$ rpki-client -vvf rpki.apnic.net/member_repository/A914C3FB/701782160BA111F08EFED219C4F9AE02/T191psKYj1i2AwEqjbRFofN9XXI.mft File: T191psKYj1i2AwEqjbRFofN9XXI.mft (raw, json) Hash identifier: 40Lrjp30OPeBDG900D2i7aDdPxKguHX3wL2hVcgecVI= Subject key identifier: 7E:D2:7A:0E:AE:FB:6D:08:5C:1A:A5:41:27:65:9D:6C:8C:A1:B8:FF Authority key identifier: 4F:5F:75:A6:C2:98:8F:58:B6:03:01:2A:8D:B4:45:A1:F3:7D:5D:72 Certificate issuer: /CN=A914C3FB/serialNumber=4F5F75A6C2988F58B603012A8DB445A1F37D5D72 Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T191psKYj1i2AwEqjbRFofN9XXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C3FB/701782160BA111F08EFED219C4F9AE02/T191psKYj1i2AwEqjbRFofN9XXI.mft Manifest number: 79 Signing time: Sat 25 Oct 2025 10:52:49 +0000 Manifest this update: Sat 25 Oct 2025 10:52:49 +0000 Manifest next update: Sat 01 Nov 2025 10:52:49 +0000 Files and hashes: 1: T191psKYj1i2AwEqjbRFofN9XXI.crl (hash: tdMmmOPyy6iQ+RYvu6QAZSVZRFWAcrjpBwCd8m2VYL4=) 2: 41E7BB1C0BA211F08457541BC4F9AE02.roa (hash: SLWKUoxyCCrW041ENZCKTkuF3OJqQTSoY0CsLhDIP04=) 3: 850942E4325311F081E87832C4F9AE02.roa (hash: YKfa7XcZECRGtp0hZwgH99jMIjA/4Bdgt+cMhZRSKcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C3FB/701782160BA111F08EFED219C4F9AE02/T191psKYj1i2AwEqjbRFofN9XXI.crl rsync://rpki.apnic.net/member_repository/A914C3FB/701782160BA111F08EFED219C4F9AE02/T191psKYj1i2AwEqjbRFofN9XXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T191psKYj1i2AwEqjbRFofN9XXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 10:52:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C3FB, serialNumber=4F5F75A6C2988F58B603012A8DB445A1F37D5D72 Validity Not Before: Oct 25 10:52:49 2025 GMT Not After : Nov 1 10:52:49 2025 GMT Subject: CN=68fcac01-0534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:9a:6b:f1:29:8e:02:f9:8c:2b:da:58:14:6b: c1:4d:66:09:5f:f1:08:f9:cb:8b:89:fb:2b:2f:1a: da:1a:04:c0:07:63:9e:af:3a:42:86:c0:0f:3a:47: ec:cc:08:03:5a:ba:f7:26:a3:d9:83:f0:9e:b0:b8: c5:4a:0f:bc:07:95:92:6a:c2:8d:fb:ba:5e:ac:04: 48:3c:33:1e:fa:c8:bc:c6:1e:82:55:8a:f8:da:ad: e5:b0:5b:35:2e:fa:57:b3:44:85:7f:26:46:81:00: ef:e4:e8:34:e3:f2:f1:18:17:a3:80:f0:84:4d:b0: d6:ca:82:bf:f6:61:ac:e4:98:49:de:1a:14:62:b1: 7e:71:4c:57:49:df:d4:72:be:8a:f0:ec:31:b4:32: ba:d8:90:b6:8f:a0:2f:d6:86:d7:fb:2a:43:5f:df: 7f:63:ad:31:11:ed:09:89:b3:98:cc:a7:60:e3:62: 5b:66:5d:43:cc:a6:b2:db:0a:80:68:93:2f:ff:df: b0:45:71:c2:c1:b4:6c:79:e3:21:28:57:59:1d:f7: 60:6d:81:9c:81:dd:04:22:c5:68:10:5d:86:7d:5d: 2e:da:a9:cd:a7:eb:a7:18:42:89:8c:e8:5b:1d:a6: 0d:e2:22:f8:1b:7c:1d:71:3f:bb:97:14:45:dc:bf: 1d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:D2:7A:0E:AE:FB:6D:08:5C:1A:A5:41:27:65:9D:6C:8C:A1:B8:FF X509v3 Authority Key Identifier: keyid:4F:5F:75:A6:C2:98:8F:58:B6:03:01:2A:8D:B4:45:A1:F3:7D:5D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C3FB/701782160BA111F08EFED219C4F9AE02/T191psKYj1i2AwEqjbRFofN9XXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T191psKYj1i2AwEqjbRFofN9XXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C3FB/701782160BA111F08EFED219C4F9AE02/T191psKYj1i2AwEqjbRFofN9XXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:1c:5e:0e:5d:00:c6:3d:68:0f:4e:33:b7:65:9b:38:dd:8a: 78:3d:d8:51:51:93:85:f0:91:2e:ce:5e:60:ee:5b:d2:25:ae: 64:3f:59:49:1d:24:51:9c:cc:21:6f:20:77:fe:3c:57:be:70: 86:4d:8b:3f:41:4c:e3:93:a8:fd:79:b7:23:36:22:bb:93:33: a4:b8:33:cd:00:a9:44:38:73:75:69:37:4d:cc:6f:76:66:33: 35:11:11:6d:4f:22:76:76:12:28:e9:cf:ca:8d:2a:91:58:79: 58:d9:aa:d4:39:62:30:84:fd:fb:34:7c:43:c9:22:26:e2:bb: cc:0d:35:85:a9:f7:20:29:85:6c:13:3f:7f:e8:29:8c:de:6e: 5e:6f:ae:aa:3f:47:5a:d4:71:fa:9e:97:d6:c5:5a:4b:ed:86: 6e:ce:90:86:5a:a6:2b:6e:7b:08:b1:47:79:6a:64:80:f1:e9: 9b:52:9d:44:e5:d5:ac:c8:a1:e9:02:64:ea:af:d2:07:a3:39: c1:11:ce:1b:f7:d2:69:c1:27:38:5d:fb:29:db:f6:66:24:d3: c2:7f:bc:1f:04:fe:11:60:3a:4c:fc:0b:65:fd:9d:25:5e:7d: 47:2f:bc:7a:60:19:1f:4b:63:97:d2:81:2d:b5:8d:50:61:07: 51:49:ee:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzRkIxMTAvBgNVBAUTKDRGNUY3NUE2QzI5ODhGNThCNjAzMDEyQThEQjQ0NUEx RjM3RDVENzIwHhcNMjUxMDI1MTA1MjQ5WhcNMjUxMTAxMTA1MjQ5WjAYMRYwFAYD VQQDEw02OGZjYWMwMS0wNTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJpr8SmOAvmMK9pYFGvBTWYJX/EI+cuLifsrLxraGgTAB2OerzpChsAPOkfs zAgDWrr3JqPZg/CesLjFSg+8B5WSasKN+7perARIPDMe+si8xh6CVYr42q3lsFs1 LvpXs0SFfyZGgQDv5Og04/LxGBejgPCETbDWyoK/9mGs5JhJ3hoUYrF+cUxXSd/U cr6K8OwxtDK62JC2j6Av1obX+ypDX99/Y60xEe0JibOYzKdg42JbZl1DzKay2wqA aJMv/9+wRXHCwbRseeMhKFdZHfdgbYGcgd0EIsVoEF2GfV0u2qnNp+unGEKJjOhb HaYN4iL4G3wdcT+7lxRF3L8dWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7Seg6u +20IXBqlQSdlnWyMobj/MB8GA1UdIwQYMBaAFE9fdabCmI9YtgMBKo20RaHzfV1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzNGQi83MDE3ODIxNjBC QTExMUYwOEVGRUQyMTlDNEY5QUUwMi9UMTkxcHNLWWoxaTJBd0VxamJSRm9mTjlY WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1QxOTFwc0tZajFpMkF3RXFqYlJGb2ZOOVhYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzNGQi83MDE3ODIxNjBCQTExMUYwOEVGRUQyMTlDNEY5QUUwMi9UMTkxcHNLWWox aTJBd0VxamJSRm9mTjlYWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGHF4OXQDGPWgPTjO3ZZs43Yp4PdhRUZOF8JEuzl5g7lvSJa5kP1lJ HSRRnMwhbyB3/jxXvnCGTYs/QUzjk6j9ebcjNiK7kzOkuDPNAKlEOHN1aTdNzG92 ZjM1ERFtTyJ2dhIo6c/KjSqRWHlY2arUOWIwhP37NHxDySIm4rvMDTWFqfcgKYVs Ez9/6CmM3m5eb66qP0da1HH6npfWxVpL7YZuzpCGWqYrbnsIsUd5amSA8embUp1E 5dWsyKHpAmTqr9IHoznBEc4b99JpwSc4Xfsp2/ZmJNPCf7wfBP4RYDpM/Atl/Z0l Xn1HL7x6YBkfS2OX0oEttY1QYQdRSe5z -----END CERTIFICATE-----Generated at Sun Oct 26 12:27:02 2025 by rpki-client