$ rpki-client -vvf rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.mft File: 1l59EGxXG0LrbOL4iHLeery6-7g.mft (raw, json) Hash identifier: UJLcGbbJQpYOviHPFYq7gRiAe7aA4T3fxy55suGBbks= Subject key identifier: B2:D2:FE:5E:65:8B:6C:C9:49:CC:E6:DB:DC:0B:8E:E1:65:50:FB:8D Authority key identifier: D6:5E:7D:10:6C:57:1B:42:EB:6C:E2:F8:88:72:DE:7A:BC:BA:FB:B8 Certificate issuer: /CN=A913C34F/serialNumber=D65E7D106C571B42EB6CE2F88872DE7ABCBAFBB8 Certificate serial: 32A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1l59EGxXG0LrbOL4iHLeery6-7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.mft Manifest number: 32A2 Signing time: Sat 18 Oct 2025 15:35:27 +0000 Manifest this update: Sat 18 Oct 2025 15:35:26 +0000 Manifest next update: Sat 25 Oct 2025 15:35:26 +0000 Files and hashes: 1: 1l59EGxXG0LrbOL4iHLeery6-7g.crl (hash: XTnQUg+xZXMzQQO25dCeUgUh+q0QAQ+yE7pPUHZhIcY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.crl rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1l59EGxXG0LrbOL4iHLeery6-7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:35:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12962 (0x32a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C34F, serialNumber=D65E7D106C571B42EB6CE2F88872DE7ABCBAFBB8 Validity Not Before: Oct 18 15:35:26 2025 GMT Not After : Oct 25 15:35:26 2025 GMT Subject: CN=68f3b3bf-c333 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:24:6f:17:4d:9d:69:1c:8d:e5:0c:81:f7:cf: 23:97:c1:3e:47:9d:7b:cd:a9:1e:32:f0:fe:37:eb: fb:c6:52:33:96:70:f0:60:0f:c2:cb:55:01:97:fe: 8f:25:49:92:78:e4:32:ae:88:ef:0f:dc:93:ea:ce: 4b:7d:e6:67:f5:01:75:21:2d:14:9d:f9:47:ba:a9: 99:84:30:2e:49:d4:ae:82:45:1d:66:31:d2:41:93: 00:fc:67:6b:47:74:63:69:6b:c9:f8:33:48:63:7b: 79:25:63:78:0c:0a:22:a1:fe:de:8b:4b:19:76:d1: 8f:5f:49:9f:37:16:ac:74:3f:54:a6:8d:6b:d5:d9: 9c:e2:ca:28:97:5c:f0:71:9e:6a:6c:b8:e8:13:fc: e0:d7:56:8b:d4:ca:6c:f2:43:54:a3:a4:ad:86:50: 06:5a:e4:13:7d:8a:81:f3:27:2f:79:cb:06:63:28: 7d:ec:4f:9c:1a:4a:10:2c:3b:4d:3c:d0:69:2e:d7: fe:2a:1c:02:c6:42:d1:8b:0f:95:e8:b0:85:38:2f: 50:83:db:c7:ce:31:0c:2c:94:0d:40:e0:bc:b8:aa: 1f:50:1c:0d:90:dc:93:ee:47:24:e9:d3:e6:07:5b: 83:66:3f:bf:45:35:36:fe:72:ef:f9:f9:25:f7:fd: 9d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:D2:FE:5E:65:8B:6C:C9:49:CC:E6:DB:DC:0B:8E:E1:65:50:FB:8D X509v3 Authority Key Identifier: keyid:D6:5E:7D:10:6C:57:1B:42:EB:6C:E2:F8:88:72:DE:7A:BC:BA:FB:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1l59EGxXG0LrbOL4iHLeery6-7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C34F/35FBF5D48A0411E2B8821D093292B5E8/1l59EGxXG0LrbOL4iHLeery6-7g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:84:67:ac:4a:ac:b5:76:98:88:f8:89:8b:6b:7f:a7:c5:c8: f4:07:a2:37:38:27:b2:c5:d2:0b:39:8b:f4:0e:26:25:b8:58: 13:cf:b7:70:c4:d8:51:aa:56:ea:a1:7a:2f:c5:8e:80:d5:50: 3a:50:e5:df:01:2b:fd:62:c7:3d:99:a0:c3:ad:b4:eb:5d:fc: 4a:d2:aa:9a:c0:2e:55:2f:c1:5c:31:6a:9b:b8:4f:1d:dd:d1: 7a:29:6c:4c:63:b5:52:35:61:18:e1:7b:8b:44:6e:51:86:f5: e3:d5:5f:3e:1a:1d:de:61:0a:68:44:ef:c7:57:bc:bc:19:a3: f6:3e:8b:01:76:a1:0b:86:d9:bf:2e:bd:1c:a0:d1:5d:a6:06: f0:49:04:05:09:22:41:9c:99:65:82:2b:fe:87:23:b9:7b:4b: 96:46:44:0e:ce:ec:ca:62:0a:f6:d5:59:e5:a7:55:1a:d2:36: 48:8b:48:35:ed:51:e0:ad:3f:ee:d8:f0:32:db:bb:91:fa:e7: a9:a6:7f:4f:c0:ff:47:fd:e3:2d:ab:c3:3b:68:0e:3c:fa:81: 22:3e:76:19:d8:37:28:8f:27:03:2f:40:a6:c4:c1:4b:35:ff: a7:c8:94:27:30:7c:eb:ad:b7:cc:71:0b:16:9a:98:6c:8e:24: 93:b9:37:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICMqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0MzNEYxMTAvBgNVBAUTKEQ2NUU3RDEwNkM1NzFCNDJFQjZDRTJGODg4NzJERTdB QkNCQUZCQjgwHhcNMjUxMDE4MTUzNTI2WhcNMjUxMDI1MTUzNTI2WjAYMRYwFAYD VQQDEw02OGYzYjNiZi1jMzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyRvF02daRyN5QyB988jl8E+R517zakeMvD+N+v7xlIzlnDwYA/Cy1UBl/6P JUmSeOQyrojvD9yT6s5LfeZn9QF1IS0UnflHuqmZhDAuSdSugkUdZjHSQZMA/Gdr R3RjaWvJ+DNIY3t5JWN4DAoiof7ei0sZdtGPX0mfNxasdD9Upo1r1dmc4sool1zw cZ5qbLjoE/zg11aL1Mps8kNUo6SthlAGWuQTfYqB8ycvecsGYyh97E+cGkoQLDtN PNBpLtf+KhwCxkLRiw+V6LCFOC9Qg9vHzjEMLJQNQOC8uKofUBwNkNyT7kck6dPm B1uDZj+/RTU2/nLv+fkl9/2dYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLLS/l5l i2zJSczm29wLjuFlUPuNMB8GA1UdIwQYMBaAFNZefRBsVxtC62zi+Ihy3nq8uvu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzM0Ri8zNUZCRjVENDhB MDQxMUUyQjg4MjFEMDkzMjkyQjVFOC8xbDU5RUd4WEcwTHJiT0w0aUhMZWVyeTYt N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFsNTlFR3hYRzBMcmJPTDRpSExlZXJ5Ni03Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzM0Ri8zNUZCRjVENDhBMDQxMUUyQjg4MjFEMDkzMjkyQjVFOC8xbDU5RUd4WEcw THJiT0w0aUhMZWVyeTYtN2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvhGesSqy1dpiI+ImLa3+nxcj0B6I3OCeyxdILOYv0DiYluFgTz7dw xNhRqlbqoXovxY6A1VA6UOXfASv9Ysc9maDDrbTrXfxK0qqawC5VL8FcMWqbuE8d 3dF6KWxMY7VSNWEY4XuLRG5RhvXj1V8+Gh3eYQpoRO/HV7y8GaP2PosBdqELhtm/ Lr0coNFdpgbwSQQFCSJBnJllgiv+hyO5e0uWRkQOzuzKYgr21Vnlp1Ua0jZIi0g1 7VHgrT/u2PAy27uR+ueppn9PwP9H/eMtq8M7aA48+oEiPnYZ2DcojycDL0CmxMFL Nf+nyJQnMHzrrbfMcQsWmphsjiSTuTdy -----END CERTIFICATE-----Generated at Mon Oct 20 15:40:47 2025 by rpki-client