$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft File: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft (raw, json) Hash identifier: MSoziBnqo4TQc9sKhjoCjVASRZweez/PW+8KVmHRMxg= Subject key identifier: 07:DA:EA:59:D0:E1:29:2C:4E:9B:73:EA:04:09:A8:97:AB:D5:A9:34 Authority key identifier: 46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 Certificate issuer: /CN=A91964B3/serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Certificate serial: 106B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft Manifest number: 105B Signing time: Wed 22 Oct 2025 14:25:58 +0000 Manifest this update: Wed 22 Oct 2025 14:25:58 +0000 Manifest next update: Wed 29 Oct 2025 14:25:58 +0000 Files and hashes: 1: RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl (hash: /1ghCXjhGeoTxFIdAxmO8d8uEeTsHFIAEVxpp7/PxLs=) 2: 23B68638C5DD11EABC58FD24C4F9AE02.roa (hash: 7YuoX9OkBSRUQiHpsiuHEMGmDB7ygNEWHmpkRA4QfgE=) 3: 5D563164AF3411EFB5B51A57C4F9AE02.roa (hash: Mjf+9MFV/8wopOF7hLs3Tt14yZvRKLf5RcXcRhi35uI=) 4: 1396434EC90A11EF8577744AC4F9AE02.roa (hash: vv5/sNroDyn31EV1FuwDRkKZ1Ky/CQIEoorZo83v9h8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:25:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4203 (0x106b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3, serialNumber=464854FB50A9903C5253418C583D0F31B841D597 Validity Not Before: Oct 22 14:25:58 2025 GMT Not After : Oct 29 14:25:58 2025 GMT Subject: CN=68f8e976-ec06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d9:65:8b:1a:3e:39:f6:97:07:0b:ed:f9:f3: b2:98:2f:0f:42:6d:d0:57:19:0b:cf:81:df:ed:4e: 24:88:19:92:6c:f4:2d:b9:10:6e:31:f6:78:43:10: 47:06:c0:56:df:bb:5c:16:3c:93:f0:f5:36:06:ca: 37:d5:9c:99:6b:14:df:f2:16:28:24:d0:f5:65:fc: db:18:8a:c1:9b:df:bc:88:44:69:74:e0:dd:56:b7: b4:e9:7b:d0:81:75:d6:58:b3:44:f0:74:4b:17:95: 52:15:d7:62:6c:65:aa:08:03:b5:11:0f:b8:a7:da: 9a:08:2c:0b:00:16:b1:2a:9b:ec:b2:c6:ae:0b:17: de:51:e4:ab:dc:b8:3f:f8:2b:ab:f0:cf:98:89:45: 09:2e:f1:8f:86:9d:21:df:5f:f9:3b:c0:49:5f:98: 31:d0:51:84:3f:aa:c7:88:82:44:1c:96:a9:8e:83: 40:44:76:ca:04:87:c2:fa:69:56:d8:68:ec:2a:8e: 7e:3a:27:58:00:92:a8:db:16:10:59:24:af:a2:f5: 45:05:85:d1:5d:47:07:50:be:dd:b8:0c:ab:d6:9f: 41:4a:00:04:90:82:43:5b:3d:1e:6d:6e:68:6b:19: 2b:cd:d8:e1:36:66:a9:d8:5e:15:35:cc:17:4d:2b: 49:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:DA:EA:59:D0:E1:29:2C:4E:9B:73:EA:04:09:A8:97:AB:D5:A9:34 X509v3 Authority Key Identifier: