$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft File: iP8qX1-BdhNDU35LVLXmoW8gfqk.mft (raw, json) Hash identifier: IMFZCTKp6VghcrDKQ9YyQ53+iWSs4JTQeAX2LReXIBs= Subject key identifier: 7F:62:DF:A7:9A:D2:8E:C8:CC:B1:4F:7C:FD:36:B3:49:FC:49:42:87 Authority key identifier: 88:FF:2A:5F:5F:81:76:13:43:53:7E:4B:54:B5:E6:A1:6F:20:7E:A9 Certificate issuer: /CN=A91CF1E7/serialNumber=88FF2A5F5F81761343537E4B54B5E6A16F207EA9 Certificate serial: 018E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iP8qX1-BdhNDU35LVLXmoW8gfqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft Manifest number: 018E Signing time: Sun 19 Oct 2025 06:03:08 +0000 Manifest this update: Sun 19 Oct 2025 06:03:07 +0000 Manifest next update: Sun 26 Oct 2025 06:03:07 +0000 Files and hashes: 1: iP8qX1-BdhNDU35LVLXmoW8gfqk.crl (hash: i4/kX5O2oqJYge79eLxjr5ywYghrJ1WbxqDtFt8HuT0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.crl rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iP8qX1-BdhNDU35LVLXmoW8gfqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:03:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF1E7, serialNumber=88FF2A5F5F81761343537E4B54B5E6A16F207EA9 Validity Not Before: Oct 19 06:03:07 2025 GMT Not After : Oct 26 06:03:07 2025 GMT Subject: CN=68f47f1c-6579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1d:f2:62:88:b8:c8:2b:6a:74:25:df:54:a9: 52:c6:47:ea:db:5e:57:38:75:68:f8:d0:0c:f6:4c: 4a:20:d0:56:c3:b0:27:0a:6b:91:f3:9b:48:30:e8: ce:7d:39:dd:fb:9e:63:df:0b:36:5e:74:05:47:50: 26:3d:a7:24:e5:c3:0c:68:e0:23:2c:b0:e8:69:29: 50:47:af:1f:dd:b7:94:73:b8:47:94:69:c3:22:29: ed:8a:cd:64:73:c2:15:ba:7a:db:69:5b:b3:0b:00: c9:a1:b9:4f:a5:48:e8:51:a3:88:11:17:bf:69:54: 5c:35:d9:8b:d1:f2:cb:fd:45:91:04:76:fd:19:80: ce:28:16:b6:a1:6b:db:12:d1:04:28:75:ee:ae:cc: 7a:f9:a6:88:13:9e:f4:3f:ed:41:81:9d:1e:09:01: b2:71:71:3d:50:92:6a:c9:42:4f:a5:16:12:f8:c2: 50:1d:75:67:57:d0:85:dc:13:e2:bc:54:11:30:cf: c2:15:c1:72:32:7d:05:40:4c:b6:ff:8f:2c:7d:7f: 2b:86:04:42:43:74:7b:f1:16:22:5e:e4:dc:6a:34: ab:fb:98:62:d5:50:8a:0d:42:2a:db:ac:0c:be:46: e8:4e:d5:aa:52:9d:c5:88:9b:a3:b8:d5:12:c1:49: 3d:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:62:DF:A7:9A:D2:8E:C8:CC:B1:4F:7C:FD:36:B3:49:FC:49:42:87 X509v3 Authority Key Identifier: keyid:88:FF:2A:5F:5F:81:76:13:43:53:7E:4B:54:B5:E6:A1:6F:20:7E:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iP8qX1-BdhNDU35LVLXmoW8gfqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF1E7/1DBE1A3247B911EEAAD3DB4AC4F9AE02/iP8qX1-BdhNDU35LVLXmoW8gfqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:01:df:19:67:5a:07:c7:f7:1e:c6:63:3d:3f:ae:fd:44:3f: e3:00:30:fc:25:63:8f:62:d7:e4:bd:55:77:f5:d3:a6:d0:26: b6:74:d8:e1:ce:4f:3d:00:d1:28:12:86:84:79:cc:0e:ee:a6: a8:d0:ab:46:be:ee:a7:73:0e:fa:b3:39:0b:d2:40:a1:1f:59: 03:aa:82:42:d6:13:27:82:4c:dd:f6:16:bf:3b:63:04:5d:b7: a6:a3:6c:df:02:d3:cb:e4:8a:31:55:85:3c:75:fa:c0:66:73: 1e:7e:c6:c1:9c:ea:75:56:5b:9f:67:6f:65:3e:2b:ac:d6:3f: a0:89:7c:f5:33:da:49:b7:f4:72:2d:dd:f6:bb:26:6e:df:64: fc:cd:31:2f:7e:05:33:7a:f0:89:89:43:51:47:2f:4a:e5:8b: 5d:1d:0e:2f:71:ea:3e:c6:06:fd:79:c9:d9:21:f7:33:5b:91: af:42:85:81:00:ee:79:e8:75:f3:fa:d9:bf:65:ad:ca:03:26: 6e:d8:fc:70:b5:ea:8b:ea:1f:59:86:f9:c0:b6:e1:9a:c5:a7: 24:5a:62:96:54:bc:d2:aa:19:f5:2b:b6:81:cd:cb:25:78:f9: 4b:51:07:f6:27:77:9c:8f:5e:60:82:4c:6d:df:99:84:81:24: 81:c9:8c:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YxRTcxMTAvBgNVBAUTKDg4RkYyQTVGNUY4MTc2MTM0MzUzN0U0QjU0QjVFNkEx NkYyMDdFQTkwHhcNMjUxMDE5MDYwMzA3WhcNMjUxMDI2MDYwMzA3WjAYMRYwFAYD VQQDEw02OGY0N2YxYy02NTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwB3yYoi4yCtqdCXfVKlSxkfq215XOHVo+NAM9kxKINBWw7AnCmuR85tIMOjO fTnd+55j3ws2XnQFR1AmPack5cMMaOAjLLDoaSlQR68f3beUc7hHlGnDIintis1k c8IVunrbaVuzCwDJoblPpUjoUaOIERe/aVRcNdmL0fLL/UWRBHb9GYDOKBa2oWvb EtEEKHXursx6+aaIE570P+1BgZ0eCQGycXE9UJJqyUJPpRYS+MJQHXVnV9CF3BPi vFQRMM/CFcFyMn0FQEy2/48sfX8rhgRCQ3R78RYiXuTcajSr+5hi1VCKDUIq26wM vkboTtWqUp3FiJujuNUSwUk9MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH9i36ea 0o7IzLFPfP02s0n8SUKHMB8GA1UdIwQYMBaAFIj/Kl9fgXYTQ1N+S1S15qFvIH6p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjFFNy8xREJFMUEzMjQ3 QjkxMUVFQUFEM0RCNEFDNEY5QUUwMi9pUDhxWDEtQmRoTkRVMzVMVkxYbW9XOGdm cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lQOHFYMS1CZGhORFUzNUxWTFhtb1c4Z2Zxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RjFFNy8xREJFMUEzMjQ3QjkxMUVFQUFEM0RCNEFDNEY5QUUwMi9pUDhxWDEtQmRo TkRVMzVMVkxYbW9XOGdmcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxAd8ZZ1oHx/cexmM9P679RD/jADD8JWOPYtfkvVV39dOm0Ca2dNjh zk89ANEoEoaEecwO7qao0KtGvu6ncw76szkL0kChH1kDqoJC1hMngkzd9ha/O2ME Xbemo2zfAtPL5IoxVYU8dfrAZnMefsbBnOp1VlufZ29lPius1j+giXz1M9pJt/Ry Ld32uyZu32T8zTEvfgUzevCJiUNRRy9K5YtdHQ4vceo+xgb9ecnZIfczW5GvQoWB AO556HXz+tm/Za3KAyZu2PxwteqL6h9ZhvnAtuGaxackWmKWVLzSqhn1K7aBzcsl ePlLUQf2J3ecj15ggkxt35mEgSSByYya -----END CERTIFICATE-----Generated at Tue Oct 21 01:04:05 2025 by rpki-client