$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft File: 0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft (raw, json) Hash identifier: T7tpXeGqtCjKpkP9wk4flsD9lYKOmk6649lrPdwEXEQ= Subject key identifier: F3:F9:EA:DC:4C:AE:B5:B7:05:0E:D3:77:8D:7B:A0:59:86:76:F3:E2 Authority key identifier: D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51 Certificate issuer: /CN=A91DA8C2/serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51 Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft Manifest number: 71 Signing time: Sun 19 Oct 2025 10:13:47 +0000 Manifest this update: Sun 19 Oct 2025 10:13:46 +0000 Manifest next update: Sun 26 Oct 2025 10:13:46 +0000 Files and hashes: 1: 0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl (hash: EkLsesXeDKX2Ra8H0ihm9+nRqKGmN17006WNl3ywO4o=) 2: 32EE2B68005411F08A6FEB4BC4F9AE02.roa (hash: wwcr+8+DOyZmloRteEL56x1j3vM+7vfdbP5INKVgy7U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:13:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA8C2, serialNumber=D24FCCAD3ACE7FFE5BF02A6A8F68C0602E1C1B51 Validity Not Before: Oct 19 10:13:46 2025 GMT Not After : Oct 26 10:13:46 2025 GMT Subject: CN=68f4b9db-7038 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:46:8f:44:bd:a7:79:48:66:6a:73:73:57:2d: 4f:c2:54:3c:a8:ef:30:a5:43:3e:56:71:f7:fe:9e: 30:c7:80:09:a2:46:83:c7:d3:fb:20:d1:ae:6a:ee: 3d:4f:f2:b1:19:c0:b7:c4:7d:e6:1a:6f:f3:27:86: 2f:97:c1:6b:a6:9d:14:40:2d:a8:bb:76:a7:00:86: aa:99:b4:14:b3:cd:2b:53:2b:97:70:81:32:66:9b: a1:94:b2:c9:10:0a:75:f9:1a:9a:08:3c:70:82:9f: 55:47:d4:fd:96:c7:2f:0b:84:cd:4e:64:ce:f6:19: 07:bf:ca:a0:ee:a7:90:9e:33:5a:fe:d8:60:b2:d1: 4b:08:4b:07:28:d2:3f:04:76:d3:78:47:b3:00:6d: 02:14:66:84:e3:7d:67:b1:73:ae:b4:ca:1b:59:b9: 35:7c:27:4e:3b:74:19:c1:03:07:55:16:1b:56:74: 61:31:45:21:b7:90:6b:1c:00:48:8d:47:4c:b4:c8: 3a:3e:af:5d:60:5b:e4:e2:12:04:48:e8:6f:50:eb: 11:a0:d3:27:e2:62:85:c1:5b:2c:12:25:bb:94:ac: a9:8c:54:19:97:57:8b:8b:ca:f7:96:3b:9b:12:e9: af:73:10:fb:f2:02:9b:17:25:bd:90:6c:74:5e:bd: f2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:F9:EA:DC:4C:AE:B5:B7:05:0E:D3:77:8D:7B:A0:59:86:76:F3:E2 X509v3 Authority Key Identifier: keyid:D2:4F:CC:AD:3A:CE:7F:FE:5B:F0:2A:6A:8F:68:C0:60:2E:1C:1B:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA8C2/95A69BE2005311F08E73E14AC4F9AE02/0k_MrTrOf_5b8Cpqj2jAYC4cG1E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:a4:77:06:5e:4e:dc:f7:42:68:3c:c8:fc:1b:52:7a:91:ed: 