$ rpki-client -vvf rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft File: aJtDtI4RHmnx33nMohHMtCZaJns.mft (raw, json) Hash identifier: zNn8BCu9pKkkNDjRjdVpMY/QkbykTOHWS/C6/I5j8A4= Subject key identifier: E4:DC:6B:04:7F:58:E9:B3:6C:63:FA:BE:57:F8:FB:BB:0E:01:2B:39 Authority key identifier: 68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B Certificate issuer: /CN=A91688C4/serialNumber=689B43B48E111E69F1DF79CCA211CCB4265A267B Certificate serial: 077F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft Manifest number: 0779 Signing time: Sat 18 Oct 2025 22:55:36 +0000 Manifest this update: Sat 18 Oct 2025 22:55:35 +0000 Manifest next update: Sat 25 Oct 2025 22:55:35 +0000 Files and hashes: 1: aJtDtI4RHmnx33nMohHMtCZaJns.crl (hash: DYuXSGTIA7eflIbt9pSC7jDDybxusJDw3JYV46iAaiI=) 2: 56FB3BA630DB11EBB36CAB54C4F9AE02.roa (hash: Tkzl81mL9jCkezlpTqealMA+SaYDCxv0/vXNUScGesg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:55:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1919 (0x77f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688C4, serialNumber=689B43B48E111E69F1DF79CCA211CCB4265A267B Validity Not Before: Oct 18 22:55:35 2025 GMT Not After : Oct 25 22:55:35 2025 GMT Subject: CN=68f41ae7-6ccf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:73:d4:54:67:d0:8d:91:b5:fa:e6:65:67:3e: 79:34:65:77:06:bc:f8:57:45:bf:6f:95:98:27:5c: 03:f1:68:57:55:89:87:81:fb:e4:9a:c2:ba:ab:53: 9c:4f:5e:0c:7d:ad:71:61:69:c6:1d:db:8e:1a:50: 55:b5:ec:7d:dd:7b:71:f4:13:54:7e:61:7d:13:fc: 1a:3d:b1:73:21:d5:3e:04:10:cd:40:c9:b2:c8:72: 74:2a:a9:f4:70:78:55:9d:32:22:42:c7:a9:ff:c2: 98:c8:52:38:65:7d:46:02:57:0b:12:08:08:8a:5e: ca:2b:65:5f:2f:53:43:78:a2:be:28:84:7e:ea:0a: 34:8c:07:d0:a0:00:ef:67:9d:79:d0:cb:d0:93:ca: 19:94:64:27:f0:c3:70:fd:d4:e2:cd:41:b9:38:9f: dc:07:c5:79:ef:5d:45:d9:22:d1:c1:dd:59:cb:eb: 90:0f:31:77:60:56:a4:55:0c:43:ee:cb:a8:4a:1a: b3:0a:8f:87:39:fe:e3:05:ff:3f:e0:68:e0:82:68: 12:97:21:27:f3:d7:cd:e0:3e:ba:8f:41:a2:e9:b5: ed:ae:cd:6d:88:38:c9:16:15:cb:bb:ec:22:57:f7: a9:ca:45:71:a8:03:99:40:fe:13:b3:09:c6:53:96: b2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:DC:6B:04:7F:58:E9:B3:6C:63:FA:BE:57:F8:FB:BB:0E:01:2B:39 X509v3 Authority Key Identifier: keyid:68:9B:43:B4:8E:11:1E:69:F1:DF:79:CC:A2:11:CC:B4:26:5A:26:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aJtDtI4RHmnx33nMohHMtCZaJns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688C4/D8947EB830D911EB87E09353C4F9AE02/aJtDtI4RHmnx33nMohHMtCZaJns.