$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft File: FOZzxKcds0p1aBNYfkghLaLnczA.mft (raw, json) Hash identifier: QLTJUWj38S0yhvPhGIdzF9RzNyOwlCuF9qUNFw48cFI= Subject key identifier: 6D:87:8C:C6:8E:2D:BD:D7:E1:18:EF:68:57:66:19:01:9A:51:C6:ED Authority key identifier: 14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 Certificate issuer: /CN=A91A2F33/serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Certificate serial: 0A47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft Manifest number: 0A2D Signing time: Wed 22 Oct 2025 20:28:23 +0000 Manifest this update: Wed 22 Oct 2025 20:28:22 +0000 Manifest next update: Wed 29 Oct 2025 20:28:22 +0000 Files and hashes: 1: FOZzxKcds0p1aBNYfkghLaLnczA.crl (hash: bSZMMttqih44W9aKE+WPdtNVHNpCQM0LEOE5iIABSB4=) 2: 344644CC1DC511EF95607948C4F9AE02.roa (hash: rkDHfwPM1DT0Lu0jNtn8nf16whUr6uH9MCf0inhJdfs=) 3: ED99CAA81DC411EF9E620C48C4F9AE02.roa (hash: p62MlJx+4H10Goj45fvAZ4d/rgVHWdc/FettBrr2SX0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 20:28:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2631 (0xa47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2F33, serialNumber=14E673C4A71DB34A756813587E48212DA2E77330 Validity Not Before: Oct 22 20:28:22 2025 GMT Not After : Oct 29 20:28:22 2025 GMT Subject: CN=68f93e66-3e93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:13:cf:6a:2f:6b:75:a4:64:2c:63:49:41:0e: a5:5f:19:c5:8e:98:83:9f:4e:b0:8b:da:ec:47:f1: 12:1c:6e:12:02:2d:59:8d:51:cb:09:2f:58:87:a8: ec:d7:ea:a4:fe:a1:eb:1a:84:95:0a:34:35:96:a5: f6:f4:85:db:04:0a:41:2b:f9:83:9a:9a:85:7c:b7: 03:a7:fb:71:2a:d5:22:34:c3:a4:15:a5:da:91:3f: 17:a0:8f:19:5a:0a:c9:ac:08:44:de:5b:3d:f6:11: df:0b:67:62:b3:d2:38:47:00:32:18:43:56:5c:98: 96:d8:03:cb:7e:95:75:d7:af:6a:89:65:ad:a9:3d: dc:ca:b4:44:97:aa:3a:71:41:d2:7e:f4:78:c9:88: 36:0a:fc:ba:29:16:00:df:ae:62:af:24:ab:e8:98: 89:08:e3:f9:28:a3:49:6f:0a:13:f7:7e:9f:f8:d7: e6:91:07:71:d3:45:8c:d2:ec:34:87:59:f4:77:73: 3b:91:78:b5:6e:92:f7:03:c9:db:04:da:cb:66:6a: f2:5d:1e:a7:7f:4a:3d:c3:ab:94:02:26:3e:3b:90: 67:25:c3:1a:e5:0b:9a:de:d1:a8:03:36:ca:f6:62: b6:77:5c:fd:81:00:53:d9:f3:f7:2a:be:7b:68:9a: e2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:87:8C:C6:8E:2D:BD:D7:E1:18:EF:68:57:66:19:01:9A:51:C6:ED X509v3 Authority Key Identifier: keyid:14:E6:73:C4:A7:1D:B3:4A:75:68:13:58:7E:48:21:2D:A2:E7:73:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FOZzxKcds0p1aBNYfkghLaLnczA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2F33/E6EC2D92809111EAABCDFF6CC4F9AE02/FOZzxKcds0p1aBNYfkghLaLnczA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:f2:29:70:39:7d:35:9a:b2:8b:b8:a7:11:e5:cf:b9:7f:a5: 