$ rpki-client -vvf rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft File: WU96C6m9HBOGhHzoljlj_k5xY2w.mft (raw, json) Hash identifier: doTNT5xQbyERL4ECyrkwxhycfaJmZghYTbX6KmIDH/4= Subject key identifier: 53:33:AC:77:DB:43:C6:9B:1E:3E:28:8B:36:BE:EF:A3:34:8F:D5:4E Authority key identifier: 59:4F:7A:0B:A9:BD:1C:13:86:84:7C:E8:96:39:63:FE:4E:71:63:6C Certificate issuer: /CN=A91FFEDB/serialNumber=594F7A0BA9BD1C1386847CE8963963FE4E71636C Certificate serial: 0238 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft Manifest number: 0233 Signing time: Sun 19 Oct 2025 04:10:19 +0000 Manifest this update: Sun 19 Oct 2025 04:10:18 +0000 Manifest next update: Sun 26 Oct 2025 04:10:18 +0000 Files and hashes: 1: WU96C6m9HBOGhHzoljlj_k5xY2w.crl (hash: lSSOOgT7tl0FRvzJqEK0VvCII5SoClyFjO3DcAY5w10=) 2: 3CE5C23A550611ED96C8F350C4F9AE02.roa (hash: tljXT8G1BNgl+pD66knbjuh1b8kVzEqRHqexSVNncjs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.crl rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:10:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FFEDB, serialNumber=594F7A0BA9BD1C1386847CE8963963FE4E71636C Validity Not Before: Oct 19 04:10:18 2025 GMT Not After : Oct 26 04:10:18 2025 GMT Subject: CN=68f464ab-b1b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2e:61:d3:3e:b9:49:b1:a2:e0:23:9e:35:95: a1:09:de:25:16:0c:c1:24:7f:ec:2a:00:95:77:3a: ba:b8:60:99:24:88:3a:48:30:33:fb:a1:b3:9c:d2: 3c:df:cb:4f:2e:71:0e:f6:8d:e8:cd:1f:5e:0f:56: 4e:4d:2b:f7:02:c0:e6:81:a0:7f:54:e7:74:63:4b: d8:cd:1d:41:fc:e8:b3:8b:e7:79:e5:62:63:c8:43: 06:14:74:96:aa:34:97:48:ca:06:67:09:49:44:ac: 7b:92:17:ab:dd:47:06:54:a7:4b:a2:70:22:db:d9: 03:e1:1d:02:b1:5a:ef:f9:e8:0c:8b:35:af:b1:3b: 11:18:a3:6d:ba:3b:a2:f9:f5:fb:45:8d:f0:e0:a8: c9:00:48:8e:eb:37:40:14:79:8f:4d:08:1e:df:cd: 08:40:c0:1f:c6:68:67:09:41:fa:1e:0e:fb:a0:74: 5f:00:a1:50:14:27:cb:ed:75:07:d4:dc:33:72:70: f2:c1:98:89:21:17:da:98:b2:84:66:70:54:d5:c8: 9b:97:0a:f3:c6:66:71:e3:d1:63:d6:f4:c0:f8:48: 55:81:4e:92:81:56:c5:36:29:20:9b:e7:62:53:d0: 01:76:36:7f:b6:e2:4d:f8:75:ed:39:a2:fc:22:b4: 24:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:33:AC:77:DB:43:C6:9B:1E:3E:28:8B:36:BE:EF:A3:34:8F:D5:4E X509v3 Authority Key Identifier: keyid:59:4F:7A:0B:A9:BD:1C:13:86:84:7C:E8:96:39:63:FE:4E:71:63:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WU96C6m9HBOGhHzoljlj_k5xY2w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FFEDB/34D5D7E6550211ED964B7A4AC4F9AE02/WU96C6m9HBOGhHzoljlj_k5xY2w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:da:e4:94:27:5b:d6:63:08:80:fb:7b:83:93:de:f8:2e:af: bb:9f:7e:d6:15:af:c6:ae:0a:a8:d6:77:5e:d3:8f:4d:36:7a: dd:71:e0:14:3b:f4:76:b6:c9:8e:d1:67:19:0c:0d:a4:e1:66: 1a:2f:95:63:ea:c6:08:f5:93:62:5c:24:7a:67:3f:43:24:d7: 31:23:61:1b:25:20:35:fe:51:ff:74:0e:47:19:62:2d:16:d7: 77:77:f6:b2:dd:57:47:b7:da:47:eb:89:7a:c2:f0:3d:4b:13: ad:94:fa:63:49:5f:16:ec:c5:fd:9c:c6:b3:57:a6:e7:67:83: fc:d2:54:7a:31:48:74:9a:15:a3:e0:1e:60:67:c5:65:04:67: 76:bf:ea:4c:c5:91:db:1d:f0:7a:0c:f6:70:7e:cc:d3:5d:c2: 3a:ea:da:ee:16:92:7d:f5:d4:6c:b3:d0:c7:23:61:12:a1:2d: c1:6b:d2:17:ae:e2:37:05:36:9a:a3:3c:5a:c9:27:a3:55:89: 55:76:ca:c1:5f:e6:db:c3:6e:0b:35:95:bd:f8:16:d0:a9:42: 5e:db:93:77:3d:46:20:79:fa:4f:9d:42:5d:2d:97:78:a6:a8: 86:7e:7b:d3:d0:07:c5:67:d6:42:e3:8e:81:a8:6f:30:cb:de: e1:32:c2:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkZFREIxMTAvBgNVBAUTKDU5NEY3QTBCQTlCRDFDMTM4Njg0N0NFODk2Mzk2M0ZF NEU3MTYzNkMwHhcNMjUxMDE5MDQxMDE4WhcNMjUxMDI2MDQxMDE4WjAYMRYwFAYD VQQDEw02OGY0NjRhYi1iMWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvC5h0z65SbGi4COeNZWhCd4lFgzBJH/sKgCVdzq6uGCZJIg6SDAz+6GznNI8 38tPLnEO9o3ozR9eD1ZOTSv3AsDmgaB/VOd0Y0vYzR1B/Oizi+d55WJjyEMGFHSW qjSXSMoGZwlJRKx7kher3UcGVKdLonAi29kD4R0CsVrv+egMizWvsTsRGKNtujui +fX7RY3w4KjJAEiO6zdAFHmPTQge380IQMAfxmhnCUH6Hg77oHRfAKFQFCfL7XUH 1NwzcnDywZiJIRfamLKEZnBU1ciblwrzxmZx49Fj1vTA+EhVgU6SgVbFNikgm+di U9ABdjZ/tuJN+HXtOaL8IrQkSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMzrHfb Q8abHj4oiza+76M0j9VOMB8GA1UdIwQYMBaAFFlPegupvRwThoR86JY5Y/5OcWNs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRkVEQi8zNEQ1RDdFNjU1 MDIxMUVEOTY0QjdBNEFDNEY5QUUwMi9XVTk2QzZtOUhCT0doSHpvbGpsal9rNXhZ MncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1dVOTZDNm05SEJPR2hIem9samxqX2s1eFkydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RkVEQi8zNEQ1RDdFNjU1MDIxMUVEOTY0QjdBNEFDNEY5QUUwMi9XVTk2QzZtOUhC T0doSHpvbGpsal9rNXhZMncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCf2uSUJ1vWYwiA+3uDk974Lq+7n37WFa/Grgqo1nde049NNnrdceAU O/R2tsmO0WcZDA2k4WYaL5Vj6sYI9ZNiXCR6Zz9DJNcxI2EbJSA1/lH/dA5HGWIt Ftd3d/ay3VdHt9pH64l6wvA9SxOtlPpjSV8W7MX9nMazV6bnZ4P80lR6MUh0mhWj 4B5gZ8VlBGd2v+pMxZHbHfB6DPZwfszTXcI66truFpJ99dRss9DHI2ESoS3Ba9IX ruI3BTaaozxaySejVYlVdsrBX+bbw24LNZW9+BbQqUJe25N3PUYgefpPnUJdLZd4 pqiGfnvT0AfFZ9ZC446BqG8wy97hMsK7 -----END CERTIFICATE-----Generated at Tue Oct 21 08:09:17 2025 by rpki-client