$ rpki-client -vvf rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft File: oC73fAXKEwwiKYXNdK6TjaeaT78.mft (raw, json) Hash identifier: tcJWG1CIpFDutPGVoCdau7ucCHaXHAKv2P7GRVEiqmQ= Subject key identifier: 0F:76:39:5E:60:9C:F8:D6:EA:D0:D6:88:64:62:A8:64:96:D7:6E:A0 Authority key identifier: A0:2E:F7:7C:05:CA:13:0C:22:29:85:CD:74:AE:93:8D:A7:9A:4F:BF Certificate issuer: /CN=A91398E5/serialNumber=A02EF77C05CA130C222985CD74AE938DA79A4FBF Certificate serial: 0984 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oC73fAXKEwwiKYXNdK6TjaeaT78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft Manifest number: 20DB Signing time: Sat 18 Oct 2025 17:00:24 +0000 Manifest this update: Sat 18 Oct 2025 17:00:23 +0000 Manifest next update: Sat 25 Oct 2025 17:00:23 +0000 Files and hashes: 1: oC73fAXKEwwiKYXNdK6TjaeaT78.crl (hash: 3BIY8Y6XaXjG8vYISBmxISeJaSOgJcAmc4Y1DCieL8I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.crl rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oC73fAXKEwwiKYXNdK6TjaeaT78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2436 (0x984) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398E5, serialNumber=A02EF77C05CA130C222985CD74AE938DA79A4FBF Validity Not Before: Oct 18 17:00:23 2025 GMT Not After : Oct 25 17:00:23 2025 GMT Subject: CN=68f3c7a8-52eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ea:0a:5a:23:1b:a4:da:c3:d9:66:5f:f8:00: 8a:a1:a4:6c:85:3f:d1:a0:52:69:39:69:41:4e:7a: 2e:c0:4a:38:56:d5:b4:42:f7:f3:20:32:09:87:d3: 28:6c:18:33:27:4b:4b:2b:d4:5c:53:d2:9b:10:aa: 36:2d:ef:1d:d9:76:df:26:66:02:74:b5:ee:ef:ec: 24:13:26:f0:07:ce:0e:4a:2d:10:4d:57:8e:63:03: 6b:38:ad:e3:1a:aa:9d:38:60:d5:66:7e:34:4f:7d: 3f:7d:53:7f:f7:fa:a8:29:df:66:fa:83:4c:4c:b2: f9:29:23:ea:97:44:74:ac:fb:35:bf:d5:40:67:8a: 09:d5:00:26:ac:67:7e:7c:33:e4:fb:eb:1e:2e:f7: ed:88:a1:d8:d9:b2:f5:74:a6:97:59:d1:3d:dc:d4: 9e:84:92:22:e2:c1:3c:a4:c9:fe:1e:49:17:69:16: 22:70:82:07:c6:df:77:b0:27:21:7c:80:16:05:46: 00:c9:9a:84:6a:14:e2:04:62:ad:bf:c2:0b:18:22: 24:a4:7d:91:54:b8:0b:32:02:33:b3:90:40:e9:5b: db:18:66:52:e1:63:5a:37:b8:14:0e:ad:66:fb:4a: 13:7c:97:0a:85:84:43:ea:12:ff:3c:33:d6:15:24: 29:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:76:39:5E:60:9C:F8:D6:EA:D0:D6:88:64:62:A8:64:96:D7:6E:A0 X509v3 Authority Key Identifier: keyid:A0:2E:F7:7C:05:CA:13:0C:22:29:85:CD:74:AE:93:8D:A7:9A:4F:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oC73fAXKEwwiKYXNdK6TjaeaT78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398E5/7840D95EE49111E791BE1869C4F9AE02/oC73fAXKEwwiKYXNdK6TjaeaT78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:b5:f2:77:68:79:aa:67:42:8c:3d:82:52:81:2f:0c:75:6e: 