$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft File: fvLsMxvWVD0y25gMUGJsBAfKiYI.mft (raw, json) Hash identifier: 15iHzdsxJVAeqnKZtqpG9ZtFmAmQcD85iKiHEaia6Pg= Subject key identifier: 90:FE:6D:CB:9F:D6:3C:63:BC:7D:F5:F6:04:AA:14:57:1F:F5:99:93 Authority key identifier: 7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 Certificate issuer: /CN=A91D5E23/serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Certificate serial: 0926 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft Manifest number: 0920 Signing time: Sun 26 Oct 2025 20:51:45 +0000 Manifest this update: Sun 26 Oct 2025 20:51:45 +0000 Manifest next update: Sun 02 Nov 2025 20:51:45 +0000 Files and hashes: 1: fvLsMxvWVD0y25gMUGJsBAfKiYI.crl (hash: s6vHHyfcYZu79DQtiM1IFPLnN00X/OM9CVA7w4C6EEw=) 2: 70C35E88B07511EA8C0EC372C4F9AE02.roa (hash: uh8Xk70gWxRTmNYaCNUAB+Hh9CL9zqsYHo9ULlX8dpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 20:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2342 (0x926) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5E23, serialNumber=7EF2EC331BD6543D32DB980C50626C0407CA8982 Validity Not Before: Oct 26 20:51:45 2025 GMT Not After : Nov 2 20:51:45 2025 GMT Subject: CN=68fe89e1-8d02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:8b:3b:4d:2a:41:60:a2:66:f4:1a:55:46:fb: e4:6d:a2:b4:f9:a5:f8:0e:44:a0:27:6a:30:a7:48: 47:ad:b5:ce:9c:b7:22:98:a4:ee:57:a1:f7:03:d5: ca:83:1e:70:8e:fd:94:e3:ca:5a:3d:74:5b:31:b9: e8:aa:7d:ed:f1:c4:2a:97:50:e8:44:ef:44:88:ac: bb:61:a2:aa:25:dc:ad:0d:b4:a9:f7:29:06:72:df: b4:1f:0f:fb:ca:e7:c0:23:c0:4d:6b:a1:f1:e7:03: 02:d0:5c:a5:d3:a1:f2:dd:8c:1a:df:a3:00:a7:dd: b8:ec:c6:02:9b:ab:11:1e:e3:8f:90:57:f8:a5:40: 26:b3:60:e7:07:f1:71:95:9e:e3:b7:5c:c7:91:23: f4:2d:84:9b:f2:a6:75:9a:a4:af:99:c6:7d:a9:42: 39:6a:e0:6a:a6:e3:b7:01:68:da:9a:03:7c:50:4f: bd:69:41:8d:9d:7a:20:0d:a2:e2:09:47:80:1b:3b: 74:93:51:16:a3:ea:69:cd:9f:9c:c8:29:bc:2f:ce: 0b:d2:ef:a2:cf:61:63:53:d7:a2:d7:88:48:29:8f: f2:3e:ba:8c:e6:5f:6c:f9:43:42:ab:0d:ce:e8:6e: 49:9c:54:2e:10:d9:4f:f4:40:04:8d:44:b2:23:68: 12:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:FE:6D:CB:9F:D6:3C:63:BC:7D:F5:F6:04:AA:14:57:1F:F5:99:93 X509v3 Authority Key Identifier: keyid:7E:F2:EC:33:1B:D6:54:3D:32:DB:98:0C:50:62:6C:04:07:CA:89:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fvLsMxvWVD0y25gMUGJsBAfKiYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5E23/862A83CAB07311EA90EC996EC4F9AE02/fvLsMxvWVD0y25gMUGJsBAfKiYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:53:a6:25:a2:fb:08:42:93:8c:e6:e6:10:a6:d5:1a:90:e2: 