$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft File: s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft (raw, json) Hash identifier: ivXkmFTYTFRMiyT1kNLUzH2OR2UO5YpaFPXwHYtQcGc= Subject key identifier: 89:4E:66:2C:69:8C:59:7A:47:3D:20:FA:AF:B0:F9:4F:06:41:EE:F7 Authority key identifier: B3:EF:A7:D6:AE:19:9D:14:58:2D:D4:EC:B9:16:3A:3C:9D:84:17:59 Certificate issuer: /CN=A91EF17A/serialNumber=B3EFA7D6AE199D14582DD4ECB9163A3C9D841759 Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft Manifest number: FD Signing time: Sun 19 Oct 2025 08:15:27 +0000 Manifest this update: Sun 19 Oct 2025 08:15:26 +0000 Manifest next update: Sun 26 Oct 2025 08:15:26 +0000 Files and hashes: 1: s--n1q4ZnRRYLdTsuRY6PJ2EF1k.crl (hash: Kx4q5T5gvfh1PiPxY6m4X7/3pHfMerCedS7N3jk8sP8=) 2: B4F165084F1F11EFA3B1F709C4F9AE02.roa (hash: 6g7DJTli/YH5hSeeCwQn1OlBs7GZnC1wNbHw8krPxSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.crl rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF17A, serialNumber=B3EFA7D6AE199D14582DD4ECB9163A3C9D841759 Validity Not Before: Oct 19 08:15:26 2025 GMT Not After : Oct 26 08:15:26 2025 GMT Subject: CN=68f49e1e-77ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ca:90:19:88:d8:14:8c:4d:db:72:4c:50:99: 89:15:98:e5:56:01:91:99:a2:db:2e:21:73:48:b5: 20:f9:b6:85:ac:aa:c2:04:c2:36:f6:a6:21:71:f3: 1a:65:9b:a3:47:46:f7:4d:dc:27:0c:46:5d:e6:e7: 29:c1:8f:31:ae:40:76:f8:98:4a:eb:62:86:80:0a: 9a:58:a2:fb:a6:7f:c3:cd:48:1d:7b:6c:76:5b:bb: c5:c9:94:f9:89:bc:50:9b:44:f8:d0:6f:aa:bb:dc: f3:d2:af:96:3c:13:12:22:9a:2f:9f:6f:4e:8b:96: 30:a5:e1:82:a3:6d:6b:4e:0f:fa:43:99:da:b9:30: 11:3e:87:94:ad:22:01:21:69:51:b5:3e:21:e2:8b: 70:31:75:20:00:4b:c2:98:c0:14:9b:67:ce:18:da: fd:a5:68:7c:8e:cf:21:93:9c:27:2f:39:6c:07:6f: b5:e6:30:0e:38:c1:43:32:e2:1d:c3:cc:0c:bd:25: 42:af:00:4b:60:f6:ce:83:d5:24:88:5f:6b:5c:2c: 7a:70:25:c3:e5:89:1b:d4:f5:64:6d:c1:39:bb:d5: ef:1e:a1:11:7f:dd:c1:41:da:42:46:e0:83:2e:c9: 98:7d:33:fc:ca:15:73:28:13:09:fb:13:9a:1b:f1: 31:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:4E:66:2C:69:8C:59:7A:47:3D:20:FA:AF:B0:F9:4F:06:41:EE:F7 X509v3 Authority Key Identifier: keyid:B3:EF:A7:D6:AE:19:9D:14:58:2D:D4:EC:B9:16:3A:3C:9D:84:17:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF17A/74BB24D23F5D11EF8BF7860EC4F9AE02/s--n1q4ZnRRYLdTsuRY6PJ2EF1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:4d:0d:fd:f4:6e:ae:70:ab:f9:5c:b2:5a:ad:a0:67:e3:c7: 