$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft File: 0S_1veXU0upxiMsALH_wFtyZTXI.mft (raw, json) Hash identifier: 6RundvI8otb3KIVm4rDT3O61spA1UGO9XMe39A2eA2w= Subject key identifier: D9:8C:4F:0C:FB:8E:05:89:20:0F:AD:0F:92:CB:D0:7C:5A:1D:19:2C Authority key identifier: D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 Certificate issuer: /CN=A91EA623/serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Certificate serial: 055A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft Manifest number: 055A Signing time: Sun 19 Oct 2025 01:06:55 +0000 Manifest this update: Sun 19 Oct 2025 01:06:55 +0000 Manifest next update: Sun 26 Oct 2025 01:06:55 +0000 Files and hashes: 1: 0S_1veXU0upxiMsALH_wFtyZTXI.crl (hash: Qg9/2d2QfA01Lsv2rFn/CdDHSUB93uPlHq0FRVZ6VOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1370 (0x55a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623, serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Validity Not Before: Oct 19 01:06:55 2025 GMT Not After : Oct 26 01:06:55 2025 GMT Subject: CN=68f439af-b3c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a0:e5:ed:5f:41:f6:6d:0f:d6:c9:52:94:06: 8e:56:51:ef:00:df:7a:41:da:7b:a4:5e:04:21:71: 5e:08:43:f9:38:fe:12:41:bc:88:78:dc:bf:5e:56: 58:da:b7:d7:a7:6a:22:8d:00:0b:4b:0b:04:b9:e6: 67:b0:3a:f8:5c:4f:1f:44:63:84:8b:51:cf:36:73: 41:df:00:ac:bd:e3:44:7b:83:e4:22:41:3c:39:4e: 43:06:90:c5:ee:59:93:4c:0a:09:d3:86:bf:a5:83: 2e:45:c7:ba:a8:f2:0a:84:10:83:64:8a:16:51:b6: 4f:79:41:61:ba:46:3e:6c:22:de:d1:9a:02:07:60: 62:2e:a1:aa:7f:ea:22:03:7f:4c:8b:c9:41:76:25: 9a:fc:14:63:9f:de:45:74:0d:5d:1b:32:4f:e7:c5: 28:f3:61:a5:52:b4:a9:09:54:3a:a9:fc:cf:40:fc: 29:67:40:3d:70:b3:d6:60:72:54:9e:11:4c:22:d2: 25:e6:50:20:e8:97:86:64:c2:06:58:e4:dd:7e:d5: ed:b1:20:ea:39:47:f9:3e:41:e4:5e:cb:fd:51:0c: e6:02:02:b6:37:78:ed:33:00:3c:e3:5f:f4:60:91: 0e:3e:8e:ef:e1:18:07:46:b1:c4:09:d1:46:a2:c2: cf:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:8C:4F:0C:FB:8E:05:89:20:0F:AD:0F:92:CB:D0:7C:5A:1D:19:2C X509v3 Authority Key Identifier: keyid:D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:ad:b2:35:34:0d:ac:9e:d8:b8:09:25:87:dc:11:05:ec:22: d9:a3:0b:71:dd:bf:26:80:95:da:02:6c:65:2e:f9:4d:93:94: f4:e0:0c:4f:23:77:bb:3a:67:75:7e:41:e9:b1:71:ad:d1:54: af:ab:14:52:89:1f:6d:b3:02:01:3f:00:01:ab:e5:12:2e:0b: 54:9f:5b:90:d0:54:cb:25:5f:80:dd:ab:f5:3c:47:7d:5f:56: 60:b6:f2:ce:89:14:2f:a6:66:43:3f:05:26:e4:f8:e7:d3:38: ce:9f:9d:a6:9c:3e:70:28:73:b8:6f:f0:1c:41:fd:cb:3d:cf: 0e:97:10:08:1c:7e:f8:2a:dd:e1:ab:06:32:ac:bf:47:f1:22: 40:fb:d1:aa:d3:b6:ba:66:70:94:56:9c:38:e4:b7:18:af:54: 9a:37:aa:c9:bb:0c:54:c7:24:bf:63:15:2d:71:e8:32:6e:0a: a4:5d:04:5e:93:e0:d3:8a:ac:be:ec:fb:81:fc:cc:d2:b5:34: 8b:b2:b4:76:61:d7:70:bf:09:a9:ae:4b:75:8c:a5:7c:a7:cb: 74:c8:39:26:11:ca:1d:7c:8c:01:97:f3:78:a3:fe:c6:8e:8d: 15:cb:d8:6b:20:f4:e3:a1:be:92:2e:94:72:48:f6:f6:0b:80: 81:c6:17:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKEQxMkZGNUJERTVENEQyRUE3MTg4Q0IwMDJDN0ZGMDE2 REM5OTRENzIwHhcNMjUxMDE5MDEwNjU1WhcNMjUxMDI2MDEwNjU1WjAYMRYwFAYD VQQDEw02OGY0MzlhZi1iM2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAraDl7V9B9m0P1slSlAaOVlHvAN96Qdp7pF4EIXFeCEP5OP4SQbyIeNy/XlZY 2rfXp2oijQALSwsEueZnsDr4XE8fRGOEi1HPNnNB3wCsveNEe4PkIkE8OU5DBpDF 7lmTTAoJ04a/pYMuRce6qPIKhBCDZIoWUbZPeUFhukY+bCLe0ZoCB2BiLqGqf+oi A39Mi8lBdiWa/BRjn95FdA1dGzJP58Uo82GlUrSpCVQ6qfzPQPwpZ0A9cLPWYHJU nhFMItIl5lAg6JeGZMIGWOTdftXtsSDqOUf5PkHkXsv9UQzmAgK2N3jtMwA841/0 YJEOPo7v4RgHRrHECdFGosLP4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNmMTwz7 jgWJIA+tD5LL0HxaHRksMB8GA1UdIwQYMBaAFNEv9b3l1NLqcYjLACx/8BbcmU1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9EMzE2N0YwQTA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1cHhpTXNBTEhfd0Z0eVpU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBTXzF2ZVhVMHVweGlNc0FMSF93RnR5WlRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9EMzE2N0YwQTA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1 cHhpTXNBTEhfd0Z0eVpUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCrbI1NA2snti4CSWH3BEF7CLZowtx3b8mgJXaAmxlLvlNk5T04AxP I3e7Omd1fkHpsXGt0VSvqxRSiR9tswIBPwABq+USLgtUn1uQ0FTLJV+A3av1PEd9 X1ZgtvLOiRQvpmZDPwUm5Pjn0zjOn52mnD5wKHO4b/AcQf3LPc8OlxAIHH74Kt3h qwYyrL9H8SJA+9Gq07a6ZnCUVpw45LcYr1SaN6rJuwxUxyS/YxUtcegybgqkXQRe k+DTiqy+7PuB/MzStTSLsrR2Yddwvwmprkt1jKV8p8t0yDkmEcodfIwBl/N4o/7G jo0Vy9hrIPTjob6SLpRySPb2C4CBxhdG -----END CERTIFICATE-----Generated at Tue Oct 21 00:04:03 2025 by rpki-client