$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft File: rHzRY2nXDaZnWZ2jaOICQknLAvw.mft (raw, json) Hash identifier: xuTSggsI2SdtmanCvnWtxBoz/eTF5u4z5NcZAlZ24pU= Subject key identifier: A4:AD:D4:97:98:64:98:19:41:49:AE:71:65:D3:5A:33:25:C4:38:FE Authority key identifier: AC:7C:D1:63:69:D7:0D:A6:67:59:9D:A3:68:E2:02:42:49:CB:02:FC Certificate issuer: /CN=A91FB4F7/serialNumber=AC7CD16369D70DA667599DA368E2024249CB02FC Certificate serial: 17 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft Manifest number: 16 Signing time: Sun 19 Oct 2025 11:25:58 +0000 Manifest this update: Sun 19 Oct 2025 11:25:57 +0000 Manifest next update: Sun 26 Oct 2025 11:25:57 +0000 Files and hashes: 1: rHzRY2nXDaZnWZ2jaOICQknLAvw.crl (hash: zZkde2MTiRd86HzzcKrAyzGIYyaCoc2fTfu89wPKuyI=) 2: 53AEC77E8C7511F0BEEC137FC4F9AE02.roa (hash: bltQP8R8HZQyv1HSKxR7BSQwCkOH7hsa3qOC3GHr4Dg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.crl rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:25:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB4F7, serialNumber=AC7CD16369D70DA667599DA368E2024249CB02FC Validity Not Before: Oct 19 11:25:57 2025 GMT Not After : Oct 26 11:25:57 2025 GMT Subject: CN=68f4cac6-ce51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:29:14:41:24:c7:f0:94:f9:24:5c:1e:40:ab: 36:94:db:a7:b6:92:4f:44:de:9c:2a:f3:5c:86:57: 99:c2:20:36:73:bb:a1:5b:2e:4a:11:eb:e4:eb:05: 35:45:a3:6d:4d:36:84:cb:09:18:4a:eb:3d:a4:c4: aa:d8:2c:d1:7b:7f:a0:9f:dd:13:bf:91:ea:12:ea: 67:47:24:96:a0:83:b5:f3:71:38:23:32:16:2a:63: 2e:dd:6c:a5:c5:8b:15:1e:76:aa:80:13:5c:c9:0a: c0:35:0f:8c:c6:6c:fd:cd:88:28:ad:05:59:c3:5f: c9:86:1d:74:b0:65:47:ff:7f:72:44:2b:aa:1b:02: 3b:dd:c7:ed:83:07:0d:e7:c5:ac:e0:1b:48:19:f4: e7:f0:3d:42:78:a8:8e:d8:66:f0:d3:59:b7:31:75: 62:13:90:df:8a:cc:76:49:c7:1d:97:c1:fa:65:a6: 51:79:15:14:4c:e3:4a:b2:f3:a4:7e:f4:45:3d:fc: 6d:88:de:2d:04:ef:ea:e6:26:5b:dd:3f:6e:12:4a: fd:5d:23:59:49:2e:a0:9f:ba:71:8a:a3:ec:96:9d: 5f:26:a9:01:0a:5a:c4:05:07:c6:99:73:a6:66:fc: ef:0d:a8:ad:58:01:8b:d9:b8:77:0c:a2:75:c6:1a: e2:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:AD:D4:97:98:64:98:19:41:49:AE:71:65:D3:5A:33:25:C4:38:FE X509v3 Authority Key Identifier: keyid:AC:7C:D1:63:69:D7:0D:A6:67:59:9D:A3:68:E2:02:42:49:CB:02:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rHzRY2nXDaZnWZ2jaOICQknLAvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB4F7/12BAB8968C6F11F0BC03A828C4F9AE02/rHzRY2nXDaZnWZ2jaOICQknLAvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:8f:2e:d8:49:c2:24:ab:07:ea:45:5c:b6:2c:35:14:7f:ec: 