$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft File: htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft (raw, json) Hash identifier: fJYG+Mj8YZW0F6Y0ot6ChZdpb5BEOHTmOuun/+EMdeY= Subject key identifier: 21:A1:DD:03:59:DA:CB:62:2B:F8:72:9A:0E:BD:6C:9F:4E:A2:E5:94 Authority key identifier: 86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D Certificate issuer: /CN=A91A99C5/serialNumber=86D95F41ED1981FA8D0B5908D64446510E6EAC7D Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft Manifest number: 35 Signing time: Sun 19 Oct 2025 11:03:10 +0000 Manifest this update: Sun 19 Oct 2025 11:03:09 +0000 Manifest next update: Sun 26 Oct 2025 11:03:09 +0000 Files and hashes: 1: htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl (hash: 4CjbAdxgOQ2w5elPQzvF8AxEoHYdp+67kcCBw86UFLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:03:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99C5, serialNumber=86D95F41ED1981FA8D0B5908D64446510E6EAC7D Validity Not Before: Oct 19 11:03:09 2025 GMT Not After : Oct 26 11:03:09 2025 GMT Subject: CN=68f4c56e-908a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2c:73:6e:71:dc:ff:27:ba:d5:ed:2e:ff:38: 24:c7:85:ff:b4:d0:43:46:9f:af:45:47:8e:a9:f0: 9d:b1:e3:a4:1c:a1:89:5c:c6:6c:73:f3:71:cd:e4: 23:1f:14:32:9c:4e:73:1c:c0:2e:9b:84:1b:14:b2: 07:9e:8a:64:bc:db:fa:b5:a2:1e:67:5d:58:99:ee: 21:37:e2:bc:12:ee:cb:e6:2a:1b:bd:f6:e0:3f:23: 26:f1:a3:35:2a:e5:20:35:ba:75:34:dd:d0:9c:bb: 44:fb:0b:e3:44:f1:12:44:3e:5e:1c:38:03:8e:9c: 69:3c:45:7c:d9:85:17:48:19:60:27:5f:5e:48:c1: f1:d8:fc:d9:4d:c5:58:29:33:a0:33:0d:d5:50:aa: 66:4b:f0:27:19:47:6b:a7:58:dd:de:78:6c:06:de: 05:36:00:e8:db:7c:5a:d9:43:72:82:7b:67:75:1e: e4:c3:49:6d:cb:f2:b5:a9:be:9f:f4:31:a4:6c:e3: d1:c6:2f:d1:c3:34:7c:7f:39:7d:67:ec:3e:1f:f1: 85:0a:20:b6:f2:fe:50:06:86:76:7a:5f:58:36:bc: e4:50:e7:6a:0a:0b:da:2c:bd:b4:28:fa:1d:db:a4: 34:6d:aa:76:44:ae:a9:5d:42:1a:23:f1:57:01:01: 1a:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:A1:DD:03:59:DA:CB:62:2B:F8:72:9A:0E:BD:6C:9F:4E:A2:E5:94 X509v3 Authority Key Identifier: keyid:86:D9:5F:41:ED:19:81:FA:8D:0B:59:08:D6:44:46:51:0E:6E:AC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htlfQe0ZgfqNC1kI1kRGUQ5urH0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99C5/0603E5BE5DBC11F09AA17850C4F9AE02/htlfQe0ZgfqNC1kI1kRGUQ5urH0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:e0:51:a6:cc:94:a6:f3:18:31:43:5a:8b:60:c6:c0:80:ad: 06:35:3f:05:5f:7f:cc:7d:ec:6c:9d:22:02:de:68:62:58:f8: 8f:ff:ef:89:92:1f:fb:4f:4a:2d:50:f2:8d:fa:81:49:14:47: 66:a9:a0:41:17:ba:07:97:00:99:8b:32:2c:af:4f:d5:b5:42: 38:0d:69:2d:fb:7b:31:a7:3d:94:12:79:bb:14:d5:fe:60:10: aa:30:dc:ce:c9:75:2d:8e:9e:e5:dd:dc:79:39:18:c1:8e:a2: 38:23:b7:b2:0d:9d:24:2e:50:30:d5:44:0d:9c:b4:67:ea:de: ca:c2:c2:dd:99:20:b7:ea:97:9e:7d:07:01:75:b6:61:6b:11: fe:99:c3:71:18:f6:b5:be:4b:96:f3:89:24:15:f6:0d:33:31: 33:b2:4f:5a:d3:9d:b5:de:04:ec:e2:30:e5:92:cb:cb:56:72: 11:e1:5d:ec:8b:22:4a:e1:43:36:33:f9:2b:53:6a:8c:47:12: d7:e9:81:c7:75:b3:53:27:e9:b6:f9:a2:8f:76:35:bc:a8:f2: e4:f7:38:78:db:ac:b5:db:b9:91:ca:60:49:47:49:d0:9f:36: 57:79:58:bd:48:e6:66:05:b6:12:60:99:c6:76:59:59:61:f9: 5b:6b:ed:e7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTlDNTExMC8GA1UEBRMoODZEOTVGNDFFRDE5ODFGQThEMEI1OTA4RDY0NDQ2NTEw RTZFQUM3RDAeFw0yNTEwMTkxMTAzMDlaFw0yNTEwMjYxMTAzMDlaMBgxFjAUBgNV BAMTDTY4ZjRjNTZlLTkwOGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDILHNucdz/J7rV7S7/OCTHhf+00ENGn69FR46p8J2x46QcoYlcxmxz83HN5CMf FDKcTnMcwC6bhBsUsgeeimS82/q1oh5nXViZ7iE34rwS7svmKhu99uA/IybxozUq 5SA1unU03dCcu0T7C+NE8RJEPl4cOAOOnGk8RXzZhRdIGWAnX15IwfHY/NlNxVgp M6AzDdVQqmZL8CcZR2unWN3eeGwG3gU2AOjbfFrZQ3KCe2d1HuTDSW3L8rWpvp/0 MaRs49HGL9HDNHx/OX1n7D4f8YUKILby/lAGhnZ6X1g2vORQ52oKC9osvbQo+h3b pDRtqnZErqldQhoj8VcBARqtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUIaHdA1na y2Ir+HKaDr1sn06i5ZQwHwYDVR0jBBgwFoAUhtlfQe0ZgfqNC1kI1kRGUQ5urH0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5OUM1LzA2MDNFNUJFNURC QzExRjA5QUExNzg1MEM0RjlBRTAyL2h0bGZRZTBaZ2ZxTkMxa0kxa1JHVVE1dXJI MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaHRsZlFlMFpnZnFOQzFrSTFrUkdVUTV1ckgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 OUM1LzA2MDNFNUJFNURCQzExRjA5QUExNzg1MEM0RjlBRTAyL2h0bGZRZTBaZ2Zx TkMxa0kxa1JHVVE1dXJIMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGfgUabMlKbzGDFDWotgxsCArQY1PwVff8x97GydIgLeaGJY+I//74mS H/tPSi1Q8o36gUkUR2apoEEXugeXAJmLMiyvT9W1QjgNaS37ezGnPZQSebsU1f5g EKow3M7JdS2OnuXd3Hk5GMGOojgjt7INnSQuUDDVRA2ctGfq3srCwt2ZILfql559 BwF1tmFrEf6Zw3EY9rW+S5bziSQV9g0zMTOyT1rTnbXeBOziMOWSy8tWchHhXeyL IkrhQzYz+StTaoxHEtfpgcd1s1Mn6bb5oo92Nbyo8uT3OHjbrLXbuZHKYElHSdCf Nld5WL1I5mYFthJgmcZ2WVlh+Vtr7ec= -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:51 2025 by rpki-client