$ rpki-client -vvf rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft File: iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft (raw, json) Hash identifier: G8/IXv/M4OgZ8/sjdm/dRJOoMfs5UPi2HM+Cnf/W5Ck= Subject key identifier: 6F:72:E8:A2:D9:C7:4A:C7:7D:CC:47:52:F3:FB:B8:88:F2:F7:D4:36 Authority key identifier: 89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE Certificate issuer: /CN=A91F40E0/serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Certificate serial: 27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft Manifest number: 24 Signing time: Sun 19 Oct 2025 11:18:38 +0000 Manifest this update: Sun 19 Oct 2025 11:18:37 +0000 Manifest next update: Sun 26 Oct 2025 11:18:37 +0000 Files and hashes: 1: iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl (hash: jR6ATBMBaipi6xXY0evoWl6cPXBVZRrd1KCHf3avz0w=) 2: 399480C4ACD011F08828DD7BC4F9AE02.roa (hash: yI8N6F4qsuPIqNv8+UqyC5GcVGdjbU6jQ0lT/VBamLY=) 3: 7C22B5E6ACD011F0921D9C7CC4F9AE02.roa (hash: q8Z6X3DeoMVrth4Q8UYf9kXqa/5qh/fwxwMPWXC7Eug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:18:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F40E0, serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Validity Not Before: Oct 19 11:18:37 2025 GMT Not After : Oct 26 11:18:37 2025 GMT Subject: CN=68f4c90e-ce50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:db:51:29:33:52:6b:b6:ee:c2:38:6e:bb:cd: 60:07:47:2a:1d:92:f5:a9:80:70:97:17:a1:a1:33: 52:1e:53:35:7e:16:57:2e:8e:8a:91:88:66:be:b5: a0:01:5c:98:2d:c0:32:38:de:40:6c:6f:03:19:ad: 9f:ab:3f:73:78:96:cf:91:ff:b8:38:a7:c1:0d:f1: bd:81:e6:6b:33:69:c9:8d:43:4b:b7:cc:bf:2f:84: e1:60:b7:bc:53:d7:55:ef:ad:d5:af:b6:26:df:2c: 78:fd:8f:9a:72:c5:50:d3:5e:63:f3:f6:f6:45:18: 9b:3b:cb:34:3e:d7:42:0a:78:07:3c:f7:ba:2f:01: f5:cc:e8:f3:0c:07:dc:35:3a:74:ac:ad:c8:65:1f: 79:b2:73:12:97:c6:1c:fb:a6:30:38:bb:67:69:75: eb:a9:3f:a8:64:fe:4b:a4:46:1f:d9:ea:9e:cc:cf: 0b:be:3d:e5:55:a0:56:73:a3:2a:49:15:f4:7a:a2: ef:40:2a:16:bb:29:37:6d:93:92:e9:72:ff:c2:ab: 15:bd:bb:65:5c:8e:b1:a0:6e:25:4b:63:55:39:68: c0:f1:40:1e:1a:bb:3a:2a:9a:7b:61:d9:8c:cc:87: b4:8d:bf:d2:3c:41:54:39:e7:4b:f1:9d:b1:90:5c: a3:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:72:E8:A2:D9:C7:4A:C7:7D:CC:47:52:F3:FB:B8:88:F2:F7:D4:36 X509v3 Authority Key Identifier: keyid:89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:18:00:1d:90:e7:4b:8d:c5:43:b1:03:18:a2:85:bc:66:6b: 