$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft File: _KoIYibfAq-DlPqyLR-5bgt9Zd0.mft (raw, json) Hash identifier: eX1570aBN3qUs18aM8P8yRaXLu8zxihQ272KnsGBwFM= Subject key identifier: 33:18:FA:D0:21:1C:EA:5D:8D:51:C2:86:D7:8C:06:61:0D:25:C2:7B Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0C44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft Manifest number: 0C13 Signing time: Wed 22 Oct 2025 19:27:21 +0000 Manifest this update: Wed 22 Oct 2025 19:27:21 +0000 Manifest next update: Wed 29 Oct 2025 19:27:21 +0000 Files and hashes: 1: _KoIYibfAq-DlPqyLR-5bgt9Zd0.crl (hash: n/p1W6VA5jNay41uuMb5cxQxWgLWCmHKZys1tBGW3fQ=) 2: E2D5171C2F3211ED958A415DC4F9AE02.roa (hash: x2iHWFegIFwfUv7eETVYAeYmpK9xBEA15+t682RT6r8=) 3: 5380E2B895F911F096F0574EC4F9AE02.roa (hash: 6Xz8FCMqUa8j/rjQSPhyQaudprfohCttOxQs6McUtnY=) 4: 9FC61D303F7A11F0BC711E7FC4F9AE02.roa (hash: KLAu57JBn7NTh33cfX1DBAGhLNuRug57Fl0GJC6kPFQ=) 5: 75775B8A5E3C11F094FDCD71C4F9AE02.roa (hash: edBs+LqPeq6VId1edbW8z5stcuCPjdTspdZcbHXD4ms=) 6: C5639A105E3B11F09FAC9B6DC4F9AE02.roa (hash: +jkx8ForKRaNqf1DBVMg/S9cIOq8CLcZaNyeQAklIwQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 19:27:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3140 (0xc44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: Oct 22 19:27:21 2025 GMT Not After : Oct 29 19:27:21 2025 GMT Subject: CN=68f93019-c58b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:45:d0:55:56:c8:3d:bf:32:84:c9:a9:33:c6: 0f:8b:23:3c:3b:86:ea:01:dc:7d:86:cc:9a:e7:be: 01:4b:06:f0:43:0f:ac:25:2f:a5:7e:20:5c:b5:c9: 17:03:36:f7:1e:65:0f:54:e4:a6:ab:95:18:7a:b0: c4:d7:cb:22:17:88:b1:30:b9:89:05:05:2c:e4:1d: 51:68:c0:06:84:9e:0f:52:f7:a4:5a:0b:24:c7:35: 86:7c:a1:eb:bb:e0:91:05:b1:77:a3:b7:9c:90:94: 44:53:11:fd:c1:18:ba:53:5b:7b:79:52:b6:9d:86: c2:f1:fa:35:5d:d8:01:ed:45:dd:ed:51:d7:58:06: 40:11:09:b9:57:52:68:e2:d4:cd:5f:9c:78:d0:f8: 71:26:5c:1d:7f:a3:6e:9c:43:b4:c7:e8:a8:a6:52: 69:15:34:c5:8a:4c:b1:99:02:64:fd:bc:84:22:43: 10:ed:a6:e2:6a:46:2f:33:52:4d:c8:b1:83:3f:fc: 19:1b:66:3f:a8:95:a0:cf:24:58:a4:f9:c8:f6:ec: 7b:de:bd:a9:1e:c1:a5:5e:8f:57:22:bc:f2:a0:d8: 79:59:ff:7a:df:97:3a:4b:90:57:20:8a:a4:4a:e9: 34:42:15:ea:30:a2:2d:39:93:22:61:ac:7c:1e:ab: e8:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:18:FA:D0:21:1C:EA:5D:8D:51:C2:86:D7:8C:06:61:0D:25:C2:7B X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:24:bc:fa:81:b4:6f:ed:62:05:d2:b0:5a:25:09:f9:a8:27: 63:e2:cd:dd:3a:00:23:3c:28:6e:4f:28:ba:70:25:5f:9a:80: bd:96:1d:98:08:b4:43:ee:aa:c3:4b:86:58:5a:99:4a:86:f7: d9:e0:09:05:57:17:3a:a2:10:6d:6f:c3:58:dd:f6:4d:9a:e6: e8:67:ab:b3:72:f1:ce:86:40:98:56:a4:c2:3e:0b:27:6e:3b: 3e:d3:fb:95:20:8f:04:5b:e1:9b:bb:3a:1f:82:5f:bf:1f:a2: cd:01:8a:ae:0a:60:10:31:a0:40:eb:8d:6b:68:7e:e2:22:ba: 42:d5:ef:db:79:2a:7c:18:75:3f:c9:3e:b6:95:2d:1f:84:5d: 56:a5:5a:6b:16:ea:b3:04:83:b9:b4:b6:e0:c6:86:2f:6c:cd: ab:9b:f3:ae:eb:96:43:f6:01:f6:06:cd:c4:89:01:da:d3:46: 12:18:30:92:0f:6a:a5:c9:78:2e:0d:4c:a9:d2:f8:4e:50:63: 5e:4c:f5:0b:69:8f:60:3e:d5:79:a4:a6:28:48:c0:74:7e:4f: ce:61:8e:ed:ee:7a:f8:6e:63:b3:b8:5d:77:2e:27:53:df:7c: 75:b0:82:87:93:0c:2b:67:77:83:24:46:22:6c:61:d4:83:7d: 60:c5:4a:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjUxMDIyMTkyNzIxWhcNMjUxMDI5MTkyNzIxWjAYMRYwFAYD VQQDEw02OGY5MzAxOS1jNThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEXQVVbIPb8yhMmpM8YPiyM8O4bqAdx9hsya574BSwbwQw+sJS+lfiBctckX Azb3HmUPVOSmq5UYerDE18siF4ixMLmJBQUs5B1RaMAGhJ4PUvekWgskxzWGfKHr u+CRBbF3o7eckJREUxH9wRi6U1t7eVK2nYbC8fo1XdgB7UXd7VHXWAZAEQm5V1Jo 4tTNX5x40PhxJlwdf6NunEO0x+ioplJpFTTFikyxmQJk/byEIkMQ7abiakYvM1JN yLGDP/wZG2Y/qJWgzyRYpPnI9ux73r2pHsGlXo9XIrzyoNh5Wf9635c6S5BXIIqk Suk0QhXqMKItOZMiYax8HqvoqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMY+tAh HOpdjVHChteMBmENJcJ7MB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OThEQS8zNEYzNjEyRTI2ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFx LURsUHF5TFItNWJndDlaZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSJLz6gbRv7WIF0rBaJQn5qCdj4s3dOgAjPChuTyi6cCVfmoC9lh2Y CLRD7qrDS4ZYWplKhvfZ4AkFVxc6ohBtb8NY3fZNmuboZ6uzcvHOhkCYVqTCPgsn bjs+0/uVII8EW+Gbuzofgl+/H6LNAYquCmAQMaBA641raH7iIrpC1e/beSp8GHU/ yT62lS0fhF1WpVprFuqzBIO5tLbgxoYvbM2rm/Ou65ZD9gH2Bs3EiQHa00YSGDCS D2qlyXguDUyp0vhOUGNeTPULaY9gPtV5pKYoSMB0fk/OYY7t7nr4bmOzuF13LidT 33x1sIKHkwwrZ3eDJEYibGHUg31gxUqK -----END CERTIFICATE-----Generated at Thu Oct 23 09:57:50 2025 by rpki-client