$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft File: ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft (raw, json) Hash identifier: wlU3qvv5LG+M0cX93XG1PeMcvXrnjwxas5eq2l2qaA4= Subject key identifier: F4:9C:52:06:4A:2A:C1:57:62:C4:28:F4:83:41:42:0D:25:7D:61:97 Authority key identifier: 13:15:70:B4:53:5F:84:03:02:53:0D:D1:31:74:42:31:63:09:C1:77 Certificate issuer: /CN=A91F89D9/serialNumber=131570B4535F840302530DD1317442316309C177 Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExVwtFNfhAMCUw3RMXRCMWMJwXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft Manifest number: D0 Signing time: Sun 19 Oct 2025 08:46:32 +0000 Manifest this update: Sun 19 Oct 2025 08:46:32 +0000 Manifest next update: Sun 26 Oct 2025 08:46:32 +0000 Files and hashes: 1: ExVwtFNfhAMCUw3RMXRCMWMJwXc.crl (hash: qG6LkNe5rKvfUGtrmM1lEe/sWbYnLbU63h3OOmZzTIs=) 2: CDD43C182FFB11F099B57A7CC4F9AE02.roa (hash: oPt/hUSuzgl3vf6IekNSVwLM4HNHGT76iBnF/i7Fi6Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.crl rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExVwtFNfhAMCUw3RMXRCMWMJwXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:46:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89D9, serialNumber=131570B4535F840302530DD1317442316309C177 Validity Not Before: Oct 19 08:46:32 2025 GMT Not After : Oct 26 08:46:32 2025 GMT Subject: CN=68f4a568-f1a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:29:84:d3:b6:76:f6:21:3f:a8:cf:80:7b:07: a3:95:fb:6b:35:5b:13:cb:8d:2b:c2:39:aa:67:23: 73:4e:13:91:18:87:92:59:77:fc:54:e3:63:ae:77: 9c:31:02:e0:55:44:90:a6:ed:20:1d:7a:ce:1f:02: 80:fb:92:ea:88:1e:93:aa:03:8f:26:e8:f9:d2:00: 22:9e:fb:ba:34:c9:de:68:ac:0f:9e:af:b3:42:79: b4:53:c0:cb:1c:51:58:37:1c:45:42:e4:e1:a2:5a: ba:34:aa:71:bf:94:12:8d:86:20:52:eb:95:12:14: 8c:35:72:1f:04:71:d0:fe:6f:52:e2:78:d6:74:2d: e8:f4:bd:27:04:36:70:33:d4:c5:78:be:d7:41:3f: f7:0c:c8:08:ef:1e:04:0a:8e:2e:a7:63:eb:9b:84: 0e:89:83:7f:63:9f:88:c2:68:99:21:9e:85:d0:1c: 6e:20:1b:2a:94:6c:ef:06:48:b1:cf:c5:9a:bc:30: 2d:2b:8e:69:50:10:1f:f5:7e:ca:68:62:ae:56:41: 36:64:1a:ac:d3:c4:5b:20:ab:47:63:8a:d6:0a:cb: 84:40:a6:b5:d6:d0:0d:5a:ed:52:a5:13:b1:d8:c1: 2a:71:32:26:6f:7d:63:71:06:99:ca:ed:ad:fa:93: a7:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:9C:52:06:4A:2A:C1:57:62:C4:28:F4:83:41:42:0D:25:7D:61:97 X509v3 Authority Key Identifier: