$ rpki-client -vvf rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft File: 7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft (raw, json) Hash identifier: FJ0z5/EklwyX923QirwN4kF55sNDuR1yUj7p0l4z3/A= Subject key identifier: 83:76:D0:3F:A4:6F:7D:B3:41:89:16:83:63:93:8F:FE:5D:28:F2:7D Authority key identifier: EC:84:D6:0F:79:6B:F4:16:F8:F8:1D:18:BA:DA:2F:FF:87:C1:5F:26 Certificate issuer: /CN=A917ACF1/serialNumber=EC84D60F796BF416F8F81D18BADA2FFF87C15F26 Certificate serial: 03DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft Manifest number: 03D8 Signing time: Sun 19 Oct 2025 02:35:12 +0000 Manifest this update: Sun 19 Oct 2025 02:35:12 +0000 Manifest next update: Sun 26 Oct 2025 02:35:12 +0000 Files and hashes: 1: 7ITWD3lr9Bb4-B0Yutov_4fBXyY.crl (hash: hqETN3oHAf3MEGs/WEwp3LS65jZEgURubQlbze9kFng=) 2: 5895821AB62611ECB410C81DC4F9AE02.roa (hash: hC/jX3h+m4kRJTL+3r4qE/OapWO5r8a4N2e8hzVBff0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.crl rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:35:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 991 (0x3df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ACF1, serialNumber=EC84D60F796BF416F8F81D18BADA2FFF87C15F26 Validity Not Before: Oct 19 02:35:12 2025 GMT Not After : Oct 26 02:35:12 2025 GMT Subject: CN=68f44e60-a535 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:44:42:30:6b:2f:29:db:70:15:34:4e:19:f5: 74:e9:5a:b3:45:d8:19:7c:9c:a3:8d:c1:85:21:b9: 68:b1:6d:4c:9c:8c:d3:a9:25:8d:18:42:7f:4d:fe: 6c:bf:38:c8:7f:cb:de:a9:0d:3d:3c:d7:d5:0e:7a: 89:fb:32:d6:0a:87:4d:30:79:b3:52:5a:a1:d3:80: 0d:16:33:a1:bf:1b:b2:94:99:d7:63:b7:4a:cf:5e: 66:10:01:f5:3b:5b:bc:e9:d7:19:66:2a:bb:82:c3: 43:87:be:e7:ad:03:ac:d2:2f:d3:82:a5:e9:ec:c9: 3f:27:34:dd:2d:fa:89:f9:a0:89:8e:1e:fc:e7:4a: 08:0f:d1:0f:89:95:e8:42:4e:43:f6:0b:3c:0c:38: e5:29:a2:e3:66:bb:0c:9b:8d:dc:f7:03:ea:99:5d: 66:db:b2:a1:9a:a8:bc:94:0e:4b:56:fb:c4:3b:1a: d4:21:9d:fa:66:2e:c1:af:01:37:a1:f0:11:59:2b: a3:fb:e1:fb:60:df:7a:60:b5:fa:81:b7:10:f1:4f: eb:46:3d:f9:12:55:e8:34:78:e7:8d:68:8e:d0:d4: 54:72:b1:d3:ce:78:84:6b:fd:e9:70:03:50:57:08: e2:60:25:dd:67:1c:48:a9:99:8e:f9:64:3f:79:4c: d9:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:76:D0:3F:A4:6F:7D:B3:41:89:16:83:63:93:8F:FE:5D:28:F2:7D X509v3 Authority Key Identifier: keyid:EC:84:D6:0F:79:6B:F4:16:F8:F8:1D:18:BA:DA:2F:FF:87:C1:5F:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7ITWD3lr9Bb4-B0Yutov_4fBXyY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ACF1/86835506A03911EC8A1F1C23C4F9AE02/7ITWD3lr9Bb4-B0Yutov_4fBXyY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:af:e2:37:da:dd:2c:34:3b:5c:54:05:0e:34:7c:77:80:d2: 39:c3:6b:2e:39:ab:af:ed:4d:0e:de:ef:26:e0:b6:f3:41:ac: 51:89:e9:ee:42:e4:45:fe:2c:01:bf:26:62:cb:4b:ec:1b:83: b2:a3:2e:1f:c7:89:35:72:ed:b7:bb:ca:09:2b:59:30:8a:67: 16:11:1a:48:00:8a:ca:54:cf:6a:db:8f:54:97:60:dc:7f:96: 6a:b4:90:4a:0b:fc:19:6d:c9:b5:62:4c:86:84:3f:53:b0:f9: df:b9:d1:79:49:1e:8c:7e:29:57:35:53:bd:b4:a1:12:33:c1: cd:bf:3f:ce:e6:fc:c7:64:4e:ec:0c:5c:39:ef:91:d6:0d:97: f9:da:3b:05:20:fc:16:35:89:9a:f0:01:8b:dc:4c:75:9f:43: e1:2d:08:9e:e3:83:24:78:2e:ae:f1:aa:fd:00:69:6d:5c:4e: 07:76:52:be:8d:cc:3f:73:c8:8f:42:a6:7c:fe:a2:89:2e:d4: 19:d6:19:c5:f2:a9:a2:e5:78:98:0e:04:5b:54:79:49:d0:c3: 8d:f9:83:32:5d:13:15:52:bd:0d:f8:02:65:1c:f6:9c:d8:8f: e5:f0:ff:53:9e:c8:76:a8:88:06:6e:a5:fc:48:f9:8b:3e:fb: fa:49:a7:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FDRjExMTAvBgNVBAUTKEVDODRENjBGNzk2QkY0MTZGOEY4MUQxOEJBREEyRkZG ODdDMTVGMjYwHhcNMjUxMDE5MDIzNTEyWhcNMjUxMDI2MDIzNTEyWjAYMRYwFAYD VQQDEw02OGY0NGU2MC1hNTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0RCMGsvKdtwFTROGfV06VqzRdgZfJyjjcGFIblosW1MnIzTqSWNGEJ/Tf5s vzjIf8veqQ09PNfVDnqJ+zLWCodNMHmzUlqh04ANFjOhvxuylJnXY7dKz15mEAH1 O1u86dcZZiq7gsNDh77nrQOs0i/TgqXp7Mk/JzTdLfqJ+aCJjh7850oID9EPiZXo Qk5D9gs8DDjlKaLjZrsMm43c9wPqmV1m27Khmqi8lA5LVvvEOxrUIZ36Zi7BrwE3 ofARWSuj++H7YN96YLX6gbcQ8U/rRj35ElXoNHjnjWiO0NRUcrHTzniEa/3pcANQ VwjiYCXdZxxIqZmO+WQ/eUzZsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIN20D+k b32zQYkWg2OTj/5dKPJ9MB8GA1UdIwQYMBaAFOyE1g95a/QW+PgdGLraL/+HwV8m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUNGMS84NjgzNTUwNkEw MzkxMUVDOEExRjFDMjNDNEY5QUUwMi83SVRXRDNscjlCYjQtQjBZdXRvdl80ZkJY eVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdJVFdEM2xyOUJiNC1CMFl1dG92XzRmQlh5WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUNGMS84NjgzNTUwNkEwMzkxMUVDOEExRjFDMjNDNEY5QUUwMi83SVRXRDNscjlC YjQtQjBZdXRvdl80ZkJYeVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRr+I32t0sNDtcVAUONHx3gNI5w2suOauv7U0O3u8m4LbzQaxRienu QuRF/iwBvyZiy0vsG4Oyoy4fx4k1cu23u8oJK1kwimcWERpIAIrKVM9q249Ul2Dc f5ZqtJBKC/wZbcm1YkyGhD9TsPnfudF5SR6MfilXNVO9tKESM8HNvz/O5vzHZE7s DFw575HWDZf52jsFIPwWNYma8AGL3Ex1n0PhLQie44MkeC6u8ar9AGltXE4HdlK+ jcw/c8iPQqZ8/qKJLtQZ1hnF8qmi5XiYDgRbVHlJ0MON+YMyXRMVUr0N+AJlHPac 2I/l8P9Tnsh2qIgGbqX8SPmLPvv6Saev -----END CERTIFICATE-----Generated at Tue Oct 21 02:26:36 2025 by rpki-client