$ rpki-client -vvf rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft File: 1RCJONILodf7ySo7qZ8tafyPSog.mft (raw, json) Hash identifier: UAaaekkTjyQYyjEBPHFMblytOYrGkxPkL6V9EikbvYQ= Subject key identifier: 5C:DC:FA:0D:D4:DA:98:F7:05:31:28:37:51:40:76:DC:55:3E:81:7E Authority key identifier: D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 Certificate issuer: /CN=A91836D8/serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft Manifest number: 61 Signing time: Fri 19 Sep 2025 07:52:08 +0000 Manifest this update: Fri 19 Sep 2025 07:52:07 +0000 Manifest next update: Fri 26 Sep 2025 07:52:07 +0000 Files and hashes: 1: 1RCJONILodf7ySo7qZ8tafyPSog.crl (hash: ohNCSfTm+HD+ctIY8eh9ioItF7OvLoqMF1Lr5+j+RsM=) 2: 2A0F594C07B911F0B93D3034C4F9AE02.roa (hash: GVWIdnLcZRWR+tzLNPpcN/HSXmru8qLQTVAk9bkN9LQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 07:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836D8, serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Validity Not Before: Sep 19 07:52:07 2025 GMT Not After : Sep 26 07:52:07 2025 GMT Subject: CN=68cd0ba8-3a82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:54:b8:ae:08:c2:27:57:37:b9:ca:5d:f2:98: 92:7b:2f:5a:9c:67:14:71:8f:0e:eb:6e:45:01:f3: b6:9d:1d:7c:fc:9c:66:09:2e:0f:eb:0f:01:2b:d9: 97:05:e4:ce:c5:a4:5d:8b:5a:1c:f5:5a:b7:0f:db: 46:2d:02:32:cc:bc:42:5b:95:3f:4c:8e:db:b0:d7: fe:50:b1:cc:69:6c:a0:ac:12:b0:4f:5b:ad:31:44: 48:c0:fb:d9:14:6f:21:f4:77:df:af:1a:90:11:53: 4d:19:fc:34:2b:0a:88:6d:5c:e9:91:2d:08:2f:fe: 2f:89:1c:6e:a3:3a:e4:c6:40:be:be:80:f9:46:59: 8e:d0:c5:fc:cd:29:4f:67:09:fa:0c:27:ec:64:aa: ce:fc:09:96:3e:6a:af:50:91:fa:93:0a:d5:9a:03: bc:bd:14:a4:86:51:0d:f5:85:b5:8c:5d:57:1a:d7: b4:a9:0d:84:6a:ed:ae:99:aa:aa:76:58:5e:c8:cd: a6:54:fe:96:70:ff:62:12:16:45:0a:be:96:16:ac: 32:11:19:59:45:29:36:fc:6f:1a:b4:e4:e6:93:32: bc:31:55:53:00:03:38:14:af:fc:0d:ae:f6:3e:80: f5:75:44:10:5f:ee:7e:47:be:5c:7f:d5:e9:ff:2a: e6:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:DC:FA:0D:D4:DA:98:F7:05:31:28:37:51:40:76:DC:55:3E:81:7E X509v3 Authority Key Identifier: keyid:D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:1d:85:7e:5f:9d:5d:bf:77:b9:4e:2e:fe:55:a1:33:67:5b: 3b:01:1f:8a:9d:99:d0:9d:e0:2c:65:8b:54:c5:7f:e9:18:bf: 13:d5:0e:8b:e0:df:0a:da:75:42:79:98:b9:cc:25:34:57:b5: 54:99:b1:1b:97:a8:1d:38:de:af:49:26:f8:74:d5:1d:29:88: cc:fa:59:01:5f:ea:bc:b5:f1:8c:e1:a8:13:c6:f5:55:d0:d7: 56:19:b1:e8:28:89:19:fa:d6:1f:3b:40:7e:31:c0:0d:96:9b: 92:45:48:9a:c3:f6:f1:00:4c:55:be:18:04:0a:b9:ea:b1:1e: 76:0f:71:55:a5:79:bb:64:ad:47:71:76:c7:f4:f9:b9:aa:40: 90:fa:10:d1:37:6d:73:c0:72:97:2f:2b:32:70:7d:e8:93:c1: 9f:86:90:df:7b:0e:b9:99:0d:04:df:c4:85:bd:b1:18:98:d8: 14:ab:4f:b2:02:0a:9a:2b:e9:6d:33:51:96:11:dd:23:d9:32: 75:ee:ba:d3:fc:04:36:cb:de:65:b1:3e:d2:75:f5:33:06:db: 97:08:23:a6:97:44:5d:a4:2f:56:57:59:e2:76:d9:98:8b:d7: 92:20:72:c4:fa:32:df:02:b6:5c:2d:0d:95:2d:d3:65:c9:af: 5c:aa:a0:61 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MzZEODExMC8GA1UEBRMoRDUxMDg5MzhEMjBCQTFEN0ZCQzkyQTNCQTk5RjJENjlG QzhGNEE4ODAeFw0yNTA5MTkwNzUyMDdaFw0yNTA5MjYwNzUyMDdaMBgxFjAUBgNV BAMTDTY4Y2QwYmE4LTNhODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDuVLiuCMInVze5yl3ymJJ7L1qcZxRxjw7rbkUB87adHXz8nGYJLg/rDwEr2ZcF 5M7FpF2LWhz1WrcP20YtAjLMvEJblT9Mjtuw1/5QscxpbKCsErBPW60xREjA+9kU byH0d9+vGpARU00Z/DQrCohtXOmRLQgv/i+JHG6jOuTGQL6+gPlGWY7QxfzNKU9n CfoMJ+xkqs78CZY+aq9QkfqTCtWaA7y9FKSGUQ31hbWMXVca17SpDYRq7a6Zqqp2 WF7IzaZU/pZw/2ISFkUKvpYWrDIRGVlFKTb8bxq05OaTMrwxVVMAAzgUr/wNrvY+ gPV1RBBf7n5Hvlx/1en/KuYRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXNz6DdTa mPcFMSg3UUB23FU+gX4wHwYDVR0jBBgwFoAU1RCJONILodf7ySo7qZ8tafyPSogw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgzNkQ4LzMyREFCMjkyMDdB RjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2RmN3lTbzdxWjh0YWZ5UFNv Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVJDSk9OSUxvZGY3eVNvN3FaOHRhZnlQU29nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgz NkQ4LzMyREFCMjkyMDdBRjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2Rm N3lTbzdxWjh0YWZ5UFNvZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABEdhX5fnV2/d7lOLv5VoTNnWzsBH4qdmdCd4Cxli1TFf+kYvxPVDovg 3wradUJ5mLnMJTRXtVSZsRuXqB043q9JJvh01R0piMz6WQFf6ry18YzhqBPG9VXQ 11YZsegoiRn61h87QH4xwA2Wm5JFSJrD9vEATFW+GAQKueqxHnYPcVWlebtkrUdx dsf0+bmqQJD6ENE3bXPAcpcvKzJwfeiTwZ+GkN97DrmZDQTfxIW9sRiY2BSrT