$ rpki-client -vvf rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft File: 0efCSnRBTL3c_NiORsXVzTs-rtc.mft (raw, json) Hash identifier: 1O21fuGVdyXUvab3nHpuocLhigaQFZYosgNKiLxb7no= Subject key identifier: 97:CC:A2:9B:C6:10:A7:2B:C4:D6:02:57:B7:E2:C0:47:3A:99:85:9D Authority key identifier: D1:E7:C2:4A:74:41:4C:BD:DC:FC:D8:8E:46:C5:D5:CD:3B:3E:AE:D7 Certificate issuer: /CN=A91606AF/serialNumber=D1E7C24A74414CBDDCFCD88E46C5D5CD3B3EAED7 Certificate serial: 073F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft Manifest number: 0726 Signing time: Fri 24 Oct 2025 22:53:49 +0000 Manifest this update: Fri 24 Oct 2025 22:53:48 +0000 Manifest next update: Fri 31 Oct 2025 22:53:48 +0000 Files and hashes: 1: 0efCSnRBTL3c_NiORsXVzTs-rtc.crl (hash: UrQg62KkSslOvCBu2o3hTUYaQsbAffoDxQFUvE38nhI=) 2: 8C2D64121CB011EDA4740D7EC4F9AE02.roa (hash: +fRxqOXyB3e8V6DJsPZloFZurNNVr8ZfU/q63aOPSF0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.crl rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 22:53:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1855 (0x73f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91606AF, serialNumber=D1E7C24A74414CBDDCFCD88E46C5D5CD3B3EAED7 Validity Not Before: Oct 24 22:53:48 2025 GMT Not After : Oct 31 22:53:48 2025 GMT Subject: CN=68fc037c-44f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:44:51:97:a3:b0:37:9a:50:5e:4d:8a:1d:3e: b8:01:2a:95:b8:e2:53:d4:dd:6c:60:8a:61:1d:2e: 89:61:e7:6d:5b:b2:6c:a7:35:e9:5d:05:03:46:8b: 55:61:e1:ab:4f:87:96:25:c3:f1:42:c8:97:5a:be: 75:25:04:67:1d:6c:30:b1:a5:9a:c4:21:5c:cf:19: 95:09:00:1c:07:0d:1e:8a:93:2e:95:ed:7b:aa:bd: c0:73:d0:4d:11:e2:99:85:ad:91:1f:b0:8f:e0:af: f9:e9:24:7e:a7:d3:fa:d2:4a:61:29:4e:b1:0c:9a: e3:ae:10:06:fd:dc:e8:66:d5:d3:cb:ed:01:ba:34: 00:19:27:ce:3d:6d:90:82:41:ec:d8:6a:58:03:bd: 55:68:fb:ab:80:9b:39:db:7a:7e:87:47:99:b3:ad: 02:8b:21:b0:09:2a:93:6e:30:65:b8:12:31:cf:4c: 21:5a:3b:2e:e3:21:e2:6d:f0:d1:e0:fb:72:64:b6: 92:d0:c9:dd:f6:eb:f1:cc:84:49:c9:a8:58:db:8d: 2e:e1:92:44:f5:30:f2:a0:99:98:a2:91:7c:5c:cf: 56:a6:43:75:6a:a0:9a:11:2b:a6:72:3f:1d:34:ce: a5:b1:e8:91:da:45:c6:24:b9:9d:77:03:ca:71:e7: 7a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:CC:A2:9B:C6:10:A7:2B:C4:D6:02:57:B7:E2:C0:47:3A:99:85:9D X509v3 Authority Key Identifier: keyid:D1:E7:C2:4A:74:41:4C:BD:DC:FC:D8:8E:46:C5:D5:CD:3B:3E:AE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0efCSnRBTL3c_NiORsXVzTs-rtc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91606AF/A0958F305ECD11EB90876372C4F9AE02/0efCSnRBTL3c_NiORsXVzTs-rtc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:5c:f7:4d:4c:ed:49:83:7b:97:22:8c:da:b0:75:f3:00:a3: 