$ rpki-client -vvf rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft File: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft (raw, json) Hash identifier: SiGKSFoycygzrVJxGOQZbPETF3+bFoHtzU0Hu0vC5jw= Subject key identifier: DD:8F:0E:9E:DA:55:61:1E:7A:80:F7:FE:5B:5B:17:0B:CE:88:64:7D Authority key identifier: 57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 Certificate issuer: /CN=A91E331D/serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Certificate serial: 0480 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft Manifest number: 047C Signing time: Sun 19 Oct 2025 01:58:17 +0000 Manifest this update: Sun 19 Oct 2025 01:58:16 +0000 Manifest next update: Sun 26 Oct 2025 01:58:16 +0000 Files and hashes: 1: Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl (hash: Pc3JmE4UfBTGrhiMJ55Q5BX4CKgM/TYDrAhP5QgWICE=) 2: DBE8B4205F0F11ECA6315D2AC4F9AE02.roa (hash: jwlLH9aehVTXk9pUZLFV4it1GAP8lE1rTRj2qtnhA8Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:58:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1152 (0x480) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E331D, serialNumber=572E760DBCE6D65553098B017EFC32ECB1CECAE1 Validity Not Before: Oct 19 01:58:16 2025 GMT Not After : Oct 26 01:58:16 2025 GMT Subject: CN=68f445b9-08c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2b:56:e4:f3:fe:39:d4:ab:a7:41:18:0a:a6: cb:11:c5:cf:02:04:95:71:69:c6:47:92:bd:89:5f: 05:36:dc:dc:5e:83:4c:94:0b:f7:7c:6f:bf:5e:01: 95:12:d5:01:4a:42:1b:86:67:5d:93:34:61:a7:c5: 29:b4:b3:e8:1e:91:9f:9d:36:56:b3:ad:2c:e2:86: c3:cb:f9:b1:05:0a:4e:24:7c:80:24:71:5a:56:97: 72:ff:44:08:55:26:c5:77:ce:53:f0:d2:cc:c0:0e: ce:7c:2f:83:a6:10:d0:8e:45:c6:ea:9a:08:08:e8: c5:5a:0d:d1:a8:45:3f:c2:7e:a5:b8:b2:74:de:aa: dd:6c:d5:3f:db:bb:4e:a7:3d:42:84:e4:fd:0f:bd: f5:a2:ca:28:07:13:8a:f4:21:2a:0c:4d:c0:f0:a6: 17:e5:41:36:c1:99:76:c9:fe:e5:75:3f:1d:31:ab: 7c:86:36:7c:ab:1b:51:c1:e6:6e:6d:af:1f:fd:ba: 76:e6:26:17:36:e4:52:44:36:ea:f2:0b:5c:ec:bd: 44:a0:de:88:8b:4e:11:c8:d7:4f:85:aa:b2:bc:26: cb:0c:80:ee:5d:4d:91:c7:e7:95:2d:11:37:98:64: d4:76:8a:2d:fe:f6:2a:0f:6e:48:ae:6b:87:c3:b5: 4d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:8F:0E:9E:DA:55:61:1E:7A:80:F7:FE:5B:5B:17:0B:CE:88:64:7D X509v3 Authority Key Identifier: keyid:57:2E:76:0D:BC:E6:D6:55:53:09:8B:01:7E:FC:32:EC:B1:CE:CA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E331D/E7610CCE5F0C11ECA9144426C4F9AE02/Vy52Dbzm1lVTCYsBfvwy7LHOyuE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:0f:d9:b2:c1:5a:bf:c6:3a:0e:65:70:cb:8f:0a:be:19:6e: fc:b6:ad:7e:ef:5d:f6:51:d5:89:13:79:6b:4d:62:83:fb:51: cf:28:a8:e3:c7:4c:6e:99:8c:4b:62:c7:63:34:3a:58:02:fb: 1c:c3:d4:e2:71:c2:c4:19:4a:21:4c:18:72:09:1e:87:f5:f4: eb:e0:a9:92:e1:17:8f:eb:7d:f2:3b:1e:89:dc:73:cd:55:e8: ec:2f:f1:24:71:57:dd:28:ff:e0:37:a8:64:09:e8:82:22:48: 43:f0:d7:1f:58:ab:c5:ab:2a:f7:88:77:7e:fe:c5:be:4a:20: 7f:12:2c:bf:13:8d:68:62:41:35:78:27:45:35:e2:de:95:01: 5c:6e:e4:11:35:d6:ac:b3:3f:d1:e1:89:15:ac:b0:16:52:63: be:62:6d:f5:1f:4f:29:d8:a4:01:44:60:2d:8a:62:ac:9f:80: f1:f6:aa:94:4e:bc:d8:75:b5:f9:2b:7c:80:ac:24:fd:f8:41: be:28:34:84:e9:cb:4a:8c:58:11:6d:ac:c9:db:b8:1a:0c:eb: c3:3e:58:2b:aa:18:bb:bf:ed:15:58:23:d7:6c:ca:b3:5c:bb: 56:4d:0c:5e:92:07:e9:d6:71:75:9b:9c:d6:f8:f1:54:ce:b5: 23:ce:77:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzMUQxMTAvBgNVBAUTKDU3MkU3NjBEQkNFNkQ2NTU1MzA5OEIwMTdFRkMzMkVD QjFDRUNBRTEwHhcNMjUxMDE5MDE1ODE2WhcNMjUxMDI2MDE1ODE2WjAYMRYwFAYD VQQDEw02OGY0NDViOS0wOGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzStW5PP+OdSrp0EYCqbLEcXPAgSVcWnGR5K9iV8FNtzcXoNMlAv3fG+/XgGV EtUBSkIbhmddkzRhp8UptLPoHpGfnTZWs60s4obDy/mxBQpOJHyAJHFaVpdy/0QI VSbFd85T8NLMwA7OfC+DphDQjkXG6poICOjFWg3RqEU/wn6luLJ03qrdbNU/27tO pz1ChOT9D731osooBxOK9CEqDE3A8KYX5UE2wZl2yf7ldT8dMat8hjZ8qxtRweZu ba8f/bp25iYXNuRSRDbq8gtc7L1EoN6Ii04RyNdPhaqyvCbLDIDuXU2Rx+eVLRE3 mGTUdoot/vYqD25IrmuHw7VNuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN2PDp7a VWEeeoD3/ltbFwvOiGR9MB8GA1UdIwQYMBaAFFcudg285tZVUwmLAX78Muyxzsrh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzMxRC9FNzYxMENDRTVG MEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFsVlRDWXNCZnZ3eTdMSE95 dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Z5NTJEYnptMWxWVENZc0Jmdnd5N0xIT3l1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzMxRC9FNzYxMENDRTVGMEMxMUVDQTkxNDQ0MjZDNEY5QUUwMi9WeTUyRGJ6bTFs VlRDWXNCZnZ3eTdMSE95dUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfD9mywVq/xjoOZXDLjwq+GW78tq1+7132UdWJE3lrTWKD+1HPKKjj x0xumYxLYsdjNDpYAvscw9TiccLEGUohTBhyCR6H9fTr4KmS4ReP633yOx6J3HPN VejsL/EkcVfdKP/gN6hkCeiCIkhD8NcfWKvFqyr3iHd+/sW+SiB/Eiy/E41oYkE1 eCdFNeLelQFcbuQRNdassz/R4YkVrLAWUmO+Ym31H08p2KQBRGAtimKsn4Dx9qqU TrzYdbX5K3yArCT9+EG+KDSE6ctKjFgRbazJ27gaDOvDPlgrqhi7v+0VWCPXbMqz XLtWTQxekgfp1nF1m5zW+PFUzrUjznfk -----END CERTIFICATE-----Generated at Mon Oct 20 07:05:14 2025 by rpki-client