$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft File: _lDDhdnrGeLvoU-jWtpb3qW0VtM.mft (raw, json) Hash identifier: BzK4sSGB3hZ2y+eOBo17M1gsB8HGX7VhxmNs3or8h+c= Subject key identifier: F0:1E:5C:E9:34:B8:38:4D:2A:41:42:7E:0C:A0:D8:2B:1F:43:17:AA Authority key identifier: FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3 Certificate issuer: /CN=A91F17B1/serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3 Certificate serial: 05D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft Manifest number: 05AD Signing time: Sun 19 Oct 2025 00:59:32 +0000 Manifest this update: Sun 19 Oct 2025 00:59:31 +0000 Manifest next update: Sun 26 Oct 2025 00:59:31 +0000 Files and hashes: 1: _lDDhdnrGeLvoU-jWtpb3qW0VtM.crl (hash: +CuEZlHFNsAWAKLIjFvCjLCIgvLK+x9dahmO75nG9BE=) 2: 65DFCD4A884D11EE8423C486C4F9AE02.roa (hash: Ji5QHhKyC9d/xw16UVd29SWOnnXI9pwAI1DiN2SnuG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.crl rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:59:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1495 (0x5d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17B1, serialNumber=FE50C385D9EB19E2EFA14FA35ADA5BDEA5B456D3 Validity Not Before: Oct 19 00:59:31 2025 GMT Not After : Oct 26 00:59:31 2025 GMT Subject: CN=68f437f3-1518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fa:c6:32:7e:9f:ea:af:f4:9c:45:b5:b5:d5: b5:21:8b:3a:1e:5b:09:cb:51:ae:e1:68:1b:e3:73: 26:92:c3:fa:c2:68:e1:84:de:4c:4b:74:04:e8:20: 28:ef:2f:5b:2d:1a:e3:68:dd:d8:08:07:43:ab:95: ba:03:bc:91:73:00:f8:9c:e4:97:9b:a8:77:ff:c1: b8:3d:7f:0f:b7:22:c6:ac:4e:aa:dc:45:46:e9:34: 8b:0e:e8:19:47:cc:12:17:d2:bc:0d:c0:f3:a5:fd: 94:ba:18:fc:70:db:91:58:5b:00:e9:b8:ea:6f:9b: 6d:8e:7f:97:92:3d:80:2d:ac:c3:c0:8f:27:ed:2c: 45:16:2a:f9:70:48:df:52:61:60:9c:38:a8:2e:d2: f8:0f:db:03:84:a1:28:73:be:d8:71:94:26:b4:99: 5e:0e:88:8e:94:fd:09:78:47:a6:5e:e9:17:e6:8b: 2e:be:db:11:42:bb:8f:82:a0:a7:d6:aa:67:73:43: 9a:e0:52:7f:b0:75:ff:9d:77:f1:36:11:66:52:4d: 70:b6:92:ac:c1:f1:94:07:05:57:d2:a9:03:d1:96: bc:40:17:2a:69:9e:db:a9:6e:b1:a7:43:e1:19:ae: 0c:c9:a8:ad:d1:ae:b8:15:fd:5f:40:29:ae:8a:9d: ed:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:1E:5C:E9:34:B8:38:4D:2A:41:42:7E:0C:A0:D8:2B:1F:43:17:AA X509v3 Authority Key Identifier: keyid:FE:50:C3:85:D9:EB:19:E2:EF:A1:4F:A3:5A:DA:5B:DE:A5:B4:56:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_lDDhdnrGeLvoU-jWtpb3qW0VtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17B1/66E4E4F6FB4011EBBAB0DA3BC4F9AE02/_lDDhdnrGeLvoU-jWtpb3qW0VtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:85:56:84:26:27:a1:55:61:dc:49:a0:ba:26:4c:08:b0:fe: fe:6e:16:12:a7:33:29:00:21:ca:60:e8:4a:b3:f8:9a:94:4a: 01:d5:86:20:a7:66:c3:22:0e:c6:e0:c5:f4:ec:3b:20:bc:cb: 72:27:bc:75:d1:59:f3:e7:21:d0:f0:a1:a4:3b:b1:79:02:2b: 72:f7:2a:79:cf:a0:bc:49:1d:3d:c5:5b:26:1b:70:da:01:f9: eb:50:72:2e:51:36:cb:56:6d:13:ce:31:81:b5:ef:3d:ae:a4: fa:9c:10:8e:ad:99:47:84:c1:d9:b6:dd:61:2a:ca:f3:b9:86: 95:50:fa:7b:8e:2e:b1:1d:3e:73:61:7c:6f:80:7a:36:e2:ec: 53:34:91:7f:4c:a3:6c:20:04:fb:38:c4:33:1a:9f:ed:6b:d2: aa:52:d1:47:cd:c7:ab:4c:ba:db:5f:fe:05:4c:47:34:9f:54: 17:c6:4b:92:a4:be:f1:ee:58:44:c8:f8:8c:16:df:46:77:0e: 00:a2:4b:83:93:c5:25:7a:66:ef:fc:5a:e8:d3:91:d7:ac:5c: 95:92:ae:c7:d6:af:e2:ed:76:f2:6b:ea:68:88:14:1f:87:45: 2f:eb:13:29:f3:a7:e8:0a:13:95:f3:ca:7c:f1:91:d4:dc:e3: dd:0f:2a:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3QjExMTAvBgNVBAUTKEZFNTBDMzg1RDlFQjE5RTJFRkExNEZBMzVBREE1QkRF QTVCNDU2RDMwHhcNMjUxMDE5MDA1OTMxWhcNMjUxMDI2MDA1OTMxWjAYMRYwFAYD VQQDEw02OGY0MzdmMy0xNTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvrGMn6f6q/0nEW1tdW1IYs6HlsJy1Gu4Wgb43MmksP6wmjhhN5MS3QE6CAo 7y9bLRrjaN3YCAdDq5W6A7yRcwD4nOSXm6h3/8G4PX8PtyLGrE6q3EVG6TSLDugZ R8wSF9K8DcDzpf2Uuhj8cNuRWFsA6bjqb5ttjn+Xkj2ALazDwI8n7SxFFir5cEjf UmFgnDioLtL4D9sDhKEoc77YcZQmtJleDoiOlP0JeEemXukX5osuvtsRQruPgqCn 1qpnc0Oa4FJ/sHX/nXfxNhFmUk1wtpKswfGUBwVX0qkD0Za8QBcqaZ7bqW6xp0Ph Ga4Myait0a64Ff1fQCmuip3ttwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPAeXOk0 uDhNKkFCfgyg2CsfQxeqMB8GA1UdIwQYMBaAFP5Qw4XZ6xni76FPo1raW96ltFbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdCMS82NkU0RTRGNkZC NDAxMUVCQkFCMERBM0JDNEY5QUUwMi9fbEREaGRuckdlTHZvVS1qV3RwYjNxVzBW dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19sRERoZG5yR2VMdm9VLWpXdHBiM3FXMFZ0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MTdCMS82NkU0RTRGNkZCNDAxMUVCQkFCMERBM0JDNEY5QUUwMi9fbEREaGRuckdl THZvVS1qV3RwYjNxVzBWdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3hVaEJiehVWHcSaC6JkwIsP7+bhYSpzMpACHKYOhKs/ialEoB1YYg p2bDIg7G4MX07DsgvMtyJ7x10Vnz5yHQ8KGkO7F5Aity9yp5z6C8SR09xVsmG3Da AfnrUHIuUTbLVm0TzjGBte89rqT6nBCOrZlHhMHZtt1hKsrzuYaVUPp7ji6xHT5z YXxvgHo24uxTNJF/TKNsIAT7OMQzGp/ta9KqUtFHzcerTLrbX/4FTEc0n1QXxkuS pL7x7lhEyPiMFt9Gdw4AokuDk8Ulembv/Fro05HXrFyVkq7H1q/i7Xbya+poiBQf h0Uv6xMp86foChOV88p88ZHU3OPdDypX -----END CERTIFICATE-----Generated at Mon Oct 20 01:48:18 2025 by rpki-client