$ rpki-client -vvf rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft File: 5igiDz_QD0F7mXLh1KD2QWlueZk.mft (raw, json) Hash identifier: yZ+tWK43xsEQW9ke3KgV/FG/X8z+c8+PqoPMHGn21ss= Subject key identifier: 4C:9F:69:33:D0:11:E4:56:22:00:B7:F0:7B:A5:23:DD:70:F2:27:7F Authority key identifier: E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 Certificate issuer: /CN=A912E31D/serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft Manifest number: 78 Signing time: Sun 19 Oct 2025 10:08:08 +0000 Manifest this update: Sun 19 Oct 2025 10:08:07 +0000 Manifest next update: Sun 26 Oct 2025 10:08:07 +0000 Files and hashes: 1: 5igiDz_QD0F7mXLh1KD2QWlueZk.crl (hash: dOw/q3GTbMl+xpOL05VqukaTpPA97r5f7Z2nNrnCNNs=) 2: 9CDF0C0CFA4311EFAEC6A81AC4F9AE02.roa (hash: A659tR0soBiQRXoeD1FPvGrYfSs+v9kVVN6MSoHXtyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E31D, serialNumber=E628220F3FD00F417B9972E1D4A0F641696E7999 Validity Not Before: Oct 19 10:08:07 2025 GMT Not After : Oct 26 10:08:07 2025 GMT Subject: CN=68f4b888-f0a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4e:65:2b:e3:94:03:3d:90:ea:e2:a4:1b:16: 41:6f:fe:7c:43:f8:d7:60:6e:80:8b:5a:99:55:99: 01:51:70:72:76:e7:47:df:1f:98:e6:d6:9e:79:33: ed:b9:78:e9:a3:09:6d:2b:03:3c:1f:ee:75:8c:1d: 31:be:24:90:08:7c:7c:40:5b:16:56:d4:82:bb:a0: bd:99:75:4a:5d:b4:64:4d:bc:c4:1a:ff:25:e6:6d: f0:8b:6d:fc:2d:2b:85:14:32:a8:88:5b:5e:6c:b2: 94:57:1b:63:a2:83:bd:9e:9d:de:9f:a6:5a:4f:9a: 99:0d:a7:b3:5a:82:b2:bd:d2:0a:9f:a8:ba:01:6c: 4a:36:95:6d:76:87:b2:f7:f1:66:4f:48:2a:aa:d0: 43:8e:d5:0a:d9:49:f8:ed:29:b9:2c:ce:b8:f7:6d: 4f:a1:2c:15:3d:99:56:c6:bf:96:06:48:01:88:0b: 1f:dd:d0:05:af:c9:5f:24:c2:28:ad:3c:98:62:53: e9:3a:d7:7a:13:b6:be:ab:da:a6:0c:da:af:9e:de: 2c:4f:73:4c:05:a0:c2:fc:90:b3:ef:55:09:93:80: 8b:17:6f:0f:5b:57:a6:a6:a3:e4:46:6a:bc:d9:b4: 9c:42:99:0d:6e:f6:25:a1:72:98:3e:72:f4:4a:be: 52:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:9F:69:33:D0:11:E4:56:22:00:B7:F0:7B:A5:23:DD:70:F2:27:7F X509v3 Authority Key Identifier: keyid:E6:28:22:0F:3F:D0:0F:41:7B:99:72:E1:D4:A0:F6:41:69:6E:79:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5igiDz_QD0F7mXLh1KD2QWlueZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E31D/2CF6B8B0F9C911EFA54F762AC4F9AE02/5igiDz_QD0F7mXLh1KD2QWlueZk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:a6:3d:cc:61:8c:e3:32:ef:ea:8f:39:2e:f7:e6:e2:59:ef: 