$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft File: 1sP4E3joVAB4unmUQu7b7HgOD3s.mft (raw, json) Hash identifier: mzmmApMupYN6tjdlHJH5BaTzArNdJT3ddK+FxAVM8jk= Subject key identifier: 8B:EE:8A:61:60:6A:E9:26:33:F4:F4:8C:F6:D6:EB:00:5E:E9:3F:DE Authority key identifier: D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B Certificate issuer: /CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Certificate serial: 1B95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft Manifest number: 1B8B Signing time: Sat 18 Oct 2025 16:35:27 +0000 Manifest this update: Sat 18 Oct 2025 16:35:27 +0000 Manifest next update: Sat 25 Oct 2025 16:35:27 +0000 Files and hashes: 1: 1sP4E3joVAB4unmUQu7b7HgOD3s.crl (hash: JQTHNZLc4/lJEsnCMDEUiKZfZV3fFHCFXKllHWsiyJ4=) 2: 020A31F812B011E7A7C42661C4F9AE02.roa (hash: XaEt+47rBdBuIr1qA7i6V/F+AJaSo/IaiolwteWY5gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:35:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7061 (0x1b95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DD5, serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Validity Not Before: Oct 18 16:35:27 2025 GMT Not After : Oct 25 16:35:27 2025 GMT Subject: CN=68f3c1cf-8512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f1:a8:a4:db:64:7c:95:b9:84:81:c1:be:24: 77:f3:e5:a4:24:83:b0:5d:65:0d:bd:b8:ce:e5:ab: b2:a9:f8:7c:72:eb:e5:c3:3d:bb:98:0d:91:ce:4f: a0:0a:d0:ff:27:2a:3b:e2:31:ac:8d:73:ae:18:c7: a4:fc:c5:ba:5c:cc:18:35:58:5f:1f:3c:12:4f:40: 92:64:4a:1c:e3:20:f1:1c:91:26:45:95:a8:a6:61: b5:29:d5:08:1d:54:cc:63:96:f2:32:e2:db:92:25: 9d:f2:00:6a:30:d8:71:ac:1f:53:86:ff:f1:be:23: ab:2d:ea:dc:80:7c:b7:9c:00:ea:81:fd:de:d0:a0: 43:93:30:bf:93:a5:c9:92:f8:71:1d:dd:b1:97:c5: 68:7e:0d:77:19:c2:36:3e:ea:57:16:ce:10:ce:1f: 4a:5a:4b:ee:97:cf:a9:35:80:68:97:05:8d:25:c3: 20:20:3a:8e:be:17:7f:2d:1f:70:e1:a4:50:ca:98: 7a:c0:3c:5e:f3:e1:af:c4:a5:37:8c:f0:b6:68:ea: 7a:79:22:d1:98:6f:e5:ff:d5:9e:4b:4f:eb:f6:a8: 38:a0:6c:b6:22:d6:dc:6e:59:3f:4e:68:b5:33:6b: a9:80:4b:01:44:f8:ad:7d:b2:b2:35:81:82:f2:ae: eb:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:EE:8A:61:60:6A:E9:26:33:F4:F4:8C:F6:D6:EB:00:5E:E9:3F:DE X509v3 Authority Key Identifier: keyid:D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:0a:3b:83:0a:f1:f5:75:fd:5f:fa:5b:d3:a4:2a:93:80:25: aa:ef:c4:f2:6d:a4:a7:10:06:b6:5e:9b:92:d3:89:0b:dd:a9: 55:e9:6a:fb:3d:c4:52:3f:19:c5:80:61:9b:a0:f3:5e:aa:11: 62:8a:18:22:c0:50:a9:84:4e:83:91:f3:f0:7f:c2:37:77:41: 00:89:11:8c:6a:2b:cb:94:27:e5:6c:b4:32:a7:d9:2e:77:1d: 24:cd:b8:41:81:8f:2d:91:df:16:17:74:c9:51:0b:8e:1a:be: 4e:ef:1f:40:36:22:50:dd:1c:ec:17:fb:25:e9:d7:2f:23:60: a4:8d:9c:6c:be:42:51:26:24:1d:8d:03:eb:21:e2:1e:9c:df: 57:e3:8e:8c:c7:ec:e8:d9:ac:e9:b6:99:7e:5f:de:fe:c3:20: ad:64:93:01:13:61:39:f0:68:6a:60:3e:1c:9b:63:5b:d1:64: a6:e3:3f:bd:bd:60:55:f8:27:e5:af:25:2b:62:86:bc:e7:c2: 8d:9b:57:a5:a3:23:5f:db:9d:08:b7:18:89:c9:bd:81:34:dd: ef:46:da:fc:72:75:59:14:36:b0:bc:20:50:c1:95:12:fd:1f: 3c:5b:b6:e5:62:b8:51:1d:7b:06:60:01:73:5d:02:3e:ef:24: d4:b3:e2:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhERDUxMTAvBgNVBAUTKEQ2QzNGODEzNzhFODU0MDA3OEJBNzk5NDQyRUVEQkVD NzgwRTBGN0IwHhcNMjUxMDE4MTYzNTI3WhcNMjUxMDI1MTYzNTI3WjAYMRYwFAYD VQQDEw02OGYzYzFjZi04NTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/GopNtkfJW5hIHBviR38+WkJIOwXWUNvbjO5auyqfh8cuvlwz27mA2Rzk+g CtD/Jyo74jGsjXOuGMek/MW6XMwYNVhfHzwST0CSZEoc4yDxHJEmRZWopmG1KdUI HVTMY5byMuLbkiWd8gBqMNhxrB9Thv/xviOrLercgHy3nADqgf3e0KBDkzC/k6XJ kvhxHd2xl8Vofg13GcI2PupXFs4Qzh9KWkvul8+pNYBolwWNJcMgIDqOvhd/LR9w 4aRQyph6wDxe8+GvxKU3jPC2aOp6eSLRmG/l/9WeS0/r9qg4oGy2Itbcblk/Tmi1 M2upgEsBRPitfbKyNYGC8q7rsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIvuimFg aukmM/T0jPbW6wBe6T/eMB8GA1UdIwQYMBaAFNbD+BN46FQAeLp5lELu2+x4Dg97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOERENS9ENUExQTFDNjEy QTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZBQjR1bm1VUXU3YjdIZ09E M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFzUDRFM2pvVkFCNHVubVVRdTdiN0hnT0Qzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OERENS9ENUExQTFDNjEyQTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZB QjR1bm1VUXU3YjdIZ09EM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/CjuDCvH1df1f+lvTpCqTgCWq78TybaSnEAa2XpuS04kL3alV6Wr7 PcRSPxnFgGGboPNeqhFiihgiwFCphE6DkfPwf8I3d0EAiRGMaivLlCflbLQyp9ku dx0kzbhBgY8tkd8WF3TJUQuOGr5O7x9ANiJQ3RzsF/sl6dcvI2CkjZxsvkJRJiQd jQPrIeIenN9X446Mx+zo2azptpl+X97+wyCtZJMBE2E58GhqYD4cm2Nb0WSm4z+9 vWBV+CflryUrYoa858KNm1eloyNf250ItxiJyb2BNN3vRtr8cnVZFDawvCBQwZUS /R88W7blYrhRHXsGYAFzXQI+7yTUs+Lt -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:53 2025 by rpki-client