4e:13:03:30:cf:f5:2b:0d:bc:82:4a:91:90:01:f4:93:90:07: 93:b6:58:da:d4:50:da:2d:c3:50:cf:15:60:42:5e:40:2e:06: d0:d5:85:b3:f1:56:36:10:e9:cd:c8:89:13:dd:1b:2b:3c:e9: 79:d5:c4:8c:cc:b9:d9:09:e6:c9:94:89:c3:db:54:9e:91:97: 56:eb:49:b5:87:93:93:91:e9:9c:58:e3:1c:52:39:ee:57:1f: e4:e5:b2:97:5f:9b:23:bb:6a:bc:59:95:90:e7:9a:4d:d6:6b: 1e:6a:b3:e7:eb:83:2f:21:4c:db:ea:8c:21:96:59:e0:89:78: da:ba:8f:b8:0a:bd:b8:79:12:16:88:49:ff:97:93:16:81:ab: 5a:ab:be:1c:f7:39:57:bd:ac:02:5e:f8:62:f6:2d:c1:22:48: 21:28:9f:15:83:2f:ac:f5:1c:84:26:a2:55:af:81:f0:76:3a: 07:3d:57:b9:5c:9a:83:e3:ce:b0:ec:6c:b9:bc:b6:f4:29:cb: a2:e0:23:0b:e6:41:f4:31:79:00:af:1d:b2:21:02:cd:5b:cf: 5e:94:f2:b3:32:23:6a:5b:d5:1a:f1:3c:91:a7:d7:dc:39:8b: b1:76:da:2a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QThDMjExMC8GA1UEBRMoRDI0RkNDQUQzQUNFN0ZGRTVCRjAyQTZBOEY2OEMwNjAy RTFDMUI1MTAeFw0yNTEwMTkxMDEzNDZaFw0yNTEwMjYxMDEzNDZaMBgxFjAUBgNV BAMTDTY4ZjRiOWRiLTcwMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPRo9Evad5SGZqc3NXLU/CVDyo7zClQz5Wcff+njDHgAmiRoPH0/sg0a5q7j1P 8rEZwLfEfeYab/Mnhi+XwWumnRRALai7dqcAhqqZtBSzzStTK5dwgTJmm6GUsskQ CnX5GpoIPHCCn1VH1P2Wxy8LhM1OZM72GQe/yqDup5CeM1r+2GCy0UsISwco0j8E dtN4R7MAbQIUZoTjfWexc660yhtZuTV8J047dBnBAwdVFhtWdGExRSG3kGscAEiN R0y0yDo+r11gW+TiEgRI6G9Q6xGg0yfiYoXBWywSJbuUrKmMVBmXV4uLyveWO5sS 6a9zEPvyApsXJb2QbHRevfL5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8/nq3Eyu tbcFDtN3jXugWYZ28+IwHwYDVR0jBBgwFoAU0k/MrTrOf/5b8Cpqj2jAYC4cG1Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURBOEMyLzk1QTY5QkUyMDA1 MzExRjA4RTczRTE0QUM0RjlBRTAyLzBrX01yVHJPZl81YjhDcHFqMmpBWUM0Y0cx RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMGtfTXJUck9mXzViOENwcWoyakFZQzRjRzFFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURB OEMyLzk1QTY5QkUyMDA1MzExRjA4RTczRTE0QUM0RjlBRTAyLzBrX01yVHJPZl81 YjhDcHFqMmpBWUM0Y0cxRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIKkdwZeTtz3Qmg8yPwbUnqR7U4TAzDP9SsNvIJKkZAB9JOQB5O2WNrU UNotw1DPFWBCXkAuBtDVhbPxVjYQ6c3IiRPdGys86XnVxIzMudkJ5smUicPbVJ6R l1brSbWHk5OR6ZxY4xxSOe5XH+TlspdfmyO7arxZlZDnmk3Wax5qs+frgy8hTNvq jCGWWeCJeNq6j7gKvbh5EhaISf+XkxaBq1qrvhz3OVe9rAJe+GL2LcEiSCEonxWD L6z1HIQmolWvgfB2Ogc9V7lcmoPjzrDsbLm8tvQpy6LgIwvmQfQxeQCvHbIhAs1b z16U8rMyI2pb1RrxPJGn19w5i7F22io= -----END CERTIFICATE-----Generated at Mon Oct 20 05:25:24 2025 by rpki-client