$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft File: Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft (raw, json) Hash identifier: VHxitubuhYjmT10kw547itx+1CeBVF8ePv1rOLcSvsI= Subject key identifier: 41:66:B3:BC:A9:39:1E:A2:08:D8:FC:85:F2:C9:C2:10:87:F9:F7:A5 Authority key identifier: 49:FD:33:D6:F5:1A:D6:A4:98:84:46:9F:A3:9F:EF:04:32:33:6F:81 Certificate issuer: /CN=A91FDE13/serialNumber=49FD33D6F51AD6A49884469FA39FEF0432336F81 Certificate serial: 66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft Manifest number: 5F Signing time: Sun 19 Oct 2025 10:35:06 +0000 Manifest this update: Sun 19 Oct 2025 10:35:05 +0000 Manifest next update: Sun 26 Oct 2025 10:35:05 +0000 Files and hashes: 1: Sf0z1vUa1qSYhEafo5_vBDIzb4E.crl (hash: OC/eZ45lnutzoVMwVjYc0YOZP085jxUIb6ZczvtgeH0=) 2: 189D8FCE565D11F0B381417EC4F9AE02.roa (hash: cj52P7EVA7EzNB+cRXY75TfIttWbZ7w7qirjXKEDn/Y=) 3: 5B45D97C2A5611F0B7C8BB20C4F9AE02.roa (hash: UkjJv6j01kk67tAR7WvPOWkiQImQuY607Dwbp++ebI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.crl rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:35:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDE13, serialNumber=49FD33D6F51AD6A49884469FA39FEF0432336F81 Validity Not Before: Oct 19 10:35:05 2025 GMT Not After : Oct 26 10:35:05 2025 GMT Subject: CN=68f4beda-fc26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a6:ed:fe:be:af:5d:e8:b7:41:39:d5:d9:65: c2:08:71:50:fe:19:0b:49:db:57:3d:fc:bd:ec:69: 7f:f9:db:23:0a:a9:33:e9:75:81:cd:d1:5e:3e:43: 7d:08:38:48:16:4b:15:b1:32:df:86:96:9d:c9:5e: 0a:c8:26:7e:4f:04:6b:fe:e1:40:34:83:a0:ef:c5: fb:78:eb:5e:1e:5e:0f:55:1e:51:3f:45:d5:03:28: 5d:bf:45:35:8c:b4:13:fc:77:a5:e5:25:70:66:05: 7c:0d:dc:bc:f7:23:42:25:de:cd:3a:11:c1:a7:08: 64:d3:fb:dd:b1:9a:3f:7b:89:ad:05:dd:90:5a:12: 6e:4d:e2:1f:bf:3b:9a:fc:53:89:aa:6a:14:7b:7b: dc:68:3a:c1:ee:f1:45:d8:40:f0:bb:a4:11:54:8d: 89:0d:04:87:44:38:bd:63:e4:3d:35:50:75:46:89: 52:44:cb:01:d7:60:df:fb:30:ca:83:d6:aa:7a:f0: 97:7c:b4:39:f9:2e:0d:1b:3e:48:f7:5f:36:26:19: 98:3f:89:b1:7f:64:34:53:7d:b2:79:4b:78:a4:8c: 52:eb:b4:29:88:e3:2a:51:6f:ac:9b:0e:56:fa:dd: 92:e8:c7:1e:7d:2f:18:30:85:46:56:f9:cb:68:42: d7:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:66:B3:BC:A9:39:1E:A2:08:D8:FC:85:F2:C9:C2:10:87:F9:F7:A5 X509v3 Authority Key Identifier: keyid:49:FD:33:D6:F5:1A:D6:A4:98:84:46:9F:A3:9F:EF:04:32:33:6F:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sf0z1vUa1qSYhEafo5_vBDIzb4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDE13/151FE47E2A5611F0B84F5220C4F9AE02/Sf0z1vUa1qSYhEafo5_vBDIzb4E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:01:e5:7f:f8:b3:6c:31:a2:c0:34:ed:1c:0a:ef:5f:c0:17: a0:71:99:e2:80:8d:bc:16:3e:93:cc:29:a3:f4:bf:f2:f0:d5: 07:a2:6e:b2:42:bb:03:f6:41:c2:b5:de:5e:b0:a3:db:20:4e: ec:6a:fc:fb:48:d2:3d:b6:1c:94:e6:d5:71:10:5a:5a:40:80: 00:f9:ef:b0:2c:9f:f2:d6:3a:97:ab:c3:21:be:a3:36:bf:2a: 00:07:4b:4d:a6:80:27:dc:ae:26:48:93:b7:90:c1:7e:cc:cd: 3e:d6:a2:9d:89:a2:b6:8e:50:a8:78:a3:d7:77:1f:bc:52:0f: 94:eb:75:5e:a9:ac:99:1d:ff:12:e8:48:cf:1f:13:2b:02:bf: 68:28:c6:41:79:6e:b5:75:1c:98:ac:17:02:ea:46:43:5a:8c: 85:c9:3d:e8:e2:56:f5:7b:f5:ae:e4:7b:8c:48:ae:8f:3d:cd: 69:9c:fc:5c:f6:f8:33:8e:3c:ae:af:57:a0:50:6f:bc:f4:03: e6:b3:1f:ba:b3:bb:ce:f9:eb:04:ae:f6:9f:60:e4:a9:a5:1c: 23:ab:d5:b5:93:fd:c7:f3:70:10:11:91:de:c3:0d:c0:a3:80: e9:5f:f5:92:05:5c:2d:f3:00:f0:9a:bd:4f:73:ee:c3:e5:25: e9:a0:3b:4a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG REUxMzExMC8GA1UEBRMoNDlGRDMzRDZGNTFBRDZBNDk4ODQ0NjlGQTM5RkVGMDQz MjMzNkY4MTAeFw0yNTEwMTkxMDM1MDVaFw0yNTEwMjYxMDM1MDVaMBgxFjAUBgNV BAMTDTY4ZjRiZWRhLWZjMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9pu3+vq9d6LdBOdXZZcIIcVD+GQtJ21c9/L3saX/52yMKqTPpdYHN0V4+Q30I OEgWSxWxMt+Glp3JXgrIJn5PBGv+4UA0g6Dvxft4614eXg9VHlE/RdUDKF2/RTWM tBP8d6XlJXBmBXwN3Lz3I0Il3s06EcGnCGTT+92xmj97ia0F3ZBaEm5N4h+/O5r8 U4mqahR7e9xoOsHu8UXYQPC7pBFUjYkNBIdEOL1j5D01UHVGiVJEywHXYN/7MMqD 1qp68Jd8tDn5Lg0bPkj3XzYmGZg/ibF/ZDRTfbJ5S3ikjFLrtCmI4ypRb6ybDlb6 3ZLoxx59LxgwhUZW+ctoQtcVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQWazvKk5 HqII2PyF8snCEIf596UwHwYDVR0jBBgwFoAUSf0z1vUa1qSYhEafo5/vBDIzb4Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZERTEzLzE1MUZFNDdFMkE1 NjExRjBCODRGNTIyMEM0RjlBRTAyL1NmMHoxdlVhMXFTWWhFYWZvNV92QkRJemI0 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU2YwejF2VWExcVNZaEVhZm81X3ZCREl6YjRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZE RTEzLzE1MUZFNDdFMkE1NjExRjBCODRGNTIyMEM0RjlBRTAyL1NmMHoxdlVhMXFT WWhFYWZvNV92QkRJemI0RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC0B5X/4s2wxosA07RwK71/AF6BxmeKAjbwWPpPMKaP0v/Lw1QeibrJC uwP2QcK13l6wo9sgTuxq/PtI0j22HJTm1XEQWlpAgAD577Asn/LWOperwyG+oza/ KgAHS02mgCfcriZIk7eQwX7MzT7Wop2JoraOUKh4o9d3H7xSD5TrdV6prJkd/xLo SM8fEysCv2goxkF5brV1HJisFwLqRkNajIXJPejiVvV79a7ke4xIro89zWmc/Fz2 +DOOPK6vV6BQb7z0A+azH7qzu8756wSu9p9g5KmlHCOr1bWT/cfzcBARkd7DDcCj gOlf9ZIFXC3zAPCavU9z7sPlJemgO0o= -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:28 2025 by rpki-client