$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft File: 1AI0WEr2BZHzfdP7on68uFzHZWo.mft (raw, json) Hash identifier: K59txbJlMCBjH2v+7eny+kgDx11675LqgmygzsMpkFo= Subject key identifier: 4E:5E:07:E8:74:B5:66:6E:55:33:3D:38:58:E9:26:F5:B3:DA:CE:44 Authority key identifier: D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A Certificate issuer: /CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Certificate serial: 34DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft Manifest number: 34D7 Signing time: Sat 18 Oct 2025 15:13:56 +0000 Manifest this update: Sat 18 Oct 2025 15:13:55 +0000 Manifest next update: Sat 25 Oct 2025 15:13:55 +0000 Files and hashes: 1: 1AI0WEr2BZHzfdP7on68uFzHZWo.crl (hash: +g4c5XOMWN1jvOzCx2hKy96az3ljlTM0/HUvqbNkVOY=) 2: 1B4B4FC2152F11ECB72E546FC4F9AE02.roa (hash: 08icoQFu/lUzJ7/49iluwBG/IFFfyhiQgRTkubc2rPw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:13:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13532 (0x34dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27F3, serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Validity Not Before: Oct 18 15:13:55 2025 GMT Not After : Oct 25 15:13:55 2025 GMT Subject: CN=68f3aeb4-4428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:03:e5:2a:d5:86:67:41:d4:77:0f:71:81:3b: 7e:b6:94:a8:51:7f:dd:c4:26:56:bc:67:f8:2a:a2: f2:34:68:d9:a5:0e:dd:53:24:2c:cb:08:53:77:f1: 4b:e2:cf:18:16:21:67:f2:06:be:26:a4:eb:82:ba: a3:68:76:01:c2:16:a9:47:ba:8b:ba:02:73:76:e4: 56:ac:dc:08:cb:1b:ad:14:ee:6e:60:6e:bb:4d:8e: 58:83:30:ac:ba:3a:8e:cb:dd:78:26:c7:cc:64:5d: 0b:5a:8c:e1:b6:0f:31:27:3c:22:bf:30:7c:bb:38: 19:b9:28:78:45:e9:85:ce:c8:87:a8:a2:91:02:99: 17:7b:1d:eb:2c:f6:7f:2d:58:91:06:c9:f4:22:f3: ed:12:11:38:84:ed:fe:1b:bb:35:43:20:14:b5:3d: 47:99:5c:0e:3e:38:12:4b:29:50:54:29:e1:00:19: dd:4a:1b:c3:f5:64:0f:bf:49:24:51:fd:d7:60:3d: 1b:a5:35:eb:b9:63:d8:c6:a0:41:77:11:ae:e2:5f: 0f:8a:67:06:8f:3c:cb:1d:7d:4f:c4:7d:09:d6:cd: 0a:2a:40:a2:9d:71:d2:41:83:5e:f2:1e:f4:65:10: 3a:7a:34:bf:56:a0:e4:30:c0:19:7a:ce:0e:b2:4a: ca:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:5E:07:E8:74:B5:66:6E:55:33:3D:38:58:E9:26:F5:B3:DA:CE:44 X509v3 Authority Key Identifier: keyid:D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:3c:bf:37:17:97:02:a1:79:1e:51:b4:b3:cf:f6:30:2b:2f: e3:72:e0:37:a8:6f:93:64:3f:b9:f5:01:70:aa:7c:92:6e:c6: d4:63:8c:8f:32:12:ea:0b:c6:be:34:0e:4d:76:9c:58:08:1f: 16:00:ff:39:a6:d5:40:b8:4e:04:13:a1:c6:b2:3c:92:4a:0f: ee:c7:31:56:93:21:36:ef:d4:01:07:b2:6c:5d:73:6e:96:8b: c3:87:7f:c1:51:9c:d7:a7:37:aa:55:11:16:3b:d9:41:71:6c: 8b:51:8d:80:da:b8:72:68:4d:5e:57:21:76:7b:21:df:76:fc: 30:0a:1f:01:44:b0:a6:9a:04:21:f7:2a:20:30:fd:e6:a6:50: ba:ef:8b:e8:61:83:2e:c2:3e:95:fc:81:ba:f9:83:fb:c2:e6: 8a:17:c4:cd:04:96:5a:e7:59:63:23:b8:70:b1:fa:59:3b:72: 7b:91:e7:95:dd:a5:2e:10:0e:3f:8b:9d:33:b1:4e:ef:8c:fa: e9:8b:72:3c:8a:da:e4:76:f0:1f:3b:cd:df:dc:9b:24:10:ad: fc:b9:09:9a:63:9d:d6:bf:78:49:86:a0:41:f5:d9:87:3a:77: 05:64:76:6e:32:8b:26:e5:6b:56:89:1d:5a:fb:a9:14:22:20: f3:2d:96:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3RjMxMTAvBgNVBAUTKEQ0MDIzNDU4NEFGNjA1OTFGMzdERDNGQkEyN0VCQ0I4 NUNDNzY1NkEwHhcNMjUxMDE4MTUxMzU1WhcNMjUxMDI1MTUxMzU1WjAYMRYwFAYD VQQDEw02OGYzYWViNC00NDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAPlKtWGZ0HUdw9xgTt+tpSoUX/dxCZWvGf4KqLyNGjZpQ7dUyQsywhTd/FL 4s8YFiFn8ga+JqTrgrqjaHYBwhapR7qLugJzduRWrNwIyxutFO5uYG67TY5YgzCs ujqOy914JsfMZF0LWozhtg8xJzwivzB8uzgZuSh4RemFzsiHqKKRApkXex3rLPZ/ LViRBsn0IvPtEhE4hO3+G7s1QyAUtT1HmVwOPjgSSylQVCnhABndShvD9WQPv0kk Uf3XYD0bpTXruWPYxqBBdxGu4l8PimcGjzzLHX1PxH0J1s0KKkCinXHSQYNe8h70 ZRA6ejS/VqDkMMAZes4OskrK8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5eB+h0 tWZuVTM9OFjpJvWz2s5EMB8GA1UdIwQYMBaAFNQCNFhK9gWR833T+6J+vLhcx2Vq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdGMy9BNkRFMUNFODFE QTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJaSHpmZFA3b242OHVGekha V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBSTBXRXIyQlpIemZkUDdvbjY4dUZ6SFpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MjdGMy9BNkRFMUNFODFEQTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJa SHpmZFA3b242OHVGekhaV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUPL83F5cCoXkeUbSzz/YwKy/jcuA3qG+TZD+59QFwqnySbsbUY4yP MhLqC8a+NA5NdpxYCB8WAP85ptVAuE4EE6HGsjySSg/uxzFWkyE279QBB7JsXXNu lovDh3/BUZzXpzeqVREWO9lBcWyLUY2A2rhyaE1eVyF2eyHfdvwwCh8BRLCmmgQh 9yogMP3mplC674voYYMuwj6V/IG6+YP7wuaKF8TNBJZa51ljI7hwsfpZO3J7keeV 3aUuEA4/i50zsU7vjPrpi3I8itrkdvAfO83f3JskEK38uQmaY53Wv3hJhqBB9dmH OncFZHZuMosm5WtWiR1a+6kUIiDzLZZp -----END CERTIFICATE-----Generated at Mon Oct 20 04:05:57 2025 by rpki-client