$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CE9/87106D3E270011E9A77B6E2CC4F9AE02/eFqwsi3OWhJmUAwQZrT2sF91ysA.mft File: eFqwsi3OWhJmUAwQZrT2sF91ysA.mft (raw, json) Hash identifier: UX1alT7IJ3QQKqHgNQwphpLK3jf0TzCCX4XwWZxekBY= Subject key identifier: 2B:CB:70:36:EC:BB:77:94:9D:CF:F9:08:E1:12:A8:65:6B:26:23:88 Authority key identifier: 78:5A:B0:B2:2D:CE:5A:12:66:50:0C:10:66:B4:F6:B0:5F:75:CA:C0 Certificate issuer: /CN=A91C2CE9/serialNumber=785AB0B22DCE5A1266500C1066B4F6B05F75CAC0 Certificate serial: 1105 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFqwsi3OWhJmUAwQZrT2sF91ysA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CE9/87106D3E270011E9A77B6E2CC4F9AE02/eFqwsi3OWhJmUAwQZrT2sF91ysA.mft Manifest number: 10FA Signing time: Wed 22 Oct 2025 17:41:22 +0000 Manifest this update: Wed 22 Oct 2025 17:41:21 +0000 Manifest next update: Wed 29 Oct 2025 17:41:21 +0000 Files and hashes: 1: eFqwsi3OWhJmUAwQZrT2sF91ysA.crl (hash: 2cJ0sUO5dfnvduXSZn+oVK3edQQ913TGvQl+yYIxvxQ=) 2: B3250BC6307B11E989188B3BC4F9AE02.roa (hash: i5f3IsLQcqkFQbLcTMdHVFZRfy5na+MUmyuuokwDYXo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CE9/87106D3E270011E9A77B6E2CC4F9AE02/eFqwsi3OWhJmUAwQZrT2sF91ysA.crl rsync://rpki.apnic.net/member_repository/A91C2CE9/87106D3E270011E9A77B6E2CC4F9AE02/eFqwsi3OWhJmUAwQZrT2sF91ysA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFqwsi3OWhJmUAwQZrT2sF91ysA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 17:41:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4357 (0x1105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CE9, serialNumber=785AB0B22DCE5A1266500C1066B4F6B05F75CAC0 Validity Not Before: Oct 22 17:41:21 2025 GMT Not After : Oct 29 17:41:21 2025 GMT Subject: CN=68f91742-78f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:37:00:25:16:27:d9:28:5d:a4:eb:01:34:17: 10:f9:c2:ba:bb:94:c2:56:9f:e4:03:69:9b:0e:49: 53:85:0e:79:c7:ce:ad:2f:3e:bf:2e:c7:a1:68:1d: 43:ce:7e:7e:29:cd:96:f9:31:7d:ad:fb:b9:27:fd: bf:c1:ae:b0:05:c7:e2:39:a8:87:60:52:49:d1:2f: 13:4a:62:25:ab:70:57:8f:9f:51:47:05:a5:84:06: c8:49:95:ca:eb:c8:ee:01:f5:e4:cb:66:1e:36:86: c4:c7:08:ce:b1:c4:f8:79:25:50:5d:93:5f:53:62: 21:7b:d4:fd:f7:1f:bc:0d:c8:9d:ae:c9:c3:fb:9b: 7d:5f:d1:51:bc:4d:17:33:df:32:d7:55:3b:c8:3c: 3a:e7:ab:4b:75:e0:a9:b3:a6:04:f1:e0:ea:f8:37: 99:68:a3:e8:34:0b:e0:c1:78:37:92:31:03:3c:a6: c5:46:5b:60:9d:70:37:c2:e9:ce:b2:0e:42:7e:bd: b2:e9:35:cc:df:bf:33:5d:50:77:8d:f5:18:5e:ba: c0:8b:8c:31:eb:51:64:81:2b:0a:3b:c5:a7:1c:13: 91:58:e6:80:a5:9a:53:58:2c:87:76:16:56:10:d6: c4:35:b7:c9:6c:5d:1a:e3:cd:27:39:6d:aa:00:3c: d3:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:CB:70:36:EC:BB:77:94:9D:CF:F9:08:E1:12:A8:65:6B:26:23:88 X509v3 Authority Key Identifier: keyid:78:5A:B0:B2:2D:CE:5A:12:66:50:0C:10:66:B4:F6:B0:5F:75:CA:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CE9/87106D3E270011E9A77B6E2CC4F9AE02/eFqwsi3OWhJmUAwQZrT2sF91ysA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eFqwsi3OWhJmUAwQZrT2sF91ysA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CE9/87106D3E270011E9A77B6E2CC4F9AE02/eFqwsi3OWhJmUAwQZrT2sF91ysA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:86:90:d3:79:9d:c2:bf:ea:14:97:63:39:d1:55:04:5a:e7: e4:84:3f:7f:6a:3b:d8:a6:e9:32:b9:e0:67:bf:9a:e5:46:09: 3a:b0:47:96:eb:ff:cb:5b:fb:c7:d1:4f:a6:47:ba:e4:16:0f: f1:28:e5:c4:ae:5e:78:96:27:32:03:bf:d7:5d:b6:af:10:85: ea:60:09:f0:41:4c:e6:e9:2b:d2:9a:2c:ec:9c:c8:82:7d:cb: 03:75:62:8a:08:fd:24:51:1d:cf:82:3d:73:84:68:17:eb:28: e8:96:94:01:9d:52:8c:25:68:f4:90:0c:29:2a:e1:7c:98:02: c3:b2:ac:8e:ef:a2:f2:5c:9d:ad:e0:d6:91:4a:fb:3e:64:42: 85:1c:df:4f:80:f8:94:e7:79:00:c0:08:60:cb:2e:62:8f:a3: 93:42:35:c6:59:a6:48:bf:e3:1e:3e:41:71:82:29:ec:72:8a: 58:98:a8:de:97:55:be:43:40:35:f3:6e:35:d3:82:11:f4:9a: df:db:57:34:1a:19:53:3f:ba:61:e5:3b:11:a3:7d:9e:d7:64: cc:c6:8a:41:7e:dd:ab:18:01:cc:a6:a4:ee:35:4c:22:e7:b4: 0f:ed:e4:5e:2f:6c:ab:96:15:72:dd:eb:ac:3e:69:45:e3:7d: 9e:de:8e:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDRTkxMTAvBgNVBAUTKDc4NUFCMEIyMkRDRTVBMTI2NjUwMEMxMDY2QjRGNkIw NUY3NUNBQzAwHhcNMjUxMDIyMTc0MTIxWhcNMjUxMDI5MTc0MTIxWjAYMRYwFAYD VQQDEw02OGY5MTc0Mi03OGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zcAJRYn2ShdpOsBNBcQ+cK6u5TCVp/kA2mbDklThQ55x86tLz6/LsehaB1D zn5+Kc2W+TF9rfu5J/2/wa6wBcfiOaiHYFJJ0S8TSmIlq3BXj59RRwWlhAbISZXK 68juAfXky2YeNobExwjOscT4eSVQXZNfU2Ihe9T99x+8DcidrsnD+5t9X9FRvE0X M98y11U7yDw656tLdeCps6YE8eDq+DeZaKPoNAvgwXg3kjEDPKbFRltgnXA3wunO sg5Cfr2y6TXM378zXVB3jfUYXrrAi4wx61FkgSsKO8WnHBORWOaApZpTWCyHdhZW ENbENbfJbF0a480nOW2qADzT+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvLcDbs u3eUnc/5COESqGVrJiOIMB8GA1UdIwQYMBaAFHhasLItzloSZlAMEGa09rBfdcrA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNFOS84NzEwNkQzRTI3 MDAxMUU5QTc3QjZFMkNDNEY5QUUwMi9lRnF3c2kzT1doSm1VQXdRWnJUMnNGOTF5 c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VGcXdzaTNPV2hKbVVBd1FaclQyc0Y5MXlzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkNFOS84NzEwNkQzRTI3MDAxMUU5QTc3QjZFMkNDNEY5QUUwMi9lRnF3c2kzT1do Sm1VQXdRWnJUMnNGOTF5c0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPhpDTeZ3Cv+oUl2M50VUEWufkhD9/ajvYpukyueBnv5rlRgk6sEeW 6//LW/vH0U+mR7rkFg/xKOXErl54licyA7/XXbavEIXqYAnwQUzm6SvSmizsnMiC fcsDdWKKCP0kUR3Pgj1zhGgX6yjolpQBnVKMJWj0kAwpKuF8mALDsqyO76LyXJ2t 4NaRSvs+ZEKFHN9PgPiU53kAwAhgyy5ij6OTQjXGWaZIv+MePkFxginscopYmKje l1W+Q0A1824104IR9Jrf21c0GhlTP7ph5TsRo32e12TMxopBft2rGAHMpqTuNUwi 57QP7eReL2yrlhVy3eusPmlF432e3o78 -----END CERTIFICATE-----Generated at Thu Oct 23 20:36:13 2025 by rpki-client