:8a:86:1d:57:de:94:e9:f8:e9:54:02:2e:e8:60:a4:3d: 2e:dd:b8:57:41:b6:00:b4:88:50:6c:c6:d5:0c:82:9f:c6:90: 56:55:3e:b4:7b:60:db:df:67:d7:e1:10:3c:38:94:90:ae:c0: 43:a8:53:82:6a:95:ec:90:bd:fd:36:2b:68:bc:ad:97:0d:97: c9:77:51:08:16:83:f3:04:ea:56:5b:06:e9:a8:b2:03:30:a7: c6:65:c9:17:72:0c:7d:cd:11:b7:63:69:42:26:4c:eb:e6:ff: 34:24:ae:88:14:63:d1:ed:95:c7:34:b3:f3:0a:42:7f:6b:05: aa:b6:10:c1:67:8f:10:58:f3:4a:1b:1e:e2:92:dd:7e:a6:1d: 6f:10:1b:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2RDkxMTAvBgNVBAUTKDIxOUVBNjNDNkFDOTY2RERCMjg1ODg2QkQ3MTFDNzhB MTRERjUxMkIwHhcNMjUxMDE4MjE1NjMzWhcNMjUxMDI1MjE1NjMzWjAYMRYwFAYD VQQDEw02OGY0MGQxMS02OTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtS7kyRE3XCg6+hQ5o0Dupaj6/Vx7wdm2+srfw+aTL0ajCqJy+KgpwQD/AIBc Hmf5vaN3XSCOMTxuS8wfUJlgiOAf5XX1mZcMpr5XEnCCRTqC4vf4NsH/yjC/OxvI bPXeqvwgBTbYB6NLuc4aTU8eWoZNZ0Fv1IHBS8+8jtbCvcbLF6pg1v6jeZbd5rFW mQg79xuh30vYmXHdKrVVK28nB71vbEq5ikx528WLRct2an7SZsia5CUeC1qyAvOY fYWzH18+6C+nsscUQfPHcservsdpfAhjTLMkOav9l7+KYkfADfZCnJ7WtcIns+x9 P7aeqiVg372QUvgxhlqC7GWIoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD7u5XE0 w58IKSpf1ShfMDnuQ+P8MB8GA1UdIwQYMBaAFCGepjxqyWbdsoWIa9cRx4oU31Er MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTZEOS84MERGREVDMEU1 REQxMUVBQjI0NjhENjVDNEY5QUUwMi9JWjZtUEdySlp0MnloWWhyMXhISGloVGZV U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0laNm1QR3JKWnQyeWhZaHIxeEhIaWhUZlVTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OTZEOS84MERGREVDMEU1REQxMUVBQjI0NjhENjVDNEY5QUUwMi9JWjZtUEdySlp0 MnloWWhyMXhISGloVGZVU3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAR6dw4Css8MHX1T5rBoJemm/OwOq4H1qn/NJjplL0X9zM4bRVtbKBy BV74WTqRiHB61D8YYY0e++fh5SVFvnFDdVqxntTZM2H75H1UiABSBXpddHjZTHve jfiIFd5UC1x8tm7jJb3dfdb00ik7x4qGHVfelOn46VQCLuhgpD0u3bhXQbYAtIhQ bMbVDIKfxpBWVT60e2Db32fX4RA8OJSQrsBDqFOCapXskL39NitovK2XDZfJd1EI FoPzBOpWWwbpqLIDMKfGZckXcgx9zRG3Y2lCJkzr5v80JK6IFGPR7ZXHNLPzCkJ/ awWqthDBZ48QWPNKGx7ikt1+ph1vEBut -----END CERTIFICATE-----Generated at Mon Oct 20 03:55:39 2025 by rpki-client