$ rpki-client -vvf rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft File: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft (raw, json) Hash identifier: +vW8UD+rjTgLJ+PAabDIAa3zSFBBtGaw/bGCorUCUlw= Subject key identifier: 2D:2D:7B:FA:EB:79:04:6C:B2:AE:FD:95:D7:4C:5C:58:94:B6:CD:79 Authority key identifier: DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F Certificate issuer: /CN=A91D72CC/serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft Manifest number: 0ECB Signing time: Mon 20 Oct 2025 18:20:08 +0000 Manifest this update: Mon 20 Oct 2025 18:20:07 +0000 Manifest next update: Mon 27 Oct 2025 18:20:07 +0000 Files and hashes: 1: 23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl (hash: xZMx3kpRz5syEiCFYIVYzGnRnMnVBtK8pia2T7HMImQ=) 2: DEDE6B3CC8A911EFB805FB63C4F9AE02.roa (hash: L77nMThoCiib1dCqa085jELCyAH8rBz6+MtRWF46Xt8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 18:20:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D72CC, serialNumber=DB78D9F9358E567D306EE3BD1EAC748E9606BF8F Validity Not Before: Oct 20 18:20:07 2025 GMT Not After : Oct 27 18:20:07 2025 GMT Subject: CN=68f67d58-1621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:aa:79:bf:64:bf:32:08:53:4d:ca:18:a2:a0: aa:ea:05:37:3b:a2:3b:4b:0b:17:46:49:7a:e2:3f: bd:1a:46:c4:f3:4d:f0:79:a3:e4:34:f5:71:59:ba: 33:d8:02:79:5a:b6:28:23:a4:63:a0:2f:57:9f:fd: 9d:3d:3d:c1:13:fd:6d:90:50:55:57:7b:d2:82:b8: d2:ba:55:ab:b8:dc:7f:8d:c9:27:74:13:3e:75:d5: 52:9d:a7:08:77:e7:0b:f6:fc:85:ed:68:18:94:6e: 79:a9:c3:86:9a:f1:a0:75:b9:40:cb:01:52:a4:a0: 5b:39:22:48:5c:99:66:2f:14:64:9d:0b:b3:8e:b1: b9:b5:46:5c:f4:f0:c0:58:d1:5d:e8:9c:f8:a4:a9: 02:20:ef:e1:d1:69:9b:66:45:49:98:c6:3c:e4:21: a2:7d:d9:b1:db:c5:04:2c:ee:7c:c1:54:19:ef:7e: 3b:8b:12:e5:91:a2:cc:0d:33:34:f2:67:d1:c8:73: 18:b7:46:f7:a2:0b:da:b3:44:d7:cf:56:48:0e:61: 33:c3:44:73:27:80:09:9b:45:e0:53:5d:2e:1b:ac: 86:3b:ed:8c:f1:35:f5:0a:87:52:63:e4:4b:d9:d5: b7:4f:9e:5c:7b:c9:33:c7:eb:3a:43:7a:bf:9c:79: 3f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:2D:7B:FA:EB:79:04:6C:B2:AE:FD:95:D7:4C:5C:58:94:B6:CD:79 X509v3 Authority Key Identifier: keyid:DB:78:D9:F9:35:8E:56:7D:30:6E:E3:BD:1E:AC:74:8E:96:06:BF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23jZ-TWOVn0wbuO9Hqx0jpYGv48.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D72CC/4330AC9CB36D11E98246ED0AC4F9AE02/23jZ-TWOVn0wbuO9Hqx0jpYGv48.