$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft File: D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft (raw, json) Hash identifier: w3UTopTI144YoYM8l0sOdtFK5dGZrg8CVkUXtpdwZC4= Subject key identifier: E9:34:DF:C4:5F:D9:50:3A:37:E6:41:F6:A3:C7:4E:C1:0C:C8:29:E9 Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 021C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft Manifest number: 020F Signing time: Sun 19 Oct 2025 04:43:18 +0000 Manifest this update: Sun 19 Oct 2025 04:43:17 +0000 Manifest next update: Sun 26 Oct 2025 04:43:17 +0000 Files and hashes: 1: D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl (hash: hQW9qi6gCs7QiWTLEwwLWP/6Ua6wJS8Q6L0WZDP2Mzc=) 2: BC72661A972911ED8CBCA476C4F9AE02.roa (hash: 50hi2vNUebBRUz8ceA03XMTbcW3zeli1X+BmJSriA30=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:43:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68, serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: Oct 19 04:43:17 2025 GMT Not After : Oct 26 04:43:17 2025 GMT Subject: CN=68f46c66-2130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4a:39:12:20:19:ef:a8:88:43:07:a6:2a:29: 2c:16:74:09:59:9b:98:00:81:e6:a1:4e:13:29:0f: 7c:6a:62:4a:a6:27:2d:49:35:10:ea:53:01:ba:84: 28:be:6b:3c:0b:c8:06:14:ef:8a:af:57:b2:33:30: c0:55:76:b3:a6:2f:a0:2b:a5:45:9b:22:74:d8:03: d5:ca:03:e6:7e:e4:45:15:8d:11:7c:7d:1c:5e:86: 4e:59:76:ed:04:ad:67:42:04:c7:a3:40:b8:44:0e: 5f:48:f1:77:1e:dd:c3:4e:2a:18:47:e5:99:48:6a: 99:2e:72:6b:6e:ef:1c:fb:74:a0:43:98:36:f1:be: fd:a1:d5:60:7f:01:77:1d:87:f9:2b:32:84:ce:2e: ca:87:fc:f6:a5:c3:58:e3:05:d4:3a:74:8d:70:0e: b7:d5:27:41:0a:2f:6d:64:8d:ad:4c:d3:b9:be:1b: 5f:75:7c:17:e2:1a:b8:cc:ad:d5:0d:bb:b4:16:e9: 60:17:23:7c:11:1f:10:46:9a:88:51:d6:af:c5:6c: b3:b4:a8:e4:07:38:22:45:ab:68:93:f9:5c:53:1e: f6:3a:39:3f:94:f7:55:31:2c:4b:6b:a9:1e:cd:26: fe:6e:e4:d6:14:45:a1:94:0f:04:ff:f0:78:cd:a5: 26:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:34:DF:C4:5F:D9:50:3A:37:E6:41:F6:A3:C7:4E:C1:0C:C8:29:E9 X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:8c:f8:b9:c8:be:c1:81:d7:70:6e:71:37:1d:96:87:70:05: 42:de:17:1d:59:62:2d:b3:56:06:42:78:57:1a:8a:a4:43:68: 4a:f2:76:1a:ee:c8:29:ec:bb:5d:57:82:f9:63:98:3f:d5:c1: 0c:a1:fc:45:b8:35:ef:54:5a:2c:01:4b:3e:58:3b:a0:6b:96: fc:f4:d0:c9:70:8d:ac:d2:11:5c:7a:c7:8b:43:69:89:bd:55: c5:06:f0:b3:94:1b:cb:bb:b7:57:90:61:25:cd:a6:f0:c9:c7: 27:3d:6f:a6:d3:38:58:bc:d5:f5:cd:d2:f7:27:71:37:7c:22: ce:a2:09:53:6b:5e:1d:0b:28:03:bb:53:3f:31:44:8c:4e:01: bd:60:31:cd:cd:7b:c3:e5:6d:9a:21:9b:31:e3:c5:84:72:f4: 39:6d:01:97:18:7b:ed:3b:f8:4f:cc:91:68:eb:ae:10:03:f5: 7c:3b:93:bd:7b:12:a0:ff:2d:bd:6a:0b:7c:f8:c2:79:98:3e: c8:0b:b2:ef:5a:6e:c8:70:fd:cd:30:f9:ed:c2:e0:84:cb:90: 04:9f:13:32:8d:9a:c6:31:48:45:90:8f:33:52:8e:cc:d0:2c: e1:4f:14:52:37:9a:cc:87:2d:92:9d:b8:28:4b:34:d4:53:f2: 63:17:1d:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjUxMDE5MDQ0MzE3WhcNMjUxMDI2MDQ0MzE3WjAYMRYwFAYD VQQDEw02OGY0NmM2Ni0yMTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUo5EiAZ76iIQwemKiksFnQJWZuYAIHmoU4TKQ98amJKpictSTUQ6lMBuoQo vms8C8gGFO+Kr1eyMzDAVXazpi+gK6VFmyJ02APVygPmfuRFFY0RfH0cXoZOWXbt BK1nQgTHo0C4RA5fSPF3Ht3DTioYR+WZSGqZLnJrbu8c+3SgQ5g28b79odVgfwF3 HYf5KzKEzi7Kh/z2pcNY4wXUOnSNcA631SdBCi9tZI2tTNO5vhtfdXwX4hq4zK3V Dbu0FulgFyN8ER8QRpqIUdavxWyztKjkBzgiRatok/lcUx72Ojk/lPdVMSxLa6ke zSb+buTWFEWhlA8E//B4zaUm4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOk038Rf 2VA6N+ZB9qPHTsEMyCnpMB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M2OC80MjM5ODZGNjk3MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19z ekxfckxabXgyX2l2X3NPelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPjPi5yL7BgddwbnE3HZaHcAVC3hcdWWIts1YGQnhXGoqkQ2hK8nYa 7sgp7LtdV4L5Y5g/1cEMofxFuDXvVFosAUs+WDuga5b89NDJcI2s0hFceseLQ2mJ vVXFBvCzlBvLu7dXkGElzabwyccnPW+m0zhYvNX1zdL3J3E3fCLOoglTa14dCygD u1M/MUSMTgG9YDHNzXvD5W2aIZsx48WEcvQ5bQGXGHvtO/hPzJFo664QA/V8O5O9 exKg/y29agt8+MJ5mD7IC7LvWm7IcP3NMPntwuCEy5AEnxMyjZrGMUhFkI8zUo7M 0CzhTxRSN5rMhy2SnbgoSzTUU/JjFx0p -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:36 2025 by rpki-client