$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft File: AShwXWnFHg4rB4rtuZiR5_GbTR8.mft (raw, json) Hash identifier: tmsVRhtFc7SusiQgiFKOrO7cWOK1XWhfeFg2Zl4h/fg= Subject key identifier: 5F:1C:DE:98:81:38:A6:D7:02:3C:92:D0:A0:B7:4E:9A:05:8C:DD:2E Authority key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F Certificate issuer: /CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Certificate serial: 0BD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft Manifest number: 0BC6 Signing time: Wed 22 Oct 2025 19:30:02 +0000 Manifest this update: Wed 22 Oct 2025 19:30:02 +0000 Manifest next update: Wed 29 Oct 2025 19:30:02 +0000 Files and hashes: 1: AShwXWnFHg4rB4rtuZiR5_GbTR8.crl (hash: WD6zB+wDcGzYM+Vkkx4fAP4q3SJ0PYORvsn87dlVeAk=) 2: E85B23282DF211EAA63F5D60C4F9AE02.roa (hash: mo/NLmT3qTw906fWZIYD+HCMnaLWUZhtdPeHn3oqJ6A=) 3: 71E30CDCC4ED11EAA1C5766AC4F9AE02.roa (hash: vucacXYSTLw3pjicQM0MXD2U1//BsbEO3gpX4wVcXB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 19:30:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3028 (0xbd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0B, serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Validity Not Before: Oct 22 19:30:02 2025 GMT Not After : Oct 29 19:30:02 2025 GMT Subject: CN=68f930ba-4630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:72:0c:1e:1c:0c:ce:31:fe:b9:34:45:a6:a8: 9a:32:15:81:e9:c8:e8:20:89:11:4b:f9:80:0d:6b: f5:7f:4a:d8:01:8a:2c:ae:2d:82:32:1f:43:27:e8: c4:b3:1d:63:ac:7f:37:8e:c6:8d:e8:b7:8c:16:25: 56:4f:23:2e:f4:5a:0a:10:b8:23:c8:92:50:b0:d2: 96:71:01:8b:33:e9:c3:0c:76:9c:16:ea:8d:f6:8c: 7c:0d:c8:0f:20:a6:f2:5e:c5:2b:a4:e6:e8:25:f4: 76:f5:9c:b6:9f:da:f2:df:fc:b5:d2:d9:69:30:09: 18:68:1b:35:b7:ea:12:64:e7:b9:33:01:56:b0:22: 94:38:f2:d7:63:c0:42:95:cc:8f:63:f5:e4:88:4f: 84:a3:c0:95:c2:9d:60:47:63:6a:a3:41:06:0f:72: 37:fe:fb:ee:41:dc:7e:20:44:f4:97:f9:fa:01:b2: a4:65:a5:02:db:9b:e2:56:a4:6f:a9:92:bc:cf:79: c4:02:3d:21:0c:93:90:eb:5d:21:33:d2:e2:1c:9c: 7d:79:bb:ef:97:af:7f:96:59:de:05:6d:04:88:7a: cc:27:14:6a:4f:e4:6c:a1:1d:85:b5:76:6a:91:6f: cf:08:54:22:16:63:d2:4a:c6:f9:77:39:ec:a1:aa: fc:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:1C:DE:98:81:38:A6:D7:02:3C:92:D0:A0:B7:4E:9A:05:8C:DD:2E X509v3 Authority Key Identifier: keyid:01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:dc:62:81:e4:31:06:af:39:7b:15:f9:7f:35:0a:1d:6a:a6: be:d2:46:d7:da:09:27:26:74:8b:31:cb:ef:3b:42:0f:2e:6b: 9f:2c:f0:3e:5c:49:3c:3d:09:ad:64:fc:d6:a4:52:00:fc:64: 5c:b7:61:21:d4:34:1a:03:68:ab:09:ba:b2:42:e2:64:4e:37: e2:22:b4:19:9e:92:c9:a5:93:84:78:e7:e2:ba:d2:26:07:64: 43:2d:fe:0d:b0:6e:95:5f:e4:07:89:32:c5:ec:75:b7:61:76: e8:c6:c3:b7:b9:f6:aa:0d:4c:e3:b7:f2:5b:dd:16:3b:ee:ec: 65:2b:83:fd:45:19:15:23:e5:d4:55:6b:ab:82:62:2f:03:86: 55:be:a1:89:2c:de:82:e8:24:81:1b:c8:9c:e4:fe:59:9e:30: 79:91:42:85:0f:5b:a6:0d:e8:fd:b3:14:2b:8c:09:65:fe:4e: f1:c6:92:f0:d6:1a:53:4c:1b:1e:ea:bd:5b:7e:5f:e8:cc:e7: 88:8c:07:77:c6:09:f6:5b:64:0e:25:93:34:c3:fd:90:e0:5b: de:25:81:90:bc:84:4d:38:cf:08:16:a4:97:6e:bc:6c:6b:d8: 73:95:5b:3a:8f:70:75:41:2b:a8:6a:72:0a:0f:62:07:4e:82: e8:d3:81:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFFREI5OTg5MUU3 RjE5QjREMUYwHhcNMjUxMDIyMTkzMDAyWhcNMjUxMDI5MTkzMDAyWjAYMRYwFAYD VQQDEw02OGY5MzBiYS00NjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmXIMHhwMzjH+uTRFpqiaMhWB6cjoIIkRS/mADWv1f0rYAYosri2CMh9DJ+jE sx1jrH83jsaN6LeMFiVWTyMu9FoKELgjyJJQsNKWcQGLM+nDDHacFuqN9ox8DcgP IKbyXsUrpOboJfR29Zy2n9ry3/y10tlpMAkYaBs1t+oSZOe5MwFWsCKUOPLXY8BC lcyPY/XkiE+Eo8CVwp1gR2Nqo0EGD3I3/vvuQdx+IET0l/n6AbKkZaUC25viVqRv qZK8z3nEAj0hDJOQ610hM9LiHJx9ebvvl69/llneBW0EiHrMJxRqT+RsoR2FtXZq kW/PCFQiFmPSSsb5dznsoar8cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF8c3piB OKbXAjyS0KC3TpoFjN0uMB8GA1UdIwQYMBaAFAEocF1pxR4OKweK7bmYkefxm00f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQi80NDU5NDQ4QzJD NkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhnNHJCNHJ0dVppUjVfR2JU UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FTaHdYV25GSGc0ckI0cnR1WmlSNV9HYlRSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEMwQi80NDU5NDQ4QzJDNkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhn NHJCNHJ0dVppUjVfR2JUUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO3GKB5DEGrzl7Ffl/NQodaqa+0kbX2gknJnSLMcvvO0IPLmufLPA+ XEk8PQmtZPzWpFIA/GRct2Eh1DQaA2irCbqyQuJkTjfiIrQZnpLJpZOEeOfiutIm B2RDLf4NsG6VX+QHiTLF7HW3YXboxsO3ufaqDUzjt/Jb3RY77uxlK4P9RRkVI+XU VWurgmIvA4ZVvqGJLN6C6CSBG8ic5P5ZnjB5kUKFD1umDej9sxQrjAll/k7xxpLw 1hpTTBse6r1bfl/ozOeIjAd3xgn2W2QOJZM0w/2Q4FveJYGQvIRNOM8IFqSXbrxs a9hzlVs6j3B1QSuoanIKD2IHToLo04Gv -----END CERTIFICATE-----Generated at Thu Oct 23 20:45:47 2025 by rpki-client