$ rpki-client -vvf rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.mft File: DAsd1farZExXB4GkKeRIBQIY6es.mft (raw, json) Hash identifier: +mpHq/RClrImr+8dYFRaPd8sRXTkdl/c8sLpGVuUcA8= Subject key identifier: 8D:A5:D7:92:FE:0C:89:4A:E4:4E:F4:11:CD:E3:D2:18:53:F5:2F:D3 Authority key identifier: 0C:0B:1D:D5:F6:AB:64:4C:57:07:81:A4:29:E4:48:05:02:18:E9:EB Certificate issuer: /CN=A9134C3E/serialNumber=0C0B1DD5F6AB644C570781A429E448050218E9EB Certificate serial: 058D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAsd1farZExXB4GkKeRIBQIY6es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.mft Manifest number: 0588 Signing time: Sun 19 Oct 2025 00:54:24 +0000 Manifest this update: Sun 19 Oct 2025 00:54:23 +0000 Manifest next update: Sun 26 Oct 2025 00:54:23 +0000 Files and hashes: 1: DAsd1farZExXB4GkKeRIBQIY6es.crl (hash: w8gJws17+9HVMlHY8aSqetYQyNEfoy2yHJC2ygNdmnM=) 2: 9222BEB4F42811EB93675638C4F9AE02.roa (hash: B73jK8rs3UShIkXEqnOr+hGZIISFb8px20z32h4py5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.crl rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAsd1farZExXB4GkKeRIBQIY6es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1421 (0x58d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134C3E, serialNumber=0C0B1DD5F6AB644C570781A429E448050218E9EB Validity Not Before: Oct 19 00:54:23 2025 GMT Not After : Oct 26 00:54:23 2025 GMT Subject: CN=68f436c0-b8dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:58:61:e9:25:61:7b:d0:4d:b6:64:99:e3:4c: f5:d3:18:00:3e:f9:96:8d:46:19:24:37:a8:a1:12: 83:10:c9:35:26:78:23:79:45:9e:69:41:de:06:28: a6:e0:ac:35:83:39:7e:7d:29:3e:68:d4:ca:2f:4b: cd:fb:ec:ac:e1:31:7e:08:5a:56:1e:33:13:95:4d: 12:77:ed:3d:7c:24:ab:5b:c9:1c:7d:59:23:71:a4: 1e:b7:f2:39:a0:97:34:b7:98:f5:f5:a0:05:f2:ca: 6e:76:1e:a9:d3:f3:2a:68:7f:3a:52:63:f5:b3:e6: 32:15:d0:5b:49:51:da:da:cd:ff:2f:c4:df:83:ec: 20:56:da:77:6a:18:30:85:ec:4f:47:6a:9f:0f:3e: ea:7b:4a:23:fd:d2:e8:c7:af:5d:47:10:c6:ad:c3: 59:9e:5d:fb:83:ab:13:b3:a3:78:3f:14:b5:a8:46: 0c:22:40:14:c4:66:8e:9e:2b:60:a4:ed:20:82:4c: 11:46:e1:b8:f2:dd:bc:cc:5b:b2:57:dd:cd:03:cc: 95:cb:a4:a0:5e:fa:a5:4d:59:bc:ab:9d:ee:f1:6c: 3f:32:7b:0e:08:52:fd:26:8b:e1:d4:21:5b:7b:f8: e8:17:d6:8b:f1:59:ac:e6:68:05:25:51:3d:32:15: 56:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:A5:D7:92:FE:0C:89:4A:E4:4E:F4:11:CD:E3:D2:18:53:F5:2F:D3 X509v3 Authority Key Identifier: keyid:0C:0B:1D:D5:F6:AB:64:4C:57:07:81:A4:29:E4:48:05:02:18:E9:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAsd1farZExXB4GkKeRIBQIY6es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:2d:2c:e3:54:3c:72:88:dd:cb:1c:71:ec:02:ca:7d:40:86: c2:14:fe:06:16:88:c8:27:64:b1:81:41:bd:22:61:21:99:fa: 08:ab:fd:26:c0:ba:59:c9:12:73:ca:d2:32:33:c1:27:fa:53: 59:9b:bd:c9:ea:f0:ec:f7:8f:29:26:9b:53:b4:47:7f:8b:fd: e8:f2:ee:02:bd:94:22:3b:7a:24:3a:1d:19:36:bd:45:47:a3: af:85:d1:7a:ca:93:9a:77:28:44:af:cc:a0:76:44:ad:54:1d: 6a:94:da:db:a8:dc:bb:64:94:69:21:7e:81:ba:3f:64:da:34: 0c:46:b1:72:1a:ef:2e:d8:13:b3:17:c7:f6:98:99:8e:3c:a0: 75:a3:3d:0b:14:84:26:57:b7:4f:6f:d8:31:da:da:18:cb:97: e3:09:52:b5:1e:70:48:1d:7f:d7:e2:06:78:24:77:00:5e:76: 93:90:ea:ae:8b:d9:4c:a3:be:94:da:92:fc:6a:aa:07:e9:ff: 17:32:00:6a:61:6e:65:d5:ce:86:4f:0a:0f:91:b0:7c:f5:49: 06:b3:f5:6a:85:89:ac:bd:ac:cb:2e:fd:fc:76:d6:d8:8f:37: d7:24:c8:31:03:1c:89:0e:de:dd:82:b5:19:a5:eb:46:06:92: 35:15:6b:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRDM0UxMTAvBgNVBAUTKDBDMEIxREQ1RjZBQjY0NEM1NzA3ODFBNDI5RTQ0ODA1 MDIxOEU5RUIwHhcNMjUxMDE5MDA1NDIzWhcNMjUxMDI2MDA1NDIzWjAYMRYwFAYD VQQDEw02OGY0MzZjMC1iOGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplhh6SVhe9BNtmSZ40z10xgAPvmWjUYZJDeooRKDEMk1JngjeUWeaUHeBiim 4Kw1gzl+fSk+aNTKL0vN++ys4TF+CFpWHjMTlU0Sd+09fCSrW8kcfVkjcaQet/I5 oJc0t5j19aAF8spudh6p0/MqaH86UmP1s+YyFdBbSVHa2s3/L8Tfg+wgVtp3ahgw hexPR2qfDz7qe0oj/dLox69dRxDGrcNZnl37g6sTs6N4PxS1qEYMIkAUxGaOnitg pO0ggkwRRuG48t28zFuyV93NA8yVy6SgXvqlTVm8q53u8Ww/MnsOCFL9Jovh1CFb e/joF9aL8Vms5mgFJVE9MhVWJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI2l15L+ DIlK5E70Ec3j0hhT9S/TMB8GA1UdIwQYMBaAFAwLHdX2q2RMVweBpCnkSAUCGOnr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEMzRS9BODA3QzFDOEY0 MjUxMUVCQkRFODdFMzRDNEY5QUUwMi9EQXNkMWZhclpFeFhCNEdrS2VSSUJRSVk2 ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RBc2QxZmFyWkV4WEI0R2tLZVJJQlFJWTZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEMzRS9BODA3QzFDOEY0MjUxMUVCQkRFODdFMzRDNEY5QUUwMi9EQXNkMWZhclpF eFhCNEdrS2VSSUJRSVk2ZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDLSzjVDxyiN3LHHHsAsp9QIbCFP4GFojIJ2SxgUG9ImEhmfoIq/0m wLpZyRJzytIyM8En+lNZm73J6vDs948pJptTtEd/i/3o8u4CvZQiO3okOh0ZNr1F R6OvhdF6ypOadyhEr8ygdkStVB1qlNrbqNy7ZJRpIX6Buj9k2jQMRrFyGu8u2BOz F8f2mJmOPKB1oz0LFIQmV7dPb9gx2toYy5fjCVK1HnBIHX/X4gZ4JHcAXnaTkOqu i9lMo76U2pL8aqoH6f8XMgBqYW5l1c6GTwoPkbB89UkGs/VqhYmsvazLLv38dtbY jzfXJMgxAxyJDt7dgrUZpetGBpI1FWvG -----END CERTIFICATE-----Generated at Mon Oct 20 08:22:59 2025 by rpki-client