$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft File: dD54xFmO_HLaCEZGUOuPnNoW-YA.mft (raw, json) Hash identifier: OTU2YEbFumj2T4EiEpJ0/sZ6WMbZj7qrdpnjqu/lB9s= Subject key identifier: 5B:77:E9:5D:91:B5:3B:7A:4E:C2:14:5A:1E:56:50:4A:E4:31:6D:8A Authority key identifier: 74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 Certificate issuer: /CN=A91DE500/serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft Manifest number: 027B Signing time: Sun 19 Oct 2025 07:12:38 +0000 Manifest this update: Sun 19 Oct 2025 07:12:37 +0000 Manifest next update: Sun 26 Oct 2025 07:12:37 +0000 Files and hashes: 1: dD54xFmO_HLaCEZGUOuPnNoW-YA.crl (hash: kmSkRFyT+nAmkPhxuUvJiaZMbopLT4mEzoT5xXqC6ZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500, serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Validity Not Before: Oct 19 07:12:37 2025 GMT Not After : Oct 26 07:12:37 2025 GMT Subject: CN=68f48f65-e4dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7b:07:c1:04:50:08:42:ed:e2:02:c1:36:60: 5f:2a:c5:1c:5f:c7:e2:44:3e:d0:1b:1d:04:46:ea: b8:61:1e:69:2e:e6:4b:aa:03:c7:21:15:4f:ea:9b: d3:c3:c4:20:fd:44:4b:35:ef:4a:18:f9:81:6a:69: 6c:d9:87:c4:2e:d0:96:cc:e2:3c:ee:69:e2:0a:bc: 29:c1:64:04:06:0c:cc:3a:4a:0f:27:dd:d1:58:c2: e6:4f:30:9c:40:07:53:03:21:5d:02:18:91:af:a1: c2:b4:68:c5:42:58:20:46:a3:e7:da:f6:4d:df:47: 51:9e:81:c9:9c:36:21:f9:7b:3d:ad:63:41:24:74: eb:56:7a:f2:b0:04:0b:b0:cd:ac:9d:43:53:38:41: 7c:d2:d4:55:b3:3a:c1:69:c0:38:f0:d9:a4:9e:2d: 77:55:74:bc:1d:a8:1a:a5:fe:a6:54:09:20:37:af: 76:ed:ff:e4:30:3c:9b:87:e0:35:ef:1a:f4:57:03: ac:03:7a:82:32:6e:aa:5f:13:6e:4e:82:6d:6b:a8: be:51:6f:b4:e6:69:8e:41:14:6b:dc:98:d3:d8:c8: 91:18:2e:01:3d:7b:72:dd:fc:1d:39:ee:83:ba:14: f6:ff:47:e6:bc:c7:81:09:ed:e4:2e:44:01:d2:0b: c8:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:77:E9:5D:91:B5:3B:7A:4E:C2:14:5A:1E:56:50:4A:E4:31:6D:8A X509v3 Authority Key Identifier: keyid:74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:bd:dd:b7:00:5e:4f:fe:21:d7:bb:69:9e:4f:0d:56:26:81: 83:b0:38:99:6f:fa:b5:a9:7c:1c:d1:ae:ea:a1:2b:2a:c5:a4: 06:e3:4a:ca:25:2f:8a:5d:06:bb:0f:8b:0f:a7:45:24:45:1b: cc:b7:ae:7d:96:74:fe:c3:19:b7:90:b5:48:28:89:3c:ea:2b: a2:7f:86:14:ee:ab:0b:1a:29:34:b1:84:68:b5:0d:4c:df:39: 25:79:5d:fd:62:c3:11:48:ab:0e:7b:9e:e7:c6:00:7e:cd:0d: b2:ce:9a:90:e7:03:fc:b5:29:9b:05:2c:ea:a4:14:18:d3:f2: a8:c0:3b:aa:db:e1:db:25:e4:15:09:9c:b0:00:f2:67:d2:44: 55:f9:a7:1b:89:fa:6d:c6:3c:a0:6b:e6:56:c7:bf:11:54:2b: 23:a0:15:c5:ed:22:69:da:93:5a:ac:21:22:9f:71:6c:48:fa: 9e:f9:19:b7:93:76:54:9d:72:b4:f6:d9:94:1c:2a:b7:1d:8e: fd:6b:74:0d:d1:55:2c:32:8a:5d:55:bb:79:e5:03:09:29:39: 94:30:3a:b9:4b:d7:f2:98:60:63:f3:b4:7b:f1:d9:09:bb:11: e1:94:40:aa:85:f5:e6:3f:9f:1b:1f:b3:73:32:b8:d1:bd:0c: b0:6b:be:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1MDAxMTAvBgNVBAUTKDc0M0U3OEM0NTk4RUZDNzJEQTA4NDY0NjUwRUI4RjlD REExNkY5ODAwHhcNMjUxMDE5MDcxMjM3WhcNMjUxMDI2MDcxMjM3WjAYMRYwFAYD VQQDEw02OGY0OGY2NS1lNGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHsHwQRQCELt4gLBNmBfKsUcX8fiRD7QGx0ERuq4YR5pLuZLqgPHIRVP6pvT w8Qg/URLNe9KGPmBamls2YfELtCWzOI87mniCrwpwWQEBgzMOkoPJ93RWMLmTzCc QAdTAyFdAhiRr6HCtGjFQlggRqPn2vZN30dRnoHJnDYh+Xs9rWNBJHTrVnrysAQL sM2snUNTOEF80tRVszrBacA48Nmkni13VXS8Hagapf6mVAkgN6927f/kMDybh+A1 7xr0VwOsA3qCMm6qXxNuToJta6i+UW+05mmOQRRr3JjT2MiRGC4BPXty3fwdOe6D uhT2/0fmvMeBCe3kLkQB0gvI5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFt36V2R tTt6TsIUWh5WUErkMW2KMB8GA1UdIwQYMBaAFHQ+eMRZjvxy2ghGRlDrj5zaFvmA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTUwMC8zRkZGNUMzRUM3 MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19ITGFDRVpHVU91UG5Ob1ct WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RENTR4Rm1PX0hMYUNFWkdVT3VQbk5vVy1ZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTUwMC8zRkZGNUMzRUM3MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19I TGFDRVpHVU91UG5Ob1ctWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChvd23AF5P/iHXu2meTw1WJoGDsDiZb/q1qXwc0a7qoSsqxaQG40rK JS+KXQa7D4sPp0UkRRvMt659lnT+wxm3kLVIKIk86iuif4YU7qsLGik0sYRotQ1M 3zkleV39YsMRSKsOe57nxgB+zQ2yzpqQ5wP8tSmbBSzqpBQY0/KowDuq2+HbJeQV CZywAPJn0kRV+acbifptxjyga+ZWx78RVCsjoBXF7SJp2pNarCEin3FsSPqe+Rm3 k3ZUnXK09tmUHCq3HY79a3QN0VUsMopdVbt55QMJKTmUMDq5S9fymGBj87R78dkJ uxHhlECqhfXmP58bH7NzMrjRvQywa76c -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:57 2025 by rpki-client