$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft File: MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft (raw, json) Hash identifier: yOpyLbITAEg5RaF6hFbpS1HuPzYf+KiD4rbwK7PRatE= Subject key identifier: 6F:48:CB:98:78:AF:05:28:E8:DC:04:43:FF:75:33:0A:13:98:79:AC Authority key identifier: 32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 Certificate issuer: /CN=A91DA023/serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Certificate serial: 34C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft Manifest number: 34C8 Signing time: Sat 18 Oct 2025 15:11:57 +0000 Manifest this update: Sat 18 Oct 2025 15:11:56 +0000 Manifest next update: Sat 25 Oct 2025 15:11:56 +0000 Files and hashes: 1: MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl (hash: svMKKcmiJJvpHaCF0FQeqIBJId3l+Wx+2Fs0LK+cyQM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13512 (0x34c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA023, serialNumber=3270F3ACD971EEDF84617548F72E51E22A503CF8 Validity Not Before: Oct 18 15:11:56 2025 GMT Not After : Oct 25 15:11:56 2025 GMT Subject: CN=68f3ae3d-24a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:78:02:ed:38:ef:91:19:d5:44:88:70:a1:34: 48:00:d9:f7:55:5f:2d:da:c8:21:d3:ee:f5:ff:11: 85:0a:c9:67:11:2f:bb:ac:50:cd:6e:2b:76:87:8d: 17:d5:88:dd:ba:90:ee:c5:e9:55:ff:bd:eb:65:1c: f8:eb:eb:34:db:30:98:ac:35:b8:20:01:c1:b5:0b: b0:85:69:1d:a2:58:aa:f0:09:c4:a3:23:ab:35:34: 0d:b5:85:a0:c1:55:85:d9:26:96:1d:68:fd:a6:73: 15:a4:6d:80:43:dc:84:59:24:ce:af:ef:50:70:49: 58:31:e0:1b:3b:76:2d:80:6c:09:08:73:a0:d2:1c: 04:9d:4d:b0:5d:2a:de:8a:79:7d:fc:72:af:8f:85: 7e:4a:2c:a1:a8:fb:b3:5a:c2:d1:df:ea:c6:c1:06: c0:a4:05:3e:68:8d:7c:6c:2a:4a:d6:bb:13:96:c4: ba:88:fb:56:41:93:b1:50:2f:81:56:57:20:74:cd: bd:8e:0b:2c:53:3a:c1:0b:d4:fa:9a:e8:ca:ba:53: 2f:44:01:04:52:78:4b:22:4a:92:94:8d:26:e5:36: 5f:73:77:d3:86:94:d2:f0:a1:fb:d5:f0:a7:e4:69: 93:5d:8f:d1:61:51:34:af:77:b7:1d:e9:e8:92:ae: 5b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:48:CB:98:78:AF:05:28:E8:DC:04:43:FF:75:33:0A:13:98:79:AC X509v3 Authority Key Identifier: keyid:32:70:F3:AC:D9:71:EE:DF:84:61:75:48:F7:2E:51:E2:2A:50:3C:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA023/6F172DF01DA011E2A1C3A69108B02CD2/MnDzrNlx7t-EYXVI9y5R4ipQPPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:d6:01:40:78:f6:2a:79:7a:8b:98:0a:dd:24:89:22:ec:f4: 0c:0e:7d:94:4f:5f:91:af:1b:80:c6:6f:9e:d2:80:84:cc:58: bd:9d:6b:8b:53:6f:ee:1d:15:5f:46:cb:86:82:fb:1f:c0:3e: 49:9b:29:9e:43:17:a3:ad:c7:8f:43:db:a3:37:2e:9e:63:23: cb:98:fd:c3:40:89:88:97:31:72:0e:29:11:c4:fd:a4:38:7d: c8:f9:7b:87:9d:a9:d2:cb:ac:80:41:15:e2:b4:50:5b:05:01: f0:3b:ec:49:76:5f:82:35:0e:fd:06:b8:87:ee:aa:0d:83:2b: 07:ff:09:c1:50:8f:d5:18:77:dd:f0:f4:c7:6b:2b:f4:db:15: 9f:8d:d9:92:73:92:13:73:1c:1b:50:fc:32:9b:f2:a5:24:b3: a5:2d:f9:c8:41:50:40:e4:aa:7d:5f:e8:fb:91:85:78:7d:b5: c8:0c:ab:89:f2:bf:00:b2:57:bf:2c:b8:25:e8:f8:d6:90:9c: 94:c8:24:a9:95:3d:c0:9c:15:1a:fe:5d:5c:19:eb:ca:d0:c8: 6e:97:6f:a2:6b:7e:5e:08:e9:be:1e:63:24:98:ee:3d:80:8a: b0:3b:8f:9d:cd:70:95:d4:aa:f4:3e:c7:41:e1:54:28:29:a4: 4e:e9:1f:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEwMjMxMTAvBgNVBAUTKDMyNzBGM0FDRDk3MUVFREY4NDYxNzU0OEY3MkU1MUUy MkE1MDNDRjgwHhcNMjUxMDE4MTUxMTU2WhcNMjUxMDI1MTUxMTU2WjAYMRYwFAYD VQQDEw02OGYzYWUzZC0yNGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXgC7TjvkRnVRIhwoTRIANn3VV8t2sgh0+71/xGFCslnES+7rFDNbit2h40X 1YjdupDuxelV/73rZRz46+s02zCYrDW4IAHBtQuwhWkdoliq8AnEoyOrNTQNtYWg wVWF2SaWHWj9pnMVpG2AQ9yEWSTOr+9QcElYMeAbO3YtgGwJCHOg0hwEnU2wXSre inl9/HKvj4V+SiyhqPuzWsLR3+rGwQbApAU+aI18bCpK1rsTlsS6iPtWQZOxUC+B VlcgdM29jgssUzrBC9T6mujKulMvRAEEUnhLIkqSlI0m5TZfc3fThpTS8KH71fCn 5GmTXY/RYVE0r3e3Henokq5bqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG9Iy5h4 rwUo6NwEQ/91MwoTmHmsMB8GA1UdIwQYMBaAFDJw86zZce7fhGF1SPcuUeIqUDz4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTAyMy82RjE3MkRGMDFE QTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0LUVZWFZJOXk1UjRpcFFQ UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01uRHpyTmx4N3QtRVlYVkk5eTVSNGlwUVBQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTAyMy82RjE3MkRGMDFEQTAxMUUyQTFDM0E2OTEwOEIwMkNEMi9NbkR6ck5seDd0 LUVZWFZJOXk1UjRpcFFQUGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH1gFAePYqeXqLmArdJIki7PQMDn2UT1+RrxuAxm+e0oCEzFi9nWuL U2/uHRVfRsuGgvsfwD5JmymeQxejrcePQ9ujNy6eYyPLmP3DQImIlzFyDikRxP2k OH3I+XuHnanSy6yAQRXitFBbBQHwO+xJdl+CNQ79BriH7qoNgysH/wnBUI/VGHfd 8PTHayv02xWfjdmSc5ITcxwbUPwym/KlJLOlLfnIQVBA5Kp9X+j7kYV4fbXIDKuJ 8r8Asle/LLgl6PjWkJyUyCSplT3AnBUa/l1cGevK0Mhul2+ia35eCOm+HmMkmO49 gIqwO4+dzXCV1Kr0PsdB4VQoKaRO6R9h -----END CERTIFICATE-----Generated at Sun Oct 19 23:30:42 2025 by rpki-client