$ rpki-client -vvf rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft File: peado7v7jl3TlkjmpD4A-nI95lg.mft (raw, json) Hash identifier: oMJujwXQSeM9jyQzE3gYPa196zeYB1qcspKhrgpvrm0= Subject key identifier: A9:12:15:F5:B1:6D:DE:79:7B:83:72:36:E8:77:2C:BB:CC:2A:93:D9 Authority key identifier: A5:E6:9D:A3:BB:FB:8E:5D:D3:96:48:E6:A4:3E:00:FA:72:3D:E6:58 Certificate issuer: /CN=A91190B4/serialNumber=A5E69DA3BBFB8E5DD39648E6A43E00FA723DE658 Certificate serial: 0AF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft Manifest number: 0AED Signing time: Wed 22 Oct 2025 20:02:44 +0000 Manifest this update: Wed 22 Oct 2025 20:02:44 +0000 Manifest next update: Wed 29 Oct 2025 20:02:44 +0000 Files and hashes: 1: peado7v7jl3TlkjmpD4A-nI95lg.crl (hash: BgAkHXEM7LuYG97Md87dg2oEsPwiFi80hY6+IQIClTU=) 2: 55BC5674573F11EAA8901D3EC4F9AE02.roa (hash: GpKaeFCXgLqKWUd4/mw0J3pe4Cuty7kr/IEGoWg6an0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.crl rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 20:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2805 (0xaf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91190B4, serialNumber=A5E69DA3BBFB8E5DD39648E6A43E00FA723DE658 Validity Not Before: Oct 22 20:02:44 2025 GMT Not After : Oct 29 20:02:44 2025 GMT Subject: CN=68f93864-ec0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1b:98:e6:bf:c3:d1:96:94:b2:1a:2e:5c:37: 90:3e:c8:d4:0f:1c:1d:3d:7a:da:23:31:71:8b:02: 4c:81:48:b0:ea:b6:65:eb:d0:b9:c5:73:35:f7:ff: b5:23:bc:55:4a:f9:bf:1a:af:77:7e:d5:13:36:38: 49:46:1f:87:f1:d9:1b:bf:bd:a6:05:e4:e8:f0:03: 67:fd:8e:ee:e0:79:10:bb:17:23:bf:cf:fa:89:89: 86:ee:9a:22:d9:cc:e4:f8:a6:8d:74:f7:a8:43:44: 15:27:a4:d8:71:4f:61:a2:a5:d7:19:f2:1e:d5:e0: dc:b7:cb:6f:48:c1:bd:d4:35:21:be:bb:05:3f:d6: 3f:bc:70:ec:e8:82:b6:91:3a:89:8d:cf:48:ad:83: d8:72:e6:47:fb:5e:23:51:d9:b0:e1:74:46:9d:b5: ed:b9:ce:6f:94:be:92:af:4f:4b:99:9b:d1:4e:8a: 0f:ab:62:b5:ba:94:4b:4d:03:7b:63:8c:18:a4:9e: 01:ea:73:ae:53:2c:9b:52:1c:32:71:30:1b:16:62: 0c:44:0a:c9:8a:cc:b5:c7:ef:37:cd:b7:37:a3:cf: 50:9f:bd:0b:80:c7:3e:9d:30:e3:33:22:a4:9e:2d: f6:37:b3:78:12:25:6a:d3:ca:b1:c5:1a:72:4b:48: 03:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:12:15:F5:B1:6D:DE:79:7B:83:72:36:E8:77:2C:BB:CC:2A:93:D9 X509v3 Authority Key Identifier: keyid:A5:E6:9D:A3:BB:FB:8E:5D:D3:96:48:E6:A4:3E:00:FA:72:3D:E6:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/peado7v7jl3TlkjmpD4A-nI95lg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91190B4/BC8C10AE573C11EAB0A4E335C4F9AE02/peado7v7jl3TlkjmpD4A-nI95lg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:3d:f6:61:93:1f:2f:2c:5b:a7:25:68:2b:d9:67:e1:b2:5e: 