$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft File: RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft (raw, json) Hash identifier: FkN1uaCWPb8nsIi0YLxE2hOhgJOB/K7GxAnnHOrjwWk= Subject key identifier: 10:35:72:2E:08:E9:E1:94:9D:74:09:0E:BD:08:DA:F7:2C:12:44:62 Authority key identifier: 47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A Certificate issuer: /CN=A91CB8BA/serialNumber=470A93449E611FA9AD05A289D6188220B5FCFC3A Certificate serial: 0911 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft Manifest number: 0900 Signing time: Wed 22 Oct 2025 03:47:43 +0000 Manifest this update: Wed 22 Oct 2025 03:47:41 +0000 Manifest next update: Wed 29 Oct 2025 03:47:41 +0000 Files and hashes: 1: RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl (hash: rCsAtZ9G8WoLRXkpOzZ+fhqlv9bSiPoGe3zeyfGPZo4=) 2: 465DBB30BA8811EAAF996D39C4F9AE02.roa (hash: 23ndFVCcLg+/bCNKhL706A7YBuPjvG2i31lg9YjdTYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 03:47:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2321 (0x911) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=470A93449E611FA9AD05A289D6188220B5FCFC3A Validity Not Before: Oct 22 03:47:41 2025 GMT Not After : Oct 29 03:47:41 2025 GMT Subject: CN=68f853de-1df4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b3:5d:0d:1f:6d:ff:20:90:d7:bb:a5:ef:28: 65:d5:e2:e2:00:28:6d:92:27:e4:de:6f:f8:0b:72: 99:cc:13:95:74:c5:ce:0a:6a:6a:ee:74:11:4a:59: b5:73:ee:ac:3d:57:e5:12:32:fe:e5:b4:b0:bd:91: 4e:c3:ff:9d:0d:f3:c3:06:40:47:f5:36:ed:7e:30: 7d:a2:71:dd:ea:f2:80:d6:1d:3b:c5:ce:b2:08:13: 24:71:7b:9e:d2:b2:7a:ff:20:19:32:3f:5f:8e:6c: e6:f5:8b:6f:29:a8:0a:32:cc:37:70:3b:1d:25:b9: 9f:c9:69:f3:6c:3e:30:14:56:43:83:d2:4a:95:9a: d0:1f:24:a6:92:9f:85:03:44:81:f0:8c:95:46:1a: 2f:eb:98:37:ae:43:a9:4f:a2:e6:cc:7d:f0:e5:74: ab:5c:b0:8c:db:6e:fe:1d:b1:e4:bb:a8:c5:5c:b6: 43:d8:68:50:51:f4:ef:95:21:7f:a3:0c:a2:b8:fb: 14:1b:c2:01:d6:37:75:00:69:0b:78:34:be:38:ce: 1c:7d:c9:c6:36:d1:49:9d:ff:19:a7:08:73:e8:1d: f0:32:04:2f:c4:60:4e:f7:b1:4e:d9:ac:9e:35:7b: d9:f8:63:cd:7e:2c:69:29:8d:cb:e5:4d:95:a8:1f: 8d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:35:72:2E:08:E9:E1:94:9D:74:09:0E:BD:08:DA:F7:2C:12:44:62 X509v3 Authority Key Identifier: keyid:47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:53:49:40:49:1b:b1:5e:a3:8b:83:88:e4:19:05:c1:7f:fd: fc:ed:8b:39:01:7d:61:62:ce:a0:25:75:8c:09:1a:c7:f0:55: 33:f6:fe:fd:93:a2:fb:84:ca:52:55:4c:b2:cc:81:b1:bc:53: 64:b6:6f:b2:aa:b4:9e:50:d1:62:2e:91:8b:55:21:b4:33:07: 6b:b9:2f:91:f2:9f:50:87:9f:e6:54:57:b2:09:df:f9:e4:8f: 97:fb:ab:53:0d:70:3e:0d:b4:2f:a5:cf:3c:34:94:80:f2:86: c3:5f:6d:52:b7:ef:a0:77:09:43:76:b0:33:91:34:3a:ee:e7: 96:36:8c:4c:5e:b4:55:c6:41:05:84:9c:4c:f3:92:3d:40:c1: 37:20:b6:1b:58:ab:e8:fa:d4:85:75:f0:a5:ff:45:08:ee:04: 1c:5a:14:04:c3:55:d3:9f:c8:ca:48:cc:4b:49:10:33:51:a0: 49:6c:8d:1f:ff:77:2a:2c:e3:ac:fb:98:cc:22:57:14:32:f3: 15:3e:d9:c2:7f:35:e2:5d:36:c1:bc:0a:78:6f:47:30:1f:27: 6c:fb:a4:2a:31:13:a5:87:6a:36:49:b8:b4:fe:20:32:9e:63: 2a:66:e6:50:cf:dd:ad:60:d5:4f:06:5b:b1:24:1b:e1:56:32: 66:0c:3b:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDQ3MEE5MzQ0OUU2MTFGQTlBRDA1QTI4OUQ2MTg4MjIw QjVGQ0ZDM0EwHhcNMjUxMDIyMDM0NzQxWhcNMjUxMDI5MDM0NzQxWjAYMRYwFAYD VQQDEw02OGY4NTNkZS0xZGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbNdDR9t/yCQ17ul7yhl1eLiAChtkifk3m/4C3KZzBOVdMXOCmpq7nQRSlm1 c+6sPVflEjL+5bSwvZFOw/+dDfPDBkBH9TbtfjB9onHd6vKA1h07xc6yCBMkcXue 0rJ6/yAZMj9fjmzm9YtvKagKMsw3cDsdJbmfyWnzbD4wFFZDg9JKlZrQHySmkp+F A0SB8IyVRhov65g3rkOpT6LmzH3w5XSrXLCM227+HbHku6jFXLZD2GhQUfTvlSF/ owyiuPsUG8IB1jd1AGkLeDS+OM4cfcnGNtFJnf8Zpwhz6B3wMgQvxGBO97FO2aye NXvZ+GPNfixpKY3L5U2VqB+NWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBA1ci4I 6eGUnXQJDr0I2vcsEkRiMB8GA1UdIwQYMBaAFEcKk0SeYR+prQWiidYYgiC1/Pw6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8yQjczMkU3MEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9Sd3FUUko1aEg2bXRCYUtKMWhpQ0lMWDhf RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J3cVRSSjVoSDZtdEJhS0oxaGlDSUxYOF9Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8yQjczMkU3MEJBODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9Sd3FUUko1aEg2 bXRCYUtKMWhpQ0lMWDhfRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsU0lASRuxXqOLg4jkGQXBf/387Ys5AX1hYs6gJXWMCRrH8FUz9v79 k6L7hMpSVUyyzIGxvFNktm+yqrSeUNFiLpGLVSG0MwdruS+R8p9Qh5/mVFeyCd/5 5I+X+6tTDXA+DbQvpc88NJSA8obDX21St++gdwlDdrAzkTQ67ueWNoxMXrRVxkEF hJxM85I9QME3ILYbWKvo+tSFdfCl/0UI7gQcWhQEw1XTn8jKSMxLSRAzUaBJbI0f /3cqLOOs+5jMIlcUMvMVPtnCfzXiXTbBvAp4b0cwHyds+6QqMROlh2o2Sbi0/iAy nmMqZuZQz92tYNVPBluxJBvhVjJmDDtN -----END CERTIFICATE-----Generated at Wed Oct 22 10:28:51 2025 by rpki-client