$ rpki-client -vvf rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft File: 0QwglvtdswSr0vmfRaKUiCktNyE.mft (raw, json) Hash identifier: whQjwbuA3vIYGndtUqJDHw8TzW6V47u6YPwA6cypTQs= Subject key identifier: 39:6E:30:ED:5F:68:71:4A:0C:D7:97:23:AC:C2:21:8A:EC:D8:73:A7 Authority key identifier: D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 Certificate issuer: /CN=A91C68AD/serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft Manifest number: C0 Signing time: Sun 19 Oct 2025 08:57:59 +0000 Manifest this update: Sun 19 Oct 2025 08:57:58 +0000 Manifest next update: Sun 26 Oct 2025 08:57:58 +0000 Files and hashes: 1: 0QwglvtdswSr0vmfRaKUiCktNyE.crl (hash: 346G7R7xJcy4STUIaq+ENCDt2vpazhzK7RbXZ9W9DUM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:57:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C68AD, serialNumber=D10C2096FB5DB304ABD2F99F45A29488292D3721 Validity Not Before: Oct 19 08:57:58 2025 GMT Not After : Oct 26 08:57:58 2025 GMT Subject: CN=68f4a816-bcac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f6:bf:82:84:09:52:3f:eb:eb:38:0b:e4:4b: 45:ba:e0:58:f5:7c:2c:c4:cc:18:79:83:c0:97:6e: 1f:56:6f:6f:f2:29:90:fd:02:84:a2:0e:81:de:ba: 26:df:91:5e:e8:1a:94:b9:ed:14:cb:8d:23:e7:ef: 56:9d:86:d4:8e:52:50:a9:a4:02:48:28:ab:42:3a: f6:16:c8:e8:cb:bd:7c:0e:73:b9:cd:fb:e0:57:c9: 8c:73:13:47:9d:27:36:e1:61:ff:86:17:5e:ee:6d: a3:48:61:24:66:2b:fd:a1:4c:73:a6:eb:84:9b:6f: 91:18:81:a2:5c:c3:4f:d1:b6:e3:c6:e8:ff:cd:c5: 5a:25:8a:14:24:36:5a:e8:0c:98:4d:b5:3d:0c:26: 91:1e:28:df:90:48:7c:80:d1:bc:61:b9:04:ae:6d: 34:f1:46:9a:b7:0d:22:43:0a:fe:ed:0f:0a:3c:f0: 50:38:77:f9:cd:ed:fd:da:99:e2:ff:95:c6:db:26: 7e:f4:5d:74:32:08:f6:5f:df:ea:cf:03:42:05:30: 27:38:cc:de:b0:fc:f8:63:8a:e9:e7:4d:1f:f0:ea: 39:49:6a:df:c4:35:4d:17:b2:f0:a1:67:b4:45:1e: 65:06:e1:29:79:61:9d:d7:0d:d4:fe:8a:14:c9:d2: a4:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:6E:30:ED:5F:68:71:4A:0C:D7:97:23:AC:C2:21:8A:EC:D8:73:A7 X509v3 Authority Key Identifier: keyid:D1:0C:20:96:FB:5D:B3:04:AB:D2:F9:9F:45:A2:94:88:29:2D:37:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0QwglvtdswSr0vmfRaKUiCktNyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C68AD/DEBA238086A011EFB36E300EC4F9AE02/0QwglvtdswSr0vmfRaKUiCktNyE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:57:7f:27:8b:1e:4f:2a:29:8c:b4:a7:f9:6e:f1:e0:c3:c1: ff:b1:b1:a2:c2:9f:5b:25:f3:11:9b:5d:b8:22:b8:47:2e:b3: 4b:b9:51:e9:76:13:c6:4b:6a:83:40:f4:12:86:85:0a:e4:87: 6d:d9:65:28:b7:2f:51:e9:ac:8f:ca:b2:fd:ac:c4:07:bd:e9: 93:d5:7c:0b:de:17:5b:c1:41:bc:5e:bb:2d:90:5e:2c:1a:37: aa:01:85:be:ba:fb:be:1d:82:3a:f5:3b:ed:a5:a5:b2:89:68: 4e:db:ce:aa:ec:34:3c:d8:a0:6c:eb:71:16:a5:4a:22:e5:a8: a4:96:0a:cc:e7:72:95:b3:3d:df:19:22:23:e5:73:2c:ca:2b: 8a:18:02:fd:26:53:54:d4:13:13:ca:ec:be:f3:70:7e:92:ec: 7f:ba:a3:53:a3:33:73:1a:e0:6b:f2:5c:f8:3e:66:14:a9:b6: 5e:4f:43:1d:4c:6b:30:ab:fa:8a:e7:91:3f:ff:b0:ca:f1:c4: c7:b0:24:81:ad:60:03:17:f0:97:b5:f4:b9:c4:75:54:9e:72: 2d:0f:d1:40:62:a7:3e:47:5f:8b:14:f5:b4:d7:b4:bf:fe:74: 9b:a0:f3:51:ff:de:23:f1:85:2d:f9:29:d5:94:8f:4c:60:94: 05:56:1e:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY4QUQxMTAvBgNVBAUTKEQxMEMyMDk2RkI1REIzMDRBQkQyRjk5RjQ1QTI5NDg4 MjkyRDM3MjEwHhcNMjUxMDE5MDg1NzU4WhcNMjUxMDI2MDg1NzU4WjAYMRYwFAYD VQQDEw02OGY0YTgxNi1iY2FjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApva/goQJUj/r6zgL5EtFuuBY9XwsxMwYeYPAl24fVm9v8imQ/QKEog6B3rom 35Fe6BqUue0Uy40j5+9WnYbUjlJQqaQCSCirQjr2Fsjoy718DnO5zfvgV8mMcxNH nSc24WH/hhde7m2jSGEkZiv9oUxzpuuEm2+RGIGiXMNP0bbjxuj/zcVaJYoUJDZa 6AyYTbU9DCaRHijfkEh8gNG8YbkErm008Uaatw0iQwr+7Q8KPPBQOHf5ze392pni /5XG2yZ+9F10Mgj2X9/qzwNCBTAnOMzesPz4Y4rp500f8Oo5SWrfxDVNF7LwoWe0 RR5lBuEpeWGd1w3U/ooUydKkGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDluMO1f aHFKDNeXI6zCIYrs2HOnMB8GA1UdIwQYMBaAFNEMIJb7XbMEq9L5n0WilIgpLTch MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjhBRC9ERUJBMjM4MDg2 QTAxMUVGQjM2RTMwMEVDNEY5QUUwMi8wUXdnbHZ0ZHN3U3Iwdm1mUmFLVWlDa3RO eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRd2dsdnRkc3dTcjB2bWZSYUtVaUNrdE55RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NjhBRC9ERUJBMjM4MDg2QTAxMUVGQjM2RTMwMEVDNEY5QUUwMi8wUXdnbHZ0ZHN3 U3Iwdm1mUmFLVWlDa3ROeUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbV38nix5PKimMtKf5bvHgw8H/sbGiwp9bJfMRm124IrhHLrNLuVHp dhPGS2qDQPQShoUK5Idt2WUoty9R6ayPyrL9rMQHvemT1XwL3hdbwUG8XrstkF4s GjeqAYW+uvu+HYI69TvtpaWyiWhO286q7DQ82KBs63EWpUoi5aiklgrM53KVsz3f GSIj5XMsyiuKGAL9JlNU1BMTyuy+83B+kux/uqNTozNzGuBr8lz4PmYUqbZeT0Md TGswq/qK55E//7DK8cTHsCSBrWADF/CXtfS5xHVUnnItD9FAYqc+R1+LFPW017S/ /nSboPNR/94j8YUt+SnVlI9MYJQFVh63 -----END CERTIFICATE-----Generated at Mon Oct 20 13:50:07 2025 by rpki-client