$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft File: tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft (raw, json) Hash identifier: OoWwTMwCjJpPN0eESC/ozJmj1S2VEZrkmxHE22jQh9c= Subject key identifier: 83:84:CB:1E:0A:94:F6:1A:87:D3:6C:0C:F7:97:9D:50:9B:1E:60:66 Authority key identifier: B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE Certificate issuer: /CN=A91FD38A/serialNumber=B620A9C4963766CC3C58060694922E9F678811DE Certificate serial: 0C92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft Manifest number: 0C89 Signing time: Sat 18 Oct 2025 19:06:52 +0000 Manifest this update: Sat 18 Oct 2025 19:06:52 +0000 Manifest next update: Sat 25 Oct 2025 19:06:51 +0000 Files and hashes: 1: tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl (hash: VtHUivu8Nf7upOlicrAb9h4qUdshqfQ6wa9j7WtA+wo=) 2: AA5D86B2381311EA998E103FC4F9AE02.roa (hash: SvZjqtxcRIhPhrqiLm27nklXEkCJpvMYZMwhSGgkVOM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:06:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3218 (0xc92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD38A, serialNumber=B620A9C4963766CC3C58060694922E9F678811DE Validity Not Before: Oct 18 19:06:52 2025 GMT Not After : Oct 25 19:06:51 2025 GMT Subject: CN=68f3e54c-1ee2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1b:9c:ff:37:f2:12:f3:35:e4:9a:7a:dc:b3: 5e:70:8e:35:d4:c5:5a:c9:95:00:ff:11:5e:f3:0c: 92:eb:80:6e:fd:60:6b:99:5e:3a:44:ed:0f:08:e2: 52:e6:f7:47:c1:5f:ba:fe:8a:b8:68:55:06:a9:bc: 0b:19:d8:72:bd:08:ba:d0:bf:87:06:fc:41:9d:b7: 24:1f:62:1f:1a:3d:c0:7b:ed:e5:5c:13:1d:d2:95: b0:e1:11:ce:0d:b6:76:4c:45:5b:56:7b:e1:a1:a8: 17:a5:b1:05:12:65:fb:65:4f:be:a4:92:73:33:d2: ce:0c:24:de:92:c8:41:3c:2f:3b:61:72:8c:33:30: f2:38:5d:58:4b:66:92:62:4a:a6:30:7b:e5:b6:1a: ae:79:91:63:e6:4a:2e:a7:91:66:83:69:f0:4e:b8: e2:40:18:68:7e:09:db:cf:b1:0d:c0:90:19:26:4d: 64:35:28:49:e1:85:e2:aa:0c:85:21:ab:e4:47:c2: 82:43:1a:3d:6d:c8:5e:ef:75:56:b3:56:60:b4:81: 0a:24:02:aa:99:5b:33:62:64:9e:8f:46:8e:45:24: 67:b1:ec:f4:53:21:db:e2:40:38:0c:f0:e4:77:55: d8:3c:e8:5c:1b:cc:cc:a9:5d:e4:01:d9:6f:a5:c6: dc:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:84:CB:1E:0A:94:F6:1A:87:D3:6C:0C:F7:97:9D:50:9B:1E:60:66 X509v3 Authority Key Identifier: keyid:B6:20:A9:C4:96:37:66:CC:3C:58:06:06:94:92:2E:9F:67:88:11:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tiCpxJY3Zsw8WAYGlJIun2eIEd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD38A/9AEF17BE05F411EA886A3C23C4F9AE02/tiCpxJY3Zsw8WAYGlJIun2eIEd4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:99:69:7a:e6:97:46:c5:1a:6f:08:b7:4e:95:2a:8e:b4:8c: 