$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft File: 1icW92HxiNVvoRf53JS-QUEEpoE.mft (raw, json) Hash identifier: svF3b+dOKux5nH/5gEQ8bzlXxI0awsEuGwxeeoUUX0w= Subject key identifier: 36:D9:1B:86:D9:73:32:A0:6B:5C:3A:EF:2A:92:AD:1F:A8:34:DF:3F Authority key identifier: D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 Certificate issuer: /CN=A91C5D53/serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft Manifest number: AA Signing time: Sun 19 Oct 2025 09:24:51 +0000 Manifest this update: Sun 19 Oct 2025 09:24:50 +0000 Manifest next update: Sun 26 Oct 2025 09:24:50 +0000 Files and hashes: 1: 1icW92HxiNVvoRf53JS-QUEEpoE.crl (hash: yqUqV7J0qlvAt6krOkDdox1gRT2oJY/0xyg6O5PfBbU=) 2: BB5954CE241111F094390A32C4F9AE02.roa (hash: 6qd8Idl86oSAnUE2UErM8ktGLeOpsspXAgidR5hkRlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5D53, serialNumber=D62716F761F188D56FA117F9DC94BE414104A681 Validity Not Before: Oct 19 09:24:50 2025 GMT Not After : Oct 26 09:24:50 2025 GMT Subject: CN=68f4ae62-22e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8c:22:0c:65:06:b2:2c:be:ee:e4:8b:61:8a: 56:e4:da:f4:19:cc:18:00:ae:aa:b3:0b:6b:88:d6: 03:9d:a8:b3:c7:6d:b8:20:83:a5:08:3a:99:bd:c4: e3:7c:06:c2:02:1c:e7:17:f7:bd:db:b8:25:9b:bd: ef:4e:2a:89:9c:ba:6f:46:8e:81:23:39:47:89:0e: a9:a0:74:70:3d:89:ff:27:72:f1:22:53:77:ac:58: 04:c8:95:f2:b2:5e:b6:27:f1:79:a9:fd:0b:3d:23: 89:fd:68:67:c8:45:96:4b:11:b2:52:23:a1:a9:a9: d5:54:68:b4:f7:1f:71:dc:ac:60:31:3c:e8:20:9e: 43:ff:90:08:c3:4e:3d:45:a6:47:1e:c1:c1:3d:bb: 70:77:a4:3a:06:78:b0:66:81:b5:00:30:19:ce:dd: a0:ba:ad:3f:37:68:d6:0f:a0:41:64:91:74:8a:21: e1:e6:79:f9:8b:f9:f6:e9:12:09:2a:84:16:d2:89: 26:c7:b6:a1:48:3f:65:dc:1a:a3:0a:a9:ea:ff:8b: 17:49:21:97:3e:18:fb:3f:e2:45:ff:3a:d2:4e:ce: 4e:dd:48:d1:7e:8f:c5:0a:bc:0b:55:af:7d:93:b5: 49:b0:f1:d2:98:d2:73:85:d3:00:8c:1f:28:89:d2: 6c:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D9:1B:86:D9:73:32:A0:6B:5C:3A:EF:2A:92:AD:1F:A8:34:DF:3F X509v3 Authority Key Identifier: keyid:D6:27:16:F7:61:F1:88:D5:6F:A1:17:F9:DC:94:BE:41:41:04:A6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1icW92HxiNVvoRf53JS-QUEEpoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5D53/05FFC00EAC8411EF8214972BC4F9AE02/1icW92HxiNVvoRf53JS-QUEEpoE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:1e:ae:40:1c:a0:06:98:b0:98:46:9e:fe:97:1e:c7:0b:03: 