$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: nP86UdTVEQmA7xsoGdzzOvP5PeTCAmq2OnDBddhGUPM= Subject key identifier: F8:16:D7:18:9D:6A:41:0F:8C:E6:39:AB:71:8C:70:A5:65:60:79:8C Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 0208 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 01FC Signing time: Sun 19 Oct 2025 04:52:15 +0000 Manifest this update: Sun 19 Oct 2025 04:52:14 +0000 Manifest next update: Sun 26 Oct 2025 04:52:14 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: nFYTvCSLuyEYyRh87cUDe/FJEM3/rAvjZQJbzrgx4Ko=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: p8fvqZ7Alg5roEiASszoiJIP01rninX1g3Jc6iC5JJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:52:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9, serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Oct 19 04:52:14 2025 GMT Not After : Oct 26 04:52:14 2025 GMT Subject: CN=68f46e7e-1d7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c0:21:f3:1a:ea:d3:8e:a4:25:d4:d5:03:e9: 20:de:ed:3d:90:23:81:a0:2f:2f:3d:ee:c1:05:01: 52:0d:f0:1d:85:46:50:3e:26:d9:25:86:46:e3:41: b1:cb:ea:b1:c7:59:eb:dd:5b:43:ff:6f:2c:8e:ab: 4f:e4:81:ea:3a:47:7b:0a:7e:42:6c:9d:29:14:a8: ce:f9:24:96:8c:5f:16:b6:a0:a3:4d:15:f1:dc:27: 0f:60:33:d1:5d:ab:95:5e:bb:13:8b:fc:f1:90:46: 73:2f:b8:34:dc:0f:e4:7f:78:39:57:e3:3f:e8:5f: 7e:9e:c0:30:5e:e7:d6:46:2e:a6:50:b8:c5:e8:a2: 07:94:c1:41:60:d7:c0:46:df:d6:9e:ce:cc:0b:1b: 45:98:55:86:61:e1:f8:3f:d5:8f:b6:6e:8b:54:77: 89:95:3f:8b:68:8d:57:2d:5c:35:e6:82:3a:fa:84: c0:5a:f6:94:87:ed:62:3d:cf:57:7b:62:5f:4f:1c: 3c:38:77:6b:b9:6c:f5:ac:7a:d3:29:fc:c8:87:3d: 87:11:07:08:db:12:3e:3c:61:b8:bb:bf:a4:59:b5: ff:aa:c9:cc:21:39:15:c4:01:39:9a:60:02:b2:69: d5:f0:04:2f:0e:62:e3:a6:a0:b9:1a:df:2e:da:23: 2e:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:16:D7:18:9D:6A:41:0F:8C:E6:39:AB:71:8C:70:A5:65:60:79:8C X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:2d:22:8d:5a:bd:92:a0:64:a8:d3:dd:74:23:0b:3e:04:9c: aa:dc:c7:cc:8d:15:af:06:b4:f4:7b:cb:62:60:14:85:63:08: 61:c7:e6:2a:03:e6:1b:47:27:ce:8c:83:0a:96:61:78:14:ad: 7a:13:b0:6d:95:5a:83:fa:c7:4b:31:a7:18:eb:41:e0:34:f0: 30:9d:70:94:e6:00:9d:a3:06:82:2e:2e:72:8f:8c:12:98:b3: 97:c7:62:8d:67:7e:b9:26:e9:b2:54:d6:42:78:6f:9e:21:01: 72:96:1c:25:7d:4a:9a:90:49:a3:aa:3b:06:5d:2b:e5:1e:de: 31:a0:a5:1c:28:7b:36:eb:6b:95:bc:59:e5:f2:3d:11:f7:d6: 20:7d:61:2a:61:e6:8d:ac:6c:17:cb:c9:fe:1c:47:47:3e:77: d9:9b:31:fe:0b:bd:80:8a:4a:79:0b:69:59:5b:db:f8:72:ee: f7:a7:83:3b:82:54:8e:4f:2b:35:93:a0:54:f8:99:1c:65:c9: e0:6d:26:8a:e3:9c:82:6d:80:fe:9c:82:c9:b1:38:ea:4b:d7: ed:8a:b4:e6:31:7d:d9:e7:4c:e0:22:55:b2:a1:f8:f1:58:2f: 35:96:34:50:60:61:83:58:ce:97:55:5e:7c:b2:aa:9f:bb:d4: b5:2a:f9:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjUxMDE5MDQ1MjE0WhcNMjUxMDI2MDQ1MjE0WjAYMRYwFAYD VQQDEw02OGY0NmU3ZS0xZDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8Ah8xrq046kJdTVA+kg3u09kCOBoC8vPe7BBQFSDfAdhUZQPibZJYZG40Gx y+qxx1nr3VtD/28sjqtP5IHqOkd7Cn5CbJ0pFKjO+SSWjF8WtqCjTRXx3CcPYDPR XauVXrsTi/zxkEZzL7g03A/kf3g5V+M/6F9+nsAwXufWRi6mULjF6KIHlMFBYNfA Rt/Wns7MCxtFmFWGYeH4P9WPtm6LVHeJlT+LaI1XLVw15oI6+oTAWvaUh+1iPc9X e2JfTxw8OHdruWz1rHrTKfzIhz2HEQcI2xI+PGG4u7+kWbX/qsnMITkVxAE5mmAC smnV8AQvDmLjpqC5Gt8u2iMuBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPgW1xid akEPjOY5q3GMcKVlYHmMMB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBLSKNWr2SoGSo0910Iws+BJyq3MfMjRWvBrT0e8tiYBSFYwhhx+Yq A+YbRyfOjIMKlmF4FK16E7BtlVqD+sdLMacY60HgNPAwnXCU5gCdowaCLi5yj4wS mLOXx2KNZ365JumyVNZCeG+eIQFylhwlfUqakEmjqjsGXSvlHt4xoKUcKHs262uV vFnl8j0R99YgfWEqYeaNrGwXy8n+HEdHPnfZmzH+C72Aikp5C2lZW9v4cu73p4M7 glSOTys1k6BU+JkcZcngbSaK45yCbYD+nILJsTjqS9ftirTmMX3Z50zgIlWyofjx WC81ljRQYGGDWM6XVV58sqqfu9S1KvnS -----END CERTIFICATE-----Generated at Tue Oct 21 01:02:48 2025 by rpki-client