$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft File: 1jZSRQ6nVZE88xr8-popIaSK4aQ.mft (raw, json) Hash identifier: G0rT2YxMDF186pQLzhdAARs2d+7WSi00jJOjbH/p5yk= Subject key identifier: 6D:C6:54:17:8F:F1:8B:17:7F:0D:D3:39:7B:6C:53:55:EE:57:E0:AF Authority key identifier: D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 Certificate issuer: /CN=A917BB1B/serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Certificate serial: 0436 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft Manifest number: 042F Signing time: Sun 19 Oct 2025 02:12:55 +0000 Manifest this update: Sun 19 Oct 2025 02:12:54 +0000 Manifest next update: Sun 26 Oct 2025 02:12:54 +0000 Files and hashes: 1: 1jZSRQ6nVZE88xr8-popIaSK4aQ.crl (hash: BWi5pSPqyrKYMgsX2zQvxxswdZAlOOwy3HzrVIqgh98=) 2: E69DB7E67F7911EC86DE4B56C4F9AE02.roa (hash: SCsr6a/OxC+h0TbqqqQWA1WP6sx9Kte4TE8O/kgTqE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1078 (0x436) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB1B, serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Validity Not Before: Oct 19 02:12:54 2025 GMT Not After : Oct 26 02:12:54 2025 GMT Subject: CN=68f44926-ea8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0a:32:e5:99:19:6a:ad:4d:fa:24:77:d5:c5: d5:94:1d:c0:a0:02:34:45:62:0c:dc:36:c4:26:51: 9d:dd:c4:ab:66:f7:d1:b8:23:51:cd:7b:37:9c:3d: 7f:cb:61:62:53:64:34:a0:90:54:40:f7:88:57:0a: 51:8d:c1:ba:0f:bf:b9:11:d6:e8:ad:ea:0a:5c:16: ed:3e:6e:8d:73:9f:fc:d6:10:2e:a4:e1:e5:f9:0a: be:a2:4b:37:2e:e9:5e:28:93:97:19:3c:dc:d4:7c: 07:77:60:36:fd:e3:90:f2:6a:b1:97:77:b0:31:54: 6b:13:82:e1:db:6a:98:c2:2b:ee:be:b5:26:13:c6: 16:e0:06:4e:b4:bc:b3:5c:75:00:60:59:28:e5:1a: 16:8b:29:50:4f:75:86:42:8e:29:d0:58:00:af:69: 58:59:9a:4b:e6:e3:43:c9:d0:02:c9:fe:11:a6:cd: 2d:9a:f8:e0:9f:cf:37:63:1b:7c:d8:ac:45:5e:3e: 73:a5:e6:11:f2:3e:d4:8d:9c:ad:31:4e:01:c6:ea: 75:55:4f:e5:e6:3c:e9:da:9a:71:af:be:49:9d:13: 5d:f0:9f:75:a4:ca:e4:d6:67:35:cd:0d:0f:ad:3f: ec:3b:c3:fa:07:b7:46:b3:68:54:8d:ad:46:ca:f8: 2a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:C6:54:17:8F:F1:8B:17:7F:0D:D3:39:7B:6C:53:55:EE:57:E0:AF X509v3 Authority Key Identifier: keyid:D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:16:ab:ae:f5:15:86:5f:fa:7c:00:e0:7d:f1:51:b5:15:54: c6:80:e0:4c:91:54:a8:1c:db:3d:f9:36:b2:d3:c8:42:74:b6: 7c:22:6f:4a:d9:29:fd:76:c9:85:7b:db:ca:ad:3d:84:c2:ac: cd:58:ca:f8:11:17:18:ed:af:6c:10:75:81:32:27:85:64:0b: 7a:69:c5:d7:5a:36:5a:cd:84:e5:31:0f:1e:14:4a:c3:63:6e: bd:58:8d:16:0b:e3:2a:42:0b:1b:ee:d9:80:a9:67:ab:a0:22: a6:60:14:90:ba:17:1e:e1:0d:16:2a:c6:cc:14:47:ea:27:0d: ab:ea:9c:ad:ca:d5:b0:fa:24:b1:37:0e:ee:8b:cd:fd:78:ba: 3c:94:6c:04:94:4b:a4:f0:f3:ce:7c:2f:7a:c5:26:1f:19:12: 16:88:14:95:47:83:64:0b:d1:eb:45:14:7d:37:0c:3e:06:6d: 0a:8e:00:0f:fa:9e:8a:87:e1:94:e1:0b:27:3b:9e:51:fa:ca: 9c:56:c9:35:a9:de:bf:b5:ea:de:5b:49:2d:5f:a1:c0:4a:30: ff:2e:70:2f:80:a0:85:d7:cf:6d:57:76:d3:fe:b6:b7:72:de: 0b:91:e8:de:4d:59:b8:a5:d6:3d:81:43:8b:c2:ce:4a:96:9e: a1:08:2a:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCMUIxMTAvBgNVBAUTKEQ2MzY1MjQ1MEVBNzU1OTEzQ0YzMUFGQ0ZBOUEyOTIx QTQ4QUUxQTQwHhcNMjUxMDE5MDIxMjU0WhcNMjUxMDI2MDIxMjU0WjAYMRYwFAYD VQQDEw02OGY0NDkyNi1lYThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwoy5ZkZaq1N+iR31cXVlB3AoAI0RWIM3DbEJlGd3cSrZvfRuCNRzXs3nD1/ y2FiU2Q0oJBUQPeIVwpRjcG6D7+5EdboreoKXBbtPm6Nc5/81hAupOHl+Qq+oks3 LuleKJOXGTzc1HwHd2A2/eOQ8mqxl3ewMVRrE4Lh22qYwivuvrUmE8YW4AZOtLyz XHUAYFko5RoWiylQT3WGQo4p0FgAr2lYWZpL5uNDydACyf4Rps0tmvjgn883Yxt8 2KxFXj5zpeYR8j7UjZytMU4Bxup1VU/l5jzp2ppxr75JnRNd8J91pMrk1mc1zQ0P rT/sO8P6B7dGs2hUja1GyvgqVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG3GVBeP 8YsXfw3TOXtsU1XuV+CvMB8GA1UdIwQYMBaAFNY2UkUOp1WRPPMa/PqaKSGkiuGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkIxQi9EOUI5Qzg4QzdG MzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZaRTg4eHI4LXBvcElhU0s0 YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFqWlNSUTZuVlpFODh4cjgtcG9wSWFTSzRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkIxQi9EOUI5Qzg4QzdGMzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZa RTg4eHI4LXBvcElhU0s0YVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHFquu9RWGX/p8AOB98VG1FVTGgOBMkVSoHNs9+Tay08hCdLZ8Im9K 2Sn9dsmFe9vKrT2EwqzNWMr4ERcY7a9sEHWBMieFZAt6acXXWjZazYTlMQ8eFErD Y269WI0WC+MqQgsb7tmAqWeroCKmYBSQuhce4Q0WKsbMFEfqJw2r6pytytWw+iSx Nw7ui839eLo8lGwElEuk8PPOfC96xSYfGRIWiBSVR4NkC9HrRRR9Nww+Bm0KjgAP +p6Kh+GU4QsnO55R+sqcVsk1qd6/tereW0ktX6HASjD/LnAvgKCF189tV3bT/ra3 ct4LkejeTVm4pdY9gUOLws5Klp6hCCqu -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:16 2025 by rpki-client