3d:3a:99:72:e9:88:44:3f:c2:48:e0:b1:02:58:4e:c2:0e:6c: bd:05:de:d4:14:e1:70:29:3a:7c:5d:89:1e:45:ec:ca:3d:f9: 9f:a6:4b:92:e3:ee:f5:85:ca:4a:49:90:5b:0f:fb:19:3c:0a: e8:3b:8a:16:51:40:1f:bd:c2:f4:a5:80:12:c5:a8:a3:1e:9b: 04:21:c0:1c:62:ba:c8:ba:89:92:1b:fd:b1:89:7f:ed:11:8a: 51:4b:cb:53:58:a5:12:00:38:5a:77:9f:a9:46:e9:56:61:80: fc:bc:bc:e5:b5:d6:be:35:25:8d:7f:2f:e2:84:75:f9:8d:c2: dc:46:81:61:a8:70:39:a7:71:c4:ae:83:4d:f0:c0:d7:6c:14: 4a:21:33:f5:7e:56:4d:5d:36:f3:d0:55:80:16:2b:2f:9e:41: fe:5f:55:42:a0:c2:53:5f:91:67:81:c3:72:7f:51:ba:68:e9: d4:29:26:43:5e:fb:99:6e:44:e3:51:41:5f:da:02:6a:00:0b: 22:95:f8:77:ba:72:8d:e6:b3:e8:39:98:78:9c:43:35:49:f0: 97:4e:d7:1e:ce:4d:06:6c:a8:a0:9f:2e:c9:a5:97:8f:f6:1f: 69:81:96:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVENTMxMTAvBgNVBAUTKEQ2MjcxNkY3NjFGMTg4RDU2RkExMTdGOURDOTRCRTQx NDEwNEE2ODEwHhcNMjUxMDE5MDkyNDUwWhcNMjUxMDI2MDkyNDUwWjAYMRYwFAYD VQQDEw02OGY0YWU2Mi0yMmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzIwiDGUGsiy+7uSLYYpW5Nr0GcwYAK6qswtriNYDnaizx224IIOlCDqZvcTj fAbCAhznF/e927glm73vTiqJnLpvRo6BIzlHiQ6poHRwPYn/J3LxIlN3rFgEyJXy sl62J/F5qf0LPSOJ/WhnyEWWSxGyUiOhqanVVGi09x9x3KxgMTzoIJ5D/5AIw049 RaZHHsHBPbtwd6Q6BniwZoG1ADAZzt2guq0/N2jWD6BBZJF0iiHh5nn5i/n26RIJ KoQW0okmx7ahSD9l3BqjCqnq/4sXSSGXPhj7P+JF/zrSTs5O3UjRfo/FCrwLVa99 k7VJsPHSmNJzhdMAjB8oidJsywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbZG4bZ czKga1w67yqSrR+oNN8/MB8GA1UdIwQYMBaAFNYnFvdh8YjVb6EX+dyUvkFBBKaB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUQ1My8wNUZGQzAwRUFD ODQxMUVGODIxNDk3MkJDNEY5QUUwMi8xaWNXOTJIeGlOVnZvUmY1M0pTLVFVRUVw b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFpY1c5Mkh4aU5Wdm9SZjUzSlMtUVVFRXBvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUQ1My8wNUZGQzAwRUFDODQxMUVGODIxNDk3MkJDNEY5QUUwMi8xaWNXOTJIeGlO VnZvUmY1M0pTLVFVRUVwb0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARHq5AHKAGmLCYRp7+lx7HCwM9Oply6YhEP8JI4LECWE7CDmy9Bd7U FOFwKTp8XYkeRezKPfmfpkuS4+71hcpKSZBbD/sZPAroO4oWUUAfvcL0pYASxaij HpsEIcAcYrrIuomSG/2xiX/tEYpRS8tTWKUSADhad5+pRulWYYD8vLzltda+NSWN fy/ihHX5jcLcRoFhqHA5p3HEroNN8MDXbBRKITP1flZNXTbz0FWAFisvnkH+X1VC oMJTX5FngcNyf1G6aOnUKSZDXvuZbkTjUUFf2gJqAAsilfh3unKN5rPoOZh4nEM1 SfCXTtcezk0GbKigny7JpZeP9h9pgZZ+ -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:18 2025 by rpki-client