5d:16:0a:47:2c:27:e9:d9:80:b7:0e:f6:81:c9:db:07:1d:fc: 01:87:2c:9a:f4:12:6b:5d:56:85:fe:1a:e9:96:c1:b9:13:77: 5c:f0:22:de:99:14:5e:35:35:cc:a2:cf:cc:e9:57:f4:38:61: 12:d2:e7:c4:3a:aa:5f:29:62:85:4c:71:22:53:a5:39:5a:c7: 44:25:60:6d:db:53:c3:a4:85:94:c1:06:fd:c6:11:5d:5f:7c: dc:06:c7:66:d4:5e:b3:2b:ea:32:49:24:c9:4c:1a:f0:9c:15: 82:c6:7b:47:fa:9f:8c:0c:e2:b4:ed:d2:f2:15:2a:22:4d:d7: cf:f8:aa:1c:21:0a:55:e7:db:0c:4f:e4:59:7d:95:14:b8:da: 0d:0f:cc:c1:4f:81:67:3e:fe:6b:cc:12:d2:ff:ae:12:ba:bb: 97:41:a4:f9:80:21:3d:e8:e1:5a:10:3a:df:95:e5:14:6d:6e: be:91:4e:5e:0b:93:c2:11:69:e2:a9:71:b1:2b:6e:f1:cc:5d: 10:fd:cb:1b:75:50:9e:f3:2a:ca:08:8d:3f:76:b1:d8:79:45: e4:21:15:6f:55:78:2b:28:da:ac:6e:b5:6a:52:e7:66:9f:6f: 14:d0:44:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTJGMzMxMTAvBgNVBAUTKDE0RTY3M0M0QTcxREIzNEE3NTY4MTM1ODdFNDgyMTJE QTJFNzczMzAwHhcNMjUxMDIyMjAyODIyWhcNMjUxMDI5MjAyODIyWjAYMRYwFAYD VQQDEw02OGY5M2U2Ni0zZTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnhPPai9rdaRkLGNJQQ6lXxnFjpiDn06wi9rsR/ESHG4SAi1ZjVHLCS9Yh6js 1+qk/qHrGoSVCjQ1lqX29IXbBApBK/mDmpqFfLcDp/txKtUiNMOkFaXakT8XoI8Z WgrJrAhE3ls99hHfC2dis9I4RwAyGENWXJiW2APLfpV1169qiWWtqT3cyrREl6o6 cUHSfvR4yYg2Cvy6KRYA365irySr6JiJCOP5KKNJbwoT936f+NfmkQdx00WM0uw0 h1n0d3M7kXi1bpL3A8nbBNrLZmryXR6nf0o9w6uUAiY+O5BnJcMa5Qua3tGoAzbK 9mK2d1z9gQBT2fP3Kr57aJriLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2HjMaO Lb3X4RjvaFdmGQGaUcbtMB8GA1UdIwQYMBaAFBTmc8SnHbNKdWgTWH5IIS2i53Mw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMkYzMy9FNkVDMkQ5Mjgw OTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMwcDFhQk5ZZmtnaExhTG5j ekEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZPWnp4S2NkczBwMWFCTllma2doTGFMbmN6QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkYzMy9FNkVDMkQ5MjgwOTExMUVBQUJDREZGNkNDNEY5QUUwMi9GT1p6eEtjZHMw cDFhQk5ZZmtnaExhTG5jekEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH8ilwOX01mrKLuKcR5c+5f6VdFgpHLCfp2YC3DvaBydsHHfwBhyya 9BJrXVaF/hrplsG5E3dc8CLemRReNTXMos/M6Vf0OGES0ufEOqpfKWKFTHEiU6U5 WsdEJWBt21PDpIWUwQb9xhFdX3zcBsdm1F6zK+oySSTJTBrwnBWCxntH+p+MDOK0 7dLyFSoiTdfP+KocIQpV59sMT+RZfZUUuNoND8zBT4FnPv5rzBLS/64SuruXQaT5 gCE96OFaEDrfleUUbW6+kU5eC5PCEWniqXGxK27xzF0Q/csbdVCe8yrKCI0/drHY eUXkIRVvVXgrKNqsbrVqUudmn28U0ET0 -----END CERTIFICATE-----Generated at Thu Oct 23 10:00:10 2025 by rpki-client