$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft File: iruZJsMSoUFJxSMLpV-oz1uJquE.mft (raw, json) Hash identifier: Iq/f4Sb7QCnm1gItHMxAq5eExOuvsMQJJ0bHLPajEOI= Subject key identifier: 60:64:B8:72:8D:BE:86:91:E4:DC:D7:B9:58:EF:1D:EB:12:ED:8F:C5 Authority key identifier: 8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 Certificate issuer: /CN=A91E8C52/serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Certificate serial: 068B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft Manifest number: 0685 Signing time: Sat 18 Oct 2025 23:57:39 +0000 Manifest this update: Sat 18 Oct 2025 23:57:38 +0000 Manifest next update: Sat 25 Oct 2025 23:57:38 +0000 Files and hashes: 1: iruZJsMSoUFJxSMLpV-oz1uJquE.crl (hash: /yHM/P5RUgLbbAH7mvK/MRnizev2VWU9eEQ+41DEIVM=) 2: 09C9D20691BC11EB8C38801CC4F9AE02.roa (hash: WLK6J5FK1cyYi8od3TiV/xRyzkXSS7BDCS8cGAhSdLw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:57:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1675 (0x68b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C52, serialNumber=8ABB9926C312A14149C5230BA55FA8CF5B89AAE1 Validity Not Before: Oct 18 23:57:38 2025 GMT Not After : Oct 25 23:57:38 2025 GMT Subject: CN=68f42972-28f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:bd:7f:e5:9e:f9:fe:f4:43:ed:38:7c:a9:76: 36:71:07:62:8c:bb:c3:38:e9:90:9e:4f:ff:5e:9c: a5:ac:4b:5d:fc:a3:1c:70:86:32:32:ed:a7:1b:13: 5a:16:12:20:98:99:60:69:a4:df:60:fa:e6:d0:03: d0:3a:a9:bf:80:8b:27:09:3e:4c:0a:00:2c:48:e8: fb:39:2f:0a:9b:f2:23:e2:cb:dc:08:9a:74:c3:6f: a0:49:87:4b:54:14:7a:2f:cc:53:62:14:75:31:f9: b0:77:4f:7b:35:14:a8:f9:72:97:df:f3:36:47:c5: 24:74:b5:ab:e8:cf:d5:4f:39:ad:55:64:45:50:48: 9b:f9:a3:05:14:c8:34:4d:9b:5a:e4:2d:c4:45:d3: 6c:de:2d:49:eb:47:89:6a:68:e8:61:35:03:c9:7f: 2e:a2:35:43:68:e7:07:a4:df:03:3e:e4:4f:88:68: f9:59:13:e5:ab:da:6c:9f:71:7d:14:7b:d2:f4:5a: 46:8c:ef:36:18:16:27:80:01:58:9a:7b:8f:21:27: de:41:20:4c:5a:67:5e:29:af:1c:30:79:2f:f7:79: f6:35:cd:a7:c1:2a:58:cd:99:8c:f4:e2:c0:f1:c2: 78:68:e1:5d:49:7f:70:46:43:5e:91:f6:fe:e5:91: ee:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:64:B8:72:8D:BE:86:91:E4:DC:D7:B9:58:EF:1D:EB:12:ED:8F:C5 X509v3 Authority Key Identifier: keyid:8A:BB:99:26:C3:12:A1:41:49:C5:23:0B:A5:5F:A8:CF:5B:89:AA:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iruZJsMSoUFJxSMLpV-oz1uJquE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C52/B46CD77E91B911EB9C5B4618C4F9AE02/iruZJsMSoUFJxSMLpV-oz1uJquE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:cc:e4:67:23:40:71:be:b2:3d:34:91:79:a4:40:d3:e3:e0: 