$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft File: 0TPfZxvFk0ayGhHuzAit0MCiCQo.mft (raw, json) Hash identifier: a7bgrw8PyWi+uZ9g2ivrvooJ2PPbPzfuT1Pz3NKTDAo= Subject key identifier: 96:EA:6A:8E:5D:5E:7C:A9:0C:FE:3B:BB:4D:58:2D:66:38:DD:58:C3 Authority key identifier: D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A Certificate issuer: /CN=A91A8276/serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Certificate serial: 07F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft Manifest number: 07F3 Signing time: Sat 18 Oct 2025 22:14:00 +0000 Manifest this update: Sat 18 Oct 2025 22:13:59 +0000 Manifest next update: Sat 25 Oct 2025 22:13:59 +0000 Files and hashes: 1: 0TPfZxvFk0ayGhHuzAit0MCiCQo.crl (hash: nsxf5ofuwMF/Vfx1zkWxLv67dmzL67486KDDPBNCwgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2035 (0x7f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8276, serialNumber=D133DF671BC59346B21A11EECC08ADD0C0A2090A Validity Not Before: Oct 18 22:13:59 2025 GMT Not After : Oct 25 22:13:59 2025 GMT Subject: CN=68f41128-3393 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:31:01:53:4d:4a:cb:56:31:3b:4f:c9:ce:ca: 08:ea:2a:f7:00:1f:c9:e5:c9:a3:57:68:ac:23:31: 11:ac:51:6a:70:66:0a:81:7f:77:9c:b4:e0:5e:30: 7f:47:d5:c7:0d:b9:d3:bc:52:a3:03:dc:a7:6e:ee: f1:0b:bc:ce:e2:0e:15:82:ee:50:7e:13:d9:18:40: b8:0e:29:2e:f0:54:f5:95:92:d2:4e:a6:c6:1a:48: f9:46:62:88:43:7d:35:39:c8:25:95:00:11:93:70: fb:d3:e0:78:e1:33:17:da:78:69:2f:ba:8e:ca:c3: 37:94:dd:e0:04:72:70:df:b3:b3:27:46:a1:63:95: d6:c6:33:30:d9:ed:e6:7a:db:fc:63:aa:e0:04:74: 6d:86:26:0d:55:08:ab:79:ed:9d:af:1d:6b:53:f9: 4c:2a:fe:8c:aa:15:76:b1:26:bb:ea:8a:f6:f8:b2: 4d:d1:a0:4a:ec:71:08:fa:42:9f:18:d8:26:19:b0: 98:0d:54:3d:c3:da:25:0d:aa:bb:e8:10:b3:ca:23: e7:e0:96:02:e2:e5:69:31:b3:24:98:f0:bb:ec:ee: 91:4f:c6:54:c4:3e:da:70:23:3f:08:ae:76:a4:7d: 95:fc:0e:96:ce:8a:bb:0b:05:e0:62:af:67:91:6a: 9d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:EA:6A:8E:5D:5E:7C:A9:0C:FE:3B:BB:4D:58:2D:66:38:DD:58:C3 X509v3 Authority Key Identifier: keyid:D1:33:DF:67:1B:C5:93:46:B2:1A:11:EE:CC:08:AD:D0:C0:A2:09:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0TPfZxvFk0ayGhHuzAit0MCiCQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8276/8138793EFEF811EA9D652A74C4F9AE02/0TPfZxvFk0ayGhHuzAit0MCiCQo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:96:25:20:2e:d3:ac:8a:01:58:9e:56:47:84:7e:b1:76:a7: bb:f5:da:ca:23:21:b5:05:2b:43:9e:8d:49:0f:f1:40:67:0a: e5:16:ed:a0:24:69:45:90:01:10:f5:3a:2a:40:e1:30:18:15: b4:ec:98:52:0f:7d:47:03:62:9f:32:da:28:18:91:d6:14:9e: 48:a1:18:07:17:83:76:7a:87:30:28:fe:df:c5:e8:d3:e9:21: 55:13:ee:90:b3:0b:f5:3c:b1:8d:0d:09:bf:4b:03:b1:52:c7: 91:b7:d8:da:f6:69:7f:3e:50:37:26:8b:85:58:62:32:25:79: a5:9d:d0:b4:14:86:7c:90:ef:c5:34:18:4f:a7:60:0d:ac:8d: 04:cd:fd:15:b8:cd:47:63:d6:21:b1:b3:0c:cb:9b:25:65:70: 6d:a0:54:bf:c0:c0:fb:32:ff:b5:c6:de:f0:d8:09:c1:7c:ba: 7a:44:fb:74:35:5e:0d:8f:cb:1b:02:d5:8c:ac:e3:36:1d:75: d4:44:bd:a1:42:87:de:e0:18:73:24:d1:c4:79:5f:9a:99:44: 76:2e:5a:81:6d:54:c5:7d:e6:0d:a0:ba:bc:a5:df:c9:e6:b2: b9:ac:66:a5:6f:fe:0b:a3:0d:cd:83:7f:87:3a:5b:7c:59:4c: aa:e4:27:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyNzYxMTAvBgNVBAUTKEQxMzNERjY3MUJDNTkzNDZCMjFBMTFFRUNDMDhBREQw QzBBMjA5MEEwHhcNMjUxMDE4MjIxMzU5WhcNMjUxMDI1MjIxMzU5WjAYMRYwFAYD VQQDEw02OGY0MTEyOC0zMzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzEBU01Ky1YxO0/JzsoI6ir3AB/J5cmjV2isIzERrFFqcGYKgX93nLTgXjB/ R9XHDbnTvFKjA9ynbu7xC7zO4g4Vgu5QfhPZGEC4Diku8FT1lZLSTqbGGkj5RmKI Q301OcgllQARk3D70+B44TMX2nhpL7qOysM3lN3gBHJw37OzJ0ahY5XWxjMw2e3m etv8Y6rgBHRthiYNVQiree2drx1rU/lMKv6MqhV2sSa76or2+LJN0aBK7HEI+kKf GNgmGbCYDVQ9w9olDaq76BCzyiPn4JYC4uVpMbMkmPC77O6RT8ZUxD7acCM/CK52 pH2V/A6Wzoq7CwXgYq9nkWqdFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJbqao5d XnypDP47u01YLWY43VjDMB8GA1UdIwQYMBaAFNEz32cbxZNGshoR7swIrdDAogkK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODI3Ni84MTM4NzkzRUZF RjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2RmswYXlHaEh1ekFpdDBNQ2lD UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBUUGZaeHZGazBheUdoSHV6QWl0ME1DaUNRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODI3Ni84MTM4NzkzRUZFRjgxMUVBOUQ2NTJBNzRDNEY5QUUwMi8wVFBmWnh2Rmsw YXlHaEh1ekFpdDBNQ2lDUW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUliUgLtOsigFYnlZHhH6xdqe79drKIyG1BStDno1JD/FAZwrlFu2g JGlFkAEQ9ToqQOEwGBW07JhSD31HA2KfMtooGJHWFJ5IoRgHF4N2eocwKP7fxejT 6SFVE+6Qswv1PLGNDQm/SwOxUseRt9ja9ml/PlA3JouFWGIyJXmlndC0FIZ8kO/F NBhPp2ANrI0Ezf0VuM1HY9YhsbMMy5slZXBtoFS/wMD7Mv+1xt7w2AnBfLp6RPt0 NV4Nj8sbAtWMrOM2HXXURL2hQofe4BhzJNHEeV+amUR2LlqBbVTFfeYNoLq8pd/J 5rK5rGalb/4Low3Ng3+HOlt8WUyq5Cfv -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:36 2025 by rpki-client