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:fa:e4:4c:5f:ca:31:59:68:96:67:1c:f0:6f:a3:37:7b:43: cd:f9:cd:b6:08:2d:d1:03:fe:20:30:2e:ac:09:d8:90:b3:89: 41:e1:a7:d4:7a:89:b6:bb:13:e5:d7:08:52:da:62:6f:4a:2d: bb:ac:65:a5:7a:81:c4:6a:ee:56:69:c0:38:68:a2:15:c7:d2: d6:23:2e:23:5a:16:dd:08:53:94:fc:18:73:3e:cb:ed:b2:55: 49:2b:72:85:d8:d0:4e:5f:2b:83:63:72:ae:45:2a:b7:09:fd: 9e:ff:a2:ea:2e:6b:df:62:11:50:43:b9:b1:2c:18:3d:18:ce: c7:dd:76:6a:01:34:db:5f:ad:5e:46:15:9b:60:c8:b7:1e:1a: da:07:de:c6:2d:6c:c6:9d:cb:99:68:7b:a3:03:ed:46:bc:92: 23:13:22:e3:28:f1:ee:0d:75:94:f9:f8:16:c4:6c:07:da:95: e7:21:41:46:af:f1:aa:85:ac:dc:0c:ce:6c:f0:04:4f:5d:5f: a2:69:5f:96:24:f5:3b:97:f3:e2:a9:8f:f1:5a:3f:61:d2:1b: 21:ab:3d:e2:f8:c7:5a:f5:b7:b3:33:83:37:3e:28:13:bf:84: d7:20:8b:39:33:2c:6e:b6:9b:a7:21:2b:04:5a:cc:b6:94:a5: c1:bc:20:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4QzQxMTAvBgNVBAUTKDY4OUI0M0I0OEUxMTFFNjlGMURGNzlDQ0EyMTFDQ0I0 MjY1QTI2N0IwHhcNMjUxMDE4MjI1NTM1WhcNMjUxMDI1MjI1NTM1WjAYMRYwFAYD VQQDEw02OGY0MWFlNy02Y2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXPUVGfQjZG1+uZlZz55NGV3Brz4V0W/b5WYJ1wD8WhXVYmHgfvkmsK6q1Oc T14Mfa1xYWnGHduOGlBVtex93Xtx9BNUfmF9E/waPbFzIdU+BBDNQMmyyHJ0Kqn0 cHhVnTIiQsep/8KYyFI4ZX1GAlcLEggIil7KK2VfL1NDeKK+KIR+6go0jAfQoADv Z5150MvQk8oZlGQn8MNw/dTizUG5OJ/cB8V5711F2SLRwd1Zy+uQDzF3YFakVQxD 7suoShqzCo+HOf7jBf8/4GjggmgSlyEn89fN4D66j0Gi6bXtrs1tiDjJFhXLu+wi V/epykVxqAOZQP4TswnGU5ayLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOTcawR/ WOmzbGP6vlf4+7sOASs5MB8GA1UdIwQYMBaAFGibQ7SOER5p8d95zKIRzLQmWiZ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhDNC9EODk0N0VCODMw RDkxMUVCODdFMDkzNTNDNEY5QUUwMi9hSnREdEk0UkhtbngzM25Nb2hITXRDWmFK bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FKdER0STRSSG1ueDMzbk1vaEhNdENaYUpucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODhDNC9EODk0N0VCODMwRDkxMUVCODdFMDkzNTNDNEY5QUUwMi9hSnREdEk0Ukht bngzM25Nb2hITXRDWmFKbnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBS+uRMX8oxWWiWZxzwb6M3e0PN+c22CC3RA/4gMC6sCdiQs4lB4afU eom2uxPl1whS2mJvSi27rGWleoHEau5WacA4aKIVx9LWIy4jWhbdCFOU/BhzPsvt slVJK3KF2NBOXyuDY3KuRSq3Cf2e/6LqLmvfYhFQQ7mxLBg9GM7H3XZqATTbX61e RhWbYMi3HhraB97GLWzGncuZaHujA+1GvJIjEyLjKPHuDXWU+fgWxGwH2pXnIUFG r/GqhazcDM5s8ARPXV+iaV+WJPU7l/PiqY/xWj9h0hshqz3i+Mda9bezM4M3PigT v4TXIIs5MyxutpunISsEWsy2lKXBvCAE -----END CERTIFICATE-----Generated at Mon Oct 20 21:37:51 2025 by rpki-client