$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft File: aLMj2oThIFRmzrWv19YHcmdbBTE.mft (raw, json) Hash identifier: eb7HXLKmgzA4aqntC3i2gHfr7DwORz2sqPoEaytpn70= Subject key identifier: A7:A8:0F:D9:F8:90:B8:05:26:F8:85:A4:69:D3:6C:AA:B8:7B:12:30 Authority key identifier: 68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 Certificate issuer: /CN=A91CD40B/serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft Manifest number: C1 Signing time: Sun 19 Oct 2025 08:57:45 +0000 Manifest this update: Sun 19 Oct 2025 08:57:45 +0000 Manifest next update: Sun 26 Oct 2025 08:57:45 +0000 Files and hashes: 1: aLMj2oThIFRmzrWv19YHcmdbBTE.crl (hash: 8IU/9PI7ubiFYmaFDDBPTRxjcrEEorouSsgT99HEhv8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:57:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD40B, serialNumber=68B323DA84E1205466CEB5AFD7D60772675B0531 Validity Not Before: Oct 19 08:57:45 2025 GMT Not After : Oct 26 08:57:45 2025 GMT Subject: CN=68f4a809-5430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:9c:c3:7b:da:2f:03:3d:80:24:ed:75:b0:df: 1e:07:16:62:1c:be:f4:a9:2a:5f:ce:ae:5c:24:73: 8a:73:54:e0:3e:1b:88:a0:41:82:e6:55:e3:0a:6d: db:f7:7a:d9:30:80:03:50:89:8b:7a:36:8e:d6:51: 53:7b:b5:13:4e:34:50:19:65:65:8f:e7:67:fe:e0: c9:76:6a:f6:73:64:60:8a:bf:3e:8a:61:74:7e:36: 16:02:0b:84:8a:5c:09:01:07:98:3a:44:d2:e8:7e: 1d:ce:2d:d3:20:6b:76:8f:5b:3a:28:bf:8f:3d:ef: 85:89:ce:02:07:99:46:50:75:f7:8e:af:13:a1:1a: 84:c2:9d:fb:5f:72:2a:cd:50:49:fb:e4:63:64:8a: 93:41:f6:b5:d1:ee:45:34:cc:51:3a:e7:e0:07:79: 3f:33:d1:26:c7:b1:5a:fa:9f:36:9d:70:4c:e2:00: 4f:fa:61:19:23:d9:4e:15:56:3a:02:0c:a2:aa:fe: 12:89:78:cd:b8:ac:7c:8e:6a:fd:46:9e:eb:d1:5f: aa:c6:1c:59:81:60:ee:2d:9d:cb:22:bd:3e:01:08: 3d:49:3c:1b:c7:05:94:80:5f:13:3b:f8:8e:bc:4f: 4a:00:4e:34:fd:7d:08:f2:dd:2d:13:14:1a:70:33: 55:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:A8:0F:D9:F8:90:B8:05:26:F8:85:A4:69:D3:6C:AA:B8:7B:12:30 X509v3 Authority Key Identifier: keyid:68:B3:23:DA:84:E1:20:54:66:CE:B5:AF:D7:D6:07:72:67:5B:05:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aLMj2oThIFRmzrWv19YHcmdbBTE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD40B/741A1E2C855B11EFB0576D40C4F9AE02/aLMj2oThIFRmzrWv19YHcmdbBTE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:99:71:fa:3a:d4:7f:a0:4c:52:32:2a:12:c1:bb:e3:1e:14: fe:26:85:c3:7e:9d:2b:cc:0d:1f:b0:af:f6:74:60:51:ae:41: 51:ed:bf:f1:85:96:2a:b7:a8:c7:61:63:24:fe:da:aa:59:f2: 62:d8:b7:09:47:63:47:2d:e1:46:a7:fd:d7:7c:79:8a:12:75: 90:1a:eb:87:a1:1d:bc:f5:f7:a2:c7:ed:86:b9:37:57:aa:d4: dc:2b:06:c2:5c:81:c8:2f:a0:8c:5c:45:6b:c0:f5:5a:c9:10: ba:9c:7c:36:61:1e:76:07:58:84:55:85:db:f2:12:67:80:17: 0a:93:b7:ed:27:bc:a3:77:6f:75:d4:f6:e7:36:74:07:84:d9: be:16:8d:3c:ea:98:53:b1:5e:c2:e7:bc:94:ea:89:8a:a7:95: fb:38:dc:14:8e:77:22:41:29:36:c1:44:b3:61:e1:04:c1:a3: ea:9d:a8:57:ab:2d:6e:7b:d9:77:2e:55:d3:1b:64:c3:dc:18: eb:e6:d3:0f:5e:2f:c3:34:1c:8f:68:68:a9:aa:7f:73:67:e9: 70:e6:b0:86:4c:50:f2:30:da:c3:bd:ac:8d:62:9c:40:e9:4c: 05:5c:a9:dc:e4:b6:67:4a:9b:14:ed:3f:7b:71:e2:cb:e4:f6: a2:32:dc:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0MEIxMTAvBgNVBAUTKDY4QjMyM0RBODRFMTIwNTQ2NkNFQjVBRkQ3RDYwNzcy Njc1QjA1MzEwHhcNMjUxMDE5MDg1NzQ1WhcNMjUxMDI2MDg1NzQ1WjAYMRYwFAYD VQQDEw02OGY0YTgwOS01NDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo5zDe9ovAz2AJO11sN8eBxZiHL70qSpfzq5cJHOKc1TgPhuIoEGC5lXjCm3b 93rZMIADUImLejaO1lFTe7UTTjRQGWVlj+dn/uDJdmr2c2Rgir8+imF0fjYWAguE ilwJAQeYOkTS6H4dzi3TIGt2j1s6KL+PPe+Fic4CB5lGUHX3jq8ToRqEwp37X3Iq zVBJ++RjZIqTQfa10e5FNMxROufgB3k/M9Emx7Fa+p82nXBM4gBP+mEZI9lOFVY6 Agyiqv4SiXjNuKx8jmr9Rp7r0V+qxhxZgWDuLZ3LIr0+AQg9STwbxwWUgF8TO/iO vE9KAE40/X0I8t0tExQacDNVywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKeoD9n4 kLgFJviFpGnTbKq4exIwMB8GA1UdIwQYMBaAFGizI9qE4SBUZs61r9fWB3JnWwUx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDQwQi83NDFBMUUyQzg1 NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElGUm16cld2MTlZSGNtZGJC VEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FMTWoyb1RoSUZSbXpyV3YxOVlIY21kYkJURS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDQwQi83NDFBMUUyQzg1NUIxMUVGQjA1NzZENDBDNEY5QUUwMi9hTE1qMm9UaElG Um16cld2MTlZSGNtZGJCVEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzmXH6OtR/oExSMioSwbvjHhT+JoXDfp0rzA0fsK/2dGBRrkFR7b/x hZYqt6jHYWMk/tqqWfJi2LcJR2NHLeFGp/3XfHmKEnWQGuuHoR289feix+2GuTdX qtTcKwbCXIHIL6CMXEVrwPVayRC6nHw2YR52B1iEVYXb8hJngBcKk7ftJ7yjd291 1PbnNnQHhNm+Fo086phTsV7C57yU6omKp5X7ONwUjnciQSk2wUSzYeEEwaPqnahX qy1ue9l3LlXTG2TD3Bjr5tMPXi/DNByPaGipqn9zZ+lw5rCGTFDyMNrDvayNYpxA 6UwFXKnc5LZnSpsU7T97ceLL5PaiMtyX -----END CERTIFICATE-----Generated at Mon Oct 20 04:11:27 2025 by rpki-client