$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft File: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft (raw, json) Hash identifier: srpef2gTmN3v/grNA2KxqHwnFmRoz99peiRyXdYE22A= Subject key identifier: E1:C8:01:87:4F:79:A5:27:59:6E:13:FF:A4:FE:F7:C3:51:D1:39:2C Authority key identifier: 6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 Certificate issuer: /CN=A91EAE3D/serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Certificate serial: 14C2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft Manifest number: 14AE Signing time: Sat 18 Oct 2025 17:21:49 +0000 Manifest this update: Sat 18 Oct 2025 17:21:49 +0000 Manifest next update: Sat 25 Oct 2025 17:21:49 +0000 Files and hashes: 1: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl (hash: 1Qj3VGd/4W2lqjOqTp2uUyJRH3arYganvJEcyaGdysA=) 2: F693F2689CB811EB97F77E14C4F9AE02.roa (hash: U3tQJQlcyfHM4FE2g1sFZHo1n5O210FCbrxqZ5WoAEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5314 (0x14c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Validity Not Before: Oct 18 17:21:49 2025 GMT Not After : Oct 25 17:21:49 2025 GMT Subject: CN=68f3ccad-e4b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4a:2b:a6:83:d9:26:58:fd:82:15:bb:65:bd: 4a:d8:c0:fc:db:a1:8b:cc:e9:4f:50:a6:52:3b:ba: df:d5:02:4c:34:ae:58:fd:7b:f7:1a:b0:17:42:02: 78:fa:67:ef:37:71:39:9b:fd:af:1d:9a:b6:75:39: c7:e5:bf:12:44:62:73:cc:8c:61:e4:37:f0:b3:01: bc:e3:7f:70:4a:3b:72:f8:b5:5c:e4:46:d3:64:32: 3b:d9:25:3e:3f:76:a0:2f:7f:fc:26:50:a8:c4:05: ba:8f:d1:45:e2:45:8f:1a:ba:fb:f9:f0:c2:b6:9b: 07:e5:2e:9a:13:ff:bf:fb:78:47:77:99:f3:a7:22: e3:b0:bc:fa:ce:5f:ec:33:6e:69:65:cb:ce:61:5c: bf:d5:b6:56:28:f1:28:23:4c:c7:73:40:f1:d7:83: c2:f3:d4:83:49:d8:a6:3c:1f:60:bc:95:b3:0f:1c: 82:22:e5:32:5e:e2:aa:db:62:e6:90:6e:9d:88:1e: 9a:46:9f:d4:8b:9a:95:81:f8:8c:e4:62:e7:62:ff: 00:bc:d6:cb:9e:4c:ce:14:44:af:6d:30:d8:8e:79: d4:3d:1e:34:06:29:b3:ee:a3:80:91:c2:93:a1:db: 20:e1:ef:d2:26:87:4e:55:d6:9a:de:06:88:bb:e2: d9:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:C8:01:87:4F:79:A5:27:59:6E:13:FF:A4:FE:F7:C3:51:D1:39:2C X509v3 Authority Key Identifier: keyid:6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:70:a4:0c:fd:88:bf:d4:94:b6:96:75:19:5f:84:35:d2:2a: 15:d0:06:06:2a:d8:6b:30:a3:c3:ee:6a:e1:7f:76:43:7f:31: c2:68:5d:58:7e:25:f4:b2:d5:b2:19:35:da:ec:a4:9d:c6:61: 42:87:84:63:8c:e9:4a:b9:0f:90:7c:8c:b5:eb:af:a0:b1:ad: 18:82:ba:63:b1:e4:8e:6c:80:75:7d:03:37:f7:8a:ee:3f:55: 7a:90:fa:8e:cb:0a:1a:2c:a1:5a:0f:0b:e6:f1:86:6a:45:4e: 98:69:05:ea:63:6d:1d:06:7b:c7:a7:c5:64:46:a2:5b:74:c9: e3:b6:c8:a1:56:46:4e:87:78:f1:87:80:29:72:a2:93:ac:9d: 11:d1:07:90:e4:12:ba:7c:56:a2:05:55:be:08:cf:44:fb:67: af:6f:54:87:48:b2:3b:33:0c:cc:60:69:a3:a1:49:ce:60:55: c0:bb:c9:65:84:64:85:24:4c:d5:02:bc:29:45:ce:0b:ff:22: 7f:b7:05:7b:b0:e1:f3:36:87:fa:01:3d:85:5f:5f:0a:c1:08: 94:c7:cc:c3:ae:d8:1a:ff:bd:df:13:88:dd:3b:74:e0:f6:91: a0:17:d8:7d:ef:7e:6b:24:d4:1e:51:f7:3f:0a:aa:87:a8:54: 20:dc:ee:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKDZCNTY3Qzg0M0U0MjUyM0UwRTVCNjRGNjRBMEYyQUUw NTUxN0JCNzAwHhcNMjUxMDE4MTcyMTQ5WhcNMjUxMDI1MTcyMTQ5WjAYMRYwFAYD VQQDEw02OGYzY2NhZC1lNGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEorpoPZJlj9ghW7Zb1K2MD826GLzOlPUKZSO7rf1QJMNK5Y/Xv3GrAXQgJ4 +mfvN3E5m/2vHZq2dTnH5b8SRGJzzIxh5DfwswG8439wSjty+LVc5EbTZDI72SU+ P3agL3/8JlCoxAW6j9FF4kWPGrr7+fDCtpsH5S6aE/+/+3hHd5nzpyLjsLz6zl/s M25pZcvOYVy/1bZWKPEoI0zHc0Dx14PC89SDSdimPB9gvJWzDxyCIuUyXuKq22Lm kG6diB6aRp/Ui5qVgfiM5GLnYv8AvNbLnkzOFESvbTDYjnnUPR40Bimz7qOAkcKT odsg4e/SJodOVdaa3gaIu+LZ3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHIAYdP eaUnWW4T/6T+98NR0TksMB8GA1UdIwQYMBaAFGtWfIQ+QlI+Dltk9koPKuBVF7tw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC84RUY0MkE0Njc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1VqNE9XMlQyU2c4cTRGVVh1 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ExWjhoRDVDVWo0T1cyVDJTZzhxNEZVWHUzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUzRC84RUY0MkE0Njc1REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1Vq NE9XMlQyU2c4cTRGVVh1M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLcKQM/Yi/1JS2lnUZX4Q10ioV0AYGKthrMKPD7mrhf3ZDfzHCaF1Y fiX0stWyGTXa7KSdxmFCh4RjjOlKuQ+QfIy166+gsa0YgrpjseSObIB1fQM394ru P1V6kPqOywoaLKFaDwvm8YZqRU6YaQXqY20dBnvHp8VkRqJbdMnjtsihVkZOh3jx h4ApcqKTrJ0R0QeQ5BK6fFaiBVW+CM9E+2evb1SHSLI7MwzMYGmjoUnOYFXAu8ll hGSFJEzVArwpRc4L/yJ/twV7sOHzNof6AT2FX18KwQiUx8zDrtga/73fE4jdO3Tg 9pGgF9h9735rJNQeUfc/CqqHqFQg3O7P -----END CERTIFICATE-----Generated at Mon Oct 20 17:01:33 2025 by rpki-client