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:f9:3d:c0:a9:dd:a0:f6:85:aa:8f:51:1f:57:7a:b6:18:36: f7:83:40:86:5a:66:eb:91:87:3d:90:6d:01:42:da:f8:76:de: 89:f7:bf:bd:c3:ee:a8:ee:7e:3d:41:b5:a8:7c:7e:dc:15:87: 7c:47:4e:e6:bf:4f:a8:a8:be:e2:3c:1d:95:f4:24:5f:64:db: 71:8a:f7:0b:a7:3a:3e:a8:a2:03:a0:38:d3:ae:ba:3c:73:23: 0d:d7:b0:f1:e9:c6:88:94:8f:bb:ab:2d:d3:16:8a:25:3d:41: 7b:d7:d0:cd:95:3d:59:25:1c:c2:dc:e0:03:e7:9c:81:86:5e: 31:74:b3:92:3c:32:1e:46:90:ff:35:98:dc:72:c9:ee:2c:48: ca:ac:c0:04:3a:c6:cd:06:86:41:89:14:fc:c3:14:2e:e1:a3: 52:5b:8f:02:00:d2:15:73:ba:f8:6c:ae:2f:f3:b4:d9:bb:ee: c0:08:fc:c7:b0:9c:c9:8c:38:16:e2:9b:95:63:f5:c4:42:5f: 57:d5:60:f5:32:9b:73:69:52:c0:5f:7f:e6:cf:d5:9f:ac:30: c2:bb:09:b0:86:ef:78:ce:92:f8:65:75:11:29:09:74:e2:18: 7c:fd:b8:20:71:99:a9:73:5b:51:d4:7d:e3:6f:eb:a9:37:96: 7b:7a:0f:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDcyQ0MxMTAvBgNVBAUTKERCNzhEOUY5MzU4RTU2N0QzMDZFRTNCRDFFQUM3NDhF OTYwNkJGOEYwHhcNMjUxMDIwMTgyMDA3WhcNMjUxMDI3MTgyMDA3WjAYMRYwFAYD VQQDEw02OGY2N2Q1OC0xNjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6p5v2S/MghTTcoYoqCq6gU3O6I7SwsXRkl64j+9GkbE803weaPkNPVxWboz 2AJ5WrYoI6RjoC9Xn/2dPT3BE/1tkFBVV3vSgrjSulWruNx/jckndBM+ddVSnacI d+cL9vyF7WgYlG55qcOGmvGgdblAywFSpKBbOSJIXJlmLxRknQuzjrG5tUZc9PDA WNFd6Jz4pKkCIO/h0WmbZkVJmMY85CGifdmx28UELO58wVQZ7347ixLlkaLMDTM0 8mfRyHMYt0b3ogvas0TXz1ZIDmEzw0RzJ4AJm0XgU10uG6yGO+2M8TX1CodSY+RL 2dW3T55ce8kzx+s6Q3q/nHk/jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC0te/rr eQRssq79lddMXFiUts15MB8GA1UdIwQYMBaAFNt42fk1jlZ9MG7jvR6sdI6WBr+P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzJDQy80MzMwQUM5Q0Iz NkQxMUU5ODI0NkVEMEFDNEY5QUUwMi8yM2paLVRXT1ZuMHdidU85SHF4MGpwWUd2 NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzalotVFdPVm4wd2J1TzlIcXgwanBZR3Y0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzJDQy80MzMwQUM5Q0IzNkQxMUU5ODI0NkVEMEFDNEY5QUUwMi8yM2paLVRXT1Zu MHdidU85SHF4MGpwWUd2NDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBA+T3Aqd2g9oWqj1EfV3q2GDb3g0CGWmbrkYc9kG0BQtr4dt6J97+9 w+6o7n49QbWofH7cFYd8R07mv0+oqL7iPB2V9CRfZNtxivcLpzo+qKIDoDjTrro8 cyMN17Dx6caIlI+7qy3TFoolPUF719DNlT1ZJRzC3OAD55yBhl4xdLOSPDIeRpD/ NZjccsnuLEjKrMAEOsbNBoZBiRT8wxQu4aNSW48CANIVc7r4bK4v87TZu+7ACPzH sJzJjDgW4puVY/XEQl9X1WD1MptzaVLAX3/mz9WfrDDCuwmwhu94zpL4ZXURKQl0 4hh8/bggcZmpc1tR1H3jb+upN5Z7eg8l -----END CERTIFICATE-----Generated at Mon Oct 20 21:36:00 2025 by rpki-client