$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft File: rehZrZQNGhc_pkzXBYZ9SH5nNog.mft (raw, json) Hash identifier: ke24D0hffqXAmXRhpaSH6YntZrYiZW6DKpfXLN9ss2E= Subject key identifier: 5F:C4:36:4D:05:0E:04:AA:BB:AE:5F:0D:29:5B:CC:BA:C6:E1:F3:2E Authority key identifier: AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 Certificate issuer: /CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Certificate serial: 0241 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft Manifest number: 023C Signing time: Sun 19 Oct 2025 02:08:32 +0000 Manifest this update: Sun 19 Oct 2025 02:08:31 +0000 Manifest next update: Sun 26 Oct 2025 02:08:31 +0000 Files and hashes: 1: rehZrZQNGhc_pkzXBYZ9SH5nNog.crl (hash: l/2ikTEOC/RIguEdMgs0ez82uVH1AgIvrB2NeCsj6WE=) 2: A99BC9D64CAC11EDA3BF485AC4F9AE02.roa (hash: M0LQ0bOgsXho1IONj8CXX3n4kpo/nKJprHxKVrxONpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:08:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 577 (0x241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDAD4, serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Validity Not Before: Oct 19 02:08:31 2025 GMT Not After : Oct 26 02:08:31 2025 GMT Subject: CN=68f44820-c789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:cf:97:b2:0c:98:88:9f:9e:7b:27:fe:5d:11: c0:6e:56:f4:56:ac:0f:6e:84:91:e3:13:75:46:70: 66:4a:e7:90:64:fe:49:93:8c:a0:36:5f:8f:4d:35: 41:87:df:9c:df:e0:61:3c:96:68:7d:c8:cb:3a:2d: 85:5e:83:03:50:77:c4:49:32:c4:4a:0f:7e:aa:77: 0e:0b:9d:09:81:54:a0:8a:89:0b:ad:ee:7a:15:53: a6:21:ee:7f:f4:fa:70:e5:35:90:43:13:34:f1:ed: 8f:83:32:79:04:e1:07:ec:01:c4:c3:10:69:0e:c5: b3:71:49:c6:2c:0c:d1:74:e5:1f:a0:81:d8:bc:7f: 48:64:7b:12:ef:bd:58:ce:97:ea:0f:03:4b:db:b0: 46:06:5a:23:57:fd:20:05:96:0e:dc:9d:01:08:2f: 8c:67:6c:77:cc:73:6e:e9:13:60:3c:98:de:0e:39: 22:41:c5:ed:e5:9c:4d:81:69:d0:e7:3e:34:d2:7f: 68:f4:b5:01:a0:6e:98:f5:44:44:07:0b:72:ef:1b: 59:ef:94:c5:de:3e:70:2e:d7:e0:44:5e:d8:f4:e5: 71:f3:2f:10:89:c6:ef:cb:0f:d6:5c:73:83:35:e3: 8f:ca:6a:af:69:a1:4b:95:da:75:e6:00:6a:0c:ab: 8d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:C4:36:4D:05:0E:04:AA:BB:AE:5F:0D:29:5B:CC:BA:C6:E1:F3:2E X509v3 Authority Key Identifier: keyid:AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:4b:f7:74:15:94:3f:aa:45:0c:69:0e:15:0b:f3:ba:98:f4: bb:a9:bf:a7:af:c7:11:30:37:04:f9:1c:6f:9e:72:f7:72:15: f2:0a:da:31:d5:b4:45:08:71:67:13:49:6d:c8:39:f2:dc:a1: 22:43:3f:0a:6d:4b:85:2c:ce:4d:c9:c0:20:1d:c4:24:12:ad: b8:50:49:33:3c:ff:1c:28:a1:8b:87:da:07:9d:8e:46:d5:1f: 3c:28:56:90:78:47:5d:91:5c:13:0d:78:98:f2:30:45:eb:46: 06:b9:e2:ec:56:10:ae:08:07:1c:34:a5:b1:6d:0e:50:3a:f4: d3:c0:e5:c3:b7:8d:e1:24:0b:42:4c:b0:fc:97:05:29:9b:91: c0:27:35:30:78:6c:78:e1:d8:ee:67:cc:9b:78:3e:b8:b2:bd: d4:af:67:2d:2e:53:36:80:1f:c8:9c:c6:54:04:01:0e:75:0e: ff:41:03:f9:fe:7e:51:b7:c4:40:4b:64:8d:fa:0e:67:24:f5: 2c:03:e5:4e:a5:ce:31:13:51:cf:7f:ee:7f:5e:c6:23:fb:18: a0:74:50:fa:b0:97:c9:80:ef:3c:38:96:a2:15:a6:45:9f:10: 7c:27:ba:3d:c1:2d:85:85:38:3c:8c:63:23:4c:49:32:d7:ba: db:56:bc:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBRDQxMTAvBgNVBAUTKEFERTg1OUFEOTQwRDFBMTczRkE2NENENzA1ODY3RDQ4 N0U2NzM2ODgwHhcNMjUxMDE5MDIwODMxWhcNMjUxMDI2MDIwODMxWjAYMRYwFAYD VQQDEw02OGY0NDgyMC1jNzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA18+XsgyYiJ+eeyf+XRHAblb0VqwPboSR4xN1RnBmSueQZP5Jk4ygNl+PTTVB h9+c3+BhPJZofcjLOi2FXoMDUHfESTLESg9+qncOC50JgVSgiokLre56FVOmIe5/ 9Ppw5TWQQxM08e2PgzJ5BOEH7AHEwxBpDsWzcUnGLAzRdOUfoIHYvH9IZHsS771Y zpfqDwNL27BGBlojV/0gBZYO3J0BCC+MZ2x3zHNu6RNgPJjeDjkiQcXt5ZxNgWnQ 5z400n9o9LUBoG6Y9UREBwty7xtZ75TF3j5wLtfgRF7Y9OVx8y8Qicbvyw/WXHOD NeOPymqvaaFLldp15gBqDKuNTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF/ENk0F DgSqu65fDSlbzLrG4fMuMB8GA1UdIwQYMBaAFK3oWa2UDRoXP6ZM1wWGfUh+ZzaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREFENC9DODVFODM3QTQz OTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdoY19wa3pYQllaOVNINW5O b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JlaFpyWlFOR2hjX3BrelhCWVo5U0g1bk5vZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REFENC9DODVFODM3QTQzOTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdo Y19wa3pYQllaOVNINW5Ob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdS/d0FZQ/qkUMaQ4VC/O6mPS7qb+nr8cRMDcE+RxvnnL3chXyCtox 1bRFCHFnE0ltyDny3KEiQz8KbUuFLM5NycAgHcQkEq24UEkzPP8cKKGLh9oHnY5G 1R88KFaQeEddkVwTDXiY8jBF60YGueLsVhCuCAccNKWxbQ5QOvTTwOXDt43hJAtC TLD8lwUpm5HAJzUweGx44djuZ8ybeD64sr3Ur2ctLlM2gB/InMZUBAEOdQ7/QQP5 /n5Rt8RAS2SN+g5nJPUsA+VOpc4xE1HPf+5/XsYj+xigdFD6sJfJgO88OJaiFaZF nxB8J7o9wS2FhTg8jGMjTEky17rbVrzG -----END CERTIFICATE-----Generated at Mon Oct 20 11:32:18 2025 by rpki-client