$ rpki-client -vvf rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft File: 1ppgVl8zchSc5uL8nnI9SQZ2doo.mft (raw, json) Hash identifier: abhM6oKZSdc9yMuuFGTYPbjKVpZfm8PvOAZ8bAVVZ40= Subject key identifier: 43:BD:AF:4C:17:CF:EE:0B:ED:FB:DB:7A:05:40:69:F1:66:B4:D7:FB Authority key identifier: D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A Certificate issuer: /CN=A9185F7D/serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Certificate serial: 34CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft Manifest number: 34CC Signing time: Sat 18 Oct 2025 15:05:39 +0000 Manifest this update: Sat 18 Oct 2025 15:05:38 +0000 Manifest next update: Sat 25 Oct 2025 15:05:38 +0000 Files and hashes: 1: 1ppgVl8zchSc5uL8nnI9SQZ2doo.crl (hash: GOxmGfk/UP1R5Nr16I6ygB1p8LgId8mnYfyJmU7MEIc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13516 (0x34cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185F7D, serialNumber=D69A60565F3372149CE6E2FC9E723D490676768A Validity Not Before: Oct 18 15:05:38 2025 GMT Not After : Oct 25 15:05:38 2025 GMT Subject: CN=68f3acc3-3c62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:bc:a6:10:87:b6:2d:ac:d9:7f:2a:f2:f9:dd: 07:ab:1f:4d:92:2d:99:a5:74:5a:a8:80:ae:97:bc: 79:61:61:f3:a6:b5:ce:80:aa:e9:2a:e9:b7:53:1a: 28:0e:ea:58:be:7a:8e:8a:1f:22:5f:9a:c3:56:8c: fc:f4:a5:fd:3c:ea:8c:3f:17:4d:b1:81:d2:0a:c4: 70:00:bc:12:1e:35:10:cf:57:e1:9b:5b:b9:93:2a: 96:e1:c5:6b:9a:d4:31:03:e5:e3:96:fc:fa:f1:62: fe:19:f9:5e:19:f2:35:ac:9b:40:1b:fc:14:6b:c3: e7:f4:98:5e:d6:57:a2:2b:db:84:8e:67:5a:e9:17: 89:bd:9e:e1:32:d0:13:27:be:af:2d:80:4e:0c:f4: e5:56:07:65:31:fc:80:59:21:db:ff:eb:d4:24:b7: f6:62:6b:d1:09:93:af:f3:2e:90:24:bc:d1:05:43: d9:c2:35:16:2d:50:3f:c4:04:3a:eb:ff:c1:fd:c5: 25:84:03:91:87:bd:b1:93:7f:3e:40:29:4a:72:a7: af:bf:b5:d0:a7:d4:cd:08:85:ad:01:76:bd:02:e0: b7:c6:35:72:c4:52:68:c1:06:9c:25:9d:51:d4:0d: c0:a9:c3:ca:01:bb:34:61:94:7d:bc:96:54:e7:c4: 89:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:BD:AF:4C:17:CF:EE:0B:ED:FB:DB:7A:05:40:69:F1:66:B4:D7:FB X509v3 Authority Key Identifier: keyid:D6:9A:60:56:5F:33:72:14:9C:E6:E2:FC:9E:72:3D:49:06:76:76:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ppgVl8zchSc5uL8nnI9SQZ2doo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185F7D/69753F581D9C11E2A6FBF08A08B02CD2/1ppgVl8zchSc5uL8nnI9SQZ2doo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:cb:44:bd:ac:5a:11:14:75:29:ec:56:4e:08:02:c5:13:b1: 