$ rpki-client -vvf rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft File: 1iOjklgIuuhMJxThaoeEBOBgSNE.mft (raw, json) Hash identifier: Rtwu26pfdudPTLi92tprQvKznnRFtRNlYRUK7mzwTOs= Subject key identifier: CE:5A:73:54:0A:43:2D:63:29:27:46:08:14:E6:BD:F7:BF:48:A6:80 Authority key identifier: D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 Certificate issuer: /CN=A912A1E7/serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Certificate serial: 0570 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft Manifest number: 0568 Signing time: Sun 19 Oct 2025 01:04:59 +0000 Manifest this update: Sun 19 Oct 2025 01:04:59 +0000 Manifest next update: Sun 26 Oct 2025 01:04:59 +0000 Files and hashes: 1: 1iOjklgIuuhMJxThaoeEBOBgSNE.crl (hash: rWrDkLRX93Kv5kCl4Zs9x786eBaUwvJlzhDutgfRoV4=) 2: C3BF0EF80A5F11EC8EDB0221C4F9AE02.roa (hash: ym0ByuNOndht95n45vmzI/LTnp1dbpbPf/6SayzC+38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:04:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1392 (0x570) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A1E7, serialNumber=D623A3925808BAE84C2714E16A878404E06048D1 Validity Not Before: Oct 19 01:04:59 2025 GMT Not After : Oct 26 01:04:59 2025 GMT Subject: CN=68f4393b-6293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e0:a1:75:50:b4:2e:c5:6d:f0:17:73:9c:a7: 9e:80:e0:ea:a6:10:5e:a2:33:b8:3f:1b:42:2d:4b: 39:d4:b3:7f:63:64:4e:eb:87:88:22:50:8d:18:c1: 1b:83:13:e9:3d:65:20:56:ec:0d:e3:24:94:cc:51: 39:60:e1:d0:ae:30:ea:b5:fa:8e:a9:50:5c:89:62: 5d:83:e6:e9:64:26:5c:c5:21:6d:ed:b3:7f:78:bd: 78:9e:ec:7a:23:26:8c:8d:0e:d8:2c:ca:66:e2:99: 9c:f0:78:fa:e4:fe:e1:b3:e8:dd:f5:9c:ce:2b:08: 71:e1:4e:8e:9f:23:b0:13:b2:67:3e:3c:34:c9:5c: 51:eb:ac:51:a3:ed:b7:db:4c:26:0a:02:de:25:4d: cf:eb:a4:0d:c8:e5:65:c5:9e:c7:38:f2:ac:5c:d0: 25:a6:f2:33:42:88:58:0f:ae:84:aa:aa:7c:a6:30: 35:a5:31:e1:5a:b0:9f:a8:04:40:fe:54:5a:b8:af: 2b:db:79:be:17:8b:df:d3:77:6e:af:27:7e:5a:d9: 1d:ef:4b:b4:e5:0a:72:c7:e2:63:04:80:30:e8:2e: 22:0b:b9:a7:0b:1c:f4:c9:e5:22:a3:fd:2e:ee:e9: fd:c7:f2:17:9a:7f:1e:b5:54:ae:18:a3:e7:67:ad: 17:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:5A:73:54:0A:43:2D:63:29:27:46:08:14:E6:BD:F7:BF:48:A6:80 X509v3 Authority Key Identifier: keyid:D6:23:A3:92:58:08:BA:E8:4C:27:14:E1:6A:87:84:04:E0:60:48:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1iOjklgIuuhMJxThaoeEBOBgSNE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A1E7/10FABED2025511EC8ED24085C4F9AE02/1iOjklgIuuhMJxThaoeEBOBgSNE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:d4:6c:75:4f:1e:cd:42:68:18:e6:11:8a:ba:0d:fe:87:e4: 