$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft File: mnPxqRn79GyHLjiAWxZQtfiCdtM.mft (raw, json) Hash identifier: EZ9DY/4R2HZ8JIxrF4ZJVNO/tfsb68VWbJOV3TIdPS0= Subject key identifier: 27:06:EC:BE:14:F5:61:FE:E8:E9:02:9C:8F:71:2E:31:D4:19:D5:41 Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Certificate serial: 1170 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft Manifest number: 0D1D Signing time: Wed 22 Oct 2025 03:48:54 +0000 Manifest this update: Wed 22 Oct 2025 03:48:53 +0000 Manifest next update: Wed 29 Oct 2025 03:48:53 +0000 Files and hashes: 1: mnPxqRn79GyHLjiAWxZQtfiCdtM.crl (hash: aE1VwFcmTHNDsG63EqQou11j+1MB8612GFNgBSaDAIQ=) 2: 3A371ADC6EBE11F085F17D3AC4F9AE02.roa (hash: WKjxnU3HboN4s0wNsVG9eqpz+Pf4YPA5xsu6TOJejbs=) 3: 5C2A5AE670FD11F08583BE3AC4F9AE02.roa (hash: NAdbZTtzlwtewbjTfuMORoVz4S6lpr350iCxdpAhbLc=) 4: 8BAE1FFA6D1A11F0A4E9404DC4F9AE02.roa (hash: LcfL6WlPDAVnfVe8FVQ0PTDxHLr1cQFF1C/EotpyU7g=) 5: A173B894112711F0845DF16FC4F9AE02.roa (hash: 3CENOgG8lzvvc7h19xhkGA0RtKWssC6nuSD3IRmHv+U=) 6: 24B754BA9B7911EFBA9A2A42C4F9AE02.roa (hash: y4nldf+8SF0UXyvc5ZFdPynmdfFfU94WXlTR6JoprTg=) 7: 396F61FE6EBE11F085F17D3AC4F9AE02.roa (hash: CE23sNAGQ72kvCJUhMKCCjdRdULm9pFJDWl36wscsUk=) 8: 6BE346006D1A11F0B1F1074DC4F9AE02.roa (hash: F+kwWb5yikRsOK2zoJFU1MWIPMWRYvJswNdoIKQaUNo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 03:48:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4464 (0x1170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Validity Not Before: Oct 22 03:48:53 2025 GMT Not After : Oct 29 03:48:53 2025 GMT Subject: CN=68f85425-2be5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:00:8a:cd:f9:55:b8:ff:76:7b:97:47:4b:3f: 39:63:6b:d1:5a:82:09:c0:8d:2c:75:e3:77:bf:c5: 86:62:31:0a:e6:42:38:2a:8a:f9:9b:a9:c7:c3:54: 27:ea:53:11:30:9e:c9:59:91:c0:6d:5a:70:47:33: e8:32:18:e8:c9:29:30:8b:b2:a0:fc:ac:8a:ec:fc: c0:8b:70:c6:d6:75:5d:c5:16:f0:70:29:81:2c:c7: 4a:27:25:36:f2:e4:c6:09:47:21:a5:58:de:28:1e: 95:dd:77:36:f6:0a:12:93:60:5c:49:d5:40:03:f2: 7b:3e:29:74:e0:d8:78:0f:1c:4e:05:6a:63:e7:50: 4d:bd:32:11:f5:0d:c8:e6:1f:ca:0d:6f:b3:7e:69: ae:b9:16:30:65:b7:bb:32:74:06:44:a5:1c:d7:e9: c1:ab:81:da:8b:b6:3e:96:a0:fa:35:cc:97:bd:e2: 9a:cc:0d:61:dc:4f:9e:f2:48:e8:37:fe:1d:e5:1f: 58:de:03:45:9a:0d:ff:ba:00:80:00:b7:03:32:c3: 04:b3:61:d9:cf:4b:da:6d:70:e6:94:34:3e:1d:27: 