29:5e:c4:06:f8:cf:8b:fb:2d:5e:a0:da:31:86:39:ac:8f:08: 24:70:ca:c4:a8:8d:ff:2f:48:ca:e5:99:9a:d2:14:25:a6:00: 6d:b0:2f:4e:a0:54:4f:12:0c:a2:bc:cb:6a:8f:c6:58:89:ee: e3:b8:6a:25:ff:23:48:0b:89:6c:67:e8:2d:52:71:25:c3:d6: 2f:b2:1c:1b:2a:a0:01:a0:81:0c:ec:1e:3c:fb:ee:cb:22:c9: d4:f0:32:43:72:97:6d:3f:e3:f0:a3:d8:1a:42:38:84:03:ec: 70:fa:ff:d1:5c:86:0a:2f:09:1b:e8:90:b5:e0:49:a2:79:c9: 4b:ca:c8:82:7b:7a:9a:21:50:ba:37:b2:da:1c:ed:a5:03:e5: f5:4b:a7:d6:49:12:f6:b4:09:35:6c:7e:39:02:5f:ae:6e:ba: 45:67:b2:f4:3c:78:a7:a9:a4:df:04:93:51:b2:31:0a:70:b5: be:59:1e:6e:10:cf:21:3d:e7:73:e5:b8:e0:f5:86:89:43:1b: a9:3b:dd:a1:e2:8e:bf:7d:47:a3:e3:1e:33:a7:06:45:d4:16: 81:c5:b0:c2:50:f1:2f:67:cb:d9:9c:fc:59:9b:4f:b0:8d:9a: d8:fa:dc:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQzOEExMTAvBgNVBAUTKEI2MjBBOUM0OTYzNzY2Q0MzQzU4MDYwNjk0OTIyRTlG Njc4ODExREUwHhcNMjUxMDE4MTkwNjUyWhcNMjUxMDI1MTkwNjUxWjAYMRYwFAYD VQQDEw02OGYzZTU0Yy0xZWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxuc/zfyEvM15Jp63LNecI411MVayZUA/xFe8wyS64Bu/WBrmV46RO0PCOJS 5vdHwV+6/oq4aFUGqbwLGdhyvQi60L+HBvxBnbckH2IfGj3Ae+3lXBMd0pWw4RHO DbZ2TEVbVnvhoagXpbEFEmX7ZU++pJJzM9LODCTekshBPC87YXKMMzDyOF1YS2aS YkqmMHvlthqueZFj5koup5Fmg2nwTrjiQBhofgnbz7ENwJAZJk1kNShJ4YXiqgyF IavkR8KCQxo9bche73VWs1ZgtIEKJAKqmVszYmSej0aORSRnsez0UyHb4kA4DPDk d1XYPOhcG8zMqV3kAdlvpcbchQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIOEyx4K lPYah9NsDPeXnVCbHmBmMB8GA1UdIwQYMBaAFLYgqcSWN2bMPFgGBpSSLp9niBHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDM4QS85QUVGMTdCRTA1 RjQxMUVBODg2QTNDMjNDNEY5QUUwMi90aUNweEpZM1pzdzhXQVlHbEpJdW4yZUlF ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpQ3B4SlkzWnN3OFdBWUdsSkl1bjJlSUVkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDM4QS85QUVGMTdCRTA1RjQxMUVBODg2QTNDMjNDNEY5QUUwMi90aUNweEpZM1pz dzhXQVlHbEpJdW4yZUlFZDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSmWl65pdGxRpvCLdOlSqOtIwpXsQG+M+L+y1eoNoxhjmsjwgkcMrE qI3/L0jK5Zma0hQlpgBtsC9OoFRPEgyivMtqj8ZYie7juGol/yNIC4lsZ+gtUnEl w9YvshwbKqABoIEM7B48++7LIsnU8DJDcpdtP+Pwo9gaQjiEA+xw+v/RXIYKLwkb 6JC14EmieclLysiCe3qaIVC6N7LaHO2lA+X1S6fWSRL2tAk1bH45Al+ubrpFZ7L0 PHinqaTfBJNRsjEKcLW+WR5uEM8hPedz5bjg9YaJQxupO92h4o6/fUej4x4zpwZF 1BaBxbDCUPEvZ8vZnPxZm0+wjZrY+tzK -----END CERTIFICATE-----Generated at Mon Oct 20 13:40:30 2025 by rpki-client