$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft File: CJy1orM7eG11SgfWgKnElBQmGeE.mft (raw, json) Hash identifier: SiDQWQXJ8IWCY5Vm5Jao6beKXpOB+FDdyj3Qvfzv2T0= Subject key identifier: 1C:8F:92:2E:54:18:27:94:F8:87:67:BC:18:F2:0E:CD:98:28:68:4A Authority key identifier: 08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 Certificate issuer: /CN=A91D0C18/serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Certificate serial: DA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft Manifest number: D8 Signing time: Sun 19 Oct 2025 08:39:00 +0000 Manifest this update: Sun 19 Oct 2025 08:39:00 +0000 Manifest next update: Sun 26 Oct 2025 08:39:00 +0000 Files and hashes: 1: CJy1orM7eG11SgfWgKnElBQmGeE.crl (hash: 2ISnofIatSFC9OlQAPT7TjJltEO8xbrEuOa0ojk0+Ts=) 2: EEE0092A646611EFA25D167EC4F9AE02.roa (hash: 2I1s5RbX9mRnDSwDS9XqFVY3yT7dmC+Kb1B8YfP6Dhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:38:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0C18, serialNumber=089CB5A2B33B786D754A07D680A9C494142619E1 Validity Not Before: Oct 19 08:39:00 2025 GMT Not After : Oct 26 08:39:00 2025 GMT Subject: CN=68f4a3a4-a2ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:48:83:7d:68:37:31:39:29:c6:a9:19:6e:b5: 8b:4d:91:e3:b5:a7:c8:6b:a5:e0:13:96:c2:5f:13: 51:73:2d:21:ad:4a:b2:18:86:03:7e:3f:71:26:a6: 96:4c:54:39:76:a7:a2:18:07:6e:80:63:25:a4:a9: d4:e8:b7:68:0f:25:f7:3d:7c:61:81:5e:25:bd:3c: 70:5b:44:ae:ea:1f:e8:5d:29:d4:80:a8:24:b7:a8: ba:3a:f9:1e:24:7a:98:6d:48:2f:19:76:3f:3a:8c: a0:5c:4c:fa:43:30:66:13:f6:96:ff:c5:4a:0e:10: 99:1b:f8:83:64:3e:2a:0d:40:4d:97:8b:dd:62:52: 76:68:b0:27:f6:d9:ac:b9:38:1a:f9:49:de:74:ff: 4a:90:bc:5c:52:20:b3:ba:bc:27:dd:d2:de:c1:0a: 72:da:51:59:54:73:1e:f4:d1:15:98:f4:52:ef:37: 05:98:1b:ce:a6:e3:d6:25:b9:22:20:b5:f6:e9:6c: b0:98:20:34:9a:8d:46:b1:28:9b:7d:71:47:ab:19: 3b:62:6e:30:19:c1:1e:91:5f:82:f0:96:c3:58:7c: e1:37:54:f9:e9:b7:bf:1e:f1:c8:9a:95:eb:ac:25: c5:1e:ce:fd:c5:64:30:35:68:15:29:aa:51:a6:cb: 82:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:8F:92:2E:54:18:27:94:F8:87:67:BC:18:F2:0E:CD:98:28:68:4A X509v3 Authority Key Identifier: keyid:08:9C:B5:A2:B3:3B:78:6D:75:4A:07:D6:80:A9:C4:94:14:26:19:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CJy1orM7eG11SgfWgKnElBQmGeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0C18/683BA096646611EF8E18F87AC4F9AE02/CJy1orM7eG11SgfWgKnElBQmGeE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:a8:ba:1f:b0:e1:ba:6a:9f:c0:c1:09:ee:e6:bd:bc:35:45: ba:a4:3d:83:06:df:9b:9a:0d:99:cc:55:96:15:f0:f6:7d:3c: 3c:38:08:4f:51:29:26:20:57:f4:85:f4:81:56:d2:30:12:63: 71:4b:dd:ba:69:1c:ad:25:0d:03:de:6b:25:a6:e0:9f:ef:e8: 02:6d:5a:65:ce:6d:84:25:a7:0e:1f:9b:c5:63:38:96:27:b5: 08:df:9e:6b:45:07:03:2c:b9:f6:f0:6c:5a:f1:61:d1:0f:40: 92:d1:c9:26:3e:e5:52:fc:17:06:36:a2:41:1f:64:ef:af:ef: 5b:eb:9e:b4:20:9f:8f:71:db:f1:2d:b1:f7:66:30:97:d3:b0: 36:f2:18:a3:25:e6:95:fa:a4:63:b5:29:da:a8:5c:3b:1e:ba: 65:5a:ac:f6:98:e2:9c:d9:d2:f1:92:5a:da:13:d8:de:62:c0: 1b:85:85:11:fe:96:cb:63:b8:b3:32:dd:0a:3e:60:46:57:90: 3a:58:a6:59:d1:c2:34:67:6f:1a:81:47:7f:c4:2d:41:3e:56: fc:26:24:2f:31:2a:dc:f1:4e:ea:71:49:45:e2:24:30:a0:a5: fe:9a:f1:07:54:cf:a6:66:08:49:5c:12:40:3d:19:b7:84:24: 70:22:16:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBDMTgxMTAvBgNVBAUTKDA4OUNCNUEyQjMzQjc4NkQ3NTRBMDdENjgwQTlDNDk0 MTQyNjE5RTEwHhcNMjUxMDE5MDgzOTAwWhcNMjUxMDI2MDgzOTAwWjAYMRYwFAYD VQQDEw02OGY0YTNhNC1hMmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEiDfWg3MTkpxqkZbrWLTZHjtafIa6XgE5bCXxNRcy0hrUqyGIYDfj9xJqaW TFQ5dqeiGAdugGMlpKnU6LdoDyX3PXxhgV4lvTxwW0Su6h/oXSnUgKgkt6i6Ovke JHqYbUgvGXY/OoygXEz6QzBmE/aW/8VKDhCZG/iDZD4qDUBNl4vdYlJ2aLAn9tms uTga+UnedP9KkLxcUiCzurwn3dLewQpy2lFZVHMe9NEVmPRS7zcFmBvOpuPWJbki ILX26WywmCA0mo1GsSibfXFHqxk7Ym4wGcEekV+C8JbDWHzhN1T56be/HvHImpXr rCXFHs79xWQwNWgVKapRpsuC4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFByPki5U GCeU+IdnvBjyDs2YKGhKMB8GA1UdIwQYMBaAFAictaKzO3htdUoH1oCpxJQUJhnh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEMxOC82ODNCQTA5NjY0 NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VHMTFTZ2ZXZ0tuRWxCUW1H ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0NKeTFvck03ZUcxMVNnZldnS25FbEJRbUdlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEMxOC82ODNCQTA5NjY0NjYxMUVGOEUxOEY4N0FDNEY5QUUwMi9DSnkxb3JNN2VH MTFTZ2ZXZ0tuRWxCUW1HZUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUqLofsOG6ap/AwQnu5r28NUW6pD2DBt+bmg2ZzFWWFfD2fTw8OAhP USkmIFf0hfSBVtIwEmNxS926aRytJQ0D3mslpuCf7+gCbVplzm2EJacOH5vFYziW J7UI355rRQcDLLn28Gxa8WHRD0CS0ckmPuVS/BcGNqJBH2Tvr+9b6560IJ+Pcdvx LbH3ZjCX07A28hijJeaV+qRjtSnaqFw7HrplWqz2mOKc2dLxklraE9jeYsAbhYUR /pbLY7izMt0KPmBGV5A6WKZZ0cI0Z28agUd/xC1BPlb8JiQvMSrc8U7qcUlF4iQw oKX+mvEHVM+mZghJXBJAPRm3hCRwIhb+ -----END CERTIFICATE-----Generated at Tue Oct 21 02:04:31 2025 by rpki-client