$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft File: cS61otcGnxjunGXzsBMnGtvx9UA.mft (raw, json) Hash identifier: G+2b7v1n1ovUWahvKFGi586Nw0ZjHHEHvw7ZyUbIS7k= Subject key identifier: CE:77:57:7C:18:D8:87:18:78:16:1D:12:68:EB:67:1E:A7:77:E4:FF Authority key identifier: 71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 Certificate issuer: /CN=A91A8A52/serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Certificate serial: 022F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft Manifest number: 0223 Signing time: Sun 19 Oct 2025 04:24:10 +0000 Manifest this update: Sun 19 Oct 2025 04:24:10 +0000 Manifest next update: Sun 26 Oct 2025 04:24:10 +0000 Files and hashes: 1: cS61otcGnxjunGXzsBMnGtvx9UA.crl (hash: xjjIue+2/mOghX+U+v5R8+SYtburrqfgao9HSAsLECs=) 2: 655B85F0225B11EFADDE6F63C4F9AE02.roa (hash: n2zLDtDaPNL3Ye6qBkwU/zpDC2mfhiqQ0N3aGF+8gOs=) 3: 8F14EDAA70B911EDB6E1F81BC4F9AE02.roa (hash: KwJcRfcCHNm1/1H4hZVLWjzBmRVSuYEae2GuTglAJm0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 559 (0x22f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8A52, serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Validity Not Before: Oct 19 04:24:10 2025 GMT Not After : Oct 26 04:24:10 2025 GMT Subject: CN=68f467ea-f5ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2f:f1:4a:77:45:df:e7:eb:5f:32:6e:5f:92: b4:b8:bd:c8:03:54:6d:40:a0:37:d4:b3:07:a6:5c: ab:2f:3d:f4:e2:4a:92:7e:e0:27:97:33:b4:03:50: e3:1a:6f:c4:96:5f:14:b4:be:36:99:ba:41:d8:e5: 74:d4:71:89:27:ce:73:1e:72:59:61:4f:c0:ee:67: 3f:d5:f2:60:d1:1a:69:99:bf:6c:be:87:4b:6d:da: 03:f7:73:b5:18:bb:60:49:f7:31:a4:88:b7:a2:6e: 91:bb:1a:bd:ad:00:80:f9:72:10:ff:67:ca:81:a9: d6:d7:82:18:bb:1a:7e:50:47:59:a5:fe:6f:40:e6: 33:9f:bf:a9:29:07:d5:cb:c0:48:67:43:a0:ae:dd: 11:a4:3c:6b:91:ff:ec:d1:b4:a5:dd:ce:1b:2a:61: 16:1a:ee:10:32:34:26:6a:5f:85:07:51:c5:b4:7f: 95:13:e7:55:38:f2:45:3a:b5:4f:9f:89:68:82:7e: 35:e7:86:28:86:4a:51:4f:a5:dc:83:e8:18:c0:cf: 19:7a:fd:74:ae:67:fd:f5:5c:0a:d1:f8:5a:76:8a: 7f:e1:a3:55:fa:22:05:b6:ec:bb:46:13:23:79:59: d4:36:2b:df:ce:34:e1:a2:24:59:67:d3:28:ac:4d: be:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:77:57:7C:18:D8:87:18:78:16:1D:12:68:EB:67:1E:A7:77:E4:FF X509v3 Authority Key Identifier: keyid:71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:76:9d:0d:8d:f8:a4:dc:6c:3f:5d:71:27:fe:83:8c:dc:82: d7:ec:6f:e4:fa:7d:69:f8:55:c5:12:75:bd:50:7d:71:09:a9: 70:9b:a6:e1:04:13:4f:99:4a:8c:8c:60:b6:d8:cc:25:52:35: 6e:5c:84:a4:fc:87:ce:8f:89:11:39:cf:d9:16:6f:db:e9:78: 8f:33:fc:bb:97:f5:fa:5f:03:77:ab:b7:b3:82:f2:42:14:04: 8e:c4:9e:96:f1:8b:f7:b8:82:73:b9:d4:fb:37:d8:7c:7f:f5: 1f:fc:16:51:39:73:72:b8:a8:fb:14:2f:76:1f:9c:11:a4:99: 19:c8:ad:5b:94:bf:67:47:e4:aa:55:5c:0b:1a:8e:9e:9c:3e: 91:32:32:e1:f3:89:bb:fd:71:67:a6:6c:12:d7:7f:82:a9:ff: 2b:ad:89:d0:ac:05:28:34:58:b6:f4:b9:fe:81:4e:16:65:59: 57:60:36:5d:e5:ef:e4:5e:f5:ae:b6:6a:cf:db:78:c6:a9:cd: 92:6b:fe:7f:f6:b9:22:28:70:fc:08:eb:2b:6e:79:80:16:a7: 97:75:2c:c9:21:46:40:5e:29:2b:c9:43:57:66:c1:76:44:7b: e6:b4:68:93:97:d0:17:88:ed:21:8c:b8:65:76:f3:2c:50:b5: 8b:28:58:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThBNTIxMTAvBgNVBAUTKDcxMkVCNUEyRDcwNjlGMThFRTlDNjVGM0IwMTMyNzFB REJGMUY1NDAwHhcNMjUxMDE5MDQyNDEwWhcNMjUxMDI2MDQyNDEwWjAYMRYwFAYD VQQDEw02OGY0NjdlYS1mNWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAty/xSndF3+frXzJuX5K0uL3IA1RtQKA31LMHplyrLz304kqSfuAnlzO0A1Dj Gm/Ell8UtL42mbpB2OV01HGJJ85zHnJZYU/A7mc/1fJg0Rppmb9svodLbdoD93O1 GLtgSfcxpIi3om6Ruxq9rQCA+XIQ/2fKganW14IYuxp+UEdZpf5vQOYzn7+pKQfV y8BIZ0Ogrt0RpDxrkf/s0bSl3c4bKmEWGu4QMjQmal+FB1HFtH+VE+dVOPJFOrVP n4logn4154YohkpRT6Xcg+gYwM8Zev10rmf99VwK0fhadop/4aNV+iIFtuy7RhMj eVnUNivfzjThoiRZZ9MorE2+FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM53V3wY 2IcYeBYdEmjrZx6nd+T/MB8GA1UdIwQYMBaAFHEutaLXBp8Y7pxl87ATJxrb8fVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEE1Mi9GQjdFNEJERTcw QjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254anVuR1h6c0JNbkd0dng5 VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NTNjFvdGNHbnhqdW5HWHpzQk1uR3R2eDlVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OEE1Mi9GQjdFNEJERTcwQjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254 anVuR1h6c0JNbkd0dng5VUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBudp0Njfik3Gw/XXEn/oOM3ILX7G/k+n1p+FXFEnW9UH1xCalwm6bh BBNPmUqMjGC22MwlUjVuXISk/IfOj4kROc/ZFm/b6XiPM/y7l/X6XwN3q7ezgvJC FASOxJ6W8Yv3uIJzudT7N9h8f/Uf/BZROXNyuKj7FC92H5wRpJkZyK1blL9nR+Sq VVwLGo6enD6RMjLh84m7/XFnpmwS13+Cqf8rrYnQrAUoNFi29Ln+gU4WZVlXYDZd 5e/kXvWutmrP23jGqc2Sa/5/9rkiKHD8COsrbnmAFqeXdSzJIUZAXikryUNXZsF2 RHvmtGiTl9AXiO0hjLhldvMsULWLKFgw -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:03 2025 by rpki-client