$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft File: 38I-PZBdDoNoEhlZbQgimmlPrxM.mft (raw, json) Hash identifier: iPi1h/5d0g0SifHJ8p051pf0P97uuUlN7Bd/gCTaK9M= Subject key identifier: B9:C3:1A:94:B9:32:1E:29:C7:CB:FB:1D:F7:1A:25:3D:17:7B:58:EE Authority key identifier: DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 Certificate issuer: /CN=A91E3D04/serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Certificate serial: 0E6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft Manifest number: 0E52 Signing time: Sat 18 Oct 2025 18:25:41 +0000 Manifest this update: Sat 18 Oct 2025 18:25:40 +0000 Manifest next update: Sat 25 Oct 2025 18:25:40 +0000 Files and hashes: 1: 38I-PZBdDoNoEhlZbQgimmlPrxM.crl (hash: 8rGzQVo/3i7HxoHan5cKw4tgWLR+x0NAVSZzOMHv5fY=) 2: 10E6D9CAB55C11ECA9565039C4F9AE02.roa (hash: RzHUUv/miUNX3icVSP0eFdue2uGb59/3arKmFqnz2Fc=) 3: AB52C51AB96B11ECB44AC533C4F9AE02.roa (hash: fXxSo682fkgrV8puX+aCaQZxmTNLL+rJcYQD485NwzM=) 4: AC641C88B96B11ECB44AC533C4F9AE02.roa (hash: s3xebHa/jipF1DOC4szye5Ddv89P0OTkiIBe/5lBHnw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:25:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3693 (0xe6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D04, serialNumber=DFC23E3D905D0E83681219596D08229A694FAF13 Validity Not Before: Oct 18 18:25:40 2025 GMT Not After : Oct 25 18:25:40 2025 GMT Subject: CN=68f3dba4-99a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ec:23:2d:54:42:74:2a:7d:64:74:af:73:42: 4c:09:e2:28:01:5e:4d:93:0b:64:bd:55:8a:e0:0a: 45:16:b5:08:2e:07:b8:42:13:00:a2:3b:1c:dc:c6: af:c4:60:b9:59:13:85:c5:60:9d:8e:9a:dc:d3:bf: ea:5a:42:0a:e4:2b:14:5f:19:29:45:6f:58:f8:2a: d2:e4:4b:17:ab:45:1e:26:d7:ba:b0:71:7c:3a:da: df:17:a3:a4:a1:d1:10:80:2f:79:52:b4:d3:8a:cf: 82:18:eb:ba:7d:24:09:06:d7:91:b4:b9:77:1d:a3: 72:68:63:04:16:0b:23:5b:ef:aa:3b:f3:6e:72:8b: 35:fa:01:52:75:11:99:84:e3:33:77:83:85:bc:b0: fb:18:f8:e7:07:5c:8d:cd:45:28:ed:6d:85:3f:6e: 82:08:64:84:38:17:20:3c:cf:53:67:1a:d8:43:44: d9:56:64:1c:b2:25:28:03:27:3d:ad:18:08:7a:b6: 9f:9e:79:98:13:96:a5:0b:18:85:59:bb:cb:b9:50: a3:c5:74:9b:4a:8a:16:59:9f:4f:c6:24:70:2a:fd: 0f:19:22:db:2d:96:6b:12:b4:a1:65:63:0a:88:0c: 6e:4f:5f:e3:8a:53:e9:e0:94:bf:89:6b:3d:e6:54: e6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:C3:1A:94:B9:32:1E:29:C7:CB:FB:1D:F7:1A:25:3D:17:7B:58:EE X509v3 Authority Key Identifier: keyid:DF:C2:3E:3D:90:5D:0E:83:68:12:19:59:6D:08:22:9A:69:4F:AF:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38I-PZBdDoNoEhlZbQgimmlPrxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D04/7A17FE8EADD911E9B7409A72C4F9AE02/38I-PZBdDoNoEhlZbQgimmlPrxM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:08:56:3c:38:ef:dd:3c:78:fd:44:a2:13:59:70:08:e7:36: 85:6d:ff:46:83:a5:a8:51:e3:8b:a2:8a:aa:27:38:41:34:26: f6:49:84:10:cb:6c:6c:31:43:33:7a:b9:2b:66:43:cb:e5:f4: e5:36:50:6e:0d:8e:d7:c1:70:60:b0:da:47:5e:c8:ab:e5:fb: 34:5f:03:05:e0:ad:f3:3d:a0:a8:19:f1:30:6f:e3:31:da:0f: 5a:03:67:0d:f1:71:80:e9:54:2d:57:c7:f5:12:c0:9a:18:01: 0c:af:71:7f:b0:e0:e5:e2:1d:f2:7b:1a:ca:59:24:ff:08:2c: 9b:bc:b9:6d:63:ab:29:9c:85:6e:21:30:b8:2b:98:7c:09:e0: 6f:e3:45:f7:30:c5:e2:46:79:72:58:b9:e0:c8:7f:5d:6e:80: 35:51:1a:ae:f8:b2:b3:7a:26:d0:cf:39:db:93:ee:31:57:44: ab:af:69:34:8b:d6:27:8b:a7:c6:f0:2a:fe:10:cd:d7:0b:72: b9:7c:aa:13:80:89:37:cc:a7:35:3c:6e:97:1e:38:e0:53:96: 3e:a1:fa:d7:cc:79:5d:d7:6c:c5:69:2f:8d:f6:bc:b3:21:91: 24:db:6d:87:a8:5f:f2:36:27:76:78:a6:56:a9:e2:24:a6:71: 27:ba:45:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMDQxMTAvBgNVBAUTKERGQzIzRTNEOTA1RDBFODM2ODEyMTk1OTZEMDgyMjlB Njk0RkFGMTMwHhcNMjUxMDE4MTgyNTQwWhcNMjUxMDI1MTgyNTQwWjAYMRYwFAYD VQQDEw02OGYzZGJhNC05OWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uwjLVRCdCp9ZHSvc0JMCeIoAV5NkwtkvVWK4ApFFrUILge4QhMAojsc3Mav xGC5WROFxWCdjprc07/qWkIK5CsUXxkpRW9Y+CrS5EsXq0UeJte6sHF8OtrfF6Ok odEQgC95UrTTis+CGOu6fSQJBteRtLl3HaNyaGMEFgsjW++qO/Nucos1+gFSdRGZ hOMzd4OFvLD7GPjnB1yNzUUo7W2FP26CCGSEOBcgPM9TZxrYQ0TZVmQcsiUoAyc9 rRgIerafnnmYE5alCxiFWbvLuVCjxXSbSooWWZ9PxiRwKv0PGSLbLZZrErShZWMK iAxuT1/jilPp4JS/iWs95lTm+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLnDGpS5 Mh4px8v7HfcaJT0Xe1juMB8GA1UdIwQYMBaAFN/CPj2QXQ6DaBIZWW0IIpppT68T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QwNC83QTE3RkU4RUFE RDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERvTm9FaGxaYlFnaW1tbFBy eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4SS1QWkJkRG9Ob0VobFpiUWdpbW1sUHJ4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QwNC83QTE3RkU4RUFERDkxMUU5Qjc0MDlBNzJDNEY5QUUwMi8zOEktUFpCZERv Tm9FaGxaYlFnaW1tbFByeE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKCFY8OO/dPHj9RKITWXAI5zaFbf9Gg6WoUeOLooqqJzhBNCb2SYQQ y2xsMUMzerkrZkPL5fTlNlBuDY7XwXBgsNpHXsir5fs0XwMF4K3zPaCoGfEwb+Mx 2g9aA2cN8XGA6VQtV8f1EsCaGAEMr3F/sODl4h3yexrKWST/CCybvLltY6spnIVu ITC4K5h8CeBv40X3MMXiRnlyWLngyH9dboA1URqu+LKzeibQzznbk+4xV0Srr2k0 i9Yni6fG8Cr+EM3XC3K5fKoTgIk3zKc1PG6XHjjgU5Y+ofrXzHld12zFaS+N9ryz IZEk222HqF/yNid2eKZWqeIkpnEnukWi -----END CERTIFICATE-----Generated at Mon Oct 20 01:43:52 2025 by rpki-client