$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.mft File: cri4zRAwexYyTYeYJ98ypKqNaqE.mft (raw, json) Hash identifier: FYuWV4xLGIPIQZ+w02NwCW/balCIbgtlomrHynBCJDM= Subject key identifier: 0F:FB:1C:2A:7C:DF:BC:FA:1A:81:01:C2:43:AE:54:EA:58:91:B0:FE Authority key identifier: 72:B8:B8:CD:10:30:7B:16:32:4D:87:98:27:DF:32:A4:AA:8D:6A:A1 Certificate issuer: /CN=A91FF19B/serialNumber=72B8B8CD10307B16324D879827DF32A4AA8D6AA1 Certificate serial: 047B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cri4zRAwexYyTYeYJ98ypKqNaqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.mft Manifest number: 0471 Signing time: Sun 19 Oct 2025 02:02:29 +0000 Manifest this update: Sun 19 Oct 2025 02:02:28 +0000 Manifest next update: Sun 26 Oct 2025 02:02:28 +0000 Files and hashes: 1: cri4zRAwexYyTYeYJ98ypKqNaqE.crl (hash: +VNncE4yg4aN4cfUKVqL+1vMLHILQDB1OoIC9XB0pb4=) 2: 0C023160C4C911EE9278E261C4F9AE02.roa (hash: IyhV9MGtQ1VyJp3y60dauCI+itu5hIIH24D+SkqtwwY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.crl rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cri4zRAwexYyTYeYJ98ypKqNaqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:02:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1147 (0x47b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF19B, serialNumber=72B8B8CD10307B16324D879827DF32A4AA8D6AA1 Validity Not Before: Oct 19 02:02:28 2025 GMT Not After : Oct 26 02:02:28 2025 GMT Subject: CN=68f446b5-c29a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:05:47:f9:c2:5a:8b:f8:f1:32:75:7f:20:95: 56:72:27:32:3c:76:ab:79:a0:54:6d:0e:2a:e7:e9: 2a:ab:af:a8:c9:ba:f1:32:b6:8e:4d:ba:7d:49:eb: b2:06:65:ee:7f:39:4e:f2:02:7a:a8:11:96:7f:51: 03:42:f2:32:6a:15:96:39:50:45:b9:71:25:71:c1: 00:50:5d:96:17:89:64:5f:85:ee:d7:cc:56:e1:97: f8:fb:64:a4:c2:9e:a8:ee:9e:fc:2e:99:eb:11:4f: 50:e2:70:a2:fb:f2:31:a3:7c:9f:4f:d1:31:bf:f2: 12:b3:f0:c9:c7:42:01:95:02:76:e1:95:b8:9e:a5: 5b:46:cb:36:4b:d0:fa:cc:61:55:6a:55:5a:63:a5: 67:47:b7:ce:73:73:42:bb:79:99:ba:e9:22:65:a4: 9a:76:fe:37:ae:0a:e4:a8:f2:8d:df:af:1a:5c:03: 3d:8c:51:df:e2:a6:bd:12:0b:d3:0b:46:55:78:4d: af:ca:22:42:d7:49:38:b2:e7:e3:f9:e1:23:27:17: f4:cc:64:93:29:46:57:e1:2a:29:d7:41:cf:d6:99: 79:25:f8:a3:78:a0:cd:a0:46:7d:43:4d:35:36:53: dd:07:4a:7e:65:fd:ef:24:f4:b1:2c:65:41:4a:d3: 2d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:FB:1C:2A:7C:DF:BC:FA:1A:81:01:C2:43:AE:54:EA:58:91:B0:FE X509v3 Authority Key Identifier: