$ rpki-client -vvf rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft File: -sKy5UFEW1tHxZ2uHeLd6IeauLs.mft (raw, json) Hash identifier: +dxJT0BTcDxPWPHekGR+nyA1eXdAPvWwdUZPiXPcgMQ= Subject key identifier: 3A:03:86:A0:29:CB:62:84:82:64:87:98:50:A6:A4:E7:BA:95:B0:2C Authority key identifier: FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB Certificate issuer: /CN=A91F11EE/serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft Manifest number: F7 Signing time: Sun 19 Oct 2025 08:14:53 +0000 Manifest this update: Sun 19 Oct 2025 08:14:52 +0000 Manifest next update: Sun 26 Oct 2025 08:14:52 +0000 Files and hashes: 1: -sKy5UFEW1tHxZ2uHeLd6IeauLs.crl (hash: d9WG+Lt8yOP0JnFXDjSUe0aGYbyZ5KiR4Xnsu/v15rM=) 2: 8B0201183E8911EFB2DCA846C4F9AE02.roa (hash: sQR4OxxnRQelaQye41JzM/+/uoADouWx9n3P5u34eoY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:14:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F11EE, serialNumber=FAC2B2E541445B5B47C59DAE1DE2DDE8879AB8BB Validity Not Before: Oct 19 08:14:52 2025 GMT Not After : Oct 26 08:14:52 2025 GMT Subject: CN=68f49dfd-e876 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:21:5d:a9:58:48:29:0f:a8:9f:65:0b:8b:6c: 4c:f0:40:82:df:b0:da:69:57:80:56:54:e0:9b:cb: 53:a4:7c:9a:2a:2f:39:f7:c3:47:c9:a2:92:59:f1: 03:4b:06:ab:c4:30:2a:8c:01:fb:c4:f2:d8:6c:49: 8d:f9:12:73:20:39:3a:4e:a0:9a:01:e2:27:33:e2: 74:1d:22:75:55:99:a0:39:07:81:13:40:c3:d7:99: f9:dc:95:75:6b:e8:b2:41:2e:0c:76:54:7c:02:0d: ab:f0:98:68:66:97:53:b0:52:f2:49:40:fc:fa:d7: b6:ad:1b:4b:ed:13:6c:a3:3f:0d:05:d6:56:08:9b: bb:86:41:54:5d:72:c0:e4:03:fc:e1:25:2a:14:a5: c9:2f:b0:21:a1:63:1d:c6:dc:96:fb:c5:62:38:e0: 12:26:63:c6:83:74:e3:da:45:9c:d9:56:81:c9:85: e0:87:3b:52:60:06:91:46:fc:98:1d:09:7d:2e:01: a6:ba:aa:f4:ea:eb:ab:1b:a2:4a:62:d5:29:10:11: 4f:30:c1:bc:e2:c0:35:10:dd:55:09:a4:16:75:ea: e7:63:f9:a0:91:8f:0d:b1:f1:3a:7f:ec:e3:67:cf: 6f:8a:ce:94:85:fb:fa:81:98:57:a3:16:27:50:0f: f3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:03:86:A0:29:CB:62:84:82:64:87:98:50:A6:A4:E7:BA:95:B0:2C X509v3 Authority Key Identifier: keyid:FA:C2:B2:E5:41:44:5B:5B:47:C5:9D:AE:1D:E2:DD:E8:87:9A:B8:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-sKy5UFEW1tHxZ2uHeLd6IeauLs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F11EE/E98A46523E8711EFAA24AA43C4F9AE02/-sKy5UFEW1tHxZ2uHeLd6IeauLs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:32:05:34:9e:10:1c:ea:c5:0d:b3:74:c5:4b:f4:1f:a3:33: 