38:b5:27:02:df:6a:32:6f:4e:fd:3e:25:54:ac:b9:28:c6:2a: 43:d7:63:9e:cc:d0:b5:0a:cc:ca:02:9e:3d:20:5a:65:ff:de: 67:f2:80:48:3c:2e:53:18:e3:98:59:7c:35:2d:ad:37:89:b1: 11:f8:05:ac:92:bf:20:6f:96:61:16:83:1c:51:79:58:fd:29: a2:fc:3c:a2:91:9c:dc:3b:99:0b:34:a7:99:1b:c1:eb:8c:ba: 48:3a:19:0b:b3:2e:21:d6:30:1a:1f:52:19:dd:6d:a2:cb:61: 5e:7f:a9:64:ce:4b:72:80:50:99:0c:b7:1e:69:0e:23:fe:87: 4c:9a:57:38:c6:ee:15:02:18:61:50:b6:ac:3c:cf:a3:3d:ec: 9e:0f:35:e4:5c:38:ce:0b:34:55:2d:6b:a0:f4:a6:01:b0:68: 01:5e:65:28:6d:7b:e1:c2:f0:69:89:13:b1:a6:68:be:a5:11: db:63:57:0f:c9:bc:65:e1:a9:0e:95:91:26:b0:f2:c6:73:2e: 19:56:f1:20:ae:af:9e:a3:ec:3c:3e:e8:b0:c9:50:3f:3a:8b: b3:d2:38:1b:74:b0:70:3a:0b:3f:08:ff:3b:57:5e:a7:27:f3: 43:da:ee:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA2QUYxMTAvBgNVBAUTKEQxRTdDMjRBNzQ0MTRDQkREQ0ZDRDg4RTQ2QzVENUNE M0IzRUFFRDcwHhcNMjUxMDI0MjI1MzQ4WhcNMjUxMDMxMjI1MzQ4WjAYMRYwFAYD VQQDEw02OGZjMDM3Yy00NGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyERRl6OwN5pQXk2KHT64ASqVuOJT1N1sYIphHS6JYedtW7JspzXpXQUDRotV YeGrT4eWJcPxQsiXWr51JQRnHWwwsaWaxCFczxmVCQAcBw0eipMule17qr3Ac9BN EeKZha2RH7CP4K/56SR+p9P60kphKU6xDJrjrhAG/dzoZtXTy+0BujQAGSfOPW2Q gkHs2GpYA71VaPurgJs523p+h0eZs60CiyGwCSqTbjBluBIxz0whWjsu4yHibfDR 4PtyZLaS0Mnd9uvxzIRJyahY240u4ZJE9TDyoJmYopF8XM9WpkN1aqCaESumcj8d NM6lseiR2kXGJLmddwPKced6/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJfMopvG EKcrxNYCV7fiwEc6mYWdMB8GA1UdIwQYMBaAFNHnwkp0QUy93PzYjkbF1c07Pq7X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDZBRi9BMDk1OEYzMDVF Q0QxMUVCOTA4NzYzNzJDNEY5QUUwMi8wZWZDU25SQlRMM2NfTmlPUnNYVnpUcy1y dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBlZkNTblJCVEwzY19OaU9Sc1hWelRzLXJ0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDZBRi9BMDk1OEYzMDVFQ0QxMUVCOTA4NzYzNzJDNEY5QUUwMi8wZWZDU25SQlRM M2NfTmlPUnNYVnpUcy1ydGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWXPdNTO1Jg3uXIozasHXzAKM4tScC32oyb079PiVUrLkoxipD12Oe zNC1CszKAp49IFpl/95n8oBIPC5TGOOYWXw1La03ibER+AWskr8gb5ZhFoMcUXlY /Smi/DyikZzcO5kLNKeZG8HrjLpIOhkLsy4h1jAaH1IZ3W2iy2Fef6lkzktygFCZ DLceaQ4j/odMmlc4xu4VAhhhULasPM+jPeyeDzXkXDjOCzRVLWug9KYBsGgBXmUo bXvhwvBpiROxpmi+pRHbY1cPybxl4akOlZEmsPLGcy4ZVvEgrq+eo+w8PuiwyVA/ Oouz0jgbdLBwOgs/CP87V16nJ/ND2u7m -----END CERTIFICATE-----Generated at Sun Oct 26 16:12:21 2025 by rpki-client