7a:68:89:1c:22:2f:87:ef:0d:30:38:f1:50:24:2d:4f:42:88: a0:45:10:6e:0e:6f:ff:39:96:86:d1:76:3f:a7:df:e5:62:0a: 7c:a0:13:71:c0:88:56:78:f8:0c:12:03:49:58:03:39:27:6f: 0a:21:5c:b3:04:d0:cd:67:e2:b6:18:68:07:ae:14:7b:fa:71: 98:fd:2d:c3:18:fd:d3:9c:fd:5c:49:cf:c5:52:90:b0:10:41: 6e:ee:b2:af:fc:2c:fa:81:9f:7c:09:24:58:f8:ac:ae:25:21: 70:e9:bd:36:f2:1c:2d:7c:d9:9a:ba:28:d8:0b:20:3a:f6:e8: 5c:b8:41:5b:b0:1e:dd:84:90:a1:db:88:0f:fc:75:65:99:d4: 16:e0:d0:9a:7a:69:fe:8f:d2:91:17:ae:06:97:17:73:43:b9: 1d:a5:fd:f9:f8:b6:29:c6:47:e3:59:fe:e1:6a:de:62:90:32: 14:cf:1b:91:dd:af:6c:23:a0:aa:4f:00:71:ee:f8:9e:d0:07: 2f:99:d6:81:50:05:ee:59:b6:cd:67:64:67:c5:f7:70:33:2a: a4:d3:c2:ff:ae:9e:8f:d7:d5:e4:e4:e3:50:78:23:de:cf:0c: 62:a4:8c:52 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDBFMDExMC8GA1UEBRMoODk3MDc3QjcxRjJDNUFFRERFNkMxREQ0OTU0N0RDQzk5 NTJDREFCRTAeFw0yNTEwMTkxMTE4MzdaFw0yNTEwMjYxMTE4MzdaMBgxFjAUBgNV BAMTDTY4ZjRjOTBlLWNlNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC221EpM1Jrtu7COG67zWAHRyodkvWpgHCXF6GhM1IeUzV+FlcujoqRiGa+taAB XJgtwDI43kBsbwMZrZ+rP3N4ls+R/7g4p8EN8b2B5mszacmNQ0u3zL8vhOFgt7xT 11XvrdWvtibfLHj9j5pyxVDTXmPz9vZFGJs7yzQ+10IKeAc897ovAfXM6PMMB9w1 OnSsrchlH3mycxKXxhz7pjA4u2dpdeupP6hk/kukRh/Z6p7Mzwu+PeVVoFZzoypJ FfR6ou9AKha7KTdtk5Lpcv/CqxW9u2VcjrGgbiVLY1U5aMDxQB4auzoqmnth2YzM h7SNv9I8QVQ550vxnbGQXKMfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUb3LootnH Ssd9zEdS8/u4iPL31DYwHwYDVR0jBBgwFoAUiXB3tx8sWu3ebB3UlUfcyZUs2r4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0MEUwLzNGQkI1RTA0N0I1 MzExRjA5QjU0ODQ1RkM0RjlBRTAyL2lYQjN0eDhzV3UzZWJCM1VsVWZjeVpVczJy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVhCM3R4OHNXdTNlYkIzVWxVZmN5WlVzMnI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0 MEUwLzNGQkI1RTA0N0I1MzExRjA5QjU0ODQ1RkM0RjlBRTAyL2lYQjN0eDhzV3Uz ZWJCM1VsVWZjeVpVczJyNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKYYAB2Q50uNxUOxAxiihbxma3poiRwiL4fvDTA48VAkLU9CiKBFEG4O b/85lobRdj+n3+ViCnygE3HAiFZ4+AwSA0lYAzknbwohXLME0M1n4rYYaAeuFHv6 cZj9LcMY/dOc/VxJz8VSkLAQQW7usq/8LPqBn3wJJFj4rK4lIXDpvTbyHC182Zq6 KNgLIDr26Fy4QVuwHt2EkKHbiA/8dWWZ1Bbg0Jp6af6P0pEXrgaXF3NDuR2l/fn4 tinGR+NZ/uFq3mKQMhTPG5Hdr2wjoKpPAHHu+J7QBy+Z1oFQBe5Zts1nZGfF93Az KqTTwv+uno/X1eTk41B4I97PDGKkjFI= -----END CERTIFICATE-----Generated at Tue Oct 21 02:14:38 2025 by rpki-client