$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft File: rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft (raw, json) Hash identifier: bSLkels6NM5Y5DWKyErpPTSZwDch/DcWG9Reqnb9rEE= Subject key identifier: F0:EF:24:CC:69:91:7F:0A:AC:25:E7:0D:73:5F:0F:58:53:39:A9:39 Authority key identifier: AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 Certificate issuer: /CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Certificate serial: 09C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft Manifest number: 09B4 Signing time: Sat 18 Oct 2025 21:04:24 +0000 Manifest this update: Sat 18 Oct 2025 21:04:23 +0000 Manifest next update: Sat 25 Oct 2025 21:04:23 +0000 Files and hashes: 1: rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl (hash: vD2PcJp+7ogvzoQL8/G7YeKO3++rxk9NGtMcJ8uEaw0=) 2: 7AEEA290829E11F0975FC440C4F9AE02.roa (hash: ylXeGQVKEpyBpdJm+bvsrD7tk3lV9xXY1bBsN7fiPY0=) 3: E7F141609E9911EBB4117632C4F9AE02.roa (hash: nwk0Qb0D2pWgRwQM08AvCns/X8x+3fZwLOgEyevfH8w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2502 (0x9c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE735, serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Validity Not Before: Oct 18 21:04:23 2025 GMT Not After : Oct 25 21:04:23 2025 GMT Subject: CN=68f400d8-bbdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8b:5a:7d:80:12:69:a2:93:19:08:8c:ea:dc: 90:2d:91:ae:2f:b2:58:92:76:c5:bd:10:20:1f:ca: b9:59:cd:72:03:79:52:e4:38:8e:74:f5:79:9e:06: b5:a5:c2:b0:b6:aa:5e:95:04:7f:de:cf:57:e5:50: 35:b6:70:fc:e8:26:8a:14:e0:7d:1b:db:45:20:aa: 69:9d:e2:25:c6:85:e3:62:d2:b0:a8:61:c4:8d:dc: eb:a8:1d:16:52:95:34:4b:40:78:1d:5e:f5:38:e1: 4c:85:1d:a0:bc:19:3b:e4:da:d4:7f:c0:bd:1a:17: 3c:3f:26:ec:e4:7b:63:d7:34:2d:39:2a:b2:97:29: 25:89:06:a1:a6:fc:c8:9d:e8:f0:fd:63:8f:07:ec: c2:ed:d7:48:5e:07:b0:75:3d:05:89:63:63:9c:7a: f5:92:14:4d:f3:4d:33:75:b8:a2:91:f7:f1:0c:79: 0a:f8:d3:49:5e:6d:3b:14:9f:b3:9e:82:82:eb:bd: 03:ae:15:f9:12:bc:71:df:d3:d8:0d:d3:72:46:a3: 25:6c:85:2d:66:f7:df:86:e8:b7:e3:7e:25:87:fb: 6c:3b:0f:fc:64:14:72:1b:3b:e3:57:d1:a7:d8:25: ca:4e:23:4a:ec:4b:94:17:20:08:a6:65:03:88:5c: db:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:EF:24:CC:69:91:7F:0A:AC:25:E7:0D:73:5F:0F:58:53:39:A9:39 X509v3 Authority Key Identifier: keyid:AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:4c:a5:62:08:ae:5d:65:3b:41:3d:b4:20:a1:94:02:49:0c: 92:34:47:34:3d:5a:a5:84:c9:32:62:7a:ff:e6:54:c1:3d:fc: 59:c0:cc:8e:ef:a8:fb:5e:72:80:ad:19:0a:8f:10:fb:6e:36: 8a:e8:f1:47:a2:d0:14:22:1d:11:73:b9:df:1e:15:42:fb:d5: 37:17:fb:28:7d:96:d7:8f:75:05:20:70:24:cf:71:06:c1:ac: ca:24:11:e3:bb:02:57:ed:ab:11:d8:f2:33:49:0a:a3:14:c2: 27:73:4f:14:e5:0b:27:12:cd:c5:f4:6b:fa:9f:58:46:f5:e4: ff:de:b6:21:b1:7c:ca:78:0a:c7:b1:2d:25:5f:07:f3:fe:44: 5d:8b:d8:e7:c1:e5:38:2c:c0:1d:2b:b2:b7:d6:bb:11:09:f8: ae:49:1f:cb:38:ce:c2:f4:1b:1a:1b:93:35:54:df:b1:5d:cd: 3c:0d:2f:65:ef:a4:8f:38:e7:af:67:4c:af:1e:96:8f:d6:b5: 25:47:2d:31:c4:d6:40:e1:45:d9:5c:30:e0:55:cf:c7:03:bd: 3c:0a:1a:41:f6:dc:1b:a8:6c:e5:0f:fd:02:03:85:ca:61:c2: 2b:d9:3a:23:62:2b:c8:21:ee:a2:d7:47:1e:ae:53:06:40:6f: 61:07:b8:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU3MzUxMTAvBgNVBAUTKEFENzNBREI5MTQyMTM4NjJFRDhFMTRENzcwNjlGNDc0 RDgzQ0M4RjUwHhcNMjUxMDE4MjEwNDIzWhcNMjUxMDI1MjEwNDIzWjAYMRYwFAYD VQQDEw02OGY0MDBkOC1iYmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwItafYASaaKTGQiM6tyQLZGuL7JYknbFvRAgH8q5Wc1yA3lS5DiOdPV5nga1 pcKwtqpelQR/3s9X5VA1tnD86CaKFOB9G9tFIKppneIlxoXjYtKwqGHEjdzrqB0W UpU0S0B4HV71OOFMhR2gvBk75NrUf8C9Ghc8Pybs5Htj1zQtOSqylykliQahpvzI nejw/WOPB+zC7ddIXgewdT0FiWNjnHr1khRN800zdbiikffxDHkK+NNJXm07FJ+z noKC670DrhX5Erxx39PYDdNyRqMlbIUtZvffhui3434lh/tsOw/8ZBRyGzvjV9Gn 2CXKTiNK7EuUFyAIpmUDiFzbywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPDvJMxp kX8KrCXnDXNfD1hTOak5MB8GA1UdIwQYMBaAFK1zrbkUIThi7Y4U13Bp9HTYPMj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTczNS9FOEU2NjdDQTk0 QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9HTHRqaFRYY0duMGROZzh5 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYT3R1UlFoT0dMdGpoVFhjR24wZE5nOHlQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTczNS9FOEU2NjdDQTk0QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9H THRqaFRYY0duMGROZzh5UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC2TKViCK5dZTtBPbQgoZQCSQySNEc0PVqlhMkyYnr/5lTBPfxZwMyO 76j7XnKArRkKjxD7bjaK6PFHotAUIh0Rc7nfHhVC+9U3F/sofZbXj3UFIHAkz3EG wazKJBHjuwJX7asR2PIzSQqjFMInc08U5QsnEs3F9Gv6n1hG9eT/3rYhsXzKeArH sS0lXwfz/kRdi9jnweU4LMAdK7K31rsRCfiuSR/LOM7C9BsaG5M1VN+xXc08DS9l 76SPOOevZ0yvHpaP1rUlRy0xxNZA4UXZXDDgVc/HA708ChpB9twbqGzlD/0CA4XK YcIr2TojYivIIe6i10cerlMGQG9hB7ia -----END CERTIFICATE-----Generated at Mon Oct 20 16:04:22 2025 by rpki-client