$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft File: 1bScAI9ih18VJth200lAoJsOnW0.mft (raw, json) Hash identifier: K0QYjG+oPB5alPg/ChRwa/y+XK+L2DwOlso5lVB50ps= Subject key identifier: 1E:05:1D:B8:33:B9:8D:91:A0:B9:C1:A0:FD:F2:D2:FE:47:B8:02:4E Authority key identifier: D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D Certificate issuer: /CN=A91FB434/serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Certificate serial: 1598 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft Manifest number: 1584 Signing time: Sat 18 Oct 2025 17:12:43 +0000 Manifest this update: Sat 18 Oct 2025 17:12:42 +0000 Manifest next update: Sat 25 Oct 2025 17:12:42 +0000 Files and hashes: 1: 1bScAI9ih18VJth200lAoJsOnW0.crl (hash: zgyTJGxYp7IUOvfoZnRCO2QGguNOTngd1MrJYZDKV8M=) 2: EC796D6C42D411E88EC29742C4F9AE02.roa (hash: 4omxKGchAtANINcKNMUv81DprGm9m6mhlkl3cRG7vXI=) 3: EB843B92329A11EE89CD8544C4F9AE02.roa (hash: b5yX1QAOSGwKLnK6fw3PZvYuW4+NY2un1A6EM1jEmyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:12:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5528 (0x1598) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB434, serialNumber=D5B49C008F62875F1526D876D34940A09B0E9D6D Validity Not Before: Oct 18 17:12:42 2025 GMT Not After : Oct 25 17:12:42 2025 GMT Subject: CN=68f3ca8b-a97b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c5:85:17:69:d2:a4:d4:99:63:28:b9:fe:39: 11:68:cf:1a:28:2d:e4:33:44:56:d5:93:0c:f0:92: 8b:4e:c5:ff:f8:f9:9e:d7:ed:4d:1e:70:76:ee:04: 89:f2:7f:6b:7d:d1:86:bb:d8:b9:2c:51:cc:f3:38: 1a:79:a7:85:d2:04:ed:85:3f:f0:07:73:b1:88:d0: bb:b8:4d:ea:14:de:cc:ed:48:06:4f:18:ff:cd:e0: 14:ce:1f:c6:b5:cd:c7:a3:98:2a:9a:a3:ed:b6:2c: 95:71:bb:c3:fd:7a:6f:03:ef:36:68:01:8b:6d:78: 57:c3:6b:33:b7:4f:aa:b7:73:02:32:da:91:0f:81: 56:2e:f5:19:cf:81:1b:aa:b5:c0:29:e7:37:41:70: f5:bf:f5:14:3c:a8:54:e6:8d:6f:85:ee:2f:05:7d: 65:ed:d8:34:66:1c:fa:f8:34:cb:fe:5a:a8:fb:74: 1c:e5:34:a8:bd:bf:42:5c:b5:45:53:60:76:35:f1: 6f:be:32:3a:9a:12:d6:96:1f:81:9b:a0:9f:19:41: 18:9b:01:67:7f:1b:e5:71:2b:66:d1:c3:2c:3c:99: 20:d2:f0:f8:33:b8:4d:da:83:15:86:5d:cb:ca:8b: 81:d9:41:72:c5:72:1a:be:96:1a:9b:39:c0:b2:dd: 07:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:05:1D:B8:33:B9:8D:91:A0:B9:C1:A0:FD:F2:D2:FE:47:B8:02:4E X509v3 Authority Key Identifier: keyid:D5:B4:9C:00:8F:62:87:5F:15:26:D8:76:D3:49:40:A0:9B:0E:9D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bScAI9ih18VJth200lAoJsOnW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB434/E2C6267642D311E8BBDC0941C4F9AE02/1bScAI9ih18VJth200lAoJsOnW0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:13:4a:eb:cf:5c:5e:bd:30:7b:21:61:90:09:46:f4:a3:52: cc:ac:87:0f:17:b6:f6:d8:cd:1e:69:fc:46:b8:a9:45:a5:f3: 55:b2:60:0b:fa:80:e2:f9:7a:89:e2:29:dc:fa:0e:15:d6:36: 6d:0f:de:f5:0a:7a:64:1c:ec:37:5b:ce:57:74:eb:b3:a1:b2: d4:f1:2d:df:95:67:6a:82:30:bc:36:5b:3e:84:b6:1b:09:1b: ce:0e:1e:4d:1a:82:32:fd:3f:c7:ac:a5:5a:be:5b:d9:39:41: 79:37:aa:2a:fa:f0:f2:85:94:55:db:e7:26:19:f5:ff:a7:96: 42:74:b2:a2:dd:27:48:e2:84:85:13:36:5b:cd:1d:c5:3b:30: 45:dc:7f:50:49:c4:bd:67:7e:9d:eb:07:c0:0e:67:24:05:9d: 84:eb:e6:a7:d3:9c:25:a1:e5:fa:62:08:a8:e7:6e:bc:5c:ac: 6d:eb:e8:cf:dd:ba:6e:46:01:c0:2e:e1:76:4e:25:c8:15:b9: 47:f0:5a:c2:b2:19:72:67:1b:d8:71:45:ea:74:20:22:8d:10: a5:59:8b:e7:e0:07:f1:0a:1c:36:fa:0d:5c:52:22:ca:ed:c2: fa:af:56:fe:07:d8:06:6f:66:3f:e1:0d:3d:e1:2b:97:90:d4: 5d:64:24:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI0MzQxMTAvBgNVBAUTKEQ1QjQ5QzAwOEY2Mjg3NUYxNTI2RDg3NkQzNDk0MEEw OUIwRTlENkQwHhcNMjUxMDE4MTcxMjQyWhcNMjUxMDI1MTcxMjQyWjAYMRYwFAYD VQQDEw02OGYzY2E4Yi1hOTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsWFF2nSpNSZYyi5/jkRaM8aKC3kM0RW1ZMM8JKLTsX/+Pme1+1NHnB27gSJ 8n9rfdGGu9i5LFHM8zgaeaeF0gTthT/wB3OxiNC7uE3qFN7M7UgGTxj/zeAUzh/G tc3Ho5gqmqPttiyVcbvD/XpvA+82aAGLbXhXw2szt0+qt3MCMtqRD4FWLvUZz4Eb qrXAKec3QXD1v/UUPKhU5o1vhe4vBX1l7dg0Zhz6+DTL/lqo+3Qc5TSovb9CXLVF U2B2NfFvvjI6mhLWlh+Bm6CfGUEYmwFnfxvlcStm0cMsPJkg0vD4M7hN2oMVhl3L youB2UFyxXIavpYamznAst0HIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB4FHbgz uY2RoLnBoP3y0v5HuAJOMB8GA1UdIwQYMBaAFNW0nACPYodfFSbYdtNJQKCbDp1t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjQzNC9FMkM2MjY3NjQy RDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgxOFZKdGgyMDBsQW9Kc09u VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFiU2NBSTlpaDE4Vkp0aDIwMGxBb0pzT25XMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjQzNC9FMkM2MjY3NjQyRDMxMUU4QkJEQzA5NDFDNEY5QUUwMi8xYlNjQUk5aWgx OFZKdGgyMDBsQW9Kc09uVzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHE0rrz1xevTB7IWGQCUb0o1LMrIcPF7b22M0eafxGuKlFpfNVsmAL +oDi+XqJ4inc+g4V1jZtD971CnpkHOw3W85XdOuzobLU8S3flWdqgjC8Nls+hLYb CRvODh5NGoIy/T/HrKVavlvZOUF5N6oq+vDyhZRV2+cmGfX/p5ZCdLKi3SdI4oSF EzZbzR3FOzBF3H9QScS9Z36d6wfADmckBZ2E6+an05wloeX6Ygio5268XKxt6+jP 3bpuRgHALuF2TiXIFblH8FrCshlyZxvYcUXqdCAijRClWYvn4AfxChw2+g1cUiLK 7cL6r1b+B9gGb2Y/4Q094SuXkNRdZCR2 -----END CERTIFICATE-----Generated at Mon Oct 20 04:10:26 2025 by rpki-client