$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft File: df43qD7agAphAmCFh-30CJ2CQOA.mft (raw, json) Hash identifier: YAAA9wq24xpb7iqiwC9/pIhxTblJIOpmLmWqL7yH9aQ= Subject key identifier: D9:9D:07:99:21:1B:85:C6:A9:A2:F5:A3:65:E9:E5:1F:DD:E1:42:14 Authority key identifier: 75:FE:37:A8:3E:DA:80:0A:61:02:60:85:87:ED:F4:08:9D:82:40:E0 Certificate issuer: /CN=A91DC7AA/serialNumber=75FE37A83EDA800A6102608587EDF4089D8240E0 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft Manifest number: 5A Signing time: Sun 19 Oct 2025 10:35:15 +0000 Manifest this update: Sun 19 Oct 2025 10:35:15 +0000 Manifest next update: Sun 26 Oct 2025 10:35:15 +0000 Files and hashes: 1: df43qD7agAphAmCFh-30CJ2CQOA.crl (hash: QHtOEmrR9AKrhMdCWDkQETnTWudJ5BQNNWybm5EyQdw=) 2: A7C7EF962A8911F09526D35BC4F9AE02.roa (hash: t0RTmg56JthvruW6/lKLjUx4XzWAwdY96H4SSM4fLcA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.crl rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC7AA, serialNumber=75FE37A83EDA800A6102608587EDF4089D8240E0 Validity Not Before: Oct 19 10:35:15 2025 GMT Not After : Oct 26 10:35:15 2025 GMT Subject: CN=68f4bee3-e134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b5:11:d6:35:b6:9b:21:1a:60:f4:90:0a:7d: dd:45:8f:d6:82:8a:db:9c:86:4d:7f:c6:28:93:f4: 4c:42:72:0d:82:f1:9a:5b:c6:f4:18:5c:57:55:41: 3a:05:75:ea:38:4d:11:fc:ca:c7:f7:ca:d6:dd:de: a0:c2:1a:03:80:71:f8:a1:15:38:6d:7e:3b:c8:5d: 50:4a:42:13:0e:5f:0d:18:76:9c:c6:0e:08:75:30: f0:fd:42:0f:65:39:a1:40:09:54:00:6b:4d:ab:92: 47:1f:e4:f9:8b:f2:32:a1:69:8e:c8:16:47:7d:ab: 12:ec:2c:99:b8:de:75:2f:0c:31:3c:1c:1e:f9:62: d0:56:c8:42:ff:1c:93:77:a3:d7:6f:6c:a5:76:60: 74:78:64:88:ba:c4:ac:53:de:83:eb:d5:36:91:50: 88:ca:2f:c1:3f:41:e2:50:e4:db:80:0a:83:a7:eb: 49:1b:8b:e9:d6:c5:43:3a:93:b2:e1:35:85:90:5d: b9:45:f4:96:35:43:fd:97:07:65:95:61:08:c2:58: a2:6d:23:1b:62:02:80:39:07:99:8c:eb:d9:87:27: e5:ca:18:b9:06:66:15:74:36:6c:4f:fc:c0:19:f7: ba:bb:77:fb:c6:f2:16:bb:bd:2c:96:a8:89:79:3c: 9e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:9D:07:99:21:1B:85:C6:A9:A2:F5:A3:65:E9:E5:1F:DD:E1:42:14 X509v3 Authority Key Identifier: keyid:75:FE:37:A8:3E:DA:80:0A:61:02:60:85:87:ED:F4:08:9D:82:40:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:07:5f:df:78:55:d0:bf:01:e0:40:82:05:a5:0c:c9:98:f9: