$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft File: v3H1vxFop4QFduAAbzu8ZfxINAs.mft (raw, json) Hash identifier: DuO5qYngbQ7Q1U7/fIEhSZ0LWRl9Zu81gqqNEdOzHn8= Subject key identifier: 95:05:0E:CF:76:8F:B2:41:5A:AB:40:5D:8E:ED:2B:D3:4D:94:C2:9C Authority key identifier: BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B Certificate issuer: /CN=A91ED596/serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Certificate serial: E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft Manifest number: DE Signing time: Sun 19 Oct 2025 08:29:53 +0000 Manifest this update: Sun 19 Oct 2025 08:29:52 +0000 Manifest next update: Sun 26 Oct 2025 08:29:52 +0000 Files and hashes: 1: v3H1vxFop4QFduAAbzu8ZfxINAs.crl (hash: rSVDMskSN4JakCdY9xm3UWrNmdZNqyObx4InD3EM3ls=) 2: 8580DC705AE311EF86351430C4F9AE02.roa (hash: 27On7VhpG5fhZmLnd0n/w+EKAhYgslmits5+QsN4KvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Validity Not Before: Oct 19 08:29:52 2025 GMT Not After : Oct 26 08:29:52 2025 GMT Subject: CN=68f4a180-5be1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:88:d2:5e:cb:0b:5e:5c:14:56:93:76:96:cb: ad:5a:61:15:35:5e:69:93:4e:e9:cd:34:16:cf:cf: 4b:60:0e:18:c5:b2:e7:4a:89:e0:c0:28:33:34:a6: ae:c6:8f:70:3e:23:b3:e8:e5:96:1c:01:cf:1f:bc: c2:ae:36:35:c6:10:2d:ab:e6:e6:e8:50:5f:1a:69: 41:99:f0:54:36:9b:de:7c:63:86:44:a5:3c:c7:cc: 66:00:41:0c:16:fa:c9:d2:cd:aa:d5:30:f2:c5:b5: b6:e7:99:6a:02:5a:f3:cd:08:71:03:56:bb:25:f1: 86:ca:70:12:0a:be:1f:8f:e7:ea:4d:12:01:48:f4: a7:a4:73:8d:d9:8e:a7:37:a6:f7:52:ae:e7:75:df: 06:9f:f3:93:ee:07:09:41:24:01:0a:72:13:e3:8a: 3a:f0:f6:00:f7:dc:58:df:2d:a8:cb:91:ed:05:9d: 52:41:7f:d6:34:45:38:de:51:24:a8:c2:fe:e5:07: ec:3e:88:04:01:10:b1:ae:11:55:1e:a2:01:08:16: f3:36:1a:54:2b:40:45:a8:43:a0:68:6e:ec:01:04: 52:ca:5f:79:69:dd:7f:ee:c0:12:78:5c:30:1d:5e: 23:71:93:ca:39:e0:20:ef:01:d7:ef:40:bc:72:45: cc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:05:0E:CF:76:8F:B2:41:5A:AB:40:5D:8E:ED:2B:D3:4D:94:C2:9C X509v3 Authority Key Identifier: keyid:BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:60:c2:85:28:f9:20:73:2f:af:d1:26:af:c6:34:a1:60:69: 5c:b7:e2:3d:0a:ad:79:6b:bc:85:e1:47:ad:0f:3f:a9:e6:df: 8b:5d:ae:c4:4e:92:fe:ab:33:ba:2d:cc:11:30:ae:33:36:76: 08:8d:fb:6a:da:42:4e:0f:95:72:b7:87:34:2d:fa:ac:75:1f: c2:8e:2e:b7:bd:8b:fa:fa:45:4a:c8:f6:b6:0a:aa:57:5c:d1: 16:b7:a1:6b:40:bc:ab:c8:18:cc:59:c8:fe:21:4e:0a:2d:c5: f9:fd:ba:be:56:c5:9c:3b:79:c4:aa:be:b4:81:7c:c4:ca:74: c0:b8:d6:9c:6f:e7:0f:20:e8:c1:fb:01:b0:41:05:b9:be:3a: 89:be:69:d9:4d:ee:20:e4:f9:9b:10:27:99:f4:5d:b7:9b:4d: d5:c4:95:b5:6b:2d:75:99:28:d9:72:35:e4:c9:b1:16:ae:87: cd:a6:42:aa:e9:81:0a:ac:05:2a:a7:a6:ac:be:38:da:aa:58: ea:cd:2b:6d:2b:6d:65:d4:e6:cf:15:16:50:61:91:b2:ac:68: ba:51:2b:ac:98:cd:2a:bd:64:ba:1f:89:78:2b:8e:4c:38:d8: 3b:ee:97:3c:2f:4b:7b:1b:fe:f7:1b:17:6d:13:a6:17:b2:41: d4:9d:80:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKEJGNzFGNUJGMTE2OEE3ODQwNTc2RTAwMDZGM0JCQzY1 RkM0ODM0MEIwHhcNMjUxMDE5MDgyOTUyWhcNMjUxMDI2MDgyOTUyWjAYMRYwFAYD VQQDEw02OGY0YTE4MC01YmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvojSXssLXlwUVpN2lsutWmEVNV5pk07pzTQWz89LYA4YxbLnSongwCgzNKau xo9wPiOz6OWWHAHPH7zCrjY1xhAtq+bm6FBfGmlBmfBUNpvefGOGRKU8x8xmAEEM FvrJ0s2q1TDyxbW255lqAlrzzQhxA1a7JfGGynASCr4fj+fqTRIBSPSnpHON2Y6n N6b3Uq7ndd8Gn/OT7gcJQSQBCnIT44o68PYA99xY3y2oy5HtBZ1SQX/WNEU43lEk qML+5QfsPogEARCxrhFVHqIBCBbzNhpUK0BFqEOgaG7sAQRSyl95ad1/7sASeFww HV4jcZPKOeAg7wHX70C8ckXMfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJUFDs92 j7JBWqtAXY7tK9NNlMKcMB8GA1UdIwQYMBaAFL9x9b8RaKeEBXbgAG87vGX8SDQL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wNTcyREQ4QTVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi92M0gxdnhGb3A0UUZkdUFBYnp1OFpmeElO QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3YzSDF2eEZvcDRRRmR1QUFienU4WmZ4SU5Bcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wNTcyREQ4QTVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi92M0gxdnhGb3A0 UUZkdUFBYnp1OFpmeElOQXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1YMKFKPkgcy+v0SavxjShYGlct+I9Cq15a7yF4UetDz+p5t+LXa7E TpL+qzO6LcwRMK4zNnYIjftq2kJOD5Vyt4c0LfqsdR/Cji63vYv6+kVKyPa2CqpX XNEWt6FrQLyryBjMWcj+IU4KLcX5/bq+VsWcO3nEqr60gXzEynTAuNacb+cPIOjB +wGwQQW5vjqJvmnZTe4g5PmbECeZ9F23m03VxJW1ay11mSjZcjXkybEWrofNpkKq 6YEKrAUqp6asvjjaqljqzSttK21l1ObPFRZQYZGyrGi6USusmM0qvWS6H4l4K45M ONg77pc8L0t7G/73GxdtE6YXskHUnYDV -----END CERTIFICATE-----Generated at Tue Oct 21 02:04:30 2025 by rpki-client