$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft File: tADiGrPTJXQtuHeDDrxEB233CUg.mft (raw, json) Hash identifier: mKG9b68Yfib8XRSvnM9bwSMa1juNonIAPIHoj/dei24= Subject key identifier: 9F:96:93:D7:CE:6F:13:51:3A:21:41:EA:21:1C:CD:8F:0B:CB:2F:D6 Authority key identifier: B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 Certificate issuer: /CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Certificate serial: 0F4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft Manifest number: 2C61 Signing time: Sat 18 Oct 2025 17:14:09 +0000 Manifest this update: Sat 18 Oct 2025 17:14:09 +0000 Manifest next update: Sat 25 Oct 2025 17:14:09 +0000 Files and hashes: 1: tADiGrPTJXQtuHeDDrxEB233CUg.crl (hash: W2goZbx0SV83ndL7LVkaTt0ZgHiY1/yc7rCFQNZF5vI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:14:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3915 (0xf4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Validity Not Before: Oct 18 17:14:09 2025 GMT Not After : Oct 25 17:14:09 2025 GMT Subject: CN=68f3cae1-6592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:fa:a6:3d:36:0c:da:db:05:33:bb:ae:36:b3: 4c:ac:2a:b5:36:7c:6d:2e:66:e4:4d:ca:a8:4f:06: 7a:a7:9c:f7:76:99:94:bc:a2:6f:ba:87:87:91:df: 7b:1d:a0:2a:ae:e1:51:4f:83:4b:e6:63:58:ad:94: 8e:59:1b:54:b1:4e:92:ea:b8:23:4e:09:7c:de:44: 9a:4e:dc:96:bb:58:65:63:e5:03:3d:7f:9f:96:f0: d7:4c:08:ab:ba:71:db:5c:53:f5:03:1e:44:7f:be: 9e:65:e9:b7:6f:03:89:98:95:47:e3:1e:4f:1e:50: b3:c7:80:3b:89:2b:2d:8a:c2:3b:6a:df:9b:aa:7f: fb:28:85:1a:14:6f:d9:90:e2:0f:ef:80:8d:0c:2d: c6:4d:94:80:a5:25:de:a2:b7:e2:dc:6d:2c:28:70: 05:b9:5c:0e:8b:1d:ce:f1:ee:4c:37:3c:54:3f:bc: f2:34:45:3c:e5:00:2f:7d:5d:d4:3f:58:1a:32:a0: 86:5b:a1:2f:07:63:26:82:1e:65:c3:ca:17:13:cf: e5:73:ff:22:40:fb:77:f8:bb:b5:b0:0b:ff:7b:61: 74:ca:b3:6b:b0:68:53:4d:31:2b:1c:90:38:a3:9a: b5:c5:68:e5:8b:52:77:70:55:2f:22:23:ee:4b:05: c9:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:96:93:D7:CE:6F:13:51:3A:21:41:EA:21:1C:CD:8F:0B:CB:2F:D6 X509v3 Authority Key Identifier: keyid:B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:bc:86:b7:68:4d:cd:9c:29:8a:b4:2b:12:b7:39:4a:44:87: d4:49:86:03:23:6a:cb:d8:99:3b:9a:1e:c3:e5:38:77:dc:81: 72:b0:06:3c:e6:c2:5d:71:91:12:3c:9d:17:3d:8b:8a:56:e5: ee:cc:f4:0c:87:1c:80:1d:f5:4b:af:1c:9f:ac:db:c3:e2:15: 80:50:b6:c1:cd:26:5c:89:0c:f5:1b:95:92:9a:c4:f7:4b:35: 83:1a:4e:36:60:ab:74:ae:35:26:99:24:ba:72:55:ba:73:06: ac:f4:13:18:b4:f4:9e:07:19:ba:35:6c:c7:3a:19:34:8a:0b: f9:5a:28:5f:e3:7d:b4:51:7e:85:0d:fa:34:af:06:d7:6a:80: 89:91:65:07:3e:fd:c2:64:05:0d:71:53:65:c7:df:70:39:10: 57:99:42:17:e4:fe:bf:7b:6a:83:8a:e1:a0:99:b2:21:ca:3c: 0d:6d:ac:fd:8b:56:be:c3:f7:01:2e:72:d5:48:c4:5e:9b:8c: a8:93:72:d4:d5:e2:03:54:f5:b1:5b:d1:c2:e8:93:31:ea:1b: ae:90:d4:67:2f:db:d4:ab:51:05:74:db:37:03:ed:24:50:09: 63:21:2f:2f:17:aa:70:50:8a:05:4f:49:d4:78:cc:de:60:fd: 1b:b9:fe:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKEI0MDBFMjFBQjNEMzI1NzQyREI4Nzc4MzBFQkM0NDA3 NkRGNzA5NDgwHhcNMjUxMDE4MTcxNDA5WhcNMjUxMDI1MTcxNDA5WjAYMRYwFAYD VQQDEw02OGYzY2FlMS02NTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fqmPTYM2tsFM7uuNrNMrCq1NnxtLmbkTcqoTwZ6p5z3dpmUvKJvuoeHkd97 HaAqruFRT4NL5mNYrZSOWRtUsU6S6rgjTgl83kSaTtyWu1hlY+UDPX+flvDXTAir unHbXFP1Ax5Ef76eZem3bwOJmJVH4x5PHlCzx4A7iSstisI7at+bqn/7KIUaFG/Z kOIP74CNDC3GTZSApSXeorfi3G0sKHAFuVwOix3O8e5MNzxUP7zyNEU85QAvfV3U P1gaMqCGW6EvB2Mmgh5lw8oXE8/lc/8iQPt3+Lu1sAv/e2F0yrNrsGhTTTErHJA4 o5q1xWjli1J3cFUvIiPuSwXJxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+Wk9fO bxNROiFB6iEczY8Lyy/WMB8GA1UdIwQYMBaAFLQA4hqz0yV0Lbh3gw68RAdt9wlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpYUXR1SGVERHJ4RUIyMzND VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBRGlHclBUSlhRdHVIZUREcnhFQjIzM0NVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpY UXR1SGVERHJ4RUIyMzNDVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmvIa3aE3NnCmKtCsStzlKRIfUSYYDI2rL2Jk7mh7D5Th33IFysAY8 5sJdcZESPJ0XPYuKVuXuzPQMhxyAHfVLrxyfrNvD4hWAULbBzSZciQz1G5WSmsT3 SzWDGk42YKt0rjUmmSS6clW6cwas9BMYtPSeBxm6NWzHOhk0igv5Wihf4320UX6F Dfo0rwbXaoCJkWUHPv3CZAUNcVNlx99wORBXmUIX5P6/e2qDiuGgmbIhyjwNbaz9 i1a+w/cBLnLVSMRem4yok3LU1eIDVPWxW9HC6JMx6huukNRnL9vUq1EFdNs3A+0k UAljIS8vF6pwUIoFT0nUeMzeYP0buf7G -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:11 2025 by rpki-client