keyid:46:48:54:FB:50:A9:90:3C:52:53:41:8C:58:3D:0F:31:B8:41:D5:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/2A5940F24BB311E9AB151C17C4F9AE02/RkhU-1CpkDxSU0GMWD0PMbhB1Zc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:98:b5:78:02:68:bc:b6:8e:80:b7:2e:9e:2c:af:a0:04:90: 62:13:b6:5b:6b:4e:4c:68:fc:a0:ac:d2:6f:a6:40:2a:8a:3f: a4:a7:ca:23:b7:c7:61:0b:bd:a4:73:f1:f4:ab:d3:86:ec:61: d0:41:c6:bb:a5:c0:e7:a0:4e:dc:21:72:49:a4:75:19:66:63: 1b:ce:d3:4d:be:36:01:b3:c4:d3:55:1d:25:fb:24:68:71:f0: 51:f6:27:41:db:ab:ba:1e:63:73:a2:8a:d1:f3:1c:ed:97:3e: 76:8c:4c:50:6a:91:b3:d0:39:43:b0:a0:ff:81:dd:b5:a4:be: 46:9b:00:4c:e1:f1:2a:a7:20:d1:0a:9c:77:ab:73:59:66:ed: 3d:15:df:d8:90:47:b2:a6:19:a9:65:32:5a:6e:eb:a3:09:7d: 62:13:d8:ef:b0:07:89:2b:8d:60:ce:fe:08:51:9c:3c:15:bb: 7d:92:d3:32:1e:37:6f:9e:29:94:43:4d:6d:63:ea:bc:e7:97: eb:bf:9a:0e:d8:2c:e5:c2:2d:4c:0c:ed:f7:45:6d:de:40:09: 12:3f:15:c7:c9:a5:64:ed:f1:13:92:97:f6:9d:01:6a:d9:9c: d6:fe:71:d6:0f:5c:63:7b:61:ac:74:76:4a:11:4c:3c:cc:4a: 52:d1:32:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKDQ2NDg1NEZCNTBBOTkwM0M1MjUzNDE4QzU4M0QwRjMx Qjg0MUQ1OTcwHhcNMjUxMDIyMTQyNTU4WhcNMjUxMDI5MTQyNTU4WjAYMRYwFAYD VQQDEw02OGY4ZTk3Ni1lYzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9llixo+OfaXBwvt+fOymC8PQm3QVxkLz4Hf7U4kiBmSbPQtuRBuMfZ4QxBH BsBW37tcFjyT8PU2Bso31ZyZaxTf8hYoJND1ZfzbGIrBm9+8iERpdODdVre06XvQ gXXWWLNE8HRLF5VSFddibGWqCAO1EQ+4p9qaCCwLABaxKpvsssauCxfeUeSr3Lg/ +Cur8M+YiUUJLvGPhp0h31/5O8BJX5gx0FGEP6rHiIJEHJapjoNARHbKBIfC+mlW 2GjsKo5+OidYAJKo2xYQWSSvovVFBYXRXUcHUL7duAyr1p9BSgAEkIJDWz0ebW5o axkrzdjhNmap2F4VNcwXTStJ7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAfa6lnQ 4SksTptz6gQJqJer1ak0MB8GA1UdIwQYMBaAFEZIVPtQqZA8UlNBjFg9DzG4QdWX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy8yQTU5NDBGMjRC QjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtEeFNVMEdNV0QwUE1iaEIx WmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JraFUtMUNwa0R4U1UwR01XRDBQTWJoQjFaYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NjRCMy8yQTU5NDBGMjRCQjMxMUU5QUIxNTFDMTdDNEY5QUUwMi9Sa2hVLTFDcGtE eFNVMEdNV0QwUE1iaEIxWmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9mLV4Ami8to6Aty6eLK+gBJBiE7Zba05MaPygrNJvpkAqij+kp8oj t8dhC72kc/H0q9OG7GHQQca7pcDnoE7cIXJJpHUZZmMbztNNvjYBs8TTVR0l+yRo cfBR9idB26u6HmNzoorR8xztlz52jExQapGz0DlDsKD/gd21pL5GmwBM4fEqpyDR Cpx3q3NZZu09Fd/YkEeyphmpZTJabuujCX1iE9jvsAeJK41gzv4IUZw8Fbt9ktMy HjdvnimUQ01tY+q855frv5oO2Czlwi1MDO33RW3eQAkSPxXHyaVk7fETkpf2nQFq 2ZzW/nHWD1xje2GsdHZKEUw8zEpS0TJP -----END CERTIFICATE-----Generated at Wed Oct 22 18:22:54 2025 by rpki-client