$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft File: mFjOS0vHLnbmaMR9RImMCQiWq-s.mft (raw, json) Hash identifier: T3MD2zFgI6DJIKXa5kmIIXm1pbvDui4h404TQV+ovgs= Subject key identifier: 8E:65:9A:28:4F:D2:E7:25:04:10:48:5E:09:57:1E:27:AD:FF:B7:B5 Authority key identifier: 98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB Certificate issuer: /CN=A91A4B1A/serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Certificate serial: 0228 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft Manifest number: 0222 Signing time: Fri 24 Oct 2025 16:22:20 +0000 Manifest this update: Fri 24 Oct 2025 16:22:19 +0000 Manifest next update: Fri 31 Oct 2025 16:22:19 +0000 Files and hashes: 1: mFjOS0vHLnbmaMR9RImMCQiWq-s.crl (hash: BX4SS4iG7bIit3XmOt3rWWBWQJ9+mhQKdd2NTqXQ5P0=) 2: 4C3A869614DF11EEAB46A86DC4F9AE02.roa (hash: lu38CDRBmX2eL86FuDGblRO37V7hVT/nMCfbmUIJkQk=) 3: 4BC4F6A614DF11EEAB46A86DC4F9AE02.roa (hash: UFLmIYqMMQZsSlXO+J3Nx0+Pb9WqTG32RlxuAiHOUdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 16:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Validity Not Before: Oct 24 16:22:19 2025 GMT Not After : Oct 31 16:22:19 2025 GMT Subject: CN=68fba7bc-fde2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:68:d7:72:6f:9a:49:65:5b:a9:85:f8:11:42: db:11:ad:fd:53:6c:c6:31:35:2b:55:1a:3d:8c:b0: 02:48:80:d4:6c:1d:84:02:6c:70:cc:1c:c1:72:fc: 9f:1d:d4:ec:45:43:bd:d4:e1:00:30:4b:a7:5f:bb: b5:fe:3a:25:39:93:98:77:6f:a0:0b:50:b6:21:53: fe:de:c2:4e:35:91:c1:62:8e:9f:7e:24:16:16:06: 5f:0f:a2:b0:2e:65:0e:72:f8:d7:8c:5a:db:d5:1c: b4:15:c6:39:d7:bd:58:ff:7c:6c:17:dd:fa:39:cf: a0:5e:05:b7:1b:4a:72:d6:76:9b:c1:6e:ed:ad:f7: 70:20:01:fa:cc:21:72:90:be:ec:7c:ca:cb:2b:66: e9:ca:0c:20:a3:2c:bb:fe:a5:6b:48:55:8e:72:8e: f3:45:bf:96:86:c1:85:a0:e9:dd:27:79:f5:f4:fa: 8b:12:e7:e1:e8:4d:a4:a9:48:27:1b:ee:b2:ce:78: 47:b9:26:db:24:65:eb:6f:07:6c:78:a4:94:16:63: 95:64:c6:1c:a2:0b:93:75:53:e2:cb:77:99:25:ae: 6a:32:03:fa:3c:24:5f:44:14:4b:ab:46:82:08:f2: 03:ce:c2:b4:5d:e1:8d:66:b7:7f:26:b8:e3:6a:47: df:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:65:9A:28:4F:D2:E7:25:04:10:48:5E:09:57:1E:27:AD:FF:B7:B5 X509v3 Authority Key Identifier: keyid:98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:d2:48:3f:bb:d2:e5:fc:f5:70:7e:31:4d:2d:3c:74:7e:32: a1:af:4f:86:60:42:76:84:e2:23:a9:13:1b:73:10:7f:35:ed: ef:98:e6:32:a0:39:d7:bc:f4:ea:9e:3f:a3:46:fc:61:86:32: 47:b1:8c:a5:40:1b:c1:06:72:33:d0:b5:5e:74:41:ac:b3:c2: 61:d1:b9:ae:d4:a6:f4:0c:b0:6e:6b:c9:ed:c5:f4:2a:86:38: c5:3f:14:33:e1:3e:54:2d:a2:52:f3:3c:4d:bf:c2:68:f2:1c: 05:34:3d:be:ed:d0:09:89:6e:f7:e4:25:81:00:96:ad:f9:3a: d8:79:4c:73:a4:c1:83:a7:07:97:59:ec:e0:4c:02:f6:41:f2: fd:57:5a:10:4f:cf:b5:0a:df:d7:92:85:0d:ba:9f:08:a8:a3: 99:59:49:16:70:ae:98:8b:c7:e5:4f:38:a0:8c:ef:21:30:a4: c2:ec:68:81:3d:1c:13:51:49:2b:5a:63:17:9e:9c:ba:b6:b2: fc:c1:2b:60:d1:61:7d:0c:2f:c6:a0:5d:54:66:68:59:c9:67: 82:9b:4e:a4:81:6c:30:b7:f0:0a:21:e9:be:e5:ae:2e:9d:40: ce:09:77:4e:7f:d2:32:0b:31:6e:a0:d6:e4:86:c3:c2:a2:89: 26:82:ae:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKDk4NThDRTRCNEJDNzJFNzZFNjY4QzQ3RDQ0ODk4QzA5 MDg5NkFCRUIwHhcNMjUxMDI0MTYyMjE5WhcNMjUxMDMxMTYyMjE5WjAYMRYwFAYD VQQDEw02OGZiYTdiYy1mZGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGjXcm+aSWVbqYX4EULbEa39U2zGMTUrVRo9jLACSIDUbB2EAmxwzBzBcvyf HdTsRUO91OEAMEunX7u1/jolOZOYd2+gC1C2IVP+3sJONZHBYo6ffiQWFgZfD6Kw LmUOcvjXjFrb1Ry0FcY5171Y/3xsF936Oc+gXgW3G0py1nabwW7trfdwIAH6zCFy kL7sfMrLK2bpygwgoyy7/qVrSFWOco7zRb+WhsGFoOndJ3n19PqLEufh6E2kqUgn G+6yznhHuSbbJGXrbwdseKSUFmOVZMYcoguTdVPiy3eZJa5qMgP6PCRfRBRLq0aC CPIDzsK0XeGNZrd/JrjjakffJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI5lmihP 0uclBBBIXglXHiet/7e1MB8GA1UdIwQYMBaAFJhYzktLxy525mjEfUSJjAkIlqvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS9CNDVGM0ZDNDgx OUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExuYm1hTVI5UkltTUNRaVdx LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Gak9TMHZITG5ibWFNUjlSSW1NQ1FpV3Etcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS9CNDVGM0ZDNDgxOUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExu Ym1hTVI5UkltTUNRaVdxLXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCL0kg/u9Ll/PVwfjFNLTx0fjKhr0+GYEJ2hOIjqRMbcxB/Ne3vmOYy oDnXvPTqnj+jRvxhhjJHsYylQBvBBnIz0LVedEGss8Jh0bmu1Kb0DLBua8ntxfQq hjjFPxQz4T5ULaJS8zxNv8Jo8hwFND2+7dAJiW735CWBAJat+TrYeUxzpMGDpweX WezgTAL2QfL9V1oQT8+1Ct/XkoUNup8IqKOZWUkWcK6Yi8flTzigjO8hMKTC7GiB PRwTUUkrWmMXnpy6trL8wStg0WF9DC/GoF1UZmhZyWeCm06kgWwwt/AKIem+5a4u nUDOCXdOf9IyCzFuoNbkhsPCookmgq7X -----END CERTIFICATE-----Generated at Sun Oct 26 10:25:08 2025 by rpki-client