$ rpki-client -vvf rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft File: R1MAyW65ok4zHQs5AHDEWinJXmk.mft (raw, json) Hash identifier: ORXL4Jvl3E3Qy7gKWtDgN4QPkKl6jU6asBLIcCUzcfc= Subject key identifier: 15:6F:D8:C2:56:19:15:1A:62:2F:6E:E4:AA:4F:D3:5A:D7:CC:18:C0 Authority key identifier: 47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 Certificate issuer: /CN=A917C36A/serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Certificate serial: 01F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft Manifest number: 01EB Signing time: Sun 19 Oct 2025 05:02:56 +0000 Manifest this update: Sun 19 Oct 2025 05:02:55 +0000 Manifest next update: Sun 26 Oct 2025 05:02:55 +0000 Files and hashes: 1: R1MAyW65ok4zHQs5AHDEWinJXmk.crl (hash: fqxBilm8UjtZ2V/GZcAQVv19WZQYu/5CuVYpJYnncME=) 2: 9CB879ECC7B511ED9411183FC4F9AE02.roa (hash: vTjIWL+7U0681ZWCBVmHMtqcTBbPy9kNb1m5t3OENUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 497 (0x1f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C36A, serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Validity Not Before: Oct 19 05:02:55 2025 GMT Not After : Oct 26 05:02:55 2025 GMT Subject: CN=68f470ff-2e2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:02:78:14:79:c1:39:e8:7d:f9:4c:db:d8:09: 04:8d:44:c9:63:ab:54:c6:c3:d3:df:60:e7:9b:cc: 86:92:5c:08:86:3c:98:78:e5:60:a0:23:20:4d:26: ce:0f:c5:6d:1c:84:63:22:e8:04:25:e4:18:a2:81: 2d:e1:11:9f:af:e4:71:ed:a6:a3:21:29:16:db:b9: 49:a3:33:b8:d1:86:6c:a1:6c:29:f2:80:89:f3:ff: 2f:33:2d:26:88:56:0c:fb:53:56:e6:4a:e4:ea:63: f4:c8:ad:a6:0c:71:68:cd:89:25:63:0e:d9:4d:e0: 03:ed:65:78:c4:e5:3e:1a:66:c2:28:cb:dd:a8:b1: 64:27:47:d1:88:6d:b2:3c:b1:d9:9d:b8:cf:51:7f: 5d:78:56:b8:c3:9b:24:80:77:69:51:94:c8:15:23: be:c9:0b:31:0b:69:b9:c7:82:f5:b7:d3:65:8e:c2: b0:f0:8b:cc:ab:8a:03:23:17:a5:50:24:e3:37:95: 03:27:1a:09:ac:f9:b3:71:05:cf:d6:ca:92:c8:1d: 05:dc:0b:27:5f:96:61:96:e2:37:80:21:17:d2:6e: e2:90:33:ad:ff:32:11:63:be:3d:d3:e6:3e:be:d5: db:b5:99:74:78:04:6d:85:66:b3:ea:22:f6:a0:09: f1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:6F:D8:C2:56:19:15:1A:62:2F:6E:E4:AA:4F:D3:5A:D7:CC:18:C0 X509v3 Authority Key Identifier: keyid:47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:ec:02:28:5b:25:d8:fa:3d:50:92:0f:ae:fe:5f:52:4c:bd: 56:7f:76:da:b8:a4:d1:e8:23:c4:1f:25:62:56:35:77:e8:22: 74:83:59:c9:77:e0:e9:08:e2:6f:19:54:24:c1:93:79:7f:f1: 58:cc:e2:1a:9c:5b:e5:e4:37:f3:f8:af:8a:13:66:44:ab:db: e2:83:d6:f1:4a:66:80:29:71:6d:69:50:65:e3:ad:54:4d:2e: aa:99:3a:98:ec:ab:77:6c:70:12:30:66:04:47:42:55:ca:cf: a9:5b:4f:c6:da:01:e5:3e:c2:94:72:df:17:a1:00:f8:31:57: 3b:ab:a4:07:ba:ad:a7:62:4d:a6:b1:64:57:b8:01:d3:5a:d0: ef:87:47:93:da:9d:af:fc:18:93:a4:ef:55:cb:75:77:1f:a7: 5e:09:b4:4f:64:d7:17:ee:56:a4:9f:7c:a9:d8:d6:31:68:0b: e1:05:fd:8b:4a:b0:80:b5:5c:0f:5d:75:9e:2d:ba:25:22:02: 8b:96:0e:91:c6:2b:ea:47:e6:b7:bb:9d:fd:d6:cc:91:f8:ee: 31:3d:a8:e0:27:76:0e:c8:58:c7:c4:d7:72:8c:46:74:8a:cd: 56:94:4f:de:67:b0:9f:f7:b2:be:b6:3a:25:cc:e4:d9:e3:31: 03:dc:5d:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzNkExMTAvBgNVBAUTKDQ3NTMwMEM5NkVCOUEyNEUzMzFEMEIzOTAwNzBDNDVB MjlDOTVFNjkwHhcNMjUxMDE5MDUwMjU1WhcNMjUxMDI2MDUwMjU1WjAYMRYwFAYD VQQDEw02OGY0NzBmZi0yZTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmQJ4FHnBOeh9+Uzb2AkEjUTJY6tUxsPT32Dnm8yGklwIhjyYeOVgoCMgTSbO D8VtHIRjIugEJeQYooEt4RGfr+Rx7aajISkW27lJozO40YZsoWwp8oCJ8/8vMy0m iFYM+1NW5krk6mP0yK2mDHFozYklYw7ZTeAD7WV4xOU+GmbCKMvdqLFkJ0fRiG2y PLHZnbjPUX9deFa4w5skgHdpUZTIFSO+yQsxC2m5x4L1t9NljsKw8IvMq4oDIxel UCTjN5UDJxoJrPmzcQXP1sqSyB0F3AsnX5ZhluI3gCEX0m7ikDOt/zIRY7490+Y+ vtXbtZl0eARthWaz6iL2oAnxQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVv2MJW GRUaYi9u5KpP01rXzBjAMB8GA1UdIwQYMBaAFEdTAMluuaJOMx0LOQBwxFopyV5p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzM2QS80MDkzNDI4MEM3 QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9rNHpIUXM1QUhERVdpbkpY bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxTUF5VzY1b2s0ekhRczVBSERFV2luSlhtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzM2QS80MDkzNDI4MEM3QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9r NHpIUXM1QUhERVdpbkpYbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBG7AIoWyXY+j1Qkg+u/l9STL1Wf3bauKTR6CPEHyViVjV36CJ0g1nJ d+DpCOJvGVQkwZN5f/FYzOIanFvl5Dfz+K+KE2ZEq9vig9bxSmaAKXFtaVBl461U TS6qmTqY7Kt3bHASMGYER0JVys+pW0/G2gHlPsKUct8XoQD4MVc7q6QHuq2nYk2m sWRXuAHTWtDvh0eT2p2v/BiTpO9Vy3V3H6deCbRPZNcX7lakn3yp2NYxaAvhBf2L SrCAtVwPXXWeLbolIgKLlg6RxivqR+a3u5391syR+O4xPajgJ3YOyFjHxNdyjEZ0 is1WlE/eZ7Cf97K+tjolzOTZ4zED3F3X -----END CERTIFICATE-----Generated at Mon Oct 20 04:11:39 2025 by rpki-client