$ rpki-client -vvf rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.mft File: 1DTlnpjkUI7qpA35YNpPM0JBZ1k.mft (raw, json) Hash identifier: XPMEjDb7lnb4utzqx+4UpKButwZNeHTwmG37mmOwsDI= Subject key identifier: 3C:9C:F6:B1:CB:22:52:7F:07:96:45:59:AE:85:6C:66:B0:7A:E5:9F Authority key identifier: D4:34:E5:9E:98:E4:50:8E:EA:A4:0D:F9:60:DA:4F:33:42:41:67:59 Certificate issuer: /CN=A91233F8/serialNumber=D434E59E98E4508EEAA40DF960DA4F3342416759 Certificate serial: 020C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DTlnpjkUI7qpA35YNpPM0JBZ1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.mft Manifest number: 0731 Signing time: Sun 19 Oct 2025 01:17:05 +0000 Manifest this update: Sun 19 Oct 2025 01:17:04 +0000 Manifest next update: Sun 26 Oct 2025 01:17:04 +0000 Files and hashes: 1: 1DTlnpjkUI7qpA35YNpPM0JBZ1k.crl (hash: L2OAjwoArg1My48e1CoYIMK5QlFYkkVyII4dKjNLQEA=) 2: 1B4BA08497A711EDA815F80AC4F9AE02.roa (hash: o2FmDJmIhF0oyjFFLSyKzWs4i2UgC9gZtaokgU+Glvo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.crl rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DTlnpjkUI7qpA35YNpPM0JBZ1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:17:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 524 (0x20c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91233F8, serialNumber=D434E59E98E4508EEAA40DF960DA4F3342416759 Validity Not Before: Oct 19 01:17:04 2025 GMT Not After : Oct 26 01:17:04 2025 GMT Subject: CN=68f43c10-e614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ef:ea:e6:cc:70:11:52:a2:b1:08:83:19:3b: a5:dd:a5:13:05:f4:8d:c4:a7:be:ee:cc:a4:cd:c5: fc:97:96:3a:8c:bf:1a:f5:0d:0b:86:e3:23:68:c4: 7a:1d:90:f0:5c:75:2c:08:9b:92:89:99:b6:49:7f: 8e:d7:fd:1f:02:77:94:9a:0e:d2:aa:38:6d:3b:62: 54:5a:78:af:fa:9f:4a:b8:1f:81:cf:06:8f:a7:aa: 60:f1:d9:5c:13:9f:d3:02:87:bd:4e:25:f3:a5:55: dd:93:32:ef:3e:8e:fb:fa:9f:6a:e5:d9:1b:72:cc: fa:70:ba:fc:e1:79:bc:6e:7d:58:47:8a:17:93:19: 75:5b:94:73:a0:f8:11:3e:b8:a8:c2:74:7e:36:7b: 44:8c:2c:11:09:42:1e:50:ef:47:06:6b:61:98:9d: ee:fd:2f:e5:53:70:c2:1d:e9:9b:d4:a7:d8:c2:ad: 00:67:08:f6:6b:70:48:d3:0f:2e:ac:f7:be:61:0d: 8c:11:63:3b:43:34:a2:43:92:76:9f:4b:48:ab:99: 5e:62:81:0f:f7:c7:12:09:bf:48:df:65:5e:a6:24: f2:58:ac:be:b9:8a:a8:f5:77:78:47:20:85:d1:3d: 5e:a9:a4:80:d6:bf:94:b6:03:b0:b2:88:76:da:7b: 28:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:9C:F6:B1:CB:22:52:7F:07:96:45:59:AE:85:6C:66:B0:7A:E5:9F X509v3 Authority Key Identifier: keyid:D4:34:E5:9E:98:E4:50:8E:EA:A4:0D:F9:60:DA:4F:33:42:41:67:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1DTlnpjkUI7qpA35YNpPM0JBZ1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91233F8/F09019D61BB711EC903D8A4CC4F9AE02/1DTlnpjkUI7qpA35YNpPM0JBZ1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:f6:d6:b1:4f:fe:93:13:ba:71:1a:a0:40:da:0f:91:64:2d: b3:e9:50:79:12:24:5d:54:77:f7:ed:2b:26:56:fa:eb:8d:71: 01:ce:0c:2f:20:0f:37:82:e8:42:bb:e7:f6:03:07:6f:af:0f: 4e:68:be:ee:5c:a9:57:df:ce:94:b1:9c:7c:03:b9:9d:b4:1c: 1c:f4:67:39:df:5e:01:b7:91:bf:39:ba:6c:6f:5a:71:86:5e: 6b:c9:c3:6e:ad:b0:de:7e:4b:39:1a:6f:2e:19:f0:07:70:83: af:3b:c7:e8:5e:d0:78:db:20:d3:f3:54:72:5e:91:b5:80:a1: 83:03:f4:1c:f8:52:e1:6e:ce:01:21:48:c7:a5:23:02:aa:b3: c7:9a:c4:f3:97:59:85:99:9a:69:ac:60:0a:3e:c1:bd:31:4c: 3e:2d:de:c9:1e:2b:95:23:93:09:3c:2d:b3:65:e2:9c:85:f5: db:2b:1c:bf:a3:38:29:d6:81:26:ef:ac:e9:75:8a:bc:87:c0: 1a:d5:9d:1e:28:3e:30:ff:d9:ca:95:3b:97:f1:b6:92:81:6e: 0c:e7:42:17:6c:02:85:50:cf:55:fa:8a:0c:2d:55:a0:a8:b0: a6:c1:6d:78:a4:53:1a:ce:7a:0c:b7:e6:99:f8:bc:10:2e:65: 33:c3:2a:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMzRjgxMTAvBgNVBAUTKEQ0MzRFNTlFOThFNDUwOEVFQUE0MERGOTYwREE0RjMz NDI0MTY3NTkwHhcNMjUxMDE5MDExNzA0WhcNMjUxMDI2MDExNzA0WjAYMRYwFAYD VQQDEw02OGY0M2MxMC1lNjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAte/q5sxwEVKisQiDGTul3aUTBfSNxKe+7sykzcX8l5Y6jL8a9Q0LhuMjaMR6 HZDwXHUsCJuSiZm2SX+O1/0fAneUmg7SqjhtO2JUWniv+p9KuB+BzwaPp6pg8dlc E5/TAoe9TiXzpVXdkzLvPo77+p9q5dkbcsz6cLr84Xm8bn1YR4oXkxl1W5RzoPgR PriownR+NntEjCwRCUIeUO9HBmthmJ3u/S/lU3DCHemb1KfYwq0AZwj2a3BI0w8u rPe+YQ2MEWM7QzSiQ5J2n0tIq5leYoEP98cSCb9I32VepiTyWKy+uYqo9Xd4RyCF 0T1eqaSA1r+UtgOwsoh22nso1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDyc9rHL IlJ/B5ZFWa6FbGaweuWfMB8GA1UdIwQYMBaAFNQ05Z6Y5FCO6qQN+WDaTzNCQWdZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzNGOC9GMDkwMTlENjFC QjcxMUVDOTAzRDhBNENDNEY5QUUwMi8xRFRsbnBqa1VJN3FwQTM1WU5wUE0wSkJa MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFEVGxucGprVUk3cXBBMzVZTnBQTTBKQloxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzNGOC9GMDkwMTlENjFCQjcxMUVDOTAzRDhBNENDNEY5QUUwMi8xRFRsbnBqa1VJ N3FwQTM1WU5wUE0wSkJaMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAz9taxT/6TE7pxGqBA2g+RZC2z6VB5EiRdVHf37SsmVvrrjXEBzgwv IA83guhCu+f2Awdvrw9OaL7uXKlX386UsZx8A7mdtBwc9Gc5314Bt5G/Obpsb1px hl5rycNurbDefks5Gm8uGfAHcIOvO8foXtB42yDT81RyXpG1gKGDA/Qc+FLhbs4B IUjHpSMCqrPHmsTzl1mFmZpprGAKPsG9MUw+Ld7JHiuVI5MJPC2zZeKchfXbKxy/ ozgp1oEm76zpdYq8h8Aa1Z0eKD4w/9nKlTuX8baSgW4M50IXbAKFUM9V+ooMLVWg qLCmwW14pFMaznoMt+aZ+LwQLmUzwyoR -----END CERTIFICATE-----Generated at Mon Oct 20 21:40:48 2025 by rpki-client