$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft File: 1Sj61Lh2q_twrziSIg8pPheRtrw.mft (raw, json) Hash identifier: 0Sm3UMBcMMepl09SHcTrdVy5FlndRp3Ah+sGwH0QISQ= Subject key identifier: DB:4E:CB:11:59:43:88:C7:91:0E:41:A6:10:2A:21:8D:76:E0:7A:79 Authority key identifier: D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC Certificate issuer: /CN=A91CE6C5/serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Certificate serial: 0386 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft Manifest number: 037A Signing time: Sun 19 Oct 2025 02:54:57 +0000 Manifest this update: Sun 19 Oct 2025 02:54:57 +0000 Manifest next update: Sun 26 Oct 2025 02:54:57 +0000 Files and hashes: 1: 1Sj61Lh2q_twrziSIg8pPheRtrw.crl (hash: MALB5M1/ev8NMdUsalUy1bO+0I58kU2JsRmchGPUYeY=) 2: C0E56FB2D56B11EFB540FB53C4F9AE02.roa (hash: WjUHxTEWTF20WZmvNCerm3WpHrjM2Bec4x3sz7dnvmU=) 3: A0841A68D0D511EC81001E73C4F9AE02.roa (hash: 28rk2f2SK8fYlNSOWgKUvbvWyh9sktvms5gVEW96hEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:54:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 902 (0x386) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6C5, serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Validity Not Before: Oct 19 02:54:57 2025 GMT Not After : Oct 26 02:54:57 2025 GMT Subject: CN=68f45301-4c26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:68:82:5d:5a:94:f9:44:c1:b8:21:10:24:6c: cb:23:a3:22:b6:85:3c:f0:d4:98:6c:dc:93:ae:03: 74:c4:a6:fd:e9:de:b0:a8:c9:f7:a0:ec:ac:f2:12: 67:f4:b5:f9:51:1e:4a:3d:6a:e5:34:ab:a4:ff:6a: 0a:37:80:d5:b0:86:62:6f:31:96:3d:c7:d3:98:65: d0:87:f4:2f:0c:84:99:3a:cb:cb:7a:7a:7d:35:18: 1c:c9:38:cd:fd:b2:7f:b7:a9:07:b7:ba:3f:37:8b: 65:2e:d8:fa:e5:68:01:e1:39:f7:bf:b5:6d:af:09: 3f:b9:eb:03:5b:ee:e1:18:b0:d3:27:12:c1:3a:4a: 82:14:97:cc:5c:51:ad:93:85:c6:f4:92:e0:7f:31: 9f:26:c6:9e:f4:c4:15:b3:70:53:19:fa:96:c2:95: d4:8b:df:f6:9c:01:69:24:a3:1f:42:ac:ba:4b:35: a9:3c:9a:53:a9:22:f5:1d:91:22:74:92:40:e9:ba: 02:71:03:65:75:a4:22:5c:8d:b4:6b:94:7c:ed:fc: 4c:7c:e5:a9:33:27:fa:42:63:db:51:f0:ef:26:1f: 0e:20:84:94:ec:da:4f:df:01:28:aa:cd:f3:2a:82: 68:48:b3:43:7e:46:96:77:6b:24:01:5c:f7:cd:8e: 69:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:4E:CB:11:59:43:88:C7:91:0E:41:A6:10:2A:21:8D:76:E0:7A:79 X509v3 Authority Key Identifier: keyid:D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:b1:13:e5:7b:41:1d:9a:b4:ec:37:ba:68:f2:a4:51:13:e2: 09:ec:41:a9:81:21:ef:43:77:c6:b4:01:35:13:61:8d:f3:96: e8:f0:22:82:ba:93:85:c8:63:93:c9:cd:24:f4:c3:56:87:ce: 34:41:76:9b:25:51:54:b1:a5:7c:97:d3:2e:4e:e5:83:d2:0e: 10:a3:af:c7:18:bf:a8:b5:a3:1b:d8:85:47:ed:cb:85:cd:02: 42:56:1f:b8:52:9d:1d:5f:aa:e8:47:40:75:d8:25:8b:3d:15: 07:b7:25:2b:86:d9:a8:95:81:12:2a:a5:3a:60:5d:4a:0d:92: 82:47:51:46:57:de:38:75:60:8a:36:8d:eb:05:c0:15:80:e5: e2:fc:c5:31:c7:79:dd:61:a5:fe:e6:20:07:62:44:f2:f6:e7: f7:f9:94:51:8b:f6:a9:bf:49:88:a2:63:d9:14:f5:9c:9c:47: 5d:f1:34:4f:a0:0c:e2:c5:20:b8:eb:cd:ab:33:60:55:87:91: b9:85:b2:af:f4:fd:e8:02:4e:01:8a:f7:e0:f0:32:d2:cd:be: c0:fc:50:24:26:1f:dd:75:bb:3b:75:cc:ae:fe:69:4e:85:be: e5:28:a9:56:40:a8:26:e9:55:13:98:9e:0e:40:07:1f:89:8b: 7a:88:51:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2QzUxMTAvBgNVBAUTKEQ1MjhGQUQ0Qjg3NkFCRkI3MEFGMzg5MjIyMEYyOTNF MTc5MUI2QkMwHhcNMjUxMDE5MDI1NDU3WhcNMjUxMDI2MDI1NDU3WjAYMRYwFAYD VQQDEw02OGY0NTMwMS00YzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq2iCXVqU+UTBuCEQJGzLI6MitoU88NSYbNyTrgN0xKb96d6wqMn3oOys8hJn 9LX5UR5KPWrlNKuk/2oKN4DVsIZibzGWPcfTmGXQh/QvDISZOsvLenp9NRgcyTjN /bJ/t6kHt7o/N4tlLtj65WgB4Tn3v7Vtrwk/uesDW+7hGLDTJxLBOkqCFJfMXFGt k4XG9JLgfzGfJsae9MQVs3BTGfqWwpXUi9/2nAFpJKMfQqy6SzWpPJpTqSL1HZEi dJJA6boCcQNldaQiXI20a5R87fxMfOWpMyf6QmPbUfDvJh8OIISU7NpP3wEoqs3z KoJoSLNDfkaWd2skAVz3zY5p/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtOyxFZ Q4jHkQ5BphAqIY124Hp5MB8GA1UdIwQYMBaAFNUo+tS4dqv7cK84kiIPKT4Xkba8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZDNS9FODI2NjAyMEM2 QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFfdHdyemlTSWc4cFBoZVJ0 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTajYxTGgycV90d3J6aVNJZzhwUGhlUnRydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZDNS9FODI2NjAyMEM2QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFf dHdyemlTSWc4cFBoZVJ0cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAisRPle0EdmrTsN7po8qRRE+IJ7EGpgSHvQ3fGtAE1E2GN85bo8CKC upOFyGOTyc0k9MNWh840QXabJVFUsaV8l9MuTuWD0g4Qo6/HGL+otaMb2IVH7cuF zQJCVh+4Up0dX6roR0B12CWLPRUHtyUrhtmolYESKqU6YF1KDZKCR1FGV944dWCK No3rBcAVgOXi/MUxx3ndYaX+5iAHYkTy9uf3+ZRRi/apv0mIomPZFPWcnEdd8TRP oAzixSC4682rM2BVh5G5hbKv9P3oAk4Bivfg8DLSzb7A/FAkJh/ddbs7dcyu/mlO hb7lKKlWQKgm6VUTmJ4OQAcfiYt6iFGw -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:20 2025 by rpki-client