$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: R9Ph8K6jTeU8DT72AaZ/wfo2pnAyhMOHWyq2MnRM19c= Subject key identifier: F8:48:5D:29:9F:C2:AD:85:6F:92:35:C0:69:52:66:2E:0F:07:42:8F Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 020F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 0203 Signing time: Mon 03 Nov 2025 02:24:20 +0000 Manifest this update: Mon 03 Nov 2025 02:24:20 +0000 Manifest next update: Mon 10 Nov 2025 02:24:20 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: ulIy6plBvPfoUeLs/kWbHfaZHxEzNYNjF7+8kE27OZo=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: p8fvqZ7Alg5roEiASszoiJIP01rninX1g3Jc6iC5JJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:24:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 527 (0x20f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9, serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Nov 3 02:24:20 2025 GMT Not After : Nov 10 02:24:20 2025 GMT Subject: CN=69081254-eda0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:01:88:ac:06:90:1f:20:33:71:f1:f2:c3:36: d4:9b:38:e7:01:bc:b0:55:33:cb:63:e5:c0:56:8b: 79:cd:c8:94:54:67:8c:fb:d7:ed:be:5a:23:36:d8: d3:c8:94:cb:01:f0:6a:da:9e:55:fd:53:ec:18:48: ef:31:29:d8:be:d2:b8:69:53:f5:40:68:25:d0:0f: 2b:eb:06:00:c8:d4:0c:05:f3:cc:ba:68:42:0e:79: 68:29:ec:4b:ff:c1:85:b2:e2:59:0b:ad:4d:9f:43: cc:35:14:b3:b3:ca:56:78:b5:20:58:e5:15:16:a0: 7a:b7:64:01:c3:04:d7:b5:f5:72:f0:40:82:59:e7: 19:c5:20:fc:4f:f6:55:ac:2f:fe:37:c3:ff:74:6f: 3d:af:95:a8:a3:1d:9a:5b:d6:a8:76:0a:80:e6:76: 3b:77:1d:5c:a3:0b:12:fb:ca:5e:27:e8:c5:86:d6: a0:c6:f1:67:60:13:7b:ea:e7:e9:eb:1f:e1:c7:78: 27:e9:67:4e:73:d5:0a:29:3e:65:97:5c:28:09:3f: 84:e9:b9:88:9e:43:0d:5d:77:3c:4a:cf:6f:84:e7: 24:8e:19:2f:5a:8c:1b:c0:84:f8:39:7c:5c:23:fa: e1:f8:5c:a3:2b:50:b4:23:af:a2:78:e3:bf:a5:9a: 47:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:48:5D:29:9F:C2:AD:85:6F:92:35:C0:69:52:66:2E:0F:07:42:8F X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:61:26:97:ce:2d:4b:ae:0c:a4:90:e0:e0:99:35:d7:ea:2f: 4e:22:f2:e6:bf:ee:96:8b:a9:50:e6:6b:b7:11:cd:1c:51:8e: da:46:57:0f:03:3a:92:9f:16:54:d0:37:4d:3f:6e:c9:03:86: 9c:90:63:7f:f2:d8:4c:35:ac:bb:97:a4:d4:85:82:66:0c:8c: 23:9d:9a:38:9a:38:9c:79:f6:55:17:d5:c2:6e:d7:f3:fa:f0: 2f:24:9d:91:d5:73:15:03:3e:6c:bf:ea:11:f6:66:f6:89:f8: 7b:0a:f7:6d:e9:e8:15:69:d3:fc:8c:98:15:c8:c3:3a:54:ca: 77:69:6b:73:04:81:ea:d7:e9:7a:69:ce:09:cd:b0:ad:1b:0a: 4a:2f:97:aa:ab:a1:0d:63:e4:42:9c:97:c8:1e:b9:25:09:16: 76:0f:0f:b2:4b:70:c9:ee:5a:88:28:5e:e0:ea:ba:27:7d:7e: f4:e8:d6:22:a0:9d:d8:3e:3f:c4:ee:94:21:07:98:c2:04:b2: 2e:22:05:25:ea:eb:b9:d5:7b:1c:c7:c7:9c:e5:ff:36:8b:28: 0e:9e:5b:7e:30:55:e4:da:c8:ec:20:73:e8:ca:c8:4d:b5:26: c6:49:49:d4:a4:df:f0:b4:41:1b:52:1e:b6:ab:a2:0d:58:a0: 36:58:75:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjUxMTAzMDIyNDIwWhcNMjUxMTEwMDIyNDIwWjAYMRYwFAYD VQQDEw02OTA4MTI1NC1lZGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwGIrAaQHyAzcfHywzbUmzjnAbywVTPLY+XAVot5zciUVGeM+9ftvlojNtjT yJTLAfBq2p5V/VPsGEjvMSnYvtK4aVP1QGgl0A8r6wYAyNQMBfPMumhCDnloKexL /8GFsuJZC61Nn0PMNRSzs8pWeLUgWOUVFqB6t2QBwwTXtfVy8ECCWecZxSD8T/ZV rC/+N8P/dG89r5Woox2aW9aodgqA5nY7dx1cowsS+8peJ+jFhtagxvFnYBN76ufp 6x/hx3gn6WdOc9UKKT5ll1woCT+E6bmInkMNXXc8Ss9vhOckjhkvWowbwIT4OXxc I/rh+FyjK1C0I6+ieOO/pZpH5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPhIXSmf wq2Fb5I1wGlSZi4PB0KPMB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjYSaXzi1LrgykkODgmTXX6i9OIvLmv+6Wi6lQ5mu3Ec0cUY7aRlcP AzqSnxZU0DdNP27JA4ackGN/8thMNay7l6TUhYJmDIwjnZo4mjicefZVF9XCbtfz +vAvJJ2R1XMVAz5sv+oR9mb2ifh7Cvdt6egVadP8jJgVyMM6VMp3aWtzBIHq1+l6 ac4JzbCtGwpKL5eqq6ENY+RCnJfIHrklCRZ2Dw+yS3DJ7lqIKF7g6ronfX706NYi oJ3YPj/E7pQhB5jCBLIuIgUl6uu51Xscx8ec5f82iygOnlt+MFXk2sjsIHPoyshN tSbGSUnUpN/wtEEbUh62q6INWKA2WHVI -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:31 2025 by rpki-client