$ rpki-client -vvf rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft File: V02z1iXehCAuOsnBw9Wwd01reOM.mft (raw, json) Hash identifier: lfHdNf7Am2NklBfhca2N08FH4sCto9mluHGGJz9Vpqg= Subject key identifier: E8:10:65:1E:4B:1E:7D:A2:2C:1A:E1:3A:32:66:64:FD:44:C8:57:B7 Authority key identifier: 57:4D:B3:D6:25:DE:84:20:2E:3A:C9:C1:C3:D5:B0:77:4D:6B:78:E3 Certificate issuer: /CN=A91E33AA/serialNumber=574DB3D625DE84202E3AC9C1C3D5B0774D6B78E3 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft Manifest number: 3F Signing time: Mon 27 Oct 2025 09:59:14 +0000 Manifest this update: Mon 27 Oct 2025 09:59:13 +0000 Manifest next update: Mon 03 Nov 2025 09:59:13 +0000 Files and hashes: 1: V02z1iXehCAuOsnBw9Wwd01reOM.crl (hash: fVmVXaTnM6y4JehE8uTtBEizt0MjG11LylgMCQcnJyg=) 2: A5E6E422A8E511F0A46A7729C4F9AE02.roa (hash: I9mTloe+CBVyT9j1b2vknypKCm7MYiUBGA2nLvqI+nE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.crl rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 09:59:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E33AA, serialNumber=574DB3D625DE84202E3AC9C1C3D5B0774D6B78E3 Validity Not Before: Oct 27 09:59:13 2025 GMT Not After : Nov 3 09:59:13 2025 GMT Subject: CN=68ff4272-737f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:cc:54:1f:60:e6:3a:83:99:11:aa:3e:1d:15: 7a:0b:86:25:cf:0b:6c:f2:26:98:b4:ee:2d:e6:00: 02:a7:48:9d:b3:45:e0:6a:d3:72:f7:6e:c6:dc:e2: e8:68:63:51:0d:bb:74:83:ff:bb:68:d3:70:28:f5: 9a:5c:04:4e:b4:19:c3:b5:00:d5:3f:1a:68:7a:52: 70:c2:b8:f7:70:ee:74:6c:43:96:0d:fa:fd:18:57: 85:d4:03:a1:4b:f8:c4:4d:c8:8c:39:ba:5e:46:b9: c9:e3:12:69:c7:44:34:2f:2c:cf:d2:9c:76:92:0c: 71:39:42:aa:12:01:7d:20:76:27:be:c4:ba:e9:2c: a5:8c:1f:2f:67:f1:66:3e:cb:d9:47:d9:02:d3:89: fe:b5:2c:f4:e9:b4:cd:14:33:bb:e8:54:bc:6e:08: 1a:92:fa:2a:95:90:4f:03:a0:94:c5:4d:64:d6:75: bd:4f:81:8c:d4:7f:e7:cf:a5:71:4b:06:a7:a7:f1: 84:f4:28:ae:fd:56:eb:5c:f2:0b:01:bb:28:73:2a: db:ed:3e:97:00:f3:5a:79:50:af:4b:46:63:6a:91: 4d:e0:f2:14:ca:47:ad:48:f4:88:9e:fc:1f:0b:4e: 9e:4d:ee:07:78:a9:a0:d4:64:f6:f5:8e:2a:2d:ea: 98:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:10:65:1E:4B:1E:7D:A2:2C:1A:E1:3A:32:66:64:FD:44:C8:57:B7 X509v3 Authority Key Identifier: keyid:57:4D:B3:D6:25:DE:84:20:2E:3A:C9:C1:C3:D5:B0:77:4D:6B:78:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:79:27:04:ae:c8:97:3c:50:1e:d2:46:a6:e0:16:ae:db:55: 