$ rpki-client -vvf rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft File: 1RCJONILodf7ySo7qZ8tafyPSog.mft (raw, json) Hash identifier: AHKHTu0fZt/xCRn+D/Vw69I6OH+ZT/3ZVL380cMemaw= Subject key identifier: 60:3A:15:46:9E:43:BB:4A:4C:1C:7D:74:6C:D3:EB:6E:6E:A3:60:4B Authority key identifier: D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 Certificate issuer: /CN=A91836D8/serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft Manifest number: 78 Signing time: Wed 05 Nov 2025 07:03:07 +0000 Manifest this update: Wed 05 Nov 2025 07:03:06 +0000 Manifest next update: Wed 12 Nov 2025 07:03:06 +0000 Files and hashes: 1: 1RCJONILodf7ySo7qZ8tafyPSog.crl (hash: TdPLlnH7kiB1RGwZOUAKdf5T+uZ90/RRZEitMDYAk2M=) 2: 2A0F594C07B911F0B93D3034C4F9AE02.roa (hash: GVWIdnLcZRWR+tzLNPpcN/HSXmru8qLQTVAk9bkN9LQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:03:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836D8, serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Validity Not Before: Nov 5 07:03:06 2025 GMT Not After : Nov 12 07:03:06 2025 GMT Subject: CN=690af6aa-1766 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:85:01:d6:14:59:35:7f:5d:76:23:2d:a4:ed: 91:67:17:1e:63:ce:94:36:b1:3f:27:56:95:ab:90: 05:2e:a5:b0:a1:c9:6e:95:ec:54:22:48:b6:6d:4f: d0:e3:b1:ff:19:34:eb:d1:a2:07:30:07:ac:c5:be: 02:a6:0e:33:ae:6e:58:40:3d:b2:0e:89:f3:fe:d6: f8:ce:c7:42:67:e7:91:bf:fd:d2:08:4b:de:a1:08: 7d:f9:fe:21:44:c2:5b:74:c7:aa:e4:23:bb:1f:6b: e2:36:91:78:7d:35:b1:0a:9f:d3:3d:32:c8:16:e1: 7f:59:3a:b2:37:9f:ad:b6:44:c7:b4:17:4b:4c:b0: e4:ca:55:a3:d4:0c:fe:2c:b8:a2:43:9a:90:f9:37: 99:a0:49:7e:ef:2f:5e:64:79:d1:73:17:4e:c8:1d: d9:a9:a2:b7:5f:93:97:c7:51:96:f1:a4:1b:50:73: d2:f2:c4:7e:d2:4e:7f:0a:e3:84:63:57:ce:62:55: 07:bc:33:11:b9:1f:c2:fd:d7:f7:a5:75:e7:18:80: 70:7f:65:ed:50:07:a9:22:79:09:ba:46:6b:78:61: 4e:fd:c2:93:42:a6:09:da:90:da:28:b1:05:d6:ad: 32:bf:55:b4:74:22:38:93:2f:46:78:9a:50:19:d6: d5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:3A:15:46:9E:43:BB:4A:4C:1C:7D:74:6C:D3:EB:6E:6E:A3:60:4B X509v3 Authority Key Identifier: keyid:D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:cf:10:07:31:0d:49:68:8d:d8:d9:19:73:23:a6:0c:c7:30: cf:ca:a5:f0:67:ca:40:b9:07:02:e6:a6:57:49:bf:76:ac:93: 0f:94:4c:9f:27:3d:a0:ff:d8:98:f8:75:d5:49:62:60:fc:38: f2:d8:c3:e4:8a:39:00:60:35:d2:47:d7:78:dd:0a:56:d3:11: ae:70:a7:80:d2:71:35:00:e2:fa:7c:26:e8:22:db:6c:9e:55: f1:e2:fd:d6:ef:05:8c:b0:24:25:2d:d2:e4:8a:4a:26:aa:3b: c7:78:63:1c:8b:56:0e:cb:c2:45:e7:8e:15:90:46:97:6e:c5: 1f:74:14:56:9c:6d:39:a7:27:d7:b0:5e:37:2e:93:ab:a9:d1: e2:dd:6c:4e:97:ca:32:24:f3:b9:b9:c0:50:f7:38:48:eb:6e: 44:20:36:d1:04:dc:3c:ee:91:01:ca:75:2a:d5:b3:b3:2d:0e: 38:37:14:26:2b:20:71:dc:de:ef:8a:9a:6a:50:d1:5d:b5:75: ac:51:0d:9e:d9:35:f7:3d:30:16:d3:6f:ae:42:83:bb:52:a2: 59:5b:8d:1f:07:7a:41:dd:0a:ac:f5:e7:97:73:df:ad:2f:73: cc:ea:d9:19:6f:59:4b:61:ce:37:bf:be:4f:ca:6b:27:96:eb: 17:ac:06:b0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MzZEODExMC8GA1UEBRMoRDUxMDg5MzhEMjBCQTFEN0ZCQzkyQTNCQTk5RjJENjlG QzhGNEE4ODAeFw0yNTExMDUwNzAzMDZaFw0yNTExMTIwNzAzMDZaMBgxFjAUBgNV BAMTDTY5MGFmNmFhLTE3NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDyhQHWFFk1f112Iy2k7ZFnFx5jzpQ2sT8nVpWrkAUupbChyW6V7FQiSLZtT9Dj sf8ZNOvRogcwB6zFvgKmDjOublhAPbIOifP+1vjOx0Jn55G//dIIS96hCH35/iFE wlt0x6rkI7sfa+I2kXh9NbEKn9M9MsgW4X9ZOrI3n622RMe0F0tMsOTKVaPUDP4s uKJDmpD5N5mgSX7vL15kedFzF07IHdmpordfk5fHUZbxpBtQc9LyxH7STn8K44Rj V85iVQe8MxG5H8L91/eldecYgHB/Ze1QB6kieQm6Rmt4YU79wpNCpgnakNoosQXW rTK/VbR0IjiTL0Z4mlAZ1tV3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYDoVRp5D u0pMHH10bNPrbm6jYEswHwYDVR0jBBgwFoAU1RCJONILodf7ySo7qZ8tafyPSogw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgzNkQ4LzMyREFCMjkyMDdB RjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2RmN3lTbzdxWjh0YWZ5UFNv Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVJDSk9OSUxvZGY3eVNvN3FaOHRhZnlQU29nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgz NkQ4LzMyREFCMjkyMDdBRjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2Rm N3lTbzdxWjh0YWZ5UFNvZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACrPEAcxDUlojdjZGXMjpgzHMM/KpfBnykC5BwLmpldJv3askw+UTJ8n PaD/2Jj4ddVJYmD8OPLYw+SKOQBgNdJH13jdClbTEa5wp4DScTUA4vp8Jugi22ye VfHi/dbvBYywJCUt0uSKSiaqO8d4YxyLVg7LwkXnjhWQRpduxR90FFacbTmnJ9ew Xjcuk6up0eLdbE6XyjIk87m5wFD3OEjrbkQgNtEE3DzukQHKdSrVs7MtDjg3FCYr IHHc3u+KmmpQ0V21daxRDZ7ZNfc9MBbTb65Cg7tSollbjR8HekHdCqz155dz360v c8zq2RlvWUthzje/vk/KayeW6xesBrA= -----END CERTIFICATE-----Generated at Wed Nov 5 14:31:29 2025 by rpki-client