d0:82:c4:1b:74:e3:a0:a8:8f:2c:1f:37:e1:5e:5c:6f:cb:35: 39:41:c7:d7:9c:35:3c:d6:bb:ed:17:3a:9b:10:3b:25:a5:ee: f5:e2:88:61:86:ff:ef:00:40:f2:fb:33:17:d8:e3:19:d4:6e: 96:2b:44:89:b4:ce:08:0f:33:5f:0e:2d:ad:fb:50:05:64:b0: 8e:50:0a:5a:57:52:1d:7f:38:9b:61:0e:02:e1:c0:e4:52:2a: 17:8f:f8:fb:7f:ab:7a:cc:97:3d:aa:ef:f9:f1:89:6e:01:85: fd:f2:31:c6:78:a3:31:45:6b:6c:0d:b2:94:4e:18:e6:d3:df: 1c:c5:4f:60:d7:71:65:60:19:c1:1b:7c:53:ff:bf:08:e4:41: 73:12:a9:4d:5c:f5:fb:5e:2d:5f:f4:17:c1:59:3c:d9:ff:6f: a7:72:37:3d:19:ae:39:13:ef:67:a3:a0:d7:e3:43:d4:ba:de: 4a:42:cd:6f:7d:83:26:4c:ce:fc:f2:11:a5:3d:9e:9e:de:62: 13:ec:47:60:36:20:cb:bb:cb:a5:bf:5a:98:94:ae:82:8e:32: 93:bf:60:ab:67:88:23:be:ed:aa:ef:05:9f:26:8d:c6:f0:d3: 66:d2:1c:0d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzdBQTExMC8GA1UEBRMoNzVGRTM3QTgzRURBODAwQTYxMDI2MDg1ODdFREY0MDg5 RDgyNDBFMDAeFw0yNTEwMTkxMDM1MTVaFw0yNTEwMjYxMDM1MTVaMBgxFjAUBgNV BAMTDTY4ZjRiZWUzLWUxMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCitRHWNbabIRpg9JAKfd1Fj9aCituchk1/xiiT9ExCcg2C8ZpbxvQYXFdVQToF deo4TRH8ysf3ytbd3qDCGgOAcfihFThtfjvIXVBKQhMOXw0YdpzGDgh1MPD9Qg9l OaFACVQAa02rkkcf5PmL8jKhaY7IFkd9qxLsLJm43nUvDDE8HB75YtBWyEL/HJN3 o9dvbKV2YHR4ZIi6xKxT3oPr1TaRUIjKL8E/QeJQ5NuACoOn60kbi+nWxUM6k7Lh NYWQXblF9JY1Q/2XB2WVYQjCWKJtIxtiAoA5B5mM69mHJ+XKGLkGZhV0NmxP/MAZ 97q7d/vG8ha7vSyWqIl5PJ7FAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2Z0HmSEb hcapovWjZenlH93hQhQwHwYDVR0jBBgwFoAUdf43qD7agAphAmCFh+30CJ2CQOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDN0FBL0QyMkVEQTM0MkE4 ODExRjBBMzBEOTE1OUM0RjlBRTAyL2RmNDNxRDdhZ0FwaEFtQ0ZoLTMwQ0oyQ1FP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZGY0M3FEN2FnQXBoQW1DRmgtMzBDSjJDUU9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURD N0FBL0QyMkVEQTM0MkE4ODExRjBBMzBEOTE1OUM0RjlBRTAyL2RmNDNxRDdhZ0Fw aEFtQ0ZoLTMwQ0oyQ1FPQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACcHX994VdC/AeBAggWlDMmY+dCCxBt046CojywfN+FeXG/LNTlBx9ec NTzWu+0XOpsQOyWl7vXiiGGG/+8AQPL7MxfY4xnUbpYrRIm0zggPM18OLa37UAVk sI5QClpXUh1/OJthDgLhwORSKheP+Pt/q3rMlz2q7/nxiW4Bhf3yMcZ4ozFFa2wN spROGObT3xzFT2DXcWVgGcEbfFP/vwjkQXMSqU1c9fteLV/0F8FZPNn/b6dyNz0Z rjkT72ejoNfjQ9S63kpCzW99gyZMzvzyEaU9np7eYhPsR2A2IMu7y6W/WpiUroKO MpO/YKtniCO+7arvBZ8mjcbw02bSHA0= -----END CERTIFICATE-----Generated at Tue Oct 21 02:10:35 2025 by rpki-client