$ rpki-client -vvf rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft File: 36hgRQpvzrHG57jU_1SxVBobabM.mft (raw, json) Hash identifier: Fn/WafvZUupxWoWRqxHZdOhn8srs+dZsfdlw/tg6Bs8= Subject key identifier: 8C:A2:78:8A:95:F4:AD:55:68:F9:09:6A:AE:4C:CB:AE:F9:F7:99:EC Authority key identifier: DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 Certificate issuer: /CN=A91534B8/serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Certificate serial: 02E4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft Manifest number: 02DA Signing time: Sun 19 Oct 2025 03:31:26 +0000 Manifest this update: Sun 19 Oct 2025 03:31:25 +0000 Manifest next update: Sun 26 Oct 2025 03:31:25 +0000 Files and hashes: 1: 36hgRQpvzrHG57jU_1SxVBobabM.crl (hash: Kyc1f4C5gsI5ea57V8rcLOzMfQe4TlsybNJVVTy2lUE=) 2: 56C4B5083DF511ED98215F18C4F9AE02.roa (hash: +v8nyn/Oe9RWJ3ghxJ4j4ajNn0CAMG8XWMdrSVotxhY=) 3: B0FA33FE6F9611ED8A672F69C4F9AE02.roa (hash: r+OS0Knt0u9zlSwMXXIIOrgidq7fkxM7aM/OittLXrQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:31:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 740 (0x2e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91534B8, serialNumber=DFA860450A6FCEB1C6E7B8D4FF54B1541A1B69B3 Validity Not Before: Oct 19 03:31:25 2025 GMT Not After : Oct 26 03:31:25 2025 GMT Subject: CN=68f45b8d-8e4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:0e:87:43:c5:a6:6e:3c:3c:dc:ba:04:44:40: 28:a0:aa:93:fc:af:35:87:52:c6:94:3d:e7:60:0d: 58:dd:e7:2b:c8:f9:d1:d8:8a:1d:96:54:08:d4:1d: 3b:a9:26:f2:ed:a4:eb:2f:63:59:c3:d0:28:0d:b8: 31:db:3f:a9:79:70:02:86:7f:74:9f:47:32:ae:d4: 63:d4:af:3e:7c:e9:96:ed:41:e0:56:7d:8f:b9:18: 68:32:45:ae:36:71:24:c5:b3:d9:10:16:0f:aa:ca: 61:8f:83:6d:88:09:0a:70:e8:44:45:4c:84:22:8f: 25:f9:98:86:6b:ed:12:34:f1:7f:b0:a2:c4:e0:ac: a1:0a:a9:81:81:94:77:90:9e:2e:07:c9:75:df:c1: 9d:0a:f4:58:67:a0:c4:56:9d:ac:d4:97:71:5c:85: 3a:a5:f4:b0:e7:a2:a2:6f:d0:0e:df:e0:32:30:b2: e1:a2:c9:a0:28:63:be:dd:7f:fd:4a:9e:07:d2:94: b4:69:7c:f3:d6:04:be:e0:6c:47:36:dc:90:dd:55: f6:76:f1:ae:7b:e6:b2:4f:3b:9b:e8:97:1a:a0:76: 0a:2b:aa:c2:ce:54:c7:4a:e5:33:a8:16:e7:d9:0d: b8:bd:b2:e6:f4:eb:ee:68:ee:45:1f:ed:aa:d0:05: 57:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A2:78:8A:95:F4:AD:55:68:F9:09:6A:AE:4C:CB:AE:F9:F7:99:EC X509v3 Authority Key Identifier: keyid:DF:A8:60:45:0A:6F:CE:B1:C6:E7:B8:D4:FF:54:B1:54:1A:1B:69:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/36hgRQpvzrHG57jU_1SxVBobabM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91534B8/9F03BB60094411ED8DD10971C4F9AE02/36hgRQpvzrHG57jU_1SxVBobabM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:5e:9e:51:09:97:68:d0:e5:55:00:56:67:e5:8f:1f:24:db: fe:dc:f0:20:83:e8:44:22:16:c9:96:4e:6e:1e:42:67:2b:12: a3:06:cf:66:b5:47:2e:71:41:48:93:53:15:f9:20:7e:73:82: 94:55:ad:a4:bf:ca:db:9e:1b:42:3b:12:3a:d7:8a:c2:6b:fe: 71:0a:7e:65:7c:5a:78:d0:e6:ff:4e:6a:b8:1c:80:68:48:99: 15:aa:c7:e8:74:2d:fe:5e:85:25:57:1e:9d:1c:f0:cd:1f:8c: 8a:d6:81:f8:02:e8:29:fc:01:d7:56:fc:88:ff:da:b2:66:92: 12:f1:87:43:0c:ab:c4:55:7e:6f:68:8b:ee:23:c0:30:b7:c0: d7:40:ca:a6:3a:63:54:c2:fc:50:e7:18:c7:50:e8:5c:0a:62: d5:28:a4:24:bc:5d:8e:87:24:2a:79:9d:6a:e2:84:7f:33:8d: aa:bd:10:9c:f0:a3:f4:4d:e9:a8:eb:ab:c4:62:ff:1a:34:3c: c5:57:50:61:1c:0f:64:6b:40:49:2f:f1:a0:88:9d:13:19:fb: 8e:bb:78:d7:91:a2:28:2b:86:e7:3f:fe:b3:74:71:4e:ca:7c: 8f:aa:10:9a:b7:e6:9e:22:d7:14:6f:2e:52:1e:c3:63:d5:b7: df:4d:71:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM0QjgxMTAvBgNVBAUTKERGQTg2MDQ1MEE2RkNFQjFDNkU3QjhENEZGNTRCMTU0 MUExQjY5QjMwHhcNMjUxMDE5MDMzMTI1WhcNMjUxMDI2MDMzMTI1WjAYMRYwFAYD VQQDEw02OGY0NWI4ZC04ZTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Q6HQ8Wmbjw83LoEREAooKqT/K81h1LGlD3nYA1Y3ecryPnR2IodllQI1B07 qSby7aTrL2NZw9AoDbgx2z+peXAChn90n0cyrtRj1K8+fOmW7UHgVn2PuRhoMkWu NnEkxbPZEBYPqsphj4NtiAkKcOhERUyEIo8l+ZiGa+0SNPF/sKLE4KyhCqmBgZR3 kJ4uB8l138GdCvRYZ6DEVp2s1JdxXIU6pfSw56Kib9AO3+AyMLLhosmgKGO+3X/9 Sp4H0pS0aXzz1gS+4GxHNtyQ3VX2dvGue+ayTzub6JcaoHYKK6rCzlTHSuUzqBbn 2Q24vbLm9OvuaO5FH+2q0AVXMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIyieIqV 9K1VaPkJaq5My67595nsMB8GA1UdIwQYMBaAFN+oYEUKb86xxue41P9UsVQaG2mz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzRCOC85RjAzQkI2MDA5 NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpySEc1N2pVXzFTeFZCb2Jh Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzM2aGdSUXB2enJIRzU3alVfMVN4VkJvYmFiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzRCOC85RjAzQkI2MDA5NDQxMUVEOEREMTA5NzFDNEY5QUUwMi8zNmhnUlFwdnpy SEc1N2pVXzFTeFZCb2JhYk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGXp5RCZdo0OVVAFZn5Y8fJNv+3PAgg+hEIhbJlk5uHkJnKxKjBs9m tUcucUFIk1MV+SB+c4KUVa2kv8rbnhtCOxI614rCa/5xCn5lfFp40Ob/Tmq4HIBo SJkVqsfodC3+XoUlVx6dHPDNH4yK1oH4Augp/AHXVvyI/9qyZpIS8YdDDKvEVX5v aIvuI8Awt8DXQMqmOmNUwvxQ5xjHUOhcCmLVKKQkvF2OhyQqeZ1q4oR/M42qvRCc 8KP0Temo66vEYv8aNDzFV1BhHA9ka0BJL/GgiJ0TGfuOu3jXkaIoK4bnP/6zdHFO ynyPqhCat+aeItcUby5SHsNj1bffTXGm -----END CERTIFICATE-----Generated at Wed Oct 22 17:49:20 2025 by rpki-client