$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft File: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft (raw, json) Hash identifier: bouJLbq0fwt9+aHf2/qTNruTQymub4G9aqv2wv6uS4E= Subject key identifier: DE:28:89:F9:BF:1C:1B:C4:90:83:21:E8:1D:BF:8C:37:24:1B:D4:0D Authority key identifier: 6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 Certificate issuer: /CN=A91EAE3D/serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Certificate serial: 14C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft Manifest number: 14B1 Signing time: Wed 22 Oct 2025 17:14:43 +0000 Manifest this update: Wed 22 Oct 2025 17:14:42 +0000 Manifest next update: Wed 29 Oct 2025 17:14:42 +0000 Files and hashes: 1: a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl (hash: AGMKoCuoierhtfNNNYA32oPVm9XOvyb1wOAauCUNrRw=) 2: F693F2689CB811EB97F77E14C4F9AE02.roa (hash: U3tQJQlcyfHM4FE2g1sFZHo1n5O210FCbrxqZ5WoAEg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 17:14:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5317 (0x14c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=6B567C843E42523E0E5B64F64A0F2AE05517BB70 Validity Not Before: Oct 22 17:14:42 2025 GMT Not After : Oct 29 17:14:42 2025 GMT Subject: CN=68f91103-4cc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:55:1f:57:dc:9e:d0:a6:da:8c:d9:ec:35:56: 87:72:f3:93:56:1b:56:b4:2a:15:18:0e:7b:e3:af: d2:2c:cb:bd:ea:1b:f6:a1:86:04:0c:8b:c2:a4:da: c0:80:b2:7d:de:1f:2f:65:f9:12:81:80:87:8f:54: f2:a3:76:56:a0:46:fb:64:ff:92:92:37:98:5a:be: 2a:75:f0:eb:2f:12:04:0a:b3:15:64:17:5a:52:98: 59:20:72:2b:73:cc:d0:79:f0:db:d5:98:5f:e5:0e: bd:af:c9:98:4b:fb:52:f6:bd:a5:91:b6:25:52:b0: 97:d7:f5:79:dc:84:63:6d:99:ea:9f:f9:c4:6a:a3: f9:ce:1a:26:61:f3:ab:a1:4e:6d:30:49:df:6e:fc: 45:77:87:0d:1a:b4:3b:f2:49:c2:1a:2a:64:23:20: 51:85:f3:99:b2:32:ab:c1:c0:03:15:cb:67:2d:db: 3f:7a:b0:47:f3:fd:48:f8:f4:25:42:0d:aa:81:4a: 1d:07:a6:f4:77:d7:07:96:8b:5e:26:02:43:83:a7: f2:ef:0b:b6:45:62:dd:4e:dd:b5:3a:eb:b4:87:90: 7a:5b:ae:e8:7a:6e:fe:5a:fa:b3:52:0f:af:62:17: 4b:a6:3b:cd:cc:5f:6b:fc:a3:2a:52:db:00:ab:28: bf:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:28:89:F9:BF:1C:1B:C4:90:83:21:E8:1D:BF:8C:37:24:1B:D4:0D X509v3 Authority Key Identifier: keyid:6B:56:7C:84:3E:42:52:3E:0E:5B:64:F6:4A:0F:2A:E0:55:17:BB:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/8EF42A4675DE11E8B704A246C4F9AE02/a1Z8hD5CUj4OW2T2Sg8q4FUXu3A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:ed:d2:79:d6:a6:d2:10:5d:f7:9e:53:21:9a:ba:2a:36:59: 