keyid:13:15:70:B4:53:5F:84:03:02:53:0D:D1:31:74:42:31:63:09:C1:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ExVwtFNfhAMCUw3RMXRCMWMJwXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89D9/F56037A66F5C11EF835A7B66C4F9AE02/ExVwtFNfhAMCUw3RMXRCMWMJwXc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:62:3b:5c:f8:75:62:52:e7:fd:b5:e2:1e:31:19:5c:57:f0: c0:cb:d0:55:70:f7:c2:0a:d8:43:98:a1:a5:db:0b:2c:9a:44: 7a:f7:68:87:17:94:22:bf:15:ee:46:c5:72:ca:91:39:bb:78: bf:52:dd:9f:e6:a1:1a:5d:f3:48:0a:ae:d3:8d:29:e7:1f:cc: 50:ad:c9:ed:d4:6a:61:b9:70:13:68:2b:b6:2f:53:1b:30:29: 00:4e:c4:bd:3e:18:98:be:6a:22:16:cb:6f:21:92:71:e8:78: b4:a9:04:d2:73:45:09:41:11:87:f6:a0:4f:61:1f:ba:0c:d2: 12:48:36:67:84:7c:b0:d1:e8:1c:ed:c9:66:35:26:be:de:ae: 64:95:a4:ff:64:75:6e:1a:5c:0b:3d:07:6c:44:4f:37:d3:64: 5f:20:e7:29:44:d7:b1:40:5f:28:40:87:76:06:74:e8:bd:4c: 1b:bc:c0:99:07:f8:83:b1:9a:4b:97:87:57:c9:71:ae:fb:73: b8:72:24:eb:28:03:c7:b7:20:fb:85:82:d6:8f:cd:6d:34:f9: 8a:9c:c0:41:37:ee:2a:09:6a:be:00:d0:b0:94:fb:82:d5:1e: 05:06:da:c0:b2:cc:0b:89:98:a1:ac:e0:f5:b0:57:e6:a3:50: 7c:4d:2c:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5RDkxMTAvBgNVBAUTKDEzMTU3MEI0NTM1Rjg0MDMwMjUzMEREMTMxNzQ0MjMx NjMwOUMxNzcwHhcNMjUxMDE5MDg0NjMyWhcNMjUxMDI2MDg0NjMyWjAYMRYwFAYD VQQDEw02OGY0YTU2OC1mMWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSmE07Z29iE/qM+AewejlftrNVsTy40rwjmqZyNzThORGIeSWXf8VONjrnec MQLgVUSQpu0gHXrOHwKA+5LqiB6TqgOPJuj50gAinvu6NMneaKwPnq+zQnm0U8DL HFFYNxxFQuTholq6NKpxv5QSjYYgUuuVEhSMNXIfBHHQ/m9S4njWdC3o9L0nBDZw M9TFeL7XQT/3DMgI7x4ECo4up2Prm4QOiYN/Y5+IwmiZIZ6F0BxuIBsqlGzvBkix z8WavDAtK45pUBAf9X7KaGKuVkE2ZBqs08RbIKtHY4rWCsuEQKa11tANWu1SpROx 2MEqcTImb31jcQaZyu2t+pOnuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPScUgZK KsFXYsQo9INBQg0lfWGXMB8GA1UdIwQYMBaAFBMVcLRTX4QDAlMN0TF0QjFjCcF3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlEOS9GNTYwMzdBNjZG NUMxMUVGODM1QTdCNjZDNEY5QUUwMi9FeFZ3dEZOZmhBTUNVdzNSTVhSQ01XTUp3 WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0V4Vnd0Rk5maEFNQ1V3M1JNWFJDTVdNSndYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODlEOS9GNTYwMzdBNjZGNUMxMUVGODM1QTdCNjZDNEY5QUUwMi9FeFZ3dEZOZmhB TUNVdzNSTVhSQ01XTUp3WGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJYjtc+HViUuf9teIeMRlcV/DAy9BVcPfCCthDmKGl2wssmkR692iH F5QivxXuRsVyypE5u3i/Ut2f5qEaXfNICq7TjSnnH8xQrcnt1GphuXATaCu2L1Mb MCkATsS9PhiYvmoiFstvIZJx6Hi0qQTSc0UJQRGH9qBPYR+6DNISSDZnhHyw0egc 7clmNSa+3q5klaT/ZHVuGlwLPQdsRE8302RfIOcpRNexQF8oQId2BnTovUwbvMCZ B/iDsZpLl4dXyXGu+3O4ciTrKAPHtyD7hYLWj81tNPmKnMBBN+4qCWq+ANCwlPuC 1R4FBtrAsswLiZihrOD1sFfmo1B8TSzV -----END CERTIFICATE-----Generated at Mon Oct 20 22:41:11 2025 by rpki-client