$ rpki-client -vvf rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft File: p1cNzzcgqNWohWpLtlg_G66uAJM.mft (raw, json) Hash identifier: bXmbFrsTmfNgccmqUR472DTP1BBQvGKA2lKolFubqlo= Subject key identifier: 37:79:17:2D:E8:97:73:93:C1:4A:36:71:5F:91:82:ED:AB:14:16:8B Authority key identifier: A7:57:0D:CF:37:20:A8:D5:A8:85:6A:4B:B6:58:3F:1B:AE:AE:00:93 Certificate issuer: /CN=A91B37E3/serialNumber=A7570DCF3720A8D5A8856A4BB6583F1BAEAE0093 Certificate serial: 0CE5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft Manifest number: 0CB6 Signing time: Sat 18 Oct 2025 19:01:00 +0000 Manifest this update: Sat 18 Oct 2025 19:01:00 +0000 Manifest next update: Sat 25 Oct 2025 19:01:00 +0000 Files and hashes: 1: p1cNzzcgqNWohWpLtlg_G66uAJM.crl (hash: ZcOpt1f5K7fA+MCEbkNN6lz7IphZEXBgyV82JAFSy/U=) 2: 1994900403CE11EAA10C6A84C4F9AE02.roa (hash: +t2OsFQRgFf0c7jNBR5fu1U2IpPKMIuwM5iZNaY//qo=) 3: 5B47C2265D8411F0BBB04858C4F9AE02.roa (hash: Uur2jCKI44RTppdHPrBOV4rDdME7NfVW8X3JWQwRDe0=) 4: 4F6721CEB84B11EAB6247B7AC4F9AE02.roa (hash: coEgjngsR/Ce6vFWSBZaZ5rCfdvEVYlwbgZyFrxHv0s=) 5: 24252532B84711EA8A7F036DC4F9AE02.roa (hash: 5MqZOZoSVhwobP4LcJgxINFesjcjTvuIMp43rKBprmw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.crl rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3301 (0xce5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B37E3, serialNumber=A7570DCF3720A8D5A8856A4BB6583F1BAEAE0093 Validity Not Before: Oct 18 19:01:00 2025 GMT Not After : Oct 25 19:01:00 2025 GMT Subject: CN=68f3e3ec-9cf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:97:9e:27:00:b3:28:af:ed:9d:57:fb:3f:fd: dc:21:99:cb:f9:fc:c3:03:73:0a:ad:a9:fa:3f:7b: fe:f2:69:f2:a8:5c:75:f6:21:ef:29:69:cb:33:7d: 2b:96:ee:a8:2a:21:0c:d7:e2:97:c7:dd:f2:32:d9: c4:06:7a:47:b0:48:7b:31:87:77:8b:ef:4c:fb:22: 90:6b:44:55:e7:70:04:8e:6e:eb:fe:27:9f:01:f0: a4:f4:14:67:2c:b0:10:81:34:f0:02:4b:da:3d:de: d2:59:fb:9c:89:b0:5e:40:87:68:15:11:39:4e:69: b7:04:33:50:04:86:d6:63:97:69:e8:74:10:07:c7: 82:1c:62:92:a3:cb:fb:62:67:a1:db:ce:01:54:24: 34:4c:68:38:24:c1:a3:fe:7b:c4:b6:58:cd:c3:02: d2:48:44:fa:7d:08:ae:9d:98:8b:52:98:cf:b0:1e: c7:9d:26:10:be:04:20:2f:cf:82:d4:f3:1f:f4:1c: 0f:36:0d:83:23:53:38:fe:9f:59:a4:f1:eb:e4:e1: ee:c7:20:d0:ab:33:69:ed:5d:50:e3:2c:d1:96:82: d6:3e:31:03:42:e9:c0:05:98:90:b5:f4:3b:7c:d0: 1c:a2:f8:a2:e8:f8:69:d7:d1:53:dd:90:f2:d6:cf: 50:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:79:17:2D:E8:97:73:93:C1:4A:36:71:5F:91:82:ED:AB:14:16:8B X509v3 Authority Key Identifier: keyid:A7:57:0D:CF:37:20:A8:D5:A8:85:6A:4B:B6:58:3F:1B:AE:AE:00:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p1cNzzcgqNWohWpLtlg_G66uAJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B37E3/0AFEA7CE03A011EAB4C5D27CC4F9AE02/p1cNzzcgqNWohWpLtlg_G66uAJM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:76:94:b8:12:99:8e:91:b2:f4:69:0a:71:47:64:64:8d:87: 7b:c9:0b:9d:88:e8:60:4c:8c:93:a7:f2:cd:3d:50:d5:f0:78: 89:35:30:25:27:19:38:fb:19:00:15:fd:b8:8d:d3:03:51:09: f0:6f:f2:b5:5c:f9:d4:2a:ac:4d:d4:1b:78:9c:35:96:80:c2: 8d:2c:9c:7c:40:c3:e2:09:e2:b1:ce:a9:a2:ec:a6:8c:67:dd: b5:d7:07:17:48:3d:bd:46:40:bf:46:6c:d1:a5:e9:12:d6:18: 01:36:53:1a:0d:5c:80:9b:cd:d7:c4:80:cf:26:b5:ab:86:6d: 50:dc:38:46:55:bd:37:76:31:4c:1a:a5:66:5f:d8:48:eb:23: 5a:cd:b7:5c:19:e4:40:4e:d1:3a:a8:d0:5d:0a:fd:81:76:8a: aa:25:9b:6f:db:a3:e2:c6:e3:dc:d6:32:66:46:f0:93:1f:56: e4:4f:d0:5f:e5:fa:ab:aa:28:02:79:25:60:42:c0:24:81:29: ca:59:fd:65:fd:71:b4:17:0d:3a:5a:c8:79:4f:ea:06:a6:31: 30:08:43:e4:b7:95:75:15:79:c7:4f:ad:25:8c:a2:16:fd:7a: be:dd:64:78:5a:17:12:01:ed:e5:83:97:5f:db:cc:c4:74:41: 4b:5c:4f:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM3RTMxMTAvBgNVBAUTKEE3NTcwRENGMzcyMEE4RDVBODg1NkE0QkI2NTgzRjFC QUVBRTAwOTMwHhcNMjUxMDE4MTkwMTAwWhcNMjUxMDI1MTkwMTAwWjAYMRYwFAYD VQQDEw02OGYzZTNlYy05Y2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5JeeJwCzKK/tnVf7P/3cIZnL+fzDA3MKran6P3v+8mnyqFx19iHvKWnLM30r lu6oKiEM1+KXx93yMtnEBnpHsEh7MYd3i+9M+yKQa0RV53AEjm7r/iefAfCk9BRn LLAQgTTwAkvaPd7SWfucibBeQIdoFRE5Tmm3BDNQBIbWY5dp6HQQB8eCHGKSo8v7 Ymeh284BVCQ0TGg4JMGj/nvEtljNwwLSSET6fQiunZiLUpjPsB7HnSYQvgQgL8+C 1PMf9BwPNg2DI1M4/p9ZpPHr5OHuxyDQqzNp7V1Q4yzRloLWPjEDQunABZiQtfQ7 fNAcovii6Php19FT3ZDy1s9Q9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDd5Fy3o l3OTwUo2cV+Rgu2rFBaLMB8GA1UdIwQYMBaAFKdXDc83IKjVqIVqS7ZYPxuurgCT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzdFMy8wQUZFQTdDRTAz QTAxMUVBQjRDNUQyN0NDNEY5QUUwMi9wMWNOenpjZ3FOV29oV3BMdGxnX0c2NnVB Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AxY056emNncU5Xb2hXcEx0bGdfRzY2dUFKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzdFMy8wQUZFQTdDRTAzQTAxMUVBQjRDNUQyN0NDNEY5QUUwMi9wMWNOenpjZ3FO V29oV3BMdGxnX0c2NnVBSk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMdpS4EpmOkbL0aQpxR2RkjYd7yQudiOhgTIyTp/LNPVDV8HiJNTAl Jxk4+xkAFf24jdMDUQnwb/K1XPnUKqxN1Bt4nDWWgMKNLJx8QMPiCeKxzqmi7KaM Z9211wcXSD29RkC/RmzRpekS1hgBNlMaDVyAm83XxIDPJrWrhm1Q3DhGVb03djFM GqVmX9hI6yNazbdcGeRATtE6qNBdCv2BdoqqJZtv26PixuPc1jJmRvCTH1bkT9Bf 5fqrqigCeSVgQsAkgSnKWf1l/XG0Fw06Wsh5T+oGpjEwCEPkt5V1FXnHT60ljKIW /Xq+3WR4WhcSAe3lg5df28zEdEFLXE82 -----END CERTIFICATE-----Generated at Mon Oct 20 13:45:09 2025 by rpki-client