52:f0:9e:65:71:6c:47:f5:25:c2:76:71:25:c7:2a:6d:d1:de: 1c:29:9a:6d:5f:99:12:9a:ef:87:c8:dd:83:45:bf:0a:d8:28: 80:ac:95:38:7a:d8:85:6d:ec:d3:01:d5:16:df:54:2f:4f:b1: 04:19:1c:b7:6c:79:da:45:88:33:95:91:2a:d1:33:25:17:27: e1:7c:80:1e:2a:1a:6d:81:1f:21:31:d9:df:f9:ad:6b:63:7e: 48:05:31:4b:92:ac:b6:23:bb:0d:be:01:db:00:4c:b2:ce:bc: 41:44:41:65:71:db:53:f9:79:e4:6b:f4:8d:5c:df:ff:6b:a3: 45:35:a6:37:32:8f:74:68:fd:83:e6:57:42:3a:e4:d1:99:80: d7:25:ce:df:e1:5d:2f:18:67:f2:0c:ae:10:a2:52:29:20:f2: a3:13:e5:41:8b:30:bb:40:b3:46:a9:14:3a:cc:b2:22:cd:0a: 01:fa:23:e8:13:40:7c:c3:a3:b6:f7:95:e5:7d:0c:a6:94:c7: 58:3a:4a:cb:2b:b6:62:3e:68:96:1a:6c:28:02:d2:82:e7:fb: d5:20:7f:d8:41:1e:ab:3d:8a:32:b4:5d:f6:8d:c9:24:3d:93: 0a:60:99:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVGN0QxMTAvBgNVBAUTKEQ2OUE2MDU2NUYzMzcyMTQ5Q0U2RTJGQzlFNzIzRDQ5 MDY3Njc2OEEwHhcNMjUxMDE4MTUwNTM4WhcNMjUxMDI1MTUwNTM4WjAYMRYwFAYD VQQDEw02OGYzYWNjMy0zYzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAobymEIe2LazZfyry+d0Hqx9Nki2ZpXRaqICul7x5YWHzprXOgKrpKum3Uxoo DupYvnqOih8iX5rDVoz89KX9POqMPxdNsYHSCsRwALwSHjUQz1fhm1u5kyqW4cVr mtQxA+Xjlvz68WL+GfleGfI1rJtAG/wUa8Pn9Jhe1leiK9uEjmda6ReJvZ7hMtAT J76vLYBODPTlVgdlMfyAWSHb/+vUJLf2YmvRCZOv8y6QJLzRBUPZwjUWLVA/xAQ6 6//B/cUlhAORh72xk38+QClKcqevv7XQp9TNCIWtAXa9AuC3xjVyxFJowQacJZ1R 1A3AqcPKAbs0YZR9vJZU58SJ6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEO9r0wX z+4L7fvbegVAafFmtNf7MB8GA1UdIwQYMBaAFNaaYFZfM3IUnObi/J5yPUkGdnaK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUY3RC82OTc1M0Y1ODFE OUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNoU2M1dUw4bm5JOVNRWjJk b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwcGdWbDh6Y2hTYzV1TDhubkk5U1FaMmRvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUY3RC82OTc1M0Y1ODFEOUMxMUUyQTZGQkYwOEEwOEIwMkNEMi8xcHBnVmw4emNo U2M1dUw4bm5JOVNRWjJkb28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqy0S9rFoRFHUp7FZOCALFE7FS8J5lcWxH9SXCdnElxypt0d4cKZpt X5kSmu+HyN2DRb8K2CiArJU4etiFbezTAdUW31QvT7EEGRy3bHnaRYgzlZEq0TMl FyfhfIAeKhptgR8hMdnf+a1rY35IBTFLkqy2I7sNvgHbAEyyzrxBREFlcdtT+Xnk a/SNXN//a6NFNaY3Mo90aP2D5ldCOuTRmYDXJc7f4V0vGGfyDK4QolIpIPKjE+VB izC7QLNGqRQ6zLIizQoB+iPoE0B8w6O295XlfQymlMdYOkrLK7ZiPmiWGmwoAtKC 5/vVIH/YQR6rPYoytF32jckkPZMKYJma -----END CERTIFICATE-----Generated at Mon Oct 20 04:06:17 2025 by rpki-client