$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft File: v3H1vxFop4QFduAAbzu8ZfxINAs.mft (raw, json) Hash identifier: 8GNiIbR/jU9LjUr3GfiL9DxTTYdHbT6Up58JI1dWYpE= Subject key identifier: 27:EC:02:A0:A9:93:0D:34:96:ED:22:AF:D3:0E:B4:6C:96:96:5F:CA Authority key identifier: BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B Certificate issuer: /CN=A91ED596/serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft Manifest number: DD Signing time: Fri 17 Oct 2025 08:41:54 +0000 Manifest this update: Fri 17 Oct 2025 08:41:54 +0000 Manifest next update: Fri 24 Oct 2025 08:41:54 +0000 Files and hashes: 1: v3H1vxFop4QFduAAbzu8ZfxINAs.crl (hash: plRIIpAu9SIrSG4e0uBx3C0PePz1NHUqwUXMX8jKE8o=) 2: 8580DC705AE311EF86351430C4F9AE02.roa (hash: 27On7VhpG5fhZmLnd0n/w+EKAhYgslmits5+QsN4KvA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 08:41:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED596, serialNumber=BF71F5BF1168A7840576E0006F3BBC65FC48340B Validity Not Before: Oct 17 08:41:54 2025 GMT Not After : Oct 24 08:41:54 2025 GMT Subject: CN=68f20152-efff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:46:94:50:74:70:43:ba:1d:24:6b:b4:8f:2e: 0d:55:a3:05:47:b7:6a:d0:b8:80:e5:9e:41:fd:71: 2c:a4:25:23:80:c4:56:65:a7:e6:12:ca:59:f3:9c: a8:4a:5c:2e:1f:9d:86:6f:2f:a3:6d:c4:1d:75:bd: 25:06:16:25:e5:14:cd:aa:90:19:66:3a:d9:42:9d: ea:85:9e:d6:6f:3c:13:42:fa:58:31:ed:c8:9a:1d: e4:ef:db:b1:9e:cc:19:00:07:8a:a4:5c:06:2a:cb: 82:a1:1e:fd:6b:b7:9b:98:76:11:90:c3:6a:16:c3: be:1f:eb:70:ab:d4:df:88:4e:da:33:ab:0a:be:50: 48:14:fd:05:06:b7:62:22:45:4b:67:56:80:19:37: 4e:b7:02:46:65:2c:c0:ff:52:f5:be:c8:7a:76:88: 75:7e:35:d4:d5:52:87:59:cf:1c:bc:26:ad:c7:19: 1f:f9:67:21:ee:a7:55:14:de:94:70:a5:e3:1e:63: ad:6c:ec:e2:db:02:2f:95:dc:4c:cb:1a:39:86:90: 9d:58:d2:37:b2:d8:13:e0:8c:c7:c4:7d:4e:8c:94: 6b:91:5f:b6:25:d2:a6:43:6c:62:de:ca:a3:f5:e0: 6a:5b:95:b1:a1:b4:d4:f1:14:2d:23:9f:10:ec:41: f4:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:EC:02:A0:A9:93:0D:34:96:ED:22:AF:D3:0E:B4:6C:96:96:5F:CA X509v3 Authority Key Identifier: keyid:BF:71:F5:BF:11:68:A7:84:05:76:E0:00:6F:3B:BC:65:FC:48:34:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/v3H1vxFop4QFduAAbzu8ZfxINAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED596/0572DD8A5AE311EF932C232FC4F9AE02/v3H1vxFop4QFduAAbzu8ZfxINAs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:af:de:ed:b2:8e:71:29:5e:2b:55:bc:60:80:52:a6:12:30: b8:a9:c0:87:3d:3e:72:ea:be:82:cd:63:be:5f:37:e7:80:14: 19:0b:59:e8:3a:c4:e4:97:69:e0:7f:b3:e6:65:28:b4:9e:74: 24:5a:50:7c:0f:bc:e8:1f:83:ef:0e:99:5d:c3:43:03:17:49: 47:33:e4:a5:0e:9d:61:01:1a:62:a3:92:be:87:ee:73:47:99: 8e:4f:45:84:97:c5:9c:f0:22:d5:fb:44:43:ae:5d:f1:39:cc: 0c:3c:87:4a:9b:ca:fa:07:37:d3:68:be:ed:cf:57:f6:06:87: fe:b8:16:40:52:31:18:a8:11:f4:1f:d8:1d:eb:b5:0a:77:3a: 98:34:e8:1e:28:3a:b2:14:ac:84:6b:8f:09:5c:80:3a:9a:9c: d9:ac:80:1a:8b:fb:ac:1d:d7:b6:2a:27:8a:ab:0c:72:7b:f3: fb:45:cc:75:e9:58:08:cd:21:44:6c:7b:23:1f:74:34:1c:d8: f0:8e:5b:29:45:3e:be:93:08:78:90:e5:5f:ff:de:e9:16:de: c3:65:a1:b4:df:68:67:e4:52:a7:f7:cd:27:ae:45:c9:10:d0: e4:c5:ec:03:d1:1a:84:0f:dd:7a:9c:3b:27:dc:4e:95:f6:00: 77:06:b0:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ1OTYxMTAvBgNVBAUTKEJGNzFGNUJGMTE2OEE3ODQwNTc2RTAwMDZGM0JCQzY1 RkM0ODM0MEIwHhcNMjUxMDE3MDg0MTU0WhcNMjUxMDI0MDg0MTU0WjAYMRYwFAYD VQQDEw02OGYyMDE1Mi1lZmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUaUUHRwQ7odJGu0jy4NVaMFR7dq0LiA5Z5B/XEspCUjgMRWZafmEspZ85yo SlwuH52Gby+jbcQddb0lBhYl5RTNqpAZZjrZQp3qhZ7WbzwTQvpYMe3Imh3k79ux nswZAAeKpFwGKsuCoR79a7ebmHYRkMNqFsO+H+twq9TfiE7aM6sKvlBIFP0FBrdi IkVLZ1aAGTdOtwJGZSzA/1L1vsh6doh1fjXU1VKHWc8cvCatxxkf+Wch7qdVFN6U cKXjHmOtbOzi2wIvldxMyxo5hpCdWNI3stgT4IzHxH1OjJRrkV+2JdKmQ2xi3sqj 9eBqW5WxobTU8RQtI58Q7EH0FwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCfsAqCp kw00lu0ir9MOtGyWll/KMB8GA1UdIwQYMBaAFL9x9b8RaKeEBXbgAG87vGX8SDQL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDU5Ni8wNTcyREQ4QTVB RTMxMUVGOTMyQzIzMkZDNEY5QUUwMi92M0gxdnhGb3A0UUZkdUFBYnp1OFpmeElO QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3YzSDF2eEZvcDRRRmR1QUFienU4WmZ4SU5Bcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDU5Ni8wNTcyREQ4QTVBRTMxMUVGOTMyQzIzMkZDNEY5QUUwMi92M0gxdnhGb3A0 UUZkdUFBYnp1OFpmeElOQXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8r97tso5xKV4rVbxggFKmEjC4qcCHPT5y6r6CzWO+XzfngBQZC1no OsTkl2ngf7PmZSi0nnQkWlB8D7zoH4PvDpldw0MDF0lHM+SlDp1hARpio5K+h+5z R5mOT0WEl8Wc8CLV+0RDrl3xOcwMPIdKm8r6BzfTaL7tz1f2Bof+uBZAUjEYqBH0 H9gd67UKdzqYNOgeKDqyFKyEa48JXIA6mpzZrIAai/usHde2KieKqwxye/P7Rcx1 6VgIzSFEbHsjH3Q0HNjwjlspRT6+kwh4kOVf/97pFt7DZaG032hn5FKn980nrkXJ ENDkxewD0RqED916nDsn3E6V9gB3BrAd -----END CERTIFICATE-----Generated at Sat Oct 18 23:21:59 2025 by rpki-client