keyid:72:B8:B8:CD:10:30:7B:16:32:4D:87:98:27:DF:32:A4:AA:8D:6A:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cri4zRAwexYyTYeYJ98ypKqNaqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF19B/36488D80665B11EC8885A480C4F9AE02/cri4zRAwexYyTYeYJ98ypKqNaqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:51:85:9b:4b:34:f1:92:96:28:27:2d:89:e1:1d:ca:40:16: af:fa:0d:5b:be:54:ba:7a:bd:ee:d7:a8:05:80:3d:cb:6e:32: d0:e6:8a:fd:9b:e1:c5:32:01:fa:d2:f6:81:c8:74:24:59:40: 6d:c9:3c:02:b9:de:b5:33:0e:24:6b:4c:69:48:19:86:34:b5: 5c:20:47:9a:e5:dc:fd:6e:46:7b:84:8e:87:31:3b:c0:ff:79: a5:62:71:8c:99:5e:2a:ce:53:26:78:00:b9:29:be:68:6b:af: 51:e1:72:24:38:53:0c:1a:db:93:b0:0b:70:da:1c:52:b2:c9: ab:50:7f:45:2b:0c:b9:14:e8:ca:73:45:a2:d6:ba:01:59:33: 4e:5d:f2:74:da:e9:db:8a:82:b2:8b:cd:9e:26:19:49:3b:b6: 7a:80:22:8a:41:fa:7b:4d:62:ae:c7:2a:30:8d:78:ae:96:3d: 7e:e6:64:04:ef:ca:0b:bc:31:e5:43:af:98:f0:13:28:68:d6: 8b:23:9c:11:1f:db:06:d4:f4:04:71:5b:b7:87:e9:65:80:28: aa:43:ec:d6:bc:6d:6f:27:a2:40:8b:3d:26:06:30:66:34:45: 5f:2a:86:53:56:a9:af:ad:15:be:2d:35:00:ef:99:89:9b:69: fd:ce:98:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkYxOUIxMTAvBgNVBAUTKDcyQjhCOENEMTAzMDdCMTYzMjREODc5ODI3REYzMkE0 QUE4RDZBQTEwHhcNMjUxMDE5MDIwMjI4WhcNMjUxMDI2MDIwMjI4WjAYMRYwFAYD VQQDEw02OGY0NDZiNS1jMjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQVH+cJai/jxMnV/IJVWcicyPHareaBUbQ4q5+kqq6+oybrxMraOTbp9Seuy BmXufzlO8gJ6qBGWf1EDQvIyahWWOVBFuXElccEAUF2WF4lkX4Xu18xW4Zf4+2Sk wp6o7p78LpnrEU9Q4nCi+/Ixo3yfT9Exv/ISs/DJx0IBlQJ24ZW4nqVbRss2S9D6 zGFValVaY6VnR7fOc3NCu3mZuukiZaSadv43rgrkqPKN368aXAM9jFHf4qa9EgvT C0ZVeE2vyiJC10k4sufj+eEjJxf0zGSTKUZX4Sop10HP1pl5JfijeKDNoEZ9Q001 NlPdB0p+Zf3vJPSxLGVBStMtqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA/7HCp8 37z6GoEBwkOuVOpYkbD+MB8GA1UdIwQYMBaAFHK4uM0QMHsWMk2HmCffMqSqjWqh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjE5Qi8zNjQ4OEQ4MDY2 NUIxMUVDODg4NUE0ODBDNEY5QUUwMi9jcmk0elJBd2V4WXlUWWVZSjk4eXBLcU5h cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NyaTR6UkF3ZXhZeVRZZVlKOTh5cEtxTmFxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjE5Qi8zNjQ4OEQ4MDY2NUIxMUVDODg4NUE0ODBDNEY5QUUwMi9jcmk0elJBd2V4 WXlUWWVZSjk4eXBLcU5hcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzUYWbSzTxkpYoJy2J4R3KQBav+g1bvlS6er3u16gFgD3LbjLQ5or9 m+HFMgH60vaByHQkWUBtyTwCud61Mw4ka0xpSBmGNLVcIEea5dz9bkZ7hI6HMTvA /3mlYnGMmV4qzlMmeAC5Kb5oa69R4XIkOFMMGtuTsAtw2hxSssmrUH9FKwy5FOjK c0Wi1roBWTNOXfJ02unbioKyi82eJhlJO7Z6gCKKQfp7TWKuxyowjXiulj1+5mQE 78oLvDHlQ6+Y8BMoaNaLI5wRH9sG1PQEcVu3h+llgCiqQ+zWvG1vJ6JAiz0mBjBm NEVfKoZTVqmvrRW+LTUA75mJm2n9zpjY -----END CERTIFICATE-----Generated at Mon Oct 20 10:35:45 2025 by rpki-client