40:db:33:b7:d6:07:ff:e7:11:15:46:c6:ae:98:36:06:a7:73: 5d:9b:6a:a0:fd:07:74:03:45:7d:7f:95:6f:10:11:73:44:c1: 12:23:c4:80:b1:bc:a2:af:15:f6:c1:a7:f7:d0:61:0e:fd:07: 86:31:91:ac:55:e8:6e:0a:02:0f:83:4f:e5:ff:01:2d:ba:1d: 93:bd:d9:83:3c:74:4d:73:3f:c5:50:07:8f:7c:62:04:a1:34: 0d:fd:4b:a5:05:ef:76:ac:89:cf:19:07:2a:52:31:41:d4:72: 5c:c1:d0:44:08:12:ab:e7:6d:10:fa:71:a6:64:45:b0:c2:c2: a1:37:70:9b:76:ef:38:e2:79:6a:69:b9:2c:a5:57:06:fa:90: cc:ad:cb:b3:29:42:33:b8:e3:73:9f:ba:10:c8:86:e3:74:ac: a2:8f:78:a4:5d:a9:a3:c6:bb:3d:a2:a6:87:1f:5e:ad:f2:5e: db:ba:bd:14:45:11:ae:74:79:85:e7:34:37:ae:44:f0:23:87: ed:0f:d0:0d:fa:62:c8:33:dd:50:0a:00:fe:4e:e4:22:3c:2d: 1e:ac:9b:27:a0:9e:1a:24:2c:07:ab:46:09:ed:b2:4f:22:2f: 8c:62:7b:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxN0ExMTAvBgNVBAUTKEIzRUZBN0Q2QUUxOTlEMTQ1ODJERDRFQ0I5MTYzQTND OUQ4NDE3NTkwHhcNMjUxMDE5MDgxNTI2WhcNMjUxMDI2MDgxNTI2WjAYMRYwFAYD VQQDEw02OGY0OWUxZS03N2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAosqQGYjYFIxN23JMUJmJFZjlVgGRmaLbLiFzSLUg+baFrKrCBMI29qYhcfMa ZZujR0b3TdwnDEZd5ucpwY8xrkB2+JhK62KGgAqaWKL7pn/DzUgde2x2W7vFyZT5 ibxQm0T40G+qu9zz0q+WPBMSIpovn29Oi5YwpeGCo21rTg/6Q5nauTARPoeUrSIB IWlRtT4h4otwMXUgAEvCmMAUm2fOGNr9pWh8js8hk5wnLzlsB2+15jAOOMFDMuId w8wMvSVCrwBLYPbOg9UkiF9rXCx6cCXD5Ykb1PVkbcE5u9XvHqERf93BQdpCRuCD LsmYfTP8yhVzKBMJ+xOaG/Ex2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlOZixp jFl6Rz0g+q+w+U8GQe73MB8GA1UdIwQYMBaAFLPvp9auGZ0UWC3U7LkWOjydhBdZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE3QS83NEJCMjREMjNG NUQxMUVGOEJGNzg2MEVDNEY5QUUwMi9zLS1uMXE0Wm5SUllMZFRzdVJZNlBKMkVG MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3MtLW4xcTRablJSWUxkVHN1Ulk2UEoyRUYxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjE3QS83NEJCMjREMjNGNUQxMUVGOEJGNzg2MEVDNEY5QUUwMi9zLS1uMXE0Wm5S UllMZFRzdVJZNlBKMkVGMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeTQ399G6ucKv5XLJaraBn48dA2zO31gf/5xEVRsaumDYGp3Ndm2qg /Qd0A0V9f5VvEBFzRMESI8SAsbyirxX2waf30GEO/QeGMZGsVehuCgIPg0/l/wEt uh2TvdmDPHRNcz/FUAePfGIEoTQN/UulBe92rInPGQcqUjFB1HJcwdBECBKr520Q +nGmZEWwwsKhN3Cbdu844nlqabkspVcG+pDMrcuzKUIzuONzn7oQyIbjdKyij3ik Xamjxrs9oqaHH16t8l7bur0URRGudHmF5zQ3rkTwI4ftD9AN+mLIM91QCgD+TuQi PC0erJsnoJ4aJCwHq0YJ7bJPIi+MYnsg -----END CERTIFICATE-----Generated at Tue Oct 21 11:40:32 2025 by rpki-client