19:d4:c9:91:dd:c8:44:fa:67:6b:4b:30:d4:6d:10:d4:c9:41: 81:f8:43:5f:69:83:18:cb:f5:93:99:7c:c1:ff:a7:e5:13:0b: 69:7f:af:ef:e7:95:ae:44:7e:e6:a1:97:02:89:76:2e:b4:5b: aa:ae:16:74:f8:f6:7b:e7:5c:09:25:ff:50:1c:f9:df:eb:81: bf:30:67:57:37:23:9c:05:e4:0f:28:67:03:03:92:1f:bc:cd: 8d:67:88:c4:af:a9:1d:85:f1:74:ac:d8:54:9d:e4:11:af:4e: f5:aa:bf:d8:a2:af:da:aa:84:f6:7f:66:3c:93:08:91:43:46: 98:d8:72:3b:00:de:2f:93:b9:04:65:91:52:a7:55:81:68:a9: 2e:3d:a1:53:96:a4:52:04:aa:7a:e0:43:86:d3:ac:56:c2:1e: e2:e4:e5:87:66:0a:c9:fd:e4:45:e4:af:7c:40:5a:bb:bb:35: c0:51:ae:b6:15:b1:3a:91:21:97:67:6c:8c:2d:3a:d0:3f:a7: 64:28:5b:46:06:7a:79:c5:91:88:2f:57:cc:c2:26:a2:3c:9d: eb:cb:01:80:c1:c6:f5:a4:de:3b:d5:8d:28:6e:f3:ff:db:80: 82:bb:92:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4RTUxMTAvBgNVBAUTKEEwMkVGNzdDMDVDQTEzMEMyMjI5ODVDRDc0QUU5MzhE QTc5QTRGQkYwHhcNMjUxMDE4MTcwMDIzWhcNMjUxMDI1MTcwMDIzWjAYMRYwFAYD VQQDEw02OGYzYzdhOC01MmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6eoKWiMbpNrD2WZf+ACKoaRshT/RoFJpOWlBTnouwEo4VtW0QvfzIDIJh9Mo bBgzJ0tLK9RcU9KbEKo2Le8d2XbfJmYCdLXu7+wkEybwB84OSi0QTVeOYwNrOK3j GqqdOGDVZn40T30/fVN/9/qoKd9m+oNMTLL5KSPql0R0rPs1v9VAZ4oJ1QAmrGd+ fDPk++seLvftiKHY2bL1dKaXWdE93NSehJIi4sE8pMn+HkkXaRYicIIHxt93sCch fIAWBUYAyZqEahTiBGKtv8ILGCIkpH2RVLgLMgIzs5BA6VvbGGZS4WNaN7gUDq1m +0oTfJcKhYRD6hL/PDPWFSQpaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA92OV5g nPjW6tDWiGRiqGSW126gMB8GA1UdIwQYMBaAFKAu93wFyhMMIimFzXSuk42nmk+/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThFNS83ODQwRDk1RUU0 OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9vQzczZkFYS0V3d2lLWVhOZEs2VGphZWFU NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29DNzNmQVhLRXd3aUtZWE5kSzZUamFlYVQ3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OThFNS83ODQwRDk1RUU0OTExMUU3OTFCRTE4NjlDNEY5QUUwMi9vQzczZkFYS0V3 d2lLWVhOZEs2VGphZWFUNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPtfJ3aHmqZ0KMPYJSgS8MdW4Z1MmR3chE+mdrSzDUbRDUyUGB+ENf aYMYy/WTmXzB/6flEwtpf6/v55WuRH7moZcCiXYutFuqrhZ0+PZ751wJJf9QHPnf 64G/MGdXNyOcBeQPKGcDA5IfvM2NZ4jEr6kdhfF0rNhUneQRr071qr/Yoq/aqoT2 f2Y8kwiRQ0aY2HI7AN4vk7kEZZFSp1WBaKkuPaFTlqRSBKp64EOG06xWwh7i5OWH ZgrJ/eRF5K98QFq7uzXAUa62FbE6kSGXZ2yMLTrQP6dkKFtGBnp5xZGIL1fMwiai PJ3rywGAwcb1pN471Y0obvP/24CCu5J4 -----END CERTIFICATE-----Generated at Sun Oct 19 23:32:04 2025 by rpki-client