88:79:9a:ff:d4:ad:a9:ac:96:69:df:54:7c:43:b7:8e:ed:ec: d3:cf:68:07:d2:a3:19:e7:4a:a3:74:cc:06:d6:ac:99:29:df: 66:34:2c:88:90:d3:d8:87:ca:2f:83:bc:4e:2f:63:4c:a5:5d: 8b:aa:ec:41:44:f2:40:c6:10:0e:5e:35:f1:91:53:68:05:54: 5e:7c:b9:a9:aa:39:15:c6:56:17:8e:95:5e:df:81:90:2e:46: 8e:76:eb:63:85:e3:16:f0:f4:76:00:8a:96:eb:b7:6a:7b:df: 95:26:85:b1:e5:6b:34:ea:91:8e:ce:ea:59:f2:a2:5f:21:11: 85:dd:86:f2:83:60:ef:04:5e:1e:7f:d3:7a:f6:33:3f:31:f1: 66:a0:0d:71:b5:65:72:ae:64:4c:94:06:ef:7e:c0:27:c0:a1: 47:a5:e6:65:bb:af:d1:56:89:e8:bd:96:28:27:c9:f8:5d:bb: 56:b8:f7:77:18:1d:02:8b:f7:35:b8:ab:29:4a:67:a2:85:12: 97:3a:47:bd:0d:26:82:fa:8c:88:81:91:18:32:94:84:97:82: b6:fd:5b:c0:d4:52:a7:b1:db:ab:18:86:f6:3b:8e:3c:51:95: fe:50:e2:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkExRTcxMTAvBgNVBAUTKEQ2MjNBMzkyNTgwOEJBRTg0QzI3MTRFMTZBODc4NDA0 RTA2MDQ4RDEwHhcNMjUxMDE5MDEwNDU5WhcNMjUxMDI2MDEwNDU5WjAYMRYwFAYD VQQDEw02OGY0MzkzYi02MjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquChdVC0LsVt8BdznKeegODqphBeojO4PxtCLUs51LN/Y2RO64eIIlCNGMEb gxPpPWUgVuwN4ySUzFE5YOHQrjDqtfqOqVBciWJdg+bpZCZcxSFt7bN/eL14nux6 IyaMjQ7YLMpm4pmc8Hj65P7hs+jd9ZzOKwhx4U6OnyOwE7JnPjw0yVxR66xRo+23 20wmCgLeJU3P66QNyOVlxZ7HOPKsXNAlpvIzQohYD66Eqqp8pjA1pTHhWrCfqARA /lRauK8r23m+F4vf03duryd+Wtkd70u05Qpyx+JjBIAw6C4iC7mnCxz0yeUio/0u 7un9x/IXmn8etVSuGKPnZ60X/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM5ac1QK Qy1jKSdGCBTmvfe/SKaAMB8GA1UdIwQYMBaAFNYjo5JYCLroTCcU4WqHhATgYEjR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTFFNy8xMEZBQkVEMjAy NTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1aE1KeFRoYW9lRUJPQmdT TkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpT2prbGdJdXVoTUp4VGhhb2VFQk9CZ1NORS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTFFNy8xMEZBQkVEMjAyNTUxMUVDOEVEMjQwODVDNEY5QUUwMi8xaU9qa2xnSXV1 aE1KeFRoYW9lRUJPQmdTTkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL1Gx1Tx7NQmgY5hGKug3+h+SIeZr/1K2prJZp31R8Q7eO7ezTz2gH 0qMZ50qjdMwG1qyZKd9mNCyIkNPYh8ovg7xOL2NMpV2LquxBRPJAxhAOXjXxkVNo BVRefLmpqjkVxlYXjpVe34GQLkaOdutjheMW8PR2AIqW67dqe9+VJoWx5Ws06pGO zupZ8qJfIRGF3Ybyg2DvBF4ef9N69jM/MfFmoA1xtWVyrmRMlAbvfsAnwKFHpeZl u6/RVonovZYoJ8n4XbtWuPd3GB0Ci/c1uKspSmeihRKXOke9DSaC+oyIgZEYMpSE l4K2/VvA1FKnsdurGIb2O448UZX+UOIf -----END CERTIFICATE-----Generated at Mon Oct 20 16:05:06 2025 by rpki-client