70:65:f4:29:eb:ca:58:ae:0d:a2:7e:8f:3e:49:e0:dc:7b:d3: 54:ee:0e:35:e8:c8:0d:bb:5b:f9:47:9f:1f:96:b6:28:cf:e2: 1b:90:bf:7d:8b:e7:4d:47:0f:f7:9b:b4:b2:52:ff:ca:c9:a4: ec:6f:af:76:70:b8:02:63:e7:1b:49:41:13:a4:e7:28:f5:e6: 53:53:72:f7:27:63:b5:89:00:65:ef:26:6a:ce:02:97:ad:57: a7:50:41:97:4d:7c:fb:d0:21:98:95:a2:41:85:fd:1f:15:db: 3f:f3:09:0f:15:83:f4:7c:ef:64:93:4f:f5:bf:c5:18:70:7c: e7:36:39:1f:2f:f1:12:fb:9c:01:7a:6b:b8:86:ad:e4:a1:da: 40:64:9d:a4:e6:89:95:38:cf:0c:06:9b:62:26:2f:01:67:8c: d2:ac:43:dd:2f:de:56:e7:ff:37:41:68:71:89:80:cd:46:a5: 46:69:07:55:9c:2b:15:97:b9:61:44:34:bd:a1:0c:23:a2:6b: b2:8b:d9:f5:68:0d:3c:2c:10:be:1b:e0:7b:af:46:62:af:93: 78:4c:5f:6c:8d:a7:2e:b9:6d:eb:56:b9:86:65:45:e9:39:19: f3:5f:7f:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVFMjMxMTAvBgNVBAUTKDdFRjJFQzMzMUJENjU0M0QzMkRCOTgwQzUwNjI2QzA0 MDdDQTg5ODIwHhcNMjUxMDI2MjA1MTQ1WhcNMjUxMTAyMjA1MTQ1WjAYMRYwFAYD VQQDEw02OGZlODllMS04ZDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4s7TSpBYKJm9BpVRvvkbaK0+aX4DkSgJ2owp0hHrbXOnLcimKTuV6H3A9XK gx5wjv2U48paPXRbMbnoqn3t8cQql1DoRO9EiKy7YaKqJdytDbSp9ykGct+0Hw/7 yufAI8BNa6Hx5wMC0Fyl06Hy3Ywa36MAp9247MYCm6sRHuOPkFf4pUAms2DnB/Fx lZ7jt1zHkSP0LYSb8qZ1mqSvmcZ9qUI5auBqpuO3AWjamgN8UE+9aUGNnXogDaLi CUeAGzt0k1EWo+ppzZ+cyCm8L84L0u+iz2FjU9ei14hIKY/yPrqM5l9s+UNCqw3O 6G5JnFQuENlP9EAEjUSyI2gSwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJD+bcuf 1jxjvH319gSqFFcf9ZmTMB8GA1UdIwQYMBaAFH7y7DMb1lQ9MtuYDFBibAQHyomC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUUyMy84NjJBODNDQUIw NzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZEMHkyNWdNVUdKc0JBZktp WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z2THNNeHZXVkQweTI1Z01VR0pzQkFmS2lZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUUyMy84NjJBODNDQUIwNzMxMUVBOTBFQzk5NkVDNEY5QUUwMi9mdkxzTXh2V1ZE MHkyNWdNVUdKc0JBZktpWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkU6YlovsIQpOM5uYQptUakOJwZfQp68pYrg2ifo8+SeDce9NU7g41 6MgNu1v5R58flrYoz+IbkL99i+dNRw/3m7SyUv/KyaTsb692cLgCY+cbSUETpOco 9eZTU3L3J2O1iQBl7yZqzgKXrVenUEGXTXz70CGYlaJBhf0fFds/8wkPFYP0fO9k k0/1v8UYcHznNjkfL/ES+5wBemu4hq3kodpAZJ2k5omVOM8MBptiJi8BZ4zSrEPd L95W5/83QWhxiYDNRqVGaQdVnCsVl7lhRDS9oQwjomuyi9n1aA08LBC+G+B7r0Zi r5N4TF9sjacuuW3rVrmGZUXpORnzX389 -----END CERTIFICATE-----Generated at Tue Oct 28 06:51:41 2025 by rpki-client