81:ea:31:92:d1:f2:e6:91:35:13:bd:c0:3a:cd:10:68:ba:cf: ae:8e:3d:ea:f9:9b:7f:a4:b5:9e:b5:48:ef:d7:14:32:65:c5: f0:6b:ca:fa:3a:97:a8:3c:56:a9:9c:88:1b:5e:b9:f3:c6:12: 82:4c:46:c0:b3:4f:60:00:70:b5:f3:19:9d:d7:d9:4b:a2:ab: 9b:10:84:75:bd:90:ae:a6:04:3a:cf:2d:2b:a2:2d:40:ac:83: 76:9b:2e:b0:4e:8d:d3:63:6d:59:4c:3b:db:4d:91:70:f3:08: 42:28:33:38:b3:aa:9e:6b:ca:03:0e:6c:c5:f0:44:c0:cb:93: 8c:90:25:6a:59:de:b0:d6:7d:a9:5e:77:85:dd:c8:bf:e2:24: 20:72:38:ed:44:36:af:e8:9c:7f:d0:58:2e:10:d0:7e:e1:50: ea:df:70:c6:16:f2:b0:b9:15:76:2e:78:20:35:49:d7:6e:13: 81:f3:4c:5d:be:48:57:dd:af:44:86:12:5e:1e:dd:64:5a:58: 49:6f:3f:0c:05:4b:d2:a1:a1:ba:b3:99:b6:93:24:1d:7f:e2: 17:f1:69:13:98:f1:0f:f2:1e:a7:53:80:9f:4b:43:c5:4e:57: 14:41:98:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwQjQxMTAvBgNVBAUTKEE1RTY5REEzQkJGQjhFNUREMzk2NDhFNkE0M0UwMEZB NzIzREU2NTgwHhcNMjUxMDIyMjAwMjQ0WhcNMjUxMDI5MjAwMjQ0WjAYMRYwFAYD VQQDEw02OGY5Mzg2NC1lYzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhuY5r/D0ZaUshouXDeQPsjUDxwdPXraIzFxiwJMgUiw6rZl69C5xXM19/+1 I7xVSvm/Gq93ftUTNjhJRh+H8dkbv72mBeTo8ANn/Y7u4HkQuxcjv8/6iYmG7poi 2czk+KaNdPeoQ0QVJ6TYcU9hoqXXGfIe1eDct8tvSMG91DUhvrsFP9Y/vHDs6IK2 kTqJjc9IrYPYcuZH+14jUdmw4XRGnbXtuc5vlL6Sr09LmZvRTooPq2K1upRLTQN7 Y4wYpJ4B6nOuUyybUhwycTAbFmIMRArJisy1x+83zbc3o89Qn70LgMc+nTDjMyKk ni32N7N4EiVq08qxxRpyS0gDnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKkSFfWx bd55e4NyNuh3LLvMKpPZMB8GA1UdIwQYMBaAFKXmnaO7+45d05ZI5qQ+APpyPeZY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTBCNC9CQzhDMTBBRTU3 M0MxMUVBQjBBNEUzMzVDNEY5QUUwMi9wZWFkbzd2N2psM1Rsa2ptcEQ0QS1uSTk1 bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BlYWRvN3Y3amwzVGxram1wRDRBLW5JOTVsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTBCNC9CQzhDMTBBRTU3M0MxMUVBQjBBNEUzMzVDNEY5QUUwMi9wZWFkbzd2N2ps M1Rsa2ptcEQ0QS1uSTk1bGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXPfZhkx8vLFunJWgr2Wfhsl6B6jGS0fLmkTUTvcA6zRBous+ujj3q +Zt/pLWetUjv1xQyZcXwa8r6OpeoPFapnIgbXrnzxhKCTEbAs09gAHC18xmd19lL oqubEIR1vZCupgQ6zy0roi1ArIN2my6wTo3TY21ZTDvbTZFw8whCKDM4s6qea8oD DmzF8ETAy5OMkCVqWd6w1n2pXneF3ci/4iQgcjjtRDav6Jx/0FguENB+4VDq33DG FvKwuRV2LnggNUnXbhOB80xdvkhX3a9EhhJeHt1kWlhJbz8MBUvSoaG6s5m2kyQd f+IX8WkTmPEP8h6nU4CfS0PFTlcUQZgi -----END CERTIFICATE-----Generated at Wed Oct 22 22:42:09 2025 by rpki-client