$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft File: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft (raw, json) Hash identifier: jC1qb0LZ62dz8pFJR+lvKz6BFIDYTBc3rqOuZAhZzJg= Subject key identifier: 13:DF:E4:35:C7:02:7B:5E:46:AD:D7:F1:EF:B5:AB:AB:CE:CA:C6:C2 Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 0FFE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft Manifest number: 0FC8 Signing time: Sat 18 Oct 2025 18:05:26 +0000 Manifest this update: Sat 18 Oct 2025 18:05:25 +0000 Manifest next update: Sat 25 Oct 2025 18:05:25 +0000 Files and hashes: 1: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl (hash: o6qZ/1BI4/GyB+Mhe0Gav6hhHOOe55r3KnPY16hpdpA=) 2: 4BF23558026D11EBB136622CC4F9AE02.roa (hash: QtpDimKOHqXsxnqa4q87zCBuPpMrfxyNN2d7cp4WlrA=) 3: B3876B1821C911EB991D562EC4F9AE02.roa (hash: 6uU1bRzcclFeMC/RnwQZxh3s9UKuJJHVwL7cdGjMFOc=) 4: B2B2930C21C911EB991D562EC4F9AE02.roa (hash: XWm8GaGIPPLP9AKtaT6KRszth65jZeSEF8vfSa7oAA0=) 5: 8663E8B6658A11E9930DC678C4F9AE02.roa (hash: PNhMIJG2WqhTSsHQs6Q3B5W+HPqAu/8Af4Ot4nkDDLQ=) 6: F98DEF9A231F11EB99F53580C4F9AE02.roa (hash: t18G/jUeuq8lptvTyxkqs2wnq4jb4g41EOSptQznrUs=) 7: E049FDF87A4511EBBB2D0A52C4F9AE02.roa (hash: Jk6V50ct0NhfCUNeq2rSB6SPY6PZ86y8Zd5FDESJ7kI=) 8: B490CD0621C911EB991D562EC4F9AE02.roa (hash: WNk4We2Ht/Om3rf3IbH7SVRsK901hQ7kL7sR1ONDJ8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:05:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4094 (0xffe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02, serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: Oct 18 18:05:25 2025 GMT Not After : Oct 25 18:05:25 2025 GMT Subject: CN=68f3d6e5-50bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:39:56:3e:1b:23:56:11:92:4e:0a:ca:26:54: 04:43:e9:f2:92:c1:b1:e3:6f:02:d9:db:d1:c7:7b: 5e:c1:86:5f:00:d8:22:de:7f:0b:63:13:ac:8b:13: 07:27:37:91:72:c3:04:77:6d:b7:94:28:b8:30:95: 16:5e:58:39:ba:82:2c:73:3b:50:3e:d8:38:9f:d1: a7:10:a5:f8:3f:64:77:c9:3f:a2:3c:b3:58:22:70: a6:8a:43:cf:3d:c0:d8:7c:f1:4d:81:88:4d:6b:b4: 16:4a:0f:dc:ba:2e:15:9c:2e:c8:ea:e0:6e:14:c5: 0d:f0:22:33:e6:5b:fe:f5:c0:91:d8:b6:3e:cf:32: 8e:4c:a8:ee:09:6f:6a:4e:60:b9:ef:d9:34:08:e3: 7f:a4:2a:f2:53:b9:50:8a:83:d4:37:70:3e:0f:43: d4:7b:6a:e8:6a:78:3c:6b:be:87:6b:46:ad:bb:cd: 8a:9a:91:01:e6:e8:b3:af:c9:4e:01:61:d2:ab:6b: d8:73:69:9a:ac:99:8a:58:eb:bc:65:76:ff:d9:f3: de:93:e9:21:dd:a3:65:13:82:a1:af:0d:a4:65:3c: c2:d0:59:5b:92:0c:03:fd:7b:de:e4:40:e1:2b:b9: 6a:79:47:38:d0:72:cf:24:2c:e4:08:c2:ea:17:14: c7:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:DF:E4:35:C7:02:7B:5E:46:AD:D7:F1:EF:B5:AB:AB:CE:CA:C6:C2 X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:16:08:7e:dd:22:52:4c:2c:dc:7b:82:ac:f2:b8:01:2e:0a: 74:57:73:d6:60:b8:8c:ff:ac:01:a7:b3:27:9c:a2:df:8e:65: ce:08:a0:9b:69:41:7b:79:62:6f:5d:eb:71:72:a2:73:36:46: 31:e8:34:eb:3f:5e:fc:c5:06:84:fa:14:0a:4a:a3:0c:0f:8b: ff:a6:8d:2c:29:be:54:9c:39:ec:e7:e3:34:c2:06:3e:b8:92: bd:93:f5:f6:32:e1:20:34:ba:e9:c5:5a:7b:ae:aa:28:9f:99: 45:d7:02:29:e8:21:00:bd:19:f5:a4:a7:94:b2:6d:ae:5d:3f: 30:e0:82:9d:27:a9:55:8f:71:f6:9e:7d:13:4d:0f:14:7d:93: a3:21:d5:2e:fc:4e:5f:70:48:f7:9a:84:bb:79:41:48:19:0b: 8b:9b:78:6c:57:e4:c1:90:18:88:5c:70:c0:0d:c4:3b:7b:a5: 04:33:56:f1:7b:ed:52:9f:84:48:eb:5f:81:a9:25:15:c1:e7: 7a:3a:a0:5b:e5:9f:f6:d1:a3:ee:a4:ae:ca:3a:c8:11:3d:ad: 55:1e:32:d0:be:98:1d:c9:8e:d8:a6:74:e0:4b:c1:20:67:49: f6:65:02:58:de:9c:a0:1e:f8:8b:d0:d9:79:3a:20:80:ba:fc: 5a:34:2e:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjUxMDE4MTgwNTI1WhcNMjUxMDI1MTgwNTI1WjAYMRYwFAYD VQQDEw02OGYzZDZlNS01MGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwjlWPhsjVhGSTgrKJlQEQ+nyksGx428C2dvRx3tewYZfANgi3n8LYxOsixMH JzeRcsMEd223lCi4MJUWXlg5uoIscztQPtg4n9GnEKX4P2R3yT+iPLNYInCmikPP PcDYfPFNgYhNa7QWSg/cui4VnC7I6uBuFMUN8CIz5lv+9cCR2LY+zzKOTKjuCW9q TmC579k0CON/pCryU7lQioPUN3A+D0PUe2roang8a76Ha0atu82KmpEB5uizr8lO AWHSq2vYc2marJmKWOu8ZXb/2fPek+kh3aNlE4Khrw2kZTzC0FlbkgwD/Xve5EDh K7lqeUc40HLPJCzkCMLqFxTHDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBPf5DXH AnteRq3X8e+1q6vOysbCMB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0YwMi9DQ0FCNTc1MDYzRjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JB WHBsMVJiQ05ONU52LXNSbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCWFgh+3SJSTCzce4Ks8rgBLgp0V3PWYLiM/6wBp7MnnKLfjmXOCKCb aUF7eWJvXetxcqJzNkYx6DTrP178xQaE+hQKSqMMD4v/po0sKb5UnDns5+M0wgY+ uJK9k/X2MuEgNLrpxVp7rqoon5lF1wIp6CEAvRn1pKeUsm2uXT8w4IKdJ6lVj3H2 nn0TTQ8UfZOjIdUu/E5fcEj3moS7eUFIGQuLm3hsV+TBkBiIXHDADcQ7e6UEM1bx e+1Sn4RI61+BqSUVwed6OqBb5Z/20aPupK7KOsgRPa1VHjLQvpgdyY7YpnTgS8Eg Z0n2ZQJY3pygHviL0Nl5OiCAuvxaNC7Z -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:29 2025 by rpki-client