$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft File: 24aQ9k5_gyrPw6am6EIdQXfIlPY.mft (raw, json) Hash identifier: T1NnwHrYT9ZOO5pH341XxK0H9QfgOEHc9J48Culyrsw= Subject key identifier: 64:9D:6A:08:C9:C0:3C:4A:76:2F:C7:CB:E7:80:98:6C:9A:B4:39:C7 Authority key identifier: DB:86:90:F6:4E:7F:83:2A:CF:C3:A6:A6:E8:42:1D:41:77:C8:94:F6 Certificate issuer: /CN=A91F0FAA/serialNumber=DB8690F64E7F832ACFC3A6A6E8421D4177C894F6 Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft Manifest number: 01C5 Signing time: Sun 19 Oct 2025 05:24:51 +0000 Manifest this update: Sun 19 Oct 2025 05:24:49 +0000 Manifest next update: Sun 26 Oct 2025 05:24:49 +0000 Files and hashes: 1: 24aQ9k5_gyrPw6am6EIdQXfIlPY.crl (hash: +XzdlgRUQ4YUooL/pQBW1NYOyqjiVtK22xBzrXPB50U=) 2: 6B5723D8F89F11ED8F29921CC4F9AE02.roa (hash: SdXEUbD7bDMQhTYpbl9h+rsPxGL65X2f3Ma+s3etM2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.crl rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0FAA, serialNumber=DB8690F64E7F832ACFC3A6A6E8421D4177C894F6 Validity Not Before: Oct 19 05:24:49 2025 GMT Not After : Oct 26 05:24:49 2025 GMT Subject: CN=68f47622-45f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4a:27:14:3f:f6:b3:3f:ef:08:60:74:fd:77: 0e:e2:22:45:c6:74:1e:d2:3e:a2:8c:71:54:1c:27: bc:b7:7f:83:6c:6b:62:31:b0:ab:58:ba:37:7b:f7: a6:94:d2:f0:80:e6:3f:7b:f4:a8:db:38:8a:c3:d0: 39:00:1f:62:98:f4:04:c1:5e:21:c8:52:bf:b2:c0: 3d:2c:7c:37:89:00:0c:4c:bf:af:d3:de:d0:44:e3: eb:c0:61:65:5e:90:f3:62:d3:5b:d5:7f:6e:a5:fa: 3c:cd:77:9e:16:08:58:68:1c:a9:c7:c7:9b:2f:70: c2:cf:a4:ee:b8:20:e2:09:bc:02:f4:37:2a:fb:24: c8:7f:af:a6:54:ef:4d:72:0b:d8:94:c5:2d:c3:f4: 4f:70:1b:ca:13:b8:b9:c3:cc:2d:95:73:09:2c:38: af:2c:12:5f:c9:a5:3b:d3:a2:d7:7d:08:85:c6:e1: 29:93:bd:e6:4d:83:99:0b:f8:61:5a:b4:6c:92:b8: 7a:61:47:e9:1e:23:b4:ba:d2:57:09:fe:6d:e5:4f: 21:37:5a:ac:3c:52:da:63:81:7e:0b:b7:cd:a4:d1: 20:fc:0f:4f:89:87:73:24:9f:09:5d:89:0f:0a:bc: e6:45:8d:40:8b:c8:65:79:00:8c:d2:9b:7d:c4:0d: 13:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:9D:6A:08:C9:C0:3C:4A:76:2F:C7:CB:E7:80:98:6C:9A:B4:39:C7 X509v3 Authority Key Identifier: keyid:DB:86:90:F6:4E:7F:83:2A:CF:C3:A6:A6:E8:42:1D:41:77:C8:94:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/24aQ9k5_gyrPw6am6EIdQXfIlPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0FAA/FE101CCCF89811ED86235F68C4F9AE02/24aQ9k5_gyrPw6am6EIdQXfIlPY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:31:3b:43:7e:d2:48:05:9f:f6:78:02:3d:bd:d7:13:25:b9: 