$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft File: f_xaKedfnr4HnQUkfw3_DPmH8cI.mft (raw, json) Hash identifier: QCgDdrdB+2QpGGA1Qjnpq7Wjeb5OWfRJwsrmCTinOEo= Subject key identifier: 53:34:C8:73:BF:A4:B8:DC:AC:D1:65:24:D6:61:BE:49:D7:98:81:F0 Authority key identifier: 7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 Certificate issuer: /CN=A91B4C67/serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Certificate serial: 34CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft Manifest number: 34CD Signing time: Sat 18 Oct 2025 15:14:07 +0000 Manifest this update: Sat 18 Oct 2025 15:14:06 +0000 Manifest next update: Sat 25 Oct 2025 15:14:06 +0000 Files and hashes: 1: f_xaKedfnr4HnQUkfw3_DPmH8cI.crl (hash: VeDktgdOFskbynF5qguTFsJ07F6tpH7/T08VqdJt0bQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:14:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13517 (0x34cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4C67, serialNumber=7FFC5A29E75F9EBE079D05247F0DFF0CF987F1C2 Validity Not Before: Oct 18 15:14:06 2025 GMT Not After : Oct 25 15:14:06 2025 GMT Subject: CN=68f3aebe-99b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e6:72:f9:19:68:2c:74:07:92:2a:1b:3c:b8: 7b:8e:b5:6b:c9:db:ed:2b:e7:69:57:22:97:a3:5b: 99:6c:8d:20:59:3a:21:e0:80:14:9e:2c:d1:38:32: d8:a3:95:94:d9:fc:f1:16:8f:47:d5:7d:0c:fd:9b: 6c:0f:7e:b4:90:c6:01:b6:62:14:cf:dc:06:aa:ad: 94:bb:55:27:4d:9a:60:62:af:67:f3:8e:8b:0d:53: 34:85:75:e6:d5:8f:17:1e:4c:ed:60:fc:ec:96:02: 7a:40:ce:96:4f:9e:11:7f:40:09:aa:a0:56:b6:99: 05:9a:7b:c1:98:70:dd:19:e2:66:14:d9:bf:10:2d: 6d:98:54:3b:99:4a:2d:f0:bf:d8:ad:e2:1d:bc:ed: 57:99:c0:2e:12:39:5a:43:09:02:76:cb:0f:c7:0b: 8d:36:5b:ad:6e:4b:d3:de:d3:b1:3c:af:e9:62:cd: 5b:15:35:0a:90:8f:99:ba:6d:6e:54:dc:6f:02:b4: b0:cb:fd:50:84:d1:05:6a:cf:de:9e:eb:a5:fa:ca: f6:ca:37:8b:e5:a7:7e:25:24:e6:fb:0f:4d:5d:d5: 84:6b:5b:46:e5:e8:f0:01:da:53:c9:de:34:f7:6f: 5c:00:6e:95:4c:82:20:53:94:ef:c6:93:5f:61:c4: 5f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:34:C8:73:BF:A4:B8:DC:AC:D1:65:24:D6:61:BE:49:D7:98:81:F0 X509v3 Authority Key Identifier: keyid:7F:FC:5A:29:E7:5F:9E:BE:07:9D:05:24:7F:0D:FF:0C:F9:87:F1:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_xaKedfnr4HnQUkfw3_DPmH8cI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4C67/BF3FC2FA1DA111E2B3EC1F9408B02CD2/f_xaKedfnr4HnQUkfw3_DPmH8cI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:29:53:53:07:0e:d2:77:d9:14:f5:da:88:cb:3b:54:41:6f: f1:97:57:4c:2d:0a:46:46:3c:f1:05:0d:80:c9:6c:92:af:b5: 84:80:86:84:13:15:d9:15:5b:a2:58:4b:57:ad:3f:e1:34:60: 02:8e:d5:c5:1c:d8:aa:8d:94:aa:34:9a:5b:e8:f5:65:32:65: 56:7c:92:fb:ad:d9:86:a7:cf:5f:12:bc:45:7a:2f:91:c4:60: a3:1c:8e:b3:08:ce:73:c9:f9:cc:86:78:26:9b:9d:da:84:cc: db:12:b7:49:2c:62:3e:2e:56:36:89:1f:fc:3d:eb:7c:7b:b4: 9a:18:6b:f7:5c:15:b2:92:cd:8a:c0:43:9b:35:a2:a4:48:7f: c5:6b:5f:82:3a:5c:67:70:fe:f9:a1:b1:36:f5:76:80:a8:33: 0d:ed:b5:9f:10:c3:77:48:dc:ce:17:c8:60:51:3a:ab:8a:ef: 78:69:46:a2:2c:ff:8f:b0:85:91:11:91:26:e4:3e:ec:71:92: e0:ec:3e:4a:36:12:e5:c4:17:87:02:b4:df:92:b0:a8:8b:36: 32:f9:d8:76:a0:cd:97:c3:15:d8:78:9f:13:ec:11:43:d4:2c: 1c:eb:11:2c:70:8f:5c:12:51:ca:cf:dd:fd:f9:6a:98:42:46: 37:ca:d3:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRDNjcxMTAvBgNVBAUTKDdGRkM1QTI5RTc1RjlFQkUwNzlEMDUyNDdGMERGRjBD Rjk4N0YxQzIwHhcNMjUxMDE4MTUxNDA2WhcNMjUxMDI1MTUxNDA2WjAYMRYwFAYD VQQDEw02OGYzYWViZS05OWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxuZy+RloLHQHkiobPLh7jrVrydvtK+dpVyKXo1uZbI0gWToh4IAUnizRODLY o5WU2fzxFo9H1X0M/ZtsD360kMYBtmIUz9wGqq2Uu1UnTZpgYq9n846LDVM0hXXm 1Y8XHkztYPzslgJ6QM6WT54Rf0AJqqBWtpkFmnvBmHDdGeJmFNm/EC1tmFQ7mUot 8L/YreIdvO1XmcAuEjlaQwkCdssPxwuNNlutbkvT3tOxPK/pYs1bFTUKkI+Zum1u VNxvArSwy/1QhNEFas/enuul+sr2yjeL5ad+JSTm+w9NXdWEa1tG5ejwAdpTyd40 929cAG6VTIIgU5TvxpNfYcRftwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFM0yHO/ pLjcrNFlJNZhvknXmIHwMB8GA1UdIwQYMBaAFH/8WinnX56+B50FJH8N/wz5h/HC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEM2Ny9CRjNGQzJGQTFE QTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5yNEhuUVVrZnczX0RQbUg4 Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZfeGFLZWRmbnI0SG5RVWtmdzNfRFBtSDhjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEM2Ny9CRjNGQzJGQTFEQTExMUUyQjNFQzFGOTQwOEIwMkNEMi9mX3hhS2VkZm5y NEhuUVVrZnczX0RQbUg4Y0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvKVNTBw7Sd9kU9dqIyztUQW/xl1dMLQpGRjzxBQ2AyWySr7WEgIaE ExXZFVuiWEtXrT/hNGACjtXFHNiqjZSqNJpb6PVlMmVWfJL7rdmGp89fErxFei+R xGCjHI6zCM5zyfnMhngmm53ahMzbErdJLGI+LlY2iR/8Pet8e7SaGGv3XBWyks2K wEObNaKkSH/Fa1+COlxncP75obE29XaAqDMN7bWfEMN3SNzOF8hgUTqriu94aUai LP+PsIWREZEm5D7scZLg7D5KNhLlxBeHArTfkrCoizYy+dh2oM2XwxXYeJ8T7BFD 1Cwc6xEscI9cElHKz939+WqYQkY3ytOL -----END CERTIFICATE-----Generated at Mon Oct 20 06:55:46 2025 by rpki-client