$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft File: Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft (raw, json) Hash identifier: Pusy0lNV4GlrIURZdKO8rfmePZbrz04R8zhxgIPPwck= Subject key identifier: E6:37:DA:DA:5C:09:A3:55:86:E4:44:ED:A3:97:A5:54:A0:69:4D:C6 Authority key identifier: 0A:3C:FC:7F:39:5A:34:BA:BE:31:B8:CA:46:23:D3:1C:76:A8:D9:FA Certificate issuer: /CN=A91C8EDF/serialNumber=0A3CFC7F395A34BABE31B8CA4623D31C76A8D9FA Certificate serial: 0225 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjz8fzlaNLq-MbjKRiPTHHao2fo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft Manifest number: 0221 Signing time: Sun 19 Oct 2025 04:29:50 +0000 Manifest this update: Sun 19 Oct 2025 04:29:49 +0000 Manifest next update: Sun 26 Oct 2025 04:29:49 +0000 Files and hashes: 1: Cjz8fzlaNLq-MbjKRiPTHHao2fo.crl (hash: 0BB0uKDk4COTISToCkep0/6iu3ETTE/2t8JVHVDDqQI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.crl rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjz8fzlaNLq-MbjKRiPTHHao2fo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:29:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 549 (0x225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8EDF, serialNumber=0A3CFC7F395A34BABE31B8CA4623D31C76A8D9FA Validity Not Before: Oct 19 04:29:49 2025 GMT Not After : Oct 26 04:29:49 2025 GMT Subject: CN=68f4693e-ef2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c6:01:19:5d:c6:11:d8:7b:b4:d3:71:55:b9: 16:4b:ed:50:7d:49:da:2a:9e:fd:ba:9f:23:06:03: 15:45:fb:e6:e9:9b:c9:dc:c8:66:94:83:a9:9c:6c: 36:28:92:a5:60:d1:8a:45:01:91:ac:2f:81:f9:d1: d0:8a:7a:39:f3:1e:92:6e:42:53:56:8e:d1:8d:26: 01:cc:0c:da:e1:61:1d:68:24:c6:eb:02:14:72:e9: 31:87:6f:cc:a1:f9:7b:8a:0e:4a:5a:34:c8:80:35: be:f3:fc:19:2d:be:82:d7:13:78:42:7b:c2:2d:05: bf:f0:3d:40:c4:4c:b4:e9:37:df:93:70:11:11:8b: 02:ec:91:a1:3a:fb:32:00:ca:08:f8:b6:8f:4a:7d: 78:d6:42:a2:cd:0d:cf:ab:47:06:cc:ef:aa:ad:5d: 34:d6:79:76:c6:ec:5b:4e:07:54:41:a8:32:9d:6d: 98:8a:59:6e:b6:46:db:34:11:3d:4b:6f:ab:c3:8e: 55:8a:5d:d0:ac:aa:eb:f2:88:c3:14:27:4d:c2:fb: a2:cd:8c:f7:ad:f6:c8:fa:00:82:60:ff:9c:4e:a7: 57:aa:70:24:b4:95:c5:41:27:e8:df:7a:9a:f9:ff: f7:dc:97:d9:87:4b:99:58:72:5a:e5:0e:c0:9a:de: 12:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:37:DA:DA:5C:09:A3:55:86:E4:44:ED:A3:97:A5:54:A0:69:4D:C6 X509v3 Authority Key Identifier: keyid:0A:3C:FC:7F:39:5A:34:BA:BE:31:B8:CA:46:23:D3:1C:76:A8:D9:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cjz8fzlaNLq-MbjKRiPTHHao2fo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8EDF/F46ADDE67C5711EDBF213767C4F9AE02/Cjz8fzlaNLq-MbjKRiPTHHao2fo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:f4:9e:41:38:bd:45:75:92:ef:5a:15:1e:35:b6:83:df:33: 9b:1f:f7:50:6a:1f:6d:00:ce:b1:0b:c5:c6:62:cd:0e:28:ab: a2:6c:c2:07:f5:8a:71:3b:80:d8:52:dd:2e:81:4a:98:b1:31: d6:2c:08:4e:65:ef:09:8f:f7:44:c9:b1:b7:5a:73:af:36:c5: 3d:3f:90:1d:dc:56:b4:46:4b:53:5c:c5:6e:56:7a:7a:4b:3d: a1:4f:8d:9a:d7:38:60:dd:d4:4b:d7:5e:ab:19:3e:8e:d6:93: 1c:d5:f8:16:54:ed:c2:38:da:d3:ac:67:98:1a:ed:a7:6d:5a: 65:86:60:fc:4e:79:27:e7:33:98:f5:33:09:82:08:9d:99:97: 56:5f:2e:a9:f7:cf:9a:8c:7a:f9:8f:69:d7:4c:77:3c:db:9c: 7d:75:18:a3:62:d9:b7:b6:05:a0:28:9d:a8:ac:4a:4a:92:65: 89:62:73:c8:2d:18:13:80:05:ab:f5:7f:c1:5b:49:21:57:61: 59:b6:93:ca:46:0f:ad:81:e8:19:c9:c7:a9:5b:29:de:22:a1: 04:ae:0d:09:00:21:c3:79:cb:f7:dc:66:a4:6e:0b:2a:34:67: 12:9d:3f:37:c9:59:47:eb:07:88:f0:cb:b5:cc:8f:cb:92:92: 7e:71:20:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFREYxMTAvBgNVBAUTKDBBM0NGQzdGMzk1QTM0QkFCRTMxQjhDQTQ2MjNEMzFD NzZBOEQ5RkEwHhcNMjUxMDE5MDQyOTQ5WhcNMjUxMDI2MDQyOTQ5WjAYMRYwFAYD VQQDEw02OGY0NjkzZS1lZjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8YBGV3GEdh7tNNxVbkWS+1QfUnaKp79up8jBgMVRfvm6ZvJ3MhmlIOpnGw2 KJKlYNGKRQGRrC+B+dHQino58x6SbkJTVo7RjSYBzAza4WEdaCTG6wIUcukxh2/M ofl7ig5KWjTIgDW+8/wZLb6C1xN4QnvCLQW/8D1AxEy06Tffk3AREYsC7JGhOvsy AMoI+LaPSn141kKizQ3Pq0cGzO+qrV001nl2xuxbTgdUQagynW2YillutkbbNBE9 S2+rw45Vil3QrKrr8ojDFCdNwvuizYz3rfbI+gCCYP+cTqdXqnAktJXFQSfo33qa +f/33JfZh0uZWHJa5Q7Amt4SvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOY32tpc CaNVhuRE7aOXpVSgaU3GMB8GA1UdIwQYMBaAFAo8/H85WjS6vjG4ykYj0xx2qNn6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEVERi9GNDZBRERFNjdD NTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9Dano4ZnpsYU5McS1NYmpLUmlQVEhIYW8y Zm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NqejhmemxhTkxxLU1iaktSaVBUSEhhbzJmby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OEVERi9GNDZBRERFNjdDNTcxMUVEQkYyMTM3NjdDNEY5QUUwMi9Dano4ZnpsYU5M cS1NYmpLUmlQVEhIYW8yZm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+9J5BOL1FdZLvWhUeNbaD3zObH/dQah9tAM6xC8XGYs0OKKuibMIH 9YpxO4DYUt0ugUqYsTHWLAhOZe8Jj/dEybG3WnOvNsU9P5Ad3Fa0RktTXMVuVnp6 Sz2hT42a1zhg3dRL116rGT6O1pMc1fgWVO3CONrTrGeYGu2nbVplhmD8Tnkn5zOY 9TMJggidmZdWXy6p98+ajHr5j2nXTHc825x9dRijYtm3tgWgKJ2orEpKkmWJYnPI LRgTgAWr9X/BW0khV2FZtpPKRg+tgegZycepWyneIqEErg0JACHDecv33Gakbgsq NGcSnT83yVlH6weI8Mu1zI/LkpJ+cSDE -----END CERTIFICATE-----Generated at Mon Oct 20 15:30:41 2025 by rpki-client