35:e1:65:3c:67:b2:51:07:2c:cb:cd:c1:9a:2d:96:a6:4f:1b: 72:f2:f1:cf:0a:66:07:b2:61:a2:e1:2b:6a:7e:46:e6:44:44: 36:fa:75:4b:b5:c1:17:e7:e4:29:ef:31:5e:b7:0e:1e:65:f9: 2e:fb:e8:a7:9c:97:81:3f:56:fc:fa:1b:cc:6c:91:3d:2d:38: 1c:de:1b:37:17:b2:ab:e8:74:e9:83:3f:78:28:51:44:df:e7: ea:a4:a1:e3:5d:15:19:dd:a0:c7:47:46:73:a0:8a:02:4b:10: 07:aa:d5:93:07:82:8c:f6:83:91:f1:03:79:19:89:d3:76:a7: 08:b8:78:21:2b:85:80:e8:ff:90:5f:f6:bd:02:71:ee:49:03: bc:f8:a2:3f:23:cf:56:6d:f7:59:f8:dc:be:a2:31:4a:88:cf: d2:e2:7d:50:c3:66:d9:8f:64:1b:85:a8:a7:31:f9:35:9a:d6: 51:8c:70:e6:06:b8:34:e3:99:36:5c:40:7f:34:9a:b4:22:71: 2b:52:84:c0:c4:51:9d:85:0a:24:3f:7c:1d:63:cd:7d:db:da: a7:64:a4:cd:94:60:dc:b5:4f:8b:b2:df:a9:20:be:cf:e3:59: ad:ba:92:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDNTIxMTAvBgNVBAUTKDhBQkI5OTI2QzMxMkExNDE0OUM1MjMwQkE1NUZBOENG NUI4OUFBRTEwHhcNMjUxMDE4MjM1NzM4WhcNMjUxMDI1MjM1NzM4WjAYMRYwFAYD VQQDEw02OGY0Mjk3Mi0yOGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwr1/5Z75/vRD7Th8qXY2cQdijLvDOOmQnk//XpylrEtd/KMccIYyMu2nGxNa FhIgmJlgaaTfYPrm0APQOqm/gIsnCT5MCgAsSOj7OS8Km/Ij4svcCJp0w2+gSYdL VBR6L8xTYhR1Mfmwd097NRSo+XKX3/M2R8UkdLWr6M/VTzmtVWRFUEib+aMFFMg0 TZta5C3ERdNs3i1J60eJamjoYTUDyX8uojVDaOcHpN8DPuRPiGj5WRPlq9psn3F9 FHvS9FpGjO82GBYngAFYmnuPISfeQSBMWmdeKa8cMHkv93n2Nc2nwSpYzZmM9OLA 8cJ4aOFdSX9wRkNekfb+5ZHuuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGBkuHKN voaR5NzXuVjvHesS7Y/FMB8GA1UdIwQYMBaAFIq7mSbDEqFBScUjC6VfqM9biarh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM1Mi9CNDZDRDc3RTkx QjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29VRkp4U01McFYtb3oxdUpx dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lydVpKc01Tb1VGSnhTTUxwVi1vejF1SnF1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OEM1Mi9CNDZDRDc3RTkxQjkxMUVCOUM1QjQ2MThDNEY5QUUwMi9pcnVaSnNNU29V Rkp4U01McFYtb3oxdUpxdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAizORnI0BxvrI9NJF5pEDT4+A14WU8Z7JRByzLzcGaLZamTxty8vHP CmYHsmGi4StqfkbmREQ2+nVLtcEX5+Qp7zFetw4eZfku++innJeBP1b8+hvMbJE9 LTgc3hs3F7Kr6HTpgz94KFFE3+fqpKHjXRUZ3aDHR0ZzoIoCSxAHqtWTB4KM9oOR 8QN5GYnTdqcIuHghK4WA6P+QX/a9AnHuSQO8+KI/I89WbfdZ+Ny+ojFKiM/S4n1Q w2bZj2QbhainMfk1mtZRjHDmBrg045k2XEB/NJq0InErUoTAxFGdhQokP3wdY819 29qnZKTNlGDctU+Lst+pIL7P41mtupJO -----END CERTIFICATE-----Generated at Mon Oct 20 21:24:06 2025 by rpki-client