77:e7:a1:f9:5a:52:fb:78:19:b2:3d:b2:9a:95:f3:0b:f2:74: 27:7c:85:b0:9e:38:31:eb:94:bc:b3:00:df:44:41:db:6e:26: 30:12:9b:1b:4d:8b:69:d0:18:58:64:07:2f:ba:d7:17:c5:83: 21:a2:6d:50:9a:d2:07:bc:84:09:b9:d2:a5:8b:61:09:a2:43: 9c:ee:6e:61:95:6c:39:6b:a9:28:0d:0e:7c:61:81:58:c7:27: 9b:d1:fb:95:e3:df:81:c9:3a:9b:c3:20:e7:ee:66:b3:4d:61: 8a:b8:c8:63:f2:78:c4:bf:1f:93:04:2f:55:4a:76:d5:b5:df: 71:15:c5:7a:ad:ba:6c:39:34:82:fd:a6:42:27:01:ed:d6:b4: 6b:19:41:56:f6:c9:0b:df:2a:f6:e5:09:26:80:da:f1:0b:e4: b5:9b:56:15:a5:35:ca:94:ce:d9:0e:d6:73:30:34:eb:ae:cb: c3:12:7b:3a:42:6d:e2:c2:36:6e:d6:ab:c8:e3:65:61:5b:20: 40:69:e9:f0:7e:01:74:00:01:27:7c:22:f6:55:2b:0b:48:79: 1e:66:2e:1e:d3:bd:d5:0c:4e:fd:7a:93:d5:8d:02:0f:82:c1: ef:28:20:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzNBQTExMC8GA1UEBRMoNTc0REIzRDYyNURFODQyMDJFM0FDOUMxQzNENUIwNzc0 RDZCNzhFMzAeFw0yNTEwMjcwOTU5MTNaFw0yNTExMDMwOTU5MTNaMBgxFjAUBgNV BAMTDTY4ZmY0MjcyLTczN2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPzFQfYOY6g5kRqj4dFXoLhiXPC2zyJpi07i3mAAKnSJ2zReBq03L3bsbc4uho Y1ENu3SD/7to03Ao9ZpcBE60GcO1ANU/Gmh6UnDCuPdw7nRsQ5YN+v0YV4XUA6FL +MRNyIw5ul5GucnjEmnHRDQvLM/SnHaSDHE5QqoSAX0gdie+xLrpLKWMHy9n8WY+ y9lH2QLTif61LPTptM0UM7voVLxuCBqS+iqVkE8DoJTFTWTWdb1PgYzUf+fPpXFL Bqen8YT0KK79Vutc8gsBuyhzKtvtPpcA81p5UK9LRmNqkU3g8hTKR61I9Iie/B8L Tp5N7gd4qaDUZPb1jiot6phpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6BBlHkse faIsGuE6MmZk/UTIV7cwHwYDVR0jBBgwFoAUV02z1iXehCAuOsnBw9Wwd01reOMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzM0FBLzQ5QTFBODc4NTk2 NzExRjA4QzQwNzkyQ0M0RjlBRTAyL1YwMnoxaVhlaENBdU9zbkJ3OVd3ZDAxcmVP TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVjAyejFpWGVoQ0F1T3NuQnc5V3dkMDFyZU9NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz M0FBLzQ5QTFBODc4NTk2NzExRjA4QzQwNzkyQ0M0RjlBRTAyL1YwMnoxaVhlaENB dU9zbkJ3OVd3ZDAxcmVPTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFB5JwSuyJc8UB7SRqbgFq7bVXfnoflaUvt4GbI9spqV8wvydCd8hbCe ODHrlLyzAN9EQdtuJjASmxtNi2nQGFhkBy+61xfFgyGibVCa0ge8hAm50qWLYQmi Q5zubmGVbDlrqSgNDnxhgVjHJ5vR+5Xj34HJOpvDIOfuZrNNYYq4yGPyeMS/H5ME L1VKdtW133EVxXqtumw5NIL9pkInAe3WtGsZQVb2yQvfKvblCSaA2vEL5LWbVhWl NcqUztkO1nMwNOuuy8MSezpCbeLCNm7Wq8jjZWFbIEBp6fB+AXQAASd8IvZVKwtI eR5mLh7TvdUMTv16k9WNAg+Cwe8oIFE= -----END CERTIFICATE-----Generated at Tue Oct 28 00:39:44 2025 by rpki-client