$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft File: mD14MALFTaj4puKVg4ucrwE2Q1g.mft (raw, json) Hash identifier: zUHGC2zSngdj4Gbc5b7O6EaWXBsnJLmJVxqNLC8368I= Subject key identifier: 24:C9:C2:42:20:1A:84:97:D5:EE:80:0F:E2:6D:64:F1:7A:71:9E:FB Authority key identifier: 98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 Certificate issuer: /CN=A91CF77D/serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Certificate serial: 087E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft Manifest number: 0874 Signing time: Wed 22 Oct 2025 21:22:55 +0000 Manifest this update: Wed 22 Oct 2025 21:22:54 +0000 Manifest next update: Wed 29 Oct 2025 21:22:54 +0000 Files and hashes: 1: mD14MALFTaj4puKVg4ucrwE2Q1g.crl (hash: l15NH3Afw3AGG2jnWSy5kxCiN+wUFunZ4wE5ENtyuvU=) 2: D24575B2D22E11EA9D4DDE29C4F9AE02.roa (hash: xQNJE/wFi8JMz2ss0ss1yj9BAf/VPU6rBNzmi8uV9UI=) 3: 8FADE73CA49B11EEB19E774BC4F9AE02.roa (hash: j94hdqhS8hEZkUNMK0Gy0/wMaWkISNSvPZJQcef/86U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 21:22:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2174 (0x87e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF77D, serialNumber=983D783002C54DA8F8A6E295838B9CAF01364358 Validity Not Before: Oct 22 21:22:54 2025 GMT Not After : Oct 29 21:22:54 2025 GMT Subject: CN=68f94b2f-1410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:67:33:84:4d:28:e8:cd:79:35:a7:c6:c1:d6: cc:1a:68:81:92:c6:b4:c9:3c:5c:70:31:0b:e7:53: e3:c0:65:04:1a:25:43:cc:26:be:b9:c3:e4:e7:2a: 57:9b:23:cf:a1:4d:a0:d7:e8:50:6c:4c:05:1e:28: 14:2f:f6:0d:44:e6:c3:35:60:79:64:c3:f9:e3:3d: 3c:d7:e3:44:a6:9b:ae:69:7c:5e:68:c9:01:60:5c: a7:9c:11:c0:4a:1d:90:76:0f:06:e1:d8:89:04:7f: 5e:8e:9e:a6:37:b7:7c:2b:48:68:13:96:4b:43:56: b2:8c:f3:62:37:30:ce:0f:8f:58:1f:ad:16:2f:99: 4b:36:72:00:ae:a8:91:d0:cf:65:fa:37:10:8d:18: 08:37:6c:0a:d3:a7:96:6a:d4:99:f1:c8:80:f4:27: 5c:64:82:e1:fe:bd:4e:3b:d6:0c:18:e9:e3:c6:dc: ce:34:4a:94:e3:db:27:58:2a:20:f2:af:13:e2:ff: 94:ee:b8:06:33:93:1f:31:31:95:5c:44:bb:c3:6f: 4f:a4:c3:e0:49:15:e2:02:5f:32:d7:81:1a:7f:57: 46:2a:bf:00:67:fa:5b:8a:c1:f6:6b:73:89:40:6e: 66:ff:d5:f1:dc:1f:ea:56:e6:bf:a4:c0:fc:60:f3: be:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:C9:C2:42:20:1A:84:97:D5:EE:80:0F:E2:6D:64:F1:7A:71:9E:FB X509v3 Authority Key Identifier: keyid:98:3D:78:30:02:C5:4D:A8:F8:A6:E2:95:83:8B:9C:AF:01:36:43:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mD14MALFTaj4puKVg4ucrwE2Q1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF77D/11E259D0D22D11EA8AE73D27C4F9AE02/mD14MALFTaj4puKVg4ucrwE2Q1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:89:69:ac:90:af:57:50:fe:ab:01:7d:7f:8c:3c:af:55:81: f9:79:f9:bc:c5:4c:6f:94:1a:12:f4:fe:a0:09:46:02:81:e1: a8:3d:5b:3c:ab:66:af:b3:97:05:29:e1:1f:2f:2b:02:f4:d7: 4b:9c:e0:63:a3:17:58:1e:ac:44:e2:b5:75:66:38:b1:05:56: b1:ef:e4:d5:08:65:7b:d9:f6:6f:b7:68:1c:15:b1:4b:41:7b: 16:29:63:b7:93:71:36:53:68:2c:35:9a:89:13:76:27:55:d6: 60:f4:56:01:cd:66:7c:89:87:2a:f8:00:c7:8d:51:c2:06:da: 9c:b3:67:0b:88:5d:5f:38:54:d7:de:73:5e:1a:b0:c0:c5:dd: fe:39:2e:b1:d5:17:bb:10:fb:b5:af:60:53:f9:9f:54:41:17: 7e:90:a6:2a:53:14:14:92:c2:1f:08:95:c3:54:95:9a:67:7d: cd:cb:aa:18:f0:25:36:05:37:b2:7a:ca:1a:57:a0:c5:8a:39: 47:a3:8f:ca:af:b1:67:79:45:d7:d8:f8:98:a4:06:0a:9c:d6: 51:48:e7:9c:42:62:4c:51:79:c0:4a:f6:4c:9b:52:d4:44:18: f9:e1:01:34:b2:7c:91:1a:a5:1d:6b:32:ce:23:a9:ee:75:66: 91:93:6c:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y3N0QxMTAvBgNVBAUTKDk4M0Q3ODMwMDJDNTREQThGOEE2RTI5NTgzOEI5Q0FG MDEzNjQzNTgwHhcNMjUxMDIyMjEyMjU0WhcNMjUxMDI5MjEyMjU0WjAYMRYwFAYD VQQDEw02OGY5NGIyZi0xNDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3WczhE0o6M15NafGwdbMGmiBksa0yTxccDEL51PjwGUEGiVDzCa+ucPk5ypX myPPoU2g1+hQbEwFHigUL/YNRObDNWB5ZMP54z081+NEppuuaXxeaMkBYFynnBHA Sh2Qdg8G4diJBH9ejp6mN7d8K0hoE5ZLQ1ayjPNiNzDOD49YH60WL5lLNnIArqiR 0M9l+jcQjRgIN2wK06eWatSZ8ciA9CdcZILh/r1OO9YMGOnjxtzONEqU49snWCog 8q8T4v+U7rgGM5MfMTGVXES7w29PpMPgSRXiAl8y14Eaf1dGKr8AZ/pbisH2a3OJ QG5m/9Xx3B/qVua/pMD8YPO+EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCTJwkIg GoSX1e6AD+JtZPF6cZ77MB8GA1UdIwQYMBaAFJg9eDACxU2o+KbilYOLnK8BNkNY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjc3RC8xMUUyNTlEMEQy MkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRhajRwdUtWZzR1Y3J3RTJR MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21EMTRNQUxGVGFqNHB1S1ZnNHVjcndFMlExZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Rjc3RC8xMUUyNTlEMEQyMkQxMUVBOEFFNzNEMjdDNEY5QUUwMi9tRDE0TUFMRlRh ajRwdUtWZzR1Y3J3RTJRMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8iWmskK9XUP6rAX1/jDyvVYH5efm8xUxvlBoS9P6gCUYCgeGoPVs8 q2avs5cFKeEfLysC9NdLnOBjoxdYHqxE4rV1ZjixBVax7+TVCGV72fZvt2gcFbFL QXsWKWO3k3E2U2gsNZqJE3YnVdZg9FYBzWZ8iYcq+ADHjVHCBtqcs2cLiF1fOFTX 3nNeGrDAxd3+OS6x1Re7EPu1r2BT+Z9UQRd+kKYqUxQUksIfCJXDVJWaZ33Ny6oY 8CU2BTeyesoaV6DFijlHo4/Kr7FneUXX2PiYpAYKnNZRSOecQmJMUXnASvZMm1LU RBj54QE0snyRGqUdazLOI6nudWaRk2yE -----END CERTIFICATE-----Generated at Thu Oct 23 09:56:29 2025 by rpki-client