96:70:7e:72:19:29:9c:51:e3:7e:cc:a3:1e:ac:85: 51:0a:8c:1d:74:7b:f3:f8:c1:26:ff:9c:cd:d4:1d: 00:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:06:EC:BE:14:F5:61:FE:E8:E9:02:9C:8F:71:2E:31:D4:19:D5:41 X509v3 Authority Key Identifier: keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:fa:a5:63:ba:84:b7:d3:8b:8c:5b:af:f4:50:5d:94:c7:3e: ca:63:19:d8:d3:a0:ef:4e:ba:11:4b:4d:c2:38:16:41:6d:6a: f7:d6:05:fa:00:89:8a:94:11:b7:69:1a:84:69:85:95:fb:bc: a6:a5:83:06:54:89:7d:2a:01:36:bc:13:f3:99:36:ed:91:4d: b7:43:72:1b:8b:af:ee:29:d2:9d:b1:b7:a7:32:d8:2d:40:dc: 3b:a2:a4:9d:de:a1:7c:ae:37:0f:97:2d:6a:9e:ce:8a:30:0f: 5e:7b:c0:48:6f:c8:69:3e:fb:fc:1f:4a:3b:bb:87:6b:67:6c: a7:ba:e4:3c:a5:56:2d:d5:66:1d:ba:a7:86:50:c2:a6:29:57: ea:f3:2c:35:2f:4c:4f:6f:d7:b1:e0:ad:a5:9a:5d:d5:93:19: 43:8b:ee:b2:b6:f7:03:ab:83:c1:d4:b6:ba:67:03:a4:3d:2d: 2a:94:ff:48:77:68:8e:3c:8e:99:b4:ef:4c:9c:0c:50:86:5e: 63:6e:6f:00:b8:33:07:0e:9b:50:bb:9b:4e:5f:4e:65:d4:bc: 5f:da:2f:1f:a6:74:c8:46:36:2f:04:20:49:b9:7f:23:26:b4: ea:e2:af:ec:61:41:a7:82:d3:78:24:cf:3a:e1:52:ca:61:6b: 92:9b:3f:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1 Rjg4Mjc2RDMwHhcNMjUxMDIyMDM0ODUzWhcNMjUxMDI5MDM0ODUzWjAYMRYwFAYD VQQDEw02OGY4NTQyNS0yYmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ACKzflVuP92e5dHSz85Y2vRWoIJwI0sdeN3v8WGYjEK5kI4Kor5m6nHw1Qn 6lMRMJ7JWZHAbVpwRzPoMhjoySkwi7Kg/KyK7PzAi3DG1nVdxRbwcCmBLMdKJyU2 8uTGCUchpVjeKB6V3Xc29goSk2BcSdVAA/J7Pil04Nh4DxxOBWpj51BNvTIR9Q3I 5h/KDW+zfmmuuRYwZbe7MnQGRKUc1+nBq4Hai7Y+lqD6NcyXveKazA1h3E+e8kjo N/4d5R9Y3gNFmg3/ugCAALcDMsMEs2HZz0vabXDmlDQ+HSeWcH5yGSmcUeN+zKMe rIVRCowddHvz+MEm/5zN1B0AswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCcG7L4U 9WH+6OkCnI9xLjHUGdVBMB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NjEzNC81N0IzRTBCQ0MyQTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlH eUhMamlBV3haUXRmaUNkdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa+qVjuoS304uMW6/0UF2Uxz7KYxnY06DvTroRS03COBZBbWr31gX6 AImKlBG3aRqEaYWV+7ympYMGVIl9KgE2vBPzmTbtkU23Q3Ibi6/uKdKdsbenMtgt QNw7oqSd3qF8rjcPly1qns6KMA9ee8BIb8hpPvv8H0o7u4drZ2ynuuQ8pVYt1WYd uqeGUMKmKVfq8yw1L0xPb9ex4K2lml3VkxlDi+6ytvcDq4PB1La6ZwOkPS0qlP9I d2iOPI6ZtO9MnAxQhl5jbm8AuDMHDptQu5tOX05l1Lxf2i8fpnTIRjYvBCBJuX8j JrTq4q/sYUGngtN4JM864VLKYWuSmz/J -----END CERTIFICATE-----Generated at Wed Oct 22 07:31:11 2025 by rpki-client