$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft File: g71HreMCJZx1jHTIMLKebzpXc9s.mft (raw, json) Hash identifier: 8TtUDNnXmTc6BMbGJ+zh+F8zo5yWc51aXeC05VbIWTg= Subject key identifier: 8E:91:98:6A:F0:61:00:F8:B6:66:AB:2A:62:E2:44:71:67:F3:8D:24 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 1226 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft Manifest number: 120B Signing time: Sat 18 Oct 2025 17:40:33 +0000 Manifest this update: Sat 18 Oct 2025 17:40:32 +0000 Manifest next update: Sat 25 Oct 2025 17:40:32 +0000 Files and hashes: 1: g71HreMCJZx1jHTIMLKebzpXc9s.crl (hash: wTxmIvbzey0jIwvz47PIp7ayVJRoWqMHgq4zmO/6sRM=) 2: 9D003F28621711E9B8C69E15C4F9AE02.roa (hash: 9dqK7fwX1U+8A9fcOv7N2ng0+RyVg5lfklaoSqiStho=) 3: 09F041C675FB11EAB470A130C4F9AE02.roa (hash: RMsg5QWeiEkRgPY6Tmmzu/lfOLCSCEngacbP0E3B76I=) 4: 9C7048DC621711E9B8C69E15C4F9AE02.roa (hash: xRGejBtSvmSQiXiFTmSi8Viq6cXlkkmhK13khjlMJ6A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:40:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4646 (0x1226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2, serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Oct 18 17:40:32 2025 GMT Not After : Oct 25 17:40:32 2025 GMT Subject: CN=68f3d110-03e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ea:12:37:c2:79:c8:4e:12:7e:9f:dc:6e:65: 71:38:38:a5:df:9b:cc:84:b8:f3:3f:1a:a2:0f:3b: 8f:7a:ef:66:0d:64:4e:0c:24:c7:ec:bb:30:25:e4: 48:1c:09:32:f7:1c:89:57:ab:aa:3b:0d:cf:e0:cf: 22:a5:81:79:38:cd:c1:c1:44:40:7d:29:e7:20:a9: 53:71:e5:7f:b4:74:01:cc:93:4b:39:c2:e7:7a:de: 23:d1:d4:42:40:79:92:96:3f:52:e5:80:4e:f3:cf: f2:20:ac:83:f7:5d:88:5c:22:57:90:dc:c1:6f:d0: c3:95:a5:8a:b6:2e:11:b3:76:94:99:74:62:1b:49: ab:b1:35:79:ed:a5:ed:ba:13:5b:04:56:f6:ed:b6: 7c:72:9a:11:a4:9c:c2:5e:9c:a4:e1:9b:05:a3:02: 77:12:0e:39:20:45:ee:8c:e0:f9:ef:2f:75:7e:bc: 1e:3b:5d:ac:0f:b4:c6:83:89:9b:bb:17:5d:4a:96: b5:37:f9:13:bd:26:1b:4d:87:0a:e5:51:80:56:8c: c3:e3:f4:ff:ea:42:e2:a5:5b:86:0b:07:50:84:79: 9a:cb:dd:17:0b:ba:08:e2:eb:77:5a:e8:bf:be:81: a3:55:46:e4:55:26:26:32:7b:85:b0:8e:e7:4e:da: 2b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:91:98:6A:F0:61:00:F8:B6:66:AB:2A:62:E2:44:71:67:F3:8D:24 X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:49:bb:18:e4:61:5e:ae:3c:09:ce:58:f9:20:ad:5d:9d:39: 36:75:99:bb:d3:fa:de:68:f7:e7:52:32:df:22:85:a5:1d:bd: 1e:33:52:3a:5b:86:19:5b:44:c1:e7:96:5b:93:76:04:6f:01: b6:9d:04:31:df:19:df:8b:01:45:7a:be:61:fe:bc:0e:89:77: b4:c9:ec:2e:a7:0d:cf:a2:52:c8:27:c6:6e:bc:d8:dc:9c:91: a6:ef:63:51:cc:78:b9:d0:5b:64:4a:fc:70:03:0c:81:da:a2: e7:71:6f:07:b0:bc:95:a6:de:b8:05:aa:af:72:47:82:bc:a5: ea:fb:2f:0d:6f:34:a3:a5:db:71:9b:bf:b6:16:45:f6:05:4f: b9:a8:f5:df:63:0f:8c:20:fc:c1:da:a4:58:4f:4b:cc:1e:c1: f8:7f:d4:6d:14:6b:5d:36:7f:59:5f:f7:6f:91:b2:c3:5c:92: 19:cd:d7:f7:d7:08:87:fb:4d:40:52:34:75:12:f5:ca:c0:81: 18:59:e9:a7:c6:8a:65:67:fe:37:6e:44:28:a6:12:8d:5a:26: 58:db:ff:ea:19:d6:9c:d0:11:81:77:c9:c9:93:ac:0f:71:aa: 56:25:3e:8a:5a:f2:4e:4d:ee:99:33:04:10:8e:c9:ed:f7:a3: 88:c8:fe:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjUxMDE4MTc0MDMyWhcNMjUxMDI1MTc0MDMyWjAYMRYwFAYD VQQDEw02OGYzZDExMC0wM2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+oSN8J5yE4Sfp/cbmVxODil35vMhLjzPxqiDzuPeu9mDWRODCTH7LswJeRI HAky9xyJV6uqOw3P4M8ipYF5OM3BwURAfSnnIKlTceV/tHQBzJNLOcLnet4j0dRC QHmSlj9S5YBO88/yIKyD912IXCJXkNzBb9DDlaWKti4Rs3aUmXRiG0mrsTV57aXt uhNbBFb27bZ8cpoRpJzCXpyk4ZsFowJ3Eg45IEXujOD57y91frweO12sD7TGg4mb uxddSpa1N/kTvSYbTYcK5VGAVozD4/T/6kLipVuGCwdQhHmay90XC7oI4ut3Wui/ voGjVUbkVSYmMnuFsI7nTtor6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6RmGrw YQD4tmarKmLiRHFn840kMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzdGMi80OEVGRDE3Q0YxQTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0pa eDFqSFRJTUxLZWJ6cFhjOXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcSbsY5GFerjwJzlj5IK1dnTk2dZm70/reaPfnUjLfIoWlHb0eM1I6 W4YZW0TB55Zbk3YEbwG2nQQx3xnfiwFFer5h/rwOiXe0yewupw3PolLIJ8ZuvNjc nJGm72NRzHi50FtkSvxwAwyB2qLncW8HsLyVpt64BaqvckeCvKXq+y8NbzSjpdtx m7+2FkX2BU+5qPXfYw+MIPzB2qRYT0vMHsH4f9RtFGtdNn9ZX/dvkbLDXJIZzdf3 1wiH+01AUjR1EvXKwIEYWemnxoplZ/43bkQophKNWiZY2//qGdac0BGBd8nJk6wP capWJT6KWvJOTe6ZMwQQjsnt96OIyP65 -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:32 2025 by rpki-client