8b:34:69:b0:2c:8b:1b:4b:cf:65:3c:6a:02:f8:a5:5d:ac:06: 04:72:aa:0c:99:eb:1d:76:12:c7:ba:68:aa:8d:58:4c:79:c5: 17:b7:cb:74:2f:05:5e:3c:d2:c7:af:3a:ab:cf:f2:98:ae:74: 24:7f:d5:23:b9:6d:66:a7:02:93:3d:17:72:41:bc:04:62:3b: b2:fc:f5:14:f6:cc:58:05:46:fd:d8:87:87:5d:4c:90:93:51: 96:a0:a0:bd:8e:6a:0a:68:24:92:61:08:78:59:6d:d6:0b:63: 54:2b:8d:e6:5c:f5:a1:ab:72:ea:9d:f7:aa:8f:11:95:19:e0: ef:d5:02:82:4b:f9:ba:cf:3c:9d:a4:b4:36:49:8d:56:9b:6c: 7d:74:55:36:bd:00:58:18:4e:e7:a8:88:ab:63:fd:ec:78:22: c1:cd:83:14:9a:6b:a1:a6:5f:63:2d:3c:be:7b:28:4c:ae:1a: 22:d4:dc:75:ee:78:9f:d1:ee:09:d2:9f:e5:6a:09:72:91:dc: 61:b2:37:f8:d1:09:4f:8d:02:09:00:b0:2f:d3:ae:77:68:28: 6b:a5:46:a7:ef:43:19:d6:d3:4a:a4:91:c0:69:91:66:b0:f3: 5b:4d:5a:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKDZCNTY3Qzg0M0U0MjUyM0UwRTVCNjRGNjRBMEYyQUUw NTUxN0JCNzAwHhcNMjUxMDIyMTcxNDQyWhcNMjUxMDI5MTcxNDQyWjAYMRYwFAYD VQQDEw02OGY5MTEwMy00Y2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1UfV9ye0KbajNnsNVaHcvOTVhtWtCoVGA5746/SLMu96hv2oYYEDIvCpNrA gLJ93h8vZfkSgYCHj1Tyo3ZWoEb7ZP+SkjeYWr4qdfDrLxIECrMVZBdaUphZIHIr c8zQefDb1Zhf5Q69r8mYS/tS9r2lkbYlUrCX1/V53IRjbZnqn/nEaqP5zhomYfOr oU5tMEnfbvxFd4cNGrQ78knCGipkIyBRhfOZsjKrwcADFctnLds/erBH8/1I+PQl Qg2qgUodB6b0d9cHloteJgJDg6fy7wu2RWLdTt21Ouu0h5B6W67oem7+WvqzUg+v YhdLpjvNzF9r/KMqUtsAqyi/ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN4oifm/ HBvEkIMh6B2/jDckG9QNMB8GA1UdIwQYMBaAFGtWfIQ+QlI+Dltk9koPKuBVF7tw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC84RUY0MkE0Njc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1VqNE9XMlQyU2c4cTRGVVh1 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ExWjhoRDVDVWo0T1cyVDJTZzhxNEZVWHUzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUzRC84RUY0MkE0Njc1REUxMUU4QjcwNEEyNDZDNEY5QUUwMi9hMVo4aEQ1Q1Vq NE9XMlQyU2c4cTRGVVh1M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBX7dJ51qbSEF33nlMhmroqNlmLNGmwLIsbS89lPGoC+KVdrAYEcqoM mesddhLHumiqjVhMecUXt8t0LwVePNLHrzqrz/KYrnQkf9UjuW1mpwKTPRdyQbwE Yjuy/PUU9sxYBUb92IeHXUyQk1GWoKC9jmoKaCSSYQh4WW3WC2NUK43mXPWhq3Lq nfeqjxGVGeDv1QKCS/m6zzydpLQ2SY1Wm2x9dFU2vQBYGE7nqIirY/3seCLBzYMU mmuhpl9jLTy+eyhMrhoi1Nx17nif0e4J0p/laglykdxhsjf40QlPjQIJALAv0653 aChrpUan70MZ1tNKpJHAaZFmsPNbTVrB -----END CERTIFICATE-----Generated at Thu Oct 23 05:23:23 2025 by rpki-client