$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft File: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft (raw, json) Hash identifier: n7EgzBbYVnnUeIhnnTXFPuf0NY8LQeia0O3iom3LUBU= Subject key identifier: CD:37:85:DF:0D:83:DF:4A:49:28:4F:47:9D:FF:38:1E:41:5D:EC:A2 Authority key identifier: AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 Certificate issuer: /CN=A91F3F02/serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Certificate serial: 0FFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft Manifest number: 0FC7 Signing time: Thu 16 Oct 2025 18:10:17 +0000 Manifest this update: Thu 16 Oct 2025 18:10:17 +0000 Manifest next update: Thu 23 Oct 2025 18:10:17 +0000 Files and hashes: 1: r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl (hash: b5aQ/+ISuFf9ZBRcL+imFtF88B3OQ8900i0oP32VAGQ=) 2: 4BF23558026D11EBB136622CC4F9AE02.roa (hash: QtpDimKOHqXsxnqa4q87zCBuPpMrfxyNN2d7cp4WlrA=) 3: B3876B1821C911EB991D562EC4F9AE02.roa (hash: 6uU1bRzcclFeMC/RnwQZxh3s9UKuJJHVwL7cdGjMFOc=) 4: B2B2930C21C911EB991D562EC4F9AE02.roa (hash: XWm8GaGIPPLP9AKtaT6KRszth65jZeSEF8vfSa7oAA0=) 5: 8663E8B6658A11E9930DC678C4F9AE02.roa (hash: PNhMIJG2WqhTSsHQs6Q3B5W+HPqAu/8Af4Ot4nkDDLQ=) 6: F98DEF9A231F11EB99F53580C4F9AE02.roa (hash: t18G/jUeuq8lptvTyxkqs2wnq4jb4g41EOSptQznrUs=) 7: E049FDF87A4511EBBB2D0A52C4F9AE02.roa (hash: Jk6V50ct0NhfCUNeq2rSB6SPY6PZ86y8Zd5FDESJ7kI=) 8: B490CD0621C911EB991D562EC4F9AE02.roa (hash: WNk4We2Ht/Om3rf3IbH7SVRsK901hQ7kL7sR1ONDJ8A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 18:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4093 (0xffd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3F02, serialNumber=AF44780813BB6C05E997545B08D37936FFAC4661 Validity Not Before: Oct 16 18:10:17 2025 GMT Not After : Oct 23 18:10:17 2025 GMT Subject: CN=68f13509-aa77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fb:31:42:6e:5f:ad:e9:52:53:a1:5f:d1:e9: ed:16:8f:4b:58:19:41:d4:20:ab:ba:f2:ca:25:06: d7:86:2e:38:50:77:69:21:81:68:0e:88:0f:47:22: 73:5b:02:d1:2c:f9:6a:a4:b4:31:45:31:41:25:b6: 7f:73:e1:5d:a1:bc:08:73:d0:99:95:5e:46:f7:f7: 51:cb:dc:25:e1:9c:ac:e2:cf:3a:b3:fa:fb:11:4a: e7:46:89:11:ed:b3:ff:f0:ff:b2:a3:af:c5:b7:c0: 24:8b:b8:95:ce:0b:d6:37:af:11:d6:17:82:da:43: 25:84:d6:07:72:2a:e3:0b:29:1f:1e:35:eb:10:52: 32:69:f6:c2:fa:8b:9c:15:25:9a:1f:4d:75:37:7c: 0d:a0:f8:92:3d:2c:e8:50:b0:51:a7:84:b7:1c:4c: fb:82:d1:42:70:30:a9:b1:16:98:b5:57:f8:75:48: 4b:9e:2a:8e:1b:ea:f3:3b:ae:9e:4f:89:94:06:f7: 46:8b:80:8d:2b:be:f6:5b:2a:43:da:2a:84:a2:7e: a1:79:f8:34:52:c1:c0:10:dc:c2:11:0a:b8:28:34: 45:0b:b2:63:3b:8b:f8:c6:82:7e:29:55:0d:05:52: 0d:51:f3:6b:ee:16:2e:7a:21:6e:e0:df:52:f3:70: