$ rpki-client -vvf rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft File: 1RCJONILodf7ySo7qZ8tafyPSog.mft (raw, json) Hash identifier: 4TcV8d9RmCDmeU3VGAg7T9EQ6CcZ/6SrgcoWH8lfzfk= Subject key identifier: 6B:A3:27:D1:E8:36:FB:0F:50:F7:F1:47:DA:B9:17:32:C2:39:9A:6C Authority key identifier: D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 Certificate issuer: /CN=A91836D8/serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft Manifest number: 70 Signing time: Sun 19 Oct 2025 10:17:35 +0000 Manifest this update: Sun 19 Oct 2025 10:17:34 +0000 Manifest next update: Sun 26 Oct 2025 10:17:34 +0000 Files and hashes: 1: 1RCJONILodf7ySo7qZ8tafyPSog.crl (hash: oPcyaFp3s4rrYk+NPYW+prLb5KFd1Jfry6dGUzB+J50=) 2: 2A0F594C07B911F0B93D3034C4F9AE02.roa (hash: GVWIdnLcZRWR+tzLNPpcN/HSXmru8qLQTVAk9bkN9LQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:17:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836D8, serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Validity Not Before: Oct 19 10:17:34 2025 GMT Not After : Oct 26 10:17:34 2025 GMT Subject: CN=68f4babf-702f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:dd:15:4d:98:a0:1c:f0:de:c4:27:b1:22:c2: 82:c2:1e:a2:65:84:0f:3d:73:65:0d:20:ae:d0:27: 64:14:7f:49:7c:b6:6f:79:e9:07:c0:b6:67:77:31: 0f:fb:77:48:e2:0c:5c:13:d9:97:89:b5:af:34:f1: 55:70:01:bb:f9:82:90:a8:7d:46:fa:d8:72:7f:d3: 82:44:03:10:51:92:be:e5:91:62:51:fd:ee:d3:a1: c8:25:10:21:4c:3b:bd:9d:24:b7:fd:66:5a:86:22: f1:f7:6b:74:e7:e7:8b:9a:18:34:d8:78:9e:09:39: f0:19:03:74:73:6e:39:71:74:b2:a0:54:76:69:87: c6:e1:84:95:25:45:46:fb:4c:2f:e6:82:f2:11:42: ea:4e:24:ae:6b:df:b3:8c:9a:01:ca:6f:dc:c4:31: 63:8a:9e:8c:04:ce:10:a1:11:6e:43:90:84:d1:d6: 9d:c8:3f:25:f9:0b:52:7d:31:84:af:26:0f:51:66: 7e:a6:44:8c:d4:c0:94:0b:52:d9:2e:2a:c3:da:1f: 0b:69:71:45:6b:8b:d7:26:28:97:ba:f4:30:96:b6: 69:f7:de:6b:9c:76:d7:dd:88:7d:3f:16:6a:98:95: dc:85:18:3a:45:39:a6:a3:f0:cd:a8:05:7e:9d:43: 13:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A3:27:D1:E8:36:FB:0F:50:F7:F1:47:DA:B9:17:32:C2:39:9A:6C X509v3 Authority Key Identifier: keyid:D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:dc:06:6a:d3:7f:ab:44:b2:fa:e3:25:bd:a9:94:c0:48:42: 6d:f9:e2:66:29:b6:a9:c3:1e:61:2c:97:25:b0:d3:7d:05:47: 03:8b:ba:a1:83:53:82:5e:bf:8f:6c:03:ca:69:d3:aa:9c:cc: f9:09:bf:42:63:0e:86:ed:4f:c8:24:cc:c8:d1:e8:70:45:4a: 71:9d:1f:c7:20:b7:32:91:7d:51:92:e9:6e:19:1c:10:c7:32: a8:48:42:47:47:ab:82:22:30:41:46:74:41:33:fe:f8:f9:dd: a8:67:42:ab:68:92:f0:93:03:a9:4c:f9:73:a2:73:5e:35:b7: 27:0a:3e:a2:ac:67:44:ce:a5:ec:44:c9:bd:09:56:14:be:ab: ce:4f:9f:4a:54:bb:6d:47:67:3b:ca:b8:6d:06:9a:71:b9:3b: 6c:61:ca:62:94:b8:b5:63:0c:ff:ec:8a:10:0e:56:d4:a3:6e: 57:e1:90:b0:77:f7:2e:b6:49:26:80:8b:c3:9a:13:65:4b:1a: 26:ad:5f:97:23:e6:95:fc:94:81:a8:19:b4:00:38:8c:43:01: 5a:a2:3d:2f:6e:6e:7f:32:c1:f3:61:b9:a7:40:84:6a:84:91: a5:e6:39:55:22:f2:9d:0b:84:70:0e:f7:55:6e:ca:0b:e3:5d: 21:4b:22:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MzZEODExMC8GA1UEBRMoRDUxMDg5MzhEMjBCQTFEN0ZCQzkyQTNCQTk5RjJENjlG QzhGNEE4ODAeFw0yNTEwMTkxMDE3MzRaFw0yNTEwMjYxMDE3MzRaMBgxFjAUBgNV BAMTDTY4ZjRiYWJmLTcwMmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDB3RVNmKAc8N7EJ7EiwoLCHqJlhA89c2UNIK7QJ2QUf0l8tm956QfAtmd3MQ/7 d0jiDFwT2ZeJta808VVwAbv5gpCofUb62HJ/04JEAxBRkr7lkWJR/e7TocglECFM O72dJLf9ZlqGIvH3a3Tn54uaGDTYeJ4JOfAZA3RzbjlxdLKgVHZph8bhhJUlRUb7 TC/mgvIRQupOJK5r37OMmgHKb9zEMWOKnowEzhChEW5DkITR1p3IPyX5C1J9MYSv Jg9RZn6mRIzUwJQLUtkuKsPaHwtpcUVri9cmKJe69DCWtmn33mucdtfdiH0/FmqY ldyFGDpFOaaj8M2oBX6dQxMlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUa6Mn0eg2 +w9Q9/FH2rkXMsI5mmwwHwYDVR0jBBgwFoAU1RCJONILodf7ySo7qZ8tafyPSogw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgzNkQ4LzMyREFCMjkyMDdB RjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2RmN3lTbzdxWjh0YWZ5UFNv Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVJDSk9OSUxvZGY3eVNvN3FaOHRhZnlQU29nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgz NkQ4LzMyREFCMjkyMDdBRjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2Rm N3lTbzdxWjh0YWZ5UFNvZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGHcBmrTf6tEsvrjJb2plMBIQm354mYptqnDHmEslyWw030FRwOLuqGD U4Jev49sA8pp06qczPkJv0JjDobtT8gkzMjR6HBFSnGdH8cgtzKRfVGS6W4ZHBDH MqhIQkdHq4IiMEFGdEEz/vj53ahnQqtokvCTA6lM+XOic141tycKPqKsZ0TOpexE yb0JVhS+q85Pn0pUu21HZzvKuG0GmnG5O2xhymKUuLVjDP/sihAOVtSjblfhkLB3 9y62SSaAi8OaE2VLGiatX5cj5pX8lIGoGbQAOIxDAVqiPS9ubn8ywfNhuadAhGqE kaXmOVUi8p0LhHAO91VuygvjXSFLIsg= -----END CERTIFICATE-----Generated at Mon Oct 20 05:27:50 2025 by rpki-client