30:57:cf:72:98:bd:c0:6d:cb:e3:26:8c:b1:06:5c:a2:1d:3e: 43:c5:ac:b0:39:69:5f:b7:d0:7a:40:0d:c3:0b:34:9d:b7:3e: 73:86:66:40:d2:79:48:96:88:7c:7a:bd:c2:53:3a:25:ae:91: c7:a5:04:40:a7:bc:76:ff:8e:56:19:f9:7a:ac:5d:84:3c:be: e2:34:e2:9c:b8:f4:fe:fa:90:06:7a:6c:96:83:e6:3f:aa:17: da:b1:7d:3f:a4:a6:ed:fc:44:f7:a0:79:10:3a:16:ae:8b:5a: 95:86:48:ae:b4:01:9b:19:d7:72:21:5a:20:a9:41:93:06:60: 48:40:96:33:16:79:8a:18:b9:5b:73:89:fa:df:f6:c0:91:a8: 25:31:38:48:1a:be:67:c5:16:b5:05:69:d6:1e:86:26:5a:ae: f7:3c:5b:b8:2c:de:48:c7:3c:1c:fe:2e:9b:dc:92:b1:9e:fa: 6f:39:f9:ba:01:cb:33:73:78:72:ae:2d:7a:ff:f9:66:9b:d5: 32:f6:6b:70:4f:3a:b7:a5:36:ac:a9:58:9e:9f:96:45:98:f2: 02:fc:50:18:88:25:cf:83:80:07:1f:50:68:13:b9:b0:08:f4: 4c:47:68:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjExRUUxMTAvBgNVBAUTKEZBQzJCMkU1NDE0NDVCNUI0N0M1OURBRTFERTJEREU4 ODc5QUI4QkIwHhcNMjUxMDE5MDgxNDUyWhcNMjUxMDI2MDgxNDUyWjAYMRYwFAYD VQQDEw02OGY0OWRmZC1lODc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSFdqVhIKQ+on2ULi2xM8ECC37DaaVeAVlTgm8tTpHyaKi8598NHyaKSWfED SwarxDAqjAH7xPLYbEmN+RJzIDk6TqCaAeInM+J0HSJ1VZmgOQeBE0DD15n53JV1 a+iyQS4MdlR8Ag2r8JhoZpdTsFLySUD8+te2rRtL7RNsoz8NBdZWCJu7hkFUXXLA 5AP84SUqFKXJL7AhoWMdxtyW+8ViOOASJmPGg3Tj2kWc2VaByYXghztSYAaRRvyY HQl9LgGmuqr06uurG6JKYtUpEBFPMMG84sA1EN1VCaQWdernY/mgkY8NsfE6f+zj Z89vis6Uhfv6gZhXoxYnUA/z4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDoDhqAp y2KEgmSHmFCmpOe6lbAsMB8GA1UdIwQYMBaAFPrCsuVBRFtbR8Wdrh3i3eiHmri7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTFFRS9FOThBNDY1MjNF ODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcxdEh4WjJ1SGVMZDZJZWF1 THMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1zS3k1VUZFVzF0SHhaMnVIZUxkNkllYXVMcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTFFRS9FOThBNDY1MjNFODcxMUVGQUEyNEFBNDNDNEY5QUUwMi8tc0t5NVVGRVcx dEh4WjJ1SGVMZDZJZWF1THMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOMgU0nhAc6sUNs3TFS/QfozMwV89ymL3AbcvjJoyxBlyiHT5Dxayw OWlft9B6QA3DCzSdtz5zhmZA0nlIloh8er3CUzolrpHHpQRAp7x2/45WGfl6rF2E PL7iNOKcuPT++pAGemyWg+Y/qhfasX0/pKbt/ET3oHkQOhaui1qVhkiutAGbGddy IVogqUGTBmBIQJYzFnmKGLlbc4n63/bAkaglMThIGr5nxRa1BWnWHoYmWq73PFu4 LN5Ixzwc/i6b3JKxnvpvOfm6Acszc3hyri16//lmm9Uy9mtwTzq3pTasqVien5ZF mPIC/FAYiCXPg4AHH1BoE7mwCPRMR2ij -----END CERTIFICATE-----Generated at Mon Oct 20 21:47:16 2025 by rpki-client