$ rpki-client -vvf rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft File: 57DhU8QU0ThUitp16M0FzWk2cgY.mft (raw, json) Hash identifier: QD0Rb09r89mZSxFOg28BQzD5wVuILH9lQyd8IeO3fGE= Subject key identifier: 1B:AB:28:C2:FB:75:9A:B5:6A:AA:01:BC:76:7E:6B:76:DA:45:04:81 Authority key identifier: E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 Certificate issuer: /CN=A91B42CA/serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Certificate serial: 34CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft Manifest number: 535C Signing time: Sat 18 Oct 2025 15:12:34 +0000 Manifest this update: Sat 18 Oct 2025 15:12:34 +0000 Manifest next update: Sat 25 Oct 2025 15:12:34 +0000 Files and hashes: 1: 57DhU8QU0ThUitp16M0FzWk2cgY.crl (hash: WxN5YQ+YV1fudhLXMXr+2JnGGrsdalBnzsayoJfsRzA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:12:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13519 (0x34cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B42CA, serialNumber=E7B0E153C414D138548ADA75E8CD05CD69367206 Validity Not Before: Oct 18 15:12:34 2025 GMT Not After : Oct 25 15:12:34 2025 GMT Subject: CN=68f3ae62-45e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d1:f7:a2:58:03:cd:26:b9:5b:d4:79:26:6c: e3:2e:41:26:b2:57:e0:9f:fa:65:c3:ef:2c:e4:3f: 74:c9:52:b2:80:59:d7:e3:e6:8e:de:c1:63:86:ae: 61:1f:8c:a6:d5:55:22:3f:25:a9:78:1a:8b:de:a6: ed:cd:c2:94:80:b8:ec:45:04:e0:14:19:0b:93:1f: f7:7f:98:bf:b5:17:9c:38:39:97:92:41:e9:7d:7b: 4a:72:26:ce:6e:42:d8:a4:0b:4c:71:41:f8:08:f3: b9:00:71:94:df:19:0b:cb:8e:54:8d:58:b9:0e:13: 8a:43:4d:e7:e9:b4:c9:ac:35:82:77:5e:bd:9f:d2: 6f:40:5e:d5:2c:2f:1b:f6:95:79:62:bf:80:70:c9: 9e:74:37:6c:0e:ab:4e:a5:54:33:fb:77:01:5c:bc: d7:94:ce:a0:dc:b8:1f:78:ae:0f:ea:41:6f:df:3f: 44:95:61:7d:ab:6b:37:b6:64:4b:d4:7d:f2:be:97: c4:d8:f3:cc:34:6f:6f:f4:fc:b1:d3:70:8d:f6:49: 07:c5:32:b6:1f:e2:50:11:2d:e6:c3:94:ea:51:0f: 5f:c0:e6:c9:27:2b:ae:ef:23:fe:3f:68:ad:11:41: d3:a4:8b:5c:7f:cb:87:8f:5d:99:69:cf:b2:f7:e9: 91:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:AB:28:C2:FB:75:9A:B5:6A:AA:01:BC:76:7E:6B:76:DA:45:04:81 X509v3 Authority Key Identifier: keyid:E7:B0:E1:53:C4:14:D1:38:54:8A:DA:75:E8:CD:05:CD:69:36:72:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/57DhU8QU0ThUitp16M0FzWk2cgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B42CA/D34DB97E1DA011E283A1619208B02CD2/57DhU8QU0ThUitp16M0FzWk2cgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:9e:77:ae:ff:97:e1:0a:02:cb:aa:63:73:3a:3d:b0:d6:d2: 