$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft File: 0VLfcuXWwcb-QrZCN3w7CIEobec.mft (raw, json) Hash identifier: Hb/lPueaPHle16bn6xPp+zKtXzNX4KF2clcB3ucy+dE= Subject key identifier: B4:E4:22:DF:E6:21:31:1D:AB:5F:AB:94:10:5B:0E:39:88:03:3C:E0 Authority key identifier: D1:52:DF:72:E5:D6:C1:C6:FE:42:B6:42:37:7C:3B:08:81:28:6D:E7 Certificate issuer: /CN=A91C0FAC/serialNumber=D152DF72E5D6C1C6FE42B642377C3B0881286DE7 Certificate serial: 0565 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0VLfcuXWwcb-QrZCN3w7CIEobec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft Manifest number: 0560 Signing time: Sun 19 Oct 2025 01:05:43 +0000 Manifest this update: Sun 19 Oct 2025 01:05:43 +0000 Manifest next update: Sun 26 Oct 2025 01:05:43 +0000 Files and hashes: 1: 0VLfcuXWwcb-QrZCN3w7CIEobec.crl (hash: wLJ6sQOa3d16nYqTL5RfdUFYU0y8hllLIi/zP/fDtYQ=) 2: 4C2E7A3C049B11ECAC7E5D0DC4F9AE02.roa (hash: JNxs4L4e1ceFr4b8NRWrFPbylob6Fmj/cL16X1jkyEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.crl rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0VLfcuXWwcb-QrZCN3w7CIEobec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1381 (0x565) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0FAC, serialNumber=D152DF72E5D6C1C6FE42B642377C3B0881286DE7 Validity Not Before: Oct 19 01:05:43 2025 GMT Not After : Oct 26 01:05:43 2025 GMT Subject: CN=68f43967-c121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:7c:f0:48:78:d7:6c:d2:22:4c:5c:8f:42:99: 70:c8:81:af:00:ab:cb:9f:c9:6a:a5:e8:b4:53:b5: f8:a5:89:23:12:ea:a2:4c:a2:43:6d:7e:5c:5a:28: 63:6a:3b:f3:14:9c:99:67:85:a6:0d:4d:86:f7:e1: 92:3c:0f:8c:ab:49:39:df:10:da:6a:25:07:21:62: 2e:8f:0e:c6:82:28:0f:4d:f0:e0:83:da:ed:51:8b: d4:a0:5b:7e:c8:64:21:7d:02:ed:18:68:ee:f7:0d: 80:bd:0a:dd:23:c6:62:c2:81:2c:21:2b:54:ac:9e: 22:66:20:5e:cd:35:e4:cf:30:91:9c:ca:6e:b0:21: db:3d:07:77:fb:1d:72:7d:a1:72:41:47:50:1a:f8: f7:d1:80:cb:a3:02:27:58:08:f3:a8:bc:66:bf:a7: 05:4e:5f:08:6a:19:9e:a8:93:a5:2a:d8:00:74:b9: a5:93:0d:8a:c5:ac:75:e6:79:3f:9b:0a:b9:2b:a6: ec:7f:e5:8d:fb:94:64:f8:6d:eb:89:b2:1d:f0:ef: 5d:e5:f7:86:3c:31:23:7a:33:d6:09:e5:39:78:87: b0:7f:cc:09:27:49:54:9a:6a:74:bb:cd:0f:e0:e4: f9:90:9f:f4:72:71:2e:8c:7b:b1:88:77:b4:a6:78: a2:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:E4:22:DF:E6:21:31:1D:AB:5F:AB:94:10:5B:0E:39:88:03:3C:E0 X509v3 Authority Key Identifier: keyid:D1:52:DF:72:E5:D6:C1:C6:FE:42:B6:42:37:7C:3B:08:81:28:6D:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0VLfcuXWwcb-QrZCN3w7CIEobec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0FAC/3CF798E0049711ECA53D4B3CC4F9AE02/0VLfcuXWwcb-QrZCN3w7CIEobec.