$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft File: utY-wFoDGPl_MVby4gWcYZPOOAo.mft (raw, json) Hash identifier: xb79sQxzOsrbO/UjCQNSrEKY4kkHCAsLPyfi1gnUpNQ= Subject key identifier: DC:F5:0A:8A:F2:2B:BA:19:79:23:D6:E6:34:71:A4:BB:09:B2:B2:DF Authority key identifier: BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A Certificate issuer: /CN=A91D5A49/serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A Certificate serial: 0229 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft Manifest number: 0229 Signing time: Sun 19 Oct 2025 04:11:48 +0000 Manifest this update: Sun 19 Oct 2025 04:11:47 +0000 Manifest next update: Sun 26 Oct 2025 04:11:47 +0000 Files and hashes: 1: utY-wFoDGPl_MVby4gWcYZPOOAo.crl (hash: moZWPg0upKprccB3nmeLPeg+U10buLsCT1vyLyYYUfs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:11:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 553 (0x229) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5A49, serialNumber=BAD63EC05A0318F97F3156F2E2059C6193CE380A Validity Not Before: Oct 19 04:11:47 2025 GMT Not After : Oct 26 04:11:47 2025 GMT Subject: CN=68f46503-8bdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a2:7a:1b:34:d2:69:59:bc:f6:09:a6:f2:d2: cc:5f:e0:6f:29:e1:50:d8:45:01:81:dd:61:67:20: be:b7:0b:38:35:01:c4:25:4f:90:89:a3:80:ed:12: 8c:d5:16:c4:d4:90:a2:5b:81:e2:dd:b3:bc:c8:07: 92:a1:ff:00:f5:12:37:d2:2d:e3:f2:b7:df:b4:d9: a1:61:86:b1:9d:17:a9:25:c8:c9:cb:6f:6d:d1:d9: f7:f3:b8:f2:ec:ac:c1:e7:87:c2:10:9f:db:08:6d: a7:a3:d2:9b:3f:9c:fa:7d:c4:27:f1:75:0d:96:8e: 4d:05:9d:08:92:33:09:9d:f2:98:4a:65:58:f4:71: 35:e0:64:2e:5a:bf:e0:51:13:a5:67:1f:18:54:c7: 0f:e8:4b:55:d2:ca:f8:9b:c9:19:f9:9a:f7:64:3b: 64:7b:bf:20:ab:81:29:e6:2a:6a:1e:70:b8:90:7d: 2b:41:00:f3:7d:8e:e0:2a:b7:18:36:92:54:ae:85: 26:91:76:af:72:10:ad:12:b6:78:a3:86:bc:f8:4d: 66:df:e8:e8:59:23:5f:f2:b6:86:6e:2c:a8:cc:af: f9:2f:f5:67:de:38:da:e0:a2:7c:a7:b3:dc:f4:5b: 91:c6:7b:65:16:d6:f2:6e:b1:a8:28:b2:7c:cc:61: 03:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:F5:0A:8A:F2:2B:BA:19:79:23:D6:E6:34:71:A4:BB:09:B2:B2:DF X509v3 Authority Key Identifier: keyid:BA:D6:3E:C0:5A:03:18:F9:7F:31:56:F2:E2:05:9C:61:93:CE:38:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/utY-wFoDGPl_MVby4gWcYZPOOAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5A49/F9131DA658A611EDA2BB2060C4F9AE02/utY-wFoDGPl_MVby4gWcYZPOOAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:28:42:41:19:43:c3:c2:06:9f:6f:0e:80:56:18:9b:45:24: 