39:c8:5a:26:72:6d:84:f7:15:7d:bb:0a:eb:cd:83:39:ad:5c: c0:fe:d9:dc:0e:40:1f:d7:bf:55:d3:1a:b1:84:ca:7a:c0:c6: 58:00:2a:e2:a6:1b:24:16:8f:2a:f4:2a:a9:d5:88:2f:9e:cd: f5:c9:1d:f3:f0:78:ae:a2:de:02:7f:ac:ca:ee:35:21:5d:dd: c1:3f:b9:d2:f1:20:62:b1:eb:f1:70:49:3d:5b:39:87:1b:d9: 40:5a:7a:f1:77:ac:a2:15:85:16:d0:2c:90:76:09:23:cc:b7: f9:31:c3:da:b7:33:87:0f:e9:cb:7f:52:8c:61:bb:42:60:48: 93:70:48:e9:c7:8f:bc:3d:de:b6:5b:8b:e7:8e:4f:5a:e5:74: 8f:e1:21:36:66:9d:d3:5d:7e:b8:14:09:d6:d4:eb:98:b9:36: 46:b0:1d:5a:b0:dc:91:72:74:58:e2:c0:ca:b3:24:21:a5:af: 84:91:7d:26:58:0f:29:51:f2:20:57:a6:db:96:7c:42:02:2e: 02:14:e3:6a:e1:0e:e3:95:18:af:70:db:2d:59:28:e6:8e:9f: 6f:9f:dd:7a:69:fe:02:9d:9e:ca:25:16:1f:7b:f7:71:07:dc: 19:ba:5e:69 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTMxRDExMC8GA1UEBRMoRTYyODIyMEYzRkQwMEY0MTdCOTk3MkUxRDRBMEY2NDE2 OTZFNzk5OTAeFw0yNTEwMTkxMDA4MDdaFw0yNTEwMjYxMDA4MDdaMBgxFjAUBgNV BAMTDTY4ZjRiODg4LWYwYTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOTmUr45QDPZDq4qQbFkFv/nxD+NdgboCLWplVmQFRcHJ250ffH5jm1p55M+25 eOmjCW0rAzwf7nWMHTG+JJAIfHxAWxZW1IK7oL2ZdUpdtGRNvMQa/yXmbfCLbfwt K4UUMqiIW15sspRXG2Oig72end6fplpPmpkNp7NagrK90gqfqLoBbEo2lW12h7L3 8WZPSCqq0EOO1QrZSfjtKbkszrj3bU+hLBU9mVbGv5YGSAGICx/d0AWvyV8kwiit PJhiU+k613oTtr6r2qYM2q+e3ixPc0wFoML8kLPvVQmTgIsXbw9bV6amo+RGarzZ tJxCmQ1u9iWhcpg+cvRKvlJZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTJ9pM9AR 5FYiALfwe6Uj3XDyJ38wHwYDVR0jBBgwFoAU5igiDz/QD0F7mXLh1KD2QWlueZkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFMzFELzJDRjZCOEIwRjlD OTExRUZBNTRGNzYyQUM0RjlBRTAyLzVpZ2lEel9RRDBGN21YTGgxS0QyUVdsdWVa ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNWlnaUR6X1FEMEY3bVhMaDFLRDJRV2x1ZVprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJF MzFELzJDRjZCOEIwRjlDOTExRUZBNTRGNzYyQUM0RjlBRTAyLzVpZ2lEel9RRDBG N21YTGgxS0QyUVdsdWVaay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI2mPcxhjOMy7+qPOS735uJZ7znIWiZybYT3FX27CuvNgzmtXMD+2dwO QB/Xv1XTGrGEynrAxlgAKuKmGyQWjyr0KqnViC+ezfXJHfPweK6i3gJ/rMruNSFd 3cE/udLxIGKx6/FwST1bOYcb2UBaevF3rKIVhRbQLJB2CSPMt/kxw9q3M4cP6ct/ Uoxhu0JgSJNwSOnHj7w93rZbi+eOT1rldI/hITZmndNdfrgUCdbU65i5NkawHVqw 3JFydFjiwMqzJCGlr4SRfSZYDylR8iBXptuWfEICLgIU42rhDuOVGK9w2y1ZKOaO n2+f3Xpp/gKdnsolFh9793EH3Bm6Xmk= -----END CERTIFICATE-----Generated at Mon Oct 20 19:25:29 2025 by rpki-client