$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft File: 0fGDjm-uASwUWNKgeiJNnhEBJdw.mft (raw, json) Hash identifier: FiwHtP4p+TWT+a/J5tXrdYRxlrjB3hCPoJS4DQQZ4Pw= Subject key identifier: 9E:EE:13:D8:BE:F8:70:87:35:AD:20:E3:CE:2E:F2:1C:B3:18:15:CF Authority key identifier: D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC Certificate issuer: /CN=A91D3603/serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Certificate serial: 0526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft Manifest number: 051F Signing time: Sun 19 Oct 2025 01:18:49 +0000 Manifest this update: Sun 19 Oct 2025 01:18:48 +0000 Manifest next update: Sun 26 Oct 2025 01:18:48 +0000 Files and hashes: 1: 0fGDjm-uASwUWNKgeiJNnhEBJdw.crl (hash: cuEBAJEM1aJ+8DLVHfAOvjdgCUVyK068cBuvrNbCG1c=) 2: 11F818F81F7311EC9027050AC4F9AE02.roa (hash: b/ItM9VGVv0zUWnweJ6+Pz3YcBgADXF1u82bmhYCBN4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:18:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1318 (0x526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3603, serialNumber=D1F1838E6FAE012C1458D2A07A224D9E110125DC Validity Not Before: Oct 19 01:18:48 2025 GMT Not After : Oct 26 01:18:48 2025 GMT Subject: CN=68f43c78-19fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:73:0b:8a:09:3d:86:c8:55:a6:07:c3:b6:3a: 13:f6:fb:09:1d:71:b2:99:7b:08:f8:51:68:de:df: 82:1e:ad:fd:1c:60:b0:00:54:e0:16:47:98:28:b4: e5:8a:69:ac:d1:6b:61:43:63:8d:28:c9:64:a3:ff: fe:07:a9:cf:3a:d3:00:a1:8a:9d:e7:8f:cf:ca:3e: 4c:98:65:81:2a:31:65:77:c4:4e:6d:ad:44:31:1a: e3:da:3f:aa:48:0d:d5:1c:c7:67:c3:80:0a:2b:2b: a5:12:0a:14:e9:99:f5:98:d6:83:e1:e7:b7:9d:24: 76:bf:cd:08:ad:93:49:13:c9:2b:38:16:a0:ed:24: a0:3b:e5:36:1b:44:2b:80:96:cc:37:85:97:ca:51: cb:f5:74:78:cd:e3:d1:e9:14:f5:e4:8b:b1:35:67: 10:e5:ce:ae:79:7c:57:1d:0a:05:64:76:a9:7c:af: 11:06:52:43:97:d2:05:c4:cd:47:f7:ad:d2:1e:94: 02:5c:03:ed:10:74:64:0c:75:ca:3e:a0:df:62:55: 74:cd:c1:7b:d2:28:09:22:bf:c3:3e:44:24:75:6c: e8:66:f1:1a:3a:aa:42:58:60:56:ac:72:a5:61:64: 53:b7:78:05:35:ed:45:a8:5b:77:df:c3:c7:ea:8f: 51:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:EE:13:D8:BE:F8:70:87:35:AD:20:E3:CE:2E:F2:1C:B3:18:15:CF X509v3 Authority Key Identifier: keyid:D1:F1:83:8E:6F:AE:01:2C:14:58:D2:A0:7A:22:4D:9E:11:01:25:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fGDjm-uASwUWNKgeiJNnhEBJdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3603/8C82AC341F6C11EC87580672C4F9AE02/0fGDjm-uASwUWNKgeiJNnhEBJdw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:57:41:ca:0f:8e:70:37:f0:42:eb:5d:38:12:bc:e2:7d:11: ff:6f:00:16:69:12:63:1d:e1:f7:8f:55:a1:47:4a:45:35:a2: f7:6d:84:c1:a6:83:2a:58:8f:f6:92:0c:77:1f:42:7e:55:86: f1:53:62:92:02:32:6a:83:a8:13:5b:cc:e3:13:97:8d:1b:66: 36:eb:8d:ae:ce:14:84:c6:6c:da:23:d1:de:d4:70:41:39:f7: dc:72:ca:75:c5:c6:9b:03:6e:c8:31:aa:c9:74:7f:cd:4e:ae: e9:d3:1c:0c:d8:1b:53:b7:2e:6a:da:4b:b1:68:1a:3e:62:f8: 7e:d0:91:a1:87:f7:df:25:c1:cf:8b:57:f8:c1:84:b6:9c:5e: 22:57:43:3a:c9:cc:09:e8:04:78:21:da:f9:9d:b8:03:19:18: fa:7c:59:af:7a:5d:3e:50:98:81:ba:fc:bb:ad:3d:c8:97:fb: f1:dc:07:48:bb:ac:a1:ae:1e:db:f6:6d:37:13:7a:e3:56:66: 4f:4b:ab:30:4d:ce:40:0a:d3:f5:f6:80:c1:0e:c9:46:4a:78: a0:cc:03:06:4c:32:7c:e4:02:ac:4a:9f:d6:9a:fb:02:da:2a: b2:17:fb:9b:95:93:42:53:1e:e1:86:18:3d:4a:46:20:4c:35: 4c:59:9a:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2MDMxMTAvBgNVBAUTKEQxRjE4MzhFNkZBRTAxMkMxNDU4RDJBMDdBMjI0RDlF MTEwMTI1REMwHhcNMjUxMDE5MDExODQ4WhcNMjUxMDI2MDExODQ4WjAYMRYwFAYD VQQDEw02OGY0M2M3OC0xOWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2XMLigk9hshVpgfDtjoT9vsJHXGymXsI+FFo3t+CHq39HGCwAFTgFkeYKLTl imms0WthQ2ONKMlko//+B6nPOtMAoYqd54/Pyj5MmGWBKjFld8ROba1EMRrj2j+q SA3VHMdnw4AKKyulEgoU6Zn1mNaD4ee3nSR2v80IrZNJE8krOBag7SSgO+U2G0Qr gJbMN4WXylHL9XR4zePR6RT15IuxNWcQ5c6ueXxXHQoFZHapfK8RBlJDl9IFxM1H 963SHpQCXAPtEHRkDHXKPqDfYlV0zcF70igJIr/DPkQkdWzoZvEaOqpCWGBWrHKl YWRTt3gFNe1FqFt338PH6o9RcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ7uE9i+ +HCHNa0g484u8hyzGBXPMB8GA1UdIwQYMBaAFNHxg45vrgEsFFjSoHoiTZ4RASXc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzYwMy84QzgyQUMzNDFG NkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFTd1VXTktnZWlKTm5oRUJK ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBmR0RqbS11QVN3VVdOS2dlaUpObmhFQkpkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzYwMy84QzgyQUMzNDFGNkMxMUVDODc1ODA2NzJDNEY5QUUwMi8wZkdEam0tdUFT d1VXTktnZWlKTm5oRUJKZHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+V0HKD45wN/BC6104ErzifRH/bwAWaRJjHeH3j1WhR0pFNaL3bYTB poMqWI/2kgx3H0J+VYbxU2KSAjJqg6gTW8zjE5eNG2Y2642uzhSExmzaI9He1HBB Offccsp1xcabA27IMarJdH/NTq7p0xwM2BtTty5q2kuxaBo+Yvh+0JGhh/ffJcHP i1f4wYS2nF4iV0M6ycwJ6AR4Idr5nbgDGRj6fFmvel0+UJiBuvy7rT3Il/vx3AdI u6yhrh7b9m03E3rjVmZPS6swTc5ACtP19oDBDslGSnigzAMGTDJ85AKsSp/WmvsC 2iqyF/ublZNCUx7hhhg9SkYgTDVMWZpG -----END CERTIFICATE-----Generated at Mon Oct 20 10:46:12 2025 by rpki-client