6e:33:b5:e2:11:0f:a8:cb:11:14:e5:b3:be:ac:a4:7e:37:4d: 24:88:e0:c0:c1:55:6e:dd:bd:a8:97:44:08:cf:5c:8d:6c:7b: a2:f3:d6:61:6c:da:73:65:d7:0a:e8:38:7e:a5:bf:2a:09:00: 1e:99:66:bc:f5:2b:2b:44:30:3e:dc:e4:7c:70:6a:da:02:88: fb:86:39:6d:ea:d8:66:01:ef:36:18:c7:4b:6f:25:c2:01:90: 60:37:3a:a8:52:6c:3b:1a:05:13:4f:ea:d7:4e:f0:a3:49:10: 98:42:e9:b4:18:88:05:23:7d:b8:1d:50:f4:e7:5e:0d:4c:15: e5:0b:5b:d6:97:62:7f:e7:f0:2c:f2:02:c4:bd:ce:f9:54:40: 01:ce:33:c0:12:c2:c2:80:c5:d4:a2:b4:a7:92:37:92:2d:fd: a2:e6:97:ef:79:16:d0:65:d6:dd:44:26:a8:2b:89:70:3e:dd: 3d:3a:4e:15:c3:1a:64:70:a2:27:12:05:d6:82:b6:d1:a6:67: 3b:b7:4c:29:e6:4f:7e:48:e1:31:d6:3a:18:6f:6b:f3:21:2a: c9:18:2d:f8:f9:7c:2f:dd:da:89:2a:f8:05:b1:9b:df:cf:cc: 23:db:ef:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVBNDkxMTAvBgNVBAUTKEJBRDYzRUMwNUEwMzE4Rjk3RjMxNTZGMkUyMDU5QzYx OTNDRTM4MEEwHhcNMjUxMDE5MDQxMTQ3WhcNMjUxMDI2MDQxMTQ3WjAYMRYwFAYD VQQDEw02OGY0NjUwMy04YmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6J6GzTSaVm89gmm8tLMX+BvKeFQ2EUBgd1hZyC+tws4NQHEJU+QiaOA7RKM 1RbE1JCiW4Hi3bO8yAeSof8A9RI30i3j8rfftNmhYYaxnRepJcjJy29t0dn387jy 7KzB54fCEJ/bCG2no9KbP5z6fcQn8XUNlo5NBZ0IkjMJnfKYSmVY9HE14GQuWr/g UROlZx8YVMcP6EtV0sr4m8kZ+Zr3ZDtke78gq4Ep5ipqHnC4kH0rQQDzfY7gKrcY NpJUroUmkXavchCtErZ4o4a8+E1m3+joWSNf8raGbiyozK/5L/Vn3jja4KJ8p7Pc 9FuRxntlFtbybrGoKLJ8zGED5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNz1Cory K7oZeSPW5jRxpLsJsrLfMB8GA1UdIwQYMBaAFLrWPsBaAxj5fzFW8uIFnGGTzjgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUE0OS9GOTEzMURBNjU4 QTYxMUVEQTJCQjIwNjBDNEY5QUUwMi91dFktd0ZvREdQbF9NVmJ5NGdXY1laUE9P QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V0WS13Rm9ER1BsX01WYnk0Z1djWVpQT09Bby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUE0OS9GOTEzMURBNjU4QTYxMUVEQTJCQjIwNjBDNEY5QUUwMi91dFktd0ZvREdQ bF9NVmJ5NGdXY1laUE9PQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEKEJBGUPDwgafbw6AVhibRSRuM7XiEQ+oyxEU5bO+rKR+N00kiODA wVVu3b2ol0QIz1yNbHui89ZhbNpzZdcK6Dh+pb8qCQAemWa89SsrRDA+3OR8cGra Aoj7hjlt6thmAe82GMdLbyXCAZBgNzqoUmw7GgUTT+rXTvCjSRCYQum0GIgFI324 HVD0514NTBXlC1vWl2J/5/As8gLEvc75VEABzjPAEsLCgMXUorSnkjeSLf2i5pfv eRbQZdbdRCaoK4lwPt09Ok4VwxpkcKInEgXWgrbRpmc7t0wp5k9+SOEx1joYb2vz ISrJGC34+Xwv3dqJKvgFsZvfz8wj2+/q -----END CERTIFICATE-----Generated at Mon Oct 20 19:14:31 2025 by rpki-client