32:a0:33:3c:a4:f8:2c:c7:87:32:f4:ac:49:f2:ef:a2:b8:99: f7:69:dc:57:e8:fb:af:57:2e:77:1b:dc:70:23:f7:43:de:b0: 36:b6:c8:6e:3c:28:68:cc:8e:9a:5e:f7:45:d0:12:d6:d7:e1: 31:1a:1b:a4:5e:eb:07:a6:b8:36:82:48:8d:94:1b:f4:70:ce: b3:31:72:57:a5:51:8e:3c:ed:ab:11:1a:9e:04:1e:a3:8f:88: 21:9e:19:f2:4f:74:b9:1f:30:82:8d:6b:be:a5:4f:94:4a:a4: 9e:e6:84:62:17:71:b1:8d:32:c1:0b:14:21:82:8b:f0:36:ee: 9d:3d:ea:5f:6c:fa:c0:bc:c3:35:01:ed:70:78:06:52:06:9f: b1:e3:72:da:08:87:a9:bb:47:cc:ef:e1:22:63:37:8f:aa:bb: 3e:64:fd:67:2b:23:e8:32:0c:e1:ea:ad:cf:09:6e:e5:5e:a9: 04:b0:64:2b:48:e1:9b:48:5d:f2:80:08:39:1c:b4:a9:7c:ed: b8:8d:99:cf:87:48:16:b8:04:fe:9e:5a:12:6b:4e:be:45:06: 69:78:63:cc:95:b2:13:28:27:0f:77:9d:46:6c:a8:d0:77:94: 35:2c:13:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBGQUExMTAvBgNVBAUTKERCODY5MEY2NEU3RjgzMkFDRkMzQTZBNkU4NDIxRDQx NzdDODk0RjYwHhcNMjUxMDE5MDUyNDQ5WhcNMjUxMDI2MDUyNDQ5WjAYMRYwFAYD VQQDEw02OGY0NzYyMi00NWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA40onFD/2sz/vCGB0/XcO4iJFxnQe0j6ijHFUHCe8t3+DbGtiMbCrWLo3e/em lNLwgOY/e/So2ziKw9A5AB9imPQEwV4hyFK/ssA9LHw3iQAMTL+v097QROPrwGFl XpDzYtNb1X9upfo8zXeeFghYaBypx8ebL3DCz6TuuCDiCbwC9Dcq+yTIf6+mVO9N cgvYlMUtw/RPcBvKE7i5w8wtlXMJLDivLBJfyaU706LXfQiFxuEpk73mTYOZC/hh WrRskrh6YUfpHiO0utJXCf5t5U8hN1qsPFLaY4F+C7fNpNEg/A9PiYdzJJ8JXYkP CrzmRY1Ai8hleQCM0pt9xA0T2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGSdagjJ wDxKdi/Hy+eAmGyatDnHMB8GA1UdIwQYMBaAFNuGkPZOf4Mqz8OmpuhCHUF3yJT2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEZBQS9GRTEwMUNDQ0Y4 OTgxMUVEODYyMzVGNjhDNEY5QUUwMi8yNGFROWs1X2d5clB3NmFtNkVJZFFYZkls UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzI0YVE5azVfZ3lyUHc2YW02RUlkUVhmSWxQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MEZBQS9GRTEwMUNDQ0Y4OTgxMUVEODYyMzVGNjhDNEY5QUUwMi8yNGFROWs1X2d5 clB3NmFtNkVJZFFYZklsUFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNMTtDftJIBZ/2eAI9vdcTJbkyoDM8pPgsx4cy9KxJ8u+iuJn3adxX 6PuvVy53G9xwI/dD3rA2tshuPChozI6aXvdF0BLW1+ExGhukXusHprg2gkiNlBv0 cM6zMXJXpVGOPO2rERqeBB6jj4ghnhnyT3S5HzCCjWu+pU+USqSe5oRiF3GxjTLB CxQhgovwNu6dPepfbPrAvMM1Ae1weAZSBp+x43LaCIepu0fM7+EiYzePqrs+ZP1n KyPoMgzh6q3PCW7lXqkEsGQrSOGbSF3ygAg5HLSpfO24jZnPh0gWuAT+nloSa06+ RQZpeGPMlbITKCcPd51GbKjQd5Q1LBNy -----END CERTIFICATE-----Generated at Mon Oct 20 04:26:08 2025 by rpki-client