$ rpki-client -vvf rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft File: PzsvWzuuUqa1aSyvkqJVSwbahj0.mft (raw, json) Hash identifier: 3obx68leeOIc3d47NRpcT0LTBz4uNfcjJAXWh1lVF/g= Subject key identifier: FC:65:F2:01:AF:D9:85:08:03:04:A9:C3:EE:92:79:6B:3B:74:50:4A Authority key identifier: 3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D Certificate issuer: /CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Certificate serial: 0570 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft Manifest number: 056B Signing time: Sun 19 Oct 2025 01:01:31 +0000 Manifest this update: Sun 19 Oct 2025 01:01:30 +0000 Manifest next update: Sun 26 Oct 2025 01:01:30 +0000 Files and hashes: 1: PzsvWzuuUqa1aSyvkqJVSwbahj0.crl (hash: hDngWnm/8JfryrXNvMxW3aaaXVNd4Zx5Yd1Avgwz2/0=) 2: 1953EB90FF1B11EBA5CEF970C4F9AE02.roa (hash: GyNWMA5uS2CM++CZD9BiRxHkePo3mscOl1IpeulPgT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1392 (0x570) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C81C, serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Validity Not Before: Oct 19 01:01:30 2025 GMT Not After : Oct 26 01:01:30 2025 GMT Subject: CN=68f4386b-1934 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a1:2b:80:c2:fc:80:39:cf:f1:24:de:bd:92: c5:c9:9c:26:e3:55:7b:52:82:d7:cd:6e:f4:e5:d6: 63:a5:5d:66:af:9c:88:28:d3:f1:a3:43:22:9c:ed: e8:5f:e7:28:af:f6:43:63:71:19:1e:e2:fc:09:23: ac:d9:dd:04:a9:50:64:24:f3:d5:5a:fd:ab:46:a6: 8a:88:01:ac:07:ea:29:27:15:4b:9b:f3:4f:e0:8e: d0:9c:d3:aa:2f:e2:56:d8:50:34:2f:0b:12:43:0c: ed:d1:97:97:09:31:0a:6a:15:b2:40:75:79:bf:ad: b2:eb:72:65:58:1e:9a:2d:de:94:15:b2:4c:1a:1e: df:e7:bd:fe:b2:c5:cb:d2:e3:87:76:d2:1e:5a:0c: 15:ea:5a:20:8d:ff:4b:b7:a9:cf:5f:63:23:05:7b: e8:e2:35:ac:a1:b2:55:6a:52:b9:c3:e9:90:1f:ee: f4:29:e2:af:65:cd:57:98:d5:fa:67:2f:19:23:1f: a7:15:d6:9e:0a:af:8a:eb:16:2d:56:26:c1:3b:7f: 7b:23:ad:fe:4b:93:76:e4:43:74:ec:aa:9b:8c:f0: 6f:6a:01:18:1e:1b:f0:8a:81:df:e7:ab:63:4a:3b: 81:cb:42:0d:cb:8c:1e:5e:9f:0c:21:58:b2:16:ca: 8d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:65:F2:01:AF:D9:85:08:03:04:A9:C3:EE:92:79:6B:3B:74:50:4A X509v3 Authority Key Identifier: keyid:3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:d3:cd:4f:71:5f:b5:b6:f9:43:ca:4f:6e:66:74:30:91:b0: b1:37:e4:0e:a3:33:08:7d:b6:1e:87:e0:65:85:45:1d:ff:1b: fb:9a:d8:74:54:dc:87:42:3e:12:a3:88:1b:d5:f4:25:7f:bc: c7:98:84:36:64:b2:f1:4c:1f:fa:1a:2c:e7:d7:3e:d3:7e:87: 96:ff:36:9d:05:64:cf:96:d9:35:7d:49:b6:0d:81:0f:71:2c: b4:57:d1:9e:e7:d6:35:c3:7f:d8:77:f3:d7:87:4e:7b:c8:47: 40:c4:5b:69:cd:57:82:c5:51:ef:fc:75:31:8c:5e:fd:6d:50: f2:51:93:17:f3:a0:34:c6:5a:c6:44:3d:9e:39:f5:a1:88:0a: f7:04:5e:a7:57:78:9e:09:1c:86:e7:ef:5e:c0:15:29:14:e1: 3a:4a:92:1f:1b:28:71:07:86:1b:22:c7:83:6b:60:d8:c9:ab: 9c:e9:19:02:60:4a:a6:55:60:b2:7c:27:8e:87:c1:55:23:79: 17:30:3f:31:e2:0f:8f:87:a5:ff:51:ec:e9:d7:fa:ee:bd:64: f0:3f:48:c2:45:36:c5:fd:5c:f0:82:6e:42:89:e7:b4:47:08: 53:f4:e7:5e:1b:af:5e:cd:67:5b:1b:95:b1:94:9a:60:98:65: 56:9e:b3:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M4MUMxMTAvBgNVBAUTKDNGM0IyRjVCM0JBRTUyQTZCNTY5MkNBRjkyQTI1NTRC MDZEQTg2M0QwHhcNMjUxMDE5MDEwMTMwWhcNMjUxMDI2MDEwMTMwWjAYMRYwFAYD VQQDEw02OGY0Mzg2Yi0xOTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6ErgML8gDnP8STevZLFyZwm41V7UoLXzW705dZjpV1mr5yIKNPxo0MinO3o X+cor/ZDY3EZHuL8CSOs2d0EqVBkJPPVWv2rRqaKiAGsB+opJxVLm/NP4I7QnNOq L+JW2FA0LwsSQwzt0ZeXCTEKahWyQHV5v62y63JlWB6aLd6UFbJMGh7f573+ssXL 0uOHdtIeWgwV6logjf9Lt6nPX2MjBXvo4jWsobJValK5w+mQH+70KeKvZc1XmNX6 Zy8ZIx+nFdaeCq+K6xYtVibBO397I63+S5N25EN07KqbjPBvagEYHhvwioHf56tj SjuBy0INy4weXp8MIViyFsqNkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPxl8gGv 2YUIAwSpw+6SeWs7dFBKMB8GA1UdIwQYMBaAFD87L1s7rlKmtWksr5KiVUsG2oY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzgxQy9EMTlBRUUzRUZG MTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVxYTFhU3l2a3FKVlN3YmFo ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B6c3ZXenV1VXFhMWFTeXZrcUpWU3diYWhqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzgxQy9EMTlBRUUzRUZGMTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVx YTFhU3l2a3FKVlN3YmFoajAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk081PcV+1tvlDyk9uZnQwkbCxN+QOozMIfbYeh+BlhUUd/xv7mth0 VNyHQj4So4gb1fQlf7zHmIQ2ZLLxTB/6Gizn1z7TfoeW/zadBWTPltk1fUm2DYEP cSy0V9Ge59Y1w3/Yd/PXh057yEdAxFtpzVeCxVHv/HUxjF79bVDyUZMX86A0xlrG RD2eOfWhiAr3BF6nV3ieCRyG5+9ewBUpFOE6SpIfGyhxB4YbIseDa2DYyauc6RkC YEqmVWCyfCeOh8FVI3kXMD8x4g+Ph6X/Uezp1/ruvWTwP0jCRTbF/Vzwgm5Ciee0 RwhT9OdeG69ezWdbG5WxlJpgmGVWnrMA -----END CERTIFICATE-----Generated at Mon Oct 20 10:33:08 2025 by rpki-client