83:4e:5f:b4:a9:eb:5a:64:8c:ef:c9:68:6e:d6:27:33:64:c8: 36:f8:a2:56:d4:65:80:6c:e4:7d:05:6d:5d:4c:0b:5a:22:50: 20:37:c5:b6:1b:b1:ed:95:08:80:db:ef:ca:78:13:e1:65:de: d3:c3:4a:e4:d3:31:c3:e4:d6:7e:e5:6a:0e:34:ba:4e:0a:f9: f6:3a:89:77:40:37:c5:32:c4:74:87:a8:4f:86:11:d3:3b:59: c0:6f:18:5c:63:d9:e4:07:8d:b0:d1:d1:68:bc:ea:da:e4:51: bc:88:d7:42:c7:08:67:a6:aa:87:19:9f:8a:22:0a:c1:bb:9a: 2c:7e:d4:63:36:38:2d:ed:64:9a:25:55:c3:23:03:df:21:a6: 0a:6c:a4:cc:0c:4b:8e:16:25:0a:67:37:15:65:cb:6a:27:3d: 3c:a4:26:59:34:b9:dd:dc:ea:39:d5:0f:96:38:7a:c3:f5:cd: 5e:ae:01:66:5d:b2:a0:23:79:63:4c:e8:b0:ee:af:43:7a:30: 81:2e:01:a3:77:e3:bb:51:60:23:7a:2e:ee:69:fd:3d:9a:7f: 24:4a:61:80:6c:ef:06:4b:97:8f:c0:ac:18:f5:65:d4:1b:dc: 45:64:20:66 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjRGNzExMC8GA1UEBRMoQUM3Q0QxNjM2OUQ3MERBNjY3NTk5REEzNjhFMjAyNDI0 OUNCMDJGQzAeFw0yNTEwMTkxMTI1NTdaFw0yNTEwMjYxMTI1NTdaMBgxFjAUBgNV BAMTDTY4ZjRjYWM2LWNlNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHKRRBJMfwlPkkXB5AqzaU26e2kk9E3pwq81yGV5nCIDZzu6FbLkoR6+TrBTVF o21NNoTLCRhK6z2kxKrYLNF7f6Cf3RO/keoS6mdHJJagg7XzcTgjMhYqYy7dbKXF ixUedqqAE1zJCsA1D4zGbP3NiCitBVnDX8mGHXSwZUf/f3JEK6obAjvdx+2DBw3n xazgG0gZ9OfwPUJ4qI7YZvDTWbcxdWITkN+KzHZJxx2XwfplplF5FRRM40qy86R+ 9EU9/G2I3i0E7+rmJlvdP24SSv1dI1lJLqCfunGKo+yWnV8mqQEKWsQFB8aZc6Zm /O8NqK1YAYvZuHcMonXGGuIpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUpK3Ul5hk mBlBSa5xZdNaMyXEOP4wHwYDVR0jBBgwFoAUrHzRY2nXDaZnWZ2jaOICQknLAvww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCNEY3LzEyQkFCODk2OEM2 RjExRjBCQzAzQTgyOEM0RjlBRTAyL3JIelJZMm5YRGFabldaMmphT0lDUWtuTEF2 dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvckh6UlkyblhEYVpuV1oyamFPSUNRa25MQXZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZC NEY3LzEyQkFCODk2OEM2RjExRjBCQzAzQTgyOEM0RjlBRTAyL3JIelJZMm5YRGFa bldaMmphT0lDUWtuTEF2dy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD+PLthJwiSrB+pFXLYsNRR/7INOX7Sp61pkjO/JaG7WJzNkyDb4olbU ZYBs5H0FbV1MC1oiUCA3xbYbse2VCIDb78p4E+Fl3tPDSuTTMcPk1n7lag40uk4K +fY6iXdAN8UyxHSHqE+GEdM7WcBvGFxj2eQHjbDR0Wi86trkUbyI10LHCGemqocZ n4oiCsG7mix+1GM2OC3tZJolVcMjA98hpgpspMwMS44WJQpnNxVly2onPTykJlk0 ud3c6jnVD5Y4esP1zV6uAWZdsqAjeWNM6LDur0N6MIEuAaN347tRYCN6Lu5p/T2a fyRKYYBs7wZLl4/ArBj1ZdQb3EVkIGY= -----END CERTIFICATE-----Generated at Mon Oct 20 20:26:18 2025 by rpki-client