dc:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:37:85:DF:0D:83:DF:4A:49:28:4F:47:9D:FF:38:1E:41:5D:EC:A2 X509v3 Authority Key Identifier: keyid:AF:44:78:08:13:BB:6C:05:E9:97:54:5B:08:D3:79:36:FF:AC:46:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3F02/CCAB575063F011E9A9BCA141C4F9AE02/r0R4CBO7bAXpl1RbCNN5Nv-sRmE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:86:04:82:1a:95:51:d4:94:07:2c:2c:da:ff:ea:af:50:09: ae:ea:fb:bc:b5:63:d7:59:e4:e5:6c:60:0d:18:c2:c1:b4:55: 4d:78:29:36:a1:56:dd:f5:7a:bb:c2:b9:ee:f2:cc:17:e7:7f: 6b:c7:60:60:48:ea:8a:29:78:9f:a6:06:ac:e5:80:e6:d4:d8: 39:ad:04:f7:36:98:c7:be:01:63:82:d4:11:2f:37:88:df:80: c6:6e:29:86:83:13:88:3e:12:37:f6:01:4d:e5:78:37:e3:bf: 42:54:4b:c0:1d:e7:81:7d:ae:bb:09:b6:ab:55:2e:31:71:52: 4c:5b:27:8c:61:09:51:ce:c4:b3:b0:b8:11:62:0d:18:e9:ee: b2:17:eb:82:09:c1:c1:34:c4:90:74:44:fc:ec:ac:f0:6f:62: cc:10:cc:e6:82:58:68:d1:48:43:1a:6a:1a:ce:cd:45:ad:ff: 53:b5:9a:69:e9:f5:ba:12:34:83:6c:61:2f:b0:c5:2b:dd:35: d5:00:0d:92:fc:02:86:01:55:c1:38:e6:c2:1d:cd:de:81:b3: f4:ee:c1:a1:d5:85:2f:af:9b:23:49:25:96:e1:8c:69:7c:c9: ab:29:77:a5:2b:ef:95:9d:fb:e6:ec:f5:94:1b:43:f7:41:a7: 8f:48:49:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNGMDIxMTAvBgNVBAUTKEFGNDQ3ODA4MTNCQjZDMDVFOTk3NTQ1QjA4RDM3OTM2 RkZBQzQ2NjEwHhcNMjUxMDE2MTgxMDE3WhcNMjUxMDIzMTgxMDE3WjAYMRYwFAYD VQQDEw02OGYxMzUwOS1hYTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPsxQm5frelSU6Ff0entFo9LWBlB1CCruvLKJQbXhi44UHdpIYFoDogPRyJz WwLRLPlqpLQxRTFBJbZ/c+FdobwIc9CZlV5G9/dRy9wl4Zys4s86s/r7EUrnRokR 7bP/8P+yo6/Ft8Aki7iVzgvWN68R1heC2kMlhNYHcirjCykfHjXrEFIyafbC+ouc FSWaH011N3wNoPiSPSzoULBRp4S3HEz7gtFCcDCpsRaYtVf4dUhLniqOG+rzO66e T4mUBvdGi4CNK772WypD2iqEon6hefg0UsHAENzCEQq4KDRFC7JjO4v4xoJ+KVUN BVINUfNr7hYueiFu4N9S83DcswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM03hd8N g99KSShPR53/OB5BXeyiMB8GA1UdIwQYMBaAFK9EeAgTu2wF6ZdUWwjTeTb/rEZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0YwMi9DQ0FCNTc1MDYz RjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JBWHBsMVJiQ05ONU52LXNS bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IwUjRDQk83YkFYcGwxUmJDTk41TnYtc1JtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0YwMi9DQ0FCNTc1MDYzRjAxMUU5QTlCQ0ExNDFDNEY5QUUwMi9yMFI0Q0JPN2JB WHBsMVJiQ05ONU52LXNSbUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBshgSCGpVR1JQHLCza/+qvUAmu6vu8tWPXWeTlbGANGMLBtFVNeCk2 oVbd9Xq7wrnu8swX539rx2BgSOqKKXifpgas5YDm1Ng5rQT3NpjHvgFjgtQRLzeI 34DGbimGgxOIPhI39gFN5Xg3479CVEvAHeeBfa67CbarVS4xcVJMWyeMYQlRzsSz sLgRYg0Y6e6yF+uCCcHBNMSQdET87Kzwb2LMEMzmglho0UhDGmoazs1Frf9TtZpp 6fW6EjSDbGEvsMUr3TXVAA2S/AKGAVXBOObCHc3egbP07sGh1YUvr5sjSSWW4Yxp fMmrKXelK++Vnfvm7PWUG0P3QaePSElc -----END CERTIFICATE-----Generated at Fri Oct 17 06:27:02 2025 by rpki-client