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:e1:b3:7c:d1:16:dd:78:df:37:98:dd:7a:65:23:df:bc:00: b4:e1:3b:18:71:2d:41:84:68:c5:20:66:90:a8:a0:29:e6:f8: c6:c5:8d:8d:d8:e3:b4:ca:39:a8:09:85:25:6f:4a:02:6c:22: 51:dc:16:0d:39:57:2b:00:ec:d2:e4:8b:05:e1:e2:fc:bd:aa: a3:64:9f:0f:6b:7b:b0:dc:b0:40:38:64:fc:ee:76:33:f4:c1: 0c:74:0b:fd:97:6c:3c:ee:c5:8a:fd:a8:2d:ff:af:aa:93:28: bf:cd:f4:60:95:49:92:b6:35:11:3f:1a:a5:9b:5a:06:3d:38: 22:f0:0a:5f:80:6d:22:13:17:83:06:d0:6b:5a:39:c7:5a:35: 0b:93:7c:ed:bf:59:a0:37:c4:fc:18:b6:30:d1:07:9a:74:3b: 2f:0c:6c:30:30:77:a8:97:e8:07:0f:c9:f9:00:8e:ba:5d:7f: d1:c6:55:da:90:0b:8c:d1:81:0b:66:f8:62:20:1b:69:27:5d: 05:44:3b:ef:90:dc:bb:43:b1:44:f1:36:d0:d3:ce:21:2b:a2: 08:49:4e:85:24:67:b7:b1:e5:5f:b2:1e:b1:7d:f0:73:87:d9: a4:ec:da:52:f2:f0:31:d9:4c:0d:ba:ff:db:8a:d1:d7:ae:ad: 56:99:80:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBGQUMxMTAvBgNVBAUTKEQxNTJERjcyRTVENkMxQzZGRTQyQjY0MjM3N0MzQjA4 ODEyODZERTcwHhcNMjUxMDE5MDEwNTQzWhcNMjUxMDI2MDEwNTQzWjAYMRYwFAYD VQQDEw02OGY0Mzk2Ny1jMTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnHzwSHjXbNIiTFyPQplwyIGvAKvLn8lqpei0U7X4pYkjEuqiTKJDbX5cWihj ajvzFJyZZ4WmDU2G9+GSPA+Mq0k53xDaaiUHIWIujw7GgigPTfDgg9rtUYvUoFt+ yGQhfQLtGGju9w2AvQrdI8ZiwoEsIStUrJ4iZiBezTXkzzCRnMpusCHbPQd3+x1y faFyQUdQGvj30YDLowInWAjzqLxmv6cFTl8IahmeqJOlKtgAdLmlkw2Kxax15nk/ mwq5K6bsf+WN+5Rk+G3ribId8O9d5feGPDEjejPWCeU5eIewf8wJJ0lUmmp0u80P 4OT5kJ/0cnEujHuxiHe0pniiNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLTkIt/m ITEdq1+rlBBbDjmIAzzgMB8GA1UdIwQYMBaAFNFS33Ll1sHG/kK2Qjd8OwiBKG3n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEZBQy8zQ0Y3OThFMDA0 OTcxMUVDQTUzRDRCM0NDNEY5QUUwMi8wVkxmY3VYV3djYi1RclpDTjN3N0NJRW9i ZWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBWTGZjdVhXd2NiLVFyWkNOM3c3Q0lFb2JlYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEZBQy8zQ0Y3OThFMDA0OTcxMUVDQTUzRDRCM0NDNEY5QUUwMi8wVkxmY3VYV3dj Yi1RclpDTjN3N0NJRW9iZWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBe4bN80RbdeN83mN16ZSPfvAC04TsYcS1BhGjFIGaQqKAp5vjGxY2N 2OO0yjmoCYUlb0oCbCJR3BYNOVcrAOzS5IsF4eL8vaqjZJ8Pa3uw3LBAOGT87nYz 9MEMdAv9l2w87sWK/agt/6+qkyi/zfRglUmStjURPxqlm1oGPTgi8ApfgG0iExeD BtBrWjnHWjULk3ztv1mgN8T8GLYw0QeadDsvDGwwMHeol+gHD8n5AI66XX/RxlXa kAuM0YELZvhiIBtpJ10FRDvvkNy7Q7FE8TbQ084hK6IISU6FJGe3seVfsh6xffBz h9mk7NpS8vAx2UwNuv/bitHXrq1WmYAd -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:27 2025 by rpki-client