$ rpki-client -vvf rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft File: t9SqT11yMa9OdH93IkWsA3ECEPA.mft (raw, json) Hash identifier: IViDmAsEK8NDC9ILArlZlcUNqNUM3e6rC88mC4EFw4U= Subject key identifier: D6:E0:58:16:0C:69:3E:F3:49:0B:24:53:1A:CA:BC:B4:38:BE:8D:36 Authority key identifier: B7:D4:AA:4F:5D:72:31:AF:4E:74:7F:77:22:45:AC:03:71:02:10:F0 Certificate issuer: /CN=A91175F6/serialNumber=B7D4AA4F5D7231AF4E747F772245AC03710210F0 Certificate serial: 0262 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft Manifest number: 025E Signing time: Sun 19 Oct 2025 03:57:00 +0000 Manifest this update: Sun 19 Oct 2025 03:57:00 +0000 Manifest next update: Sun 26 Oct 2025 03:57:00 +0000 Files and hashes: 1: t9SqT11yMa9OdH93IkWsA3ECEPA.crl (hash: QyXFX5qVxxuEVspOc6iz3YdURba4VLp7nMjZmwZC3TM=) 2: 5D5B0F7C34CA11EDA301482BC4F9AE02.roa (hash: 90Bhpdbkdnfedi3OPca5alDQUSOpnC2UaqisbVy8klY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.crl rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:56:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91175F6, serialNumber=B7D4AA4F5D7231AF4E747F772245AC03710210F0 Validity Not Before: Oct 19 03:57:00 2025 GMT Not After : Oct 26 03:57:00 2025 GMT Subject: CN=68f4618c-3e27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:af:ca:a9:9d:71:f1:e5:5a:3a:1b:6c:ff:37: c7:da:36:7b:37:da:8b:d3:81:53:0b:ae:07:3f:fc: ee:94:bf:58:18:c8:ba:7e:a6:88:21:12:b2:1f:06: dd:d9:65:e1:77:28:1f:a3:15:26:08:ef:04:04:fb: 90:5f:16:ee:85:ac:34:71:11:17:e2:45:87:14:5f: 44:32:6d:0a:e8:22:b7:ef:77:d7:82:b5:c7:e6:a7: 48:fe:48:05:28:09:38:e6:44:46:e7:d1:71:7e:dd: 5b:6c:37:b1:01:e7:ea:ff:8f:28:e0:26:e4:09:72: d6:2f:cf:9c:33:09:92:e5:9c:a3:b5:02:05:30:3c: 85:07:37:75:7f:6c:a7:a4:60:22:88:23:51:07:84: af:24:12:19:5f:38:5b:16:f1:11:d8:59:f4:c2:fe: 00:25:dd:bb:3a:c4:2f:fc:6a:22:25:40:1a:71:c2: f3:6e:38:38:40:12:1e:7a:79:f7:a4:c9:d2:09:0a: fc:60:97:34:1c:e8:fd:ee:ed:ce:5b:33:d6:56:07: 00:e1:b4:40:0b:8e:57:70:5c:db:b4:ef:50:ef:a5: 70:ae:7c:a1:0d:f5:63:54:7a:a7:90:2c:39:13:93: 2f:ec:be:92:07:3e:ae:67:87:9f:28:37:29:a7:f4: d1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:E0:58:16:0C:69:3E:F3:49:0B:24:53:1A:CA:BC:B4:38:BE:8D:36 X509v3 Authority Key Identifier: keyid:B7:D4:AA:4F:5D:72:31:AF:4E:74:7F:77:22:45:AC:03:71:02:10:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:b2:5b:8d:cf:1e:86:f9:2f:04:7d:82:c9:e0:da:87:68:70: 1d:33:73:e5:90:e9:56:84:12:5c:4c:19:0e:75:13:de:00:d8: b0:6d:78:0f:c1:9d:dc:bf:94:37:9b:d7:16:52:e0:b1:15:29: 7f:ea:64:57:ed:32:54:97:ad:43:10:8d:a8:95:b7:63:ae:67: 24:25:f0:90:01:5e:b0:c5:a2:5b:89:8a:ed:76:31:ea:28:b9: e1:6b:c2:56:f3:51:d7:f3:4b:e3:bf:d8:72:45:32:18:7f:f0: 68:b5:f1:5a:8f:ab:c5:e6:fb:72:56:a3:ae:2d:c6:5f:d3:f0: ef:42:68:2f:1b:c1:c4:d9:60:14:81:34:f1:da:28:89:74:e2: 19:37:26:be:13:6d:2c:01:61:a7:8b:df:49:26:d6:72:89:84: 21:6c:cc:54:23:2b:75:db:db:1e:0e:cf:0f:73:55:f4:25:80: c0:72:84:1e:98:af:4a:69:e5:6f:fb:84:eb:72:f5:d3:9c:b6: 09:4b:d5:98:bb:c8:9a:ba:4c:70:98:5a:38:cf:c0:61:71:78: 26:9f:4f:cb:a8:dc:22:fa:f7:b7:58:f1:21:95:a7:ba:91:62: 83:0a:56:e3:83:ac:d1:5e:c9:dc:40:45:c5:d1:95:62:01:c8: c1:a6:b7:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc1RjYxMTAvBgNVBAUTKEI3RDRBQTRGNUQ3MjMxQUY0RTc0N0Y3NzIyNDVBQzAz NzEwMjEwRjAwHhcNMjUxMDE5MDM1NzAwWhcNMjUxMDI2MDM1NzAwWjAYMRYwFAYD VQQDEw02OGY0NjE4Yy0zZTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6/KqZ1x8eVaOhts/zfH2jZ7N9qL04FTC64HP/zulL9YGMi6fqaIIRKyHwbd 2WXhdygfoxUmCO8EBPuQXxbuhaw0cREX4kWHFF9EMm0K6CK373fXgrXH5qdI/kgF KAk45kRG59Fxft1bbDexAefq/48o4CbkCXLWL8+cMwmS5ZyjtQIFMDyFBzd1f2yn pGAiiCNRB4SvJBIZXzhbFvER2Fn0wv4AJd27OsQv/GoiJUAaccLzbjg4QBIeenn3 pMnSCQr8YJc0HOj97u3OWzPWVgcA4bRAC45XcFzbtO9Q76VwrnyhDfVjVHqnkCw5 E5Mv7L6SBz6uZ4efKDcpp/TR9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNbgWBYM aT7zSQskUxrKvLQ4vo02MB8GA1UdIwQYMBaAFLfUqk9dcjGvTnR/dyJFrANxAhDw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzVGNi8xM0E0MjBBODM0 MjAxMUVEODVFQ0JGMzNDNEY5QUUwMi90OVNxVDExeU1hOU9kSDkzSWtXc0EzRUNF UEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q5U3FUMTF5TWE5T2RIOTNJa1dzQTNFQ0VQQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzVGNi8xM0E0MjBBODM0MjAxMUVEODVFQ0JGMzNDNEY5QUUwMi90OVNxVDExeU1h OU9kSDkzSWtXc0EzRUNFUEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjsluNzx6G+S8EfYLJ4NqHaHAdM3PlkOlWhBJcTBkOdRPeANiwbXgP wZ3cv5Q3m9cWUuCxFSl/6mRX7TJUl61DEI2olbdjrmckJfCQAV6wxaJbiYrtdjHq KLnha8JW81HX80vjv9hyRTIYf/BotfFaj6vF5vtyVqOuLcZf0/DvQmgvG8HE2WAU gTTx2iiJdOIZNya+E20sAWGni99JJtZyiYQhbMxUIyt129seDs8Pc1X0JYDAcoQe mK9KaeVv+4TrcvXTnLYJS9WYu8iaukxwmFo4z8BhcXgmn0/LqNwi+ve3WPEhlae6 kWKDClbjg6zRXsncQEXF0ZViAcjBpre1 -----END CERTIFICATE-----Generated at Sun Oct 19 23:23:29 2025 by rpki-client