4e:9c:fa:01:ea:c0:46:62:f3:96:54:b2:7f:8a:a7:78:55:fd: a8:1b:f3:8b:b6:8d:62:da:5e:f6:de:46:98:c6:a9:bb:80:90: 02:d7:54:70:8d:f6:89:ad:ef:33:ca:b0:50:eb:41:f8:1e:fc: aa:61:6b:14:84:3f:21:01:ad:f0:69:1a:f4:f1:91:23:38:fd: 2f:62:99:eb:29:8b:1f:58:cc:93:fb:b9:2a:7e:ce:a2:0e:96: f1:65:00:1a:81:13:44:c7:76:86:4b:be:35:de:38:2c:1c:d5: 08:8c:31:86:32:5b:fa:2c:b0:c5:ce:e5:74:7c:87:63:1d:ab: e7:df:37:5e:9c:b4:4a:b8:3c:7c:40:c6:97:d3:1d:79:0b:63: c0:1f:5b:de:1d:85:cf:1b:3a:c9:fd:67:d1:d6:32:bf:7b:2c: 0f:22:aa:ec:82:c7:23:dc:18:32:14:02:02:df:46:e3:5f:14: 2b:a3:70:7b:08:74:26:05:86:91:6d:37:e1:53:e7:21:b3:77: dd:ee:ad:31:ba:a6:9e:d4:ff:1f:34:08:a8:24:97:c4:ca:5e: c9:f1:54:28:76:b3:be:04:bf:06:03:20:29:ad:9c:1f:2e:d3: 8b:e7:43:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyQ0ExMTAvBgNVBAUTKEU3QjBFMTUzQzQxNEQxMzg1NDhBREE3NUU4Q0QwNUNE NjkzNjcyMDYwHhcNMjUxMDE4MTUxMjM0WhcNMjUxMDI1MTUxMjM0WjAYMRYwFAYD VQQDEw02OGYzYWU2Mi00NWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9H3olgDzSa5W9R5JmzjLkEmslfgn/plw+8s5D90yVKygFnX4+aO3sFjhq5h H4ym1VUiPyWpeBqL3qbtzcKUgLjsRQTgFBkLkx/3f5i/tRecODmXkkHpfXtKcibO bkLYpAtMcUH4CPO5AHGU3xkLy45UjVi5DhOKQ03n6bTJrDWCd169n9JvQF7VLC8b 9pV5Yr+AcMmedDdsDqtOpVQz+3cBXLzXlM6g3LgfeK4P6kFv3z9ElWF9q2s3tmRL 1H3yvpfE2PPMNG9v9Pyx03CN9kkHxTK2H+JQES3mw5TqUQ9fwObJJyuu7yP+P2it EUHTpItcf8uHj12Zac+y9+mRrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBurKML7 dZq1aqoBvHZ+a3baRQSBMB8GA1UdIwQYMBaAFOew4VPEFNE4VIradejNBc1pNnIG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDJDQS9EMzREQjk3RTFE QTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBUaFVpdHAxNk0wRnpXazJj Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzU3RGhVOFFVMFRoVWl0cDE2TTBGeldrMmNnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDJDQS9EMzREQjk3RTFEQTAxMUUyODNBMTYxOTIwOEIwMkNEMi81N0RoVThRVTBU aFVpdHAxNk0wRnpXazJjZ1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqnneu/5fhCgLLqmNzOj2w1tJOnPoB6sBGYvOWVLJ/iqd4Vf2oG/OL to1i2l723kaYxqm7gJAC11RwjfaJre8zyrBQ60H4HvyqYWsUhD8hAa3waRr08ZEj OP0vYpnrKYsfWMyT+7kqfs6iDpbxZQAagRNEx3aGS7413jgsHNUIjDGGMlv6LLDF zuV0fIdjHavn3zdenLRKuDx8QMaX0x15C2PAH1veHYXPGzrJ/WfR1jK/eywPIqrs gscj3BgyFAIC30bjXxQro3B7CHQmBYaRbTfhU+chs3fd7q0xuqae1P8fNAioJJfE yl7J8VQodrO+BL8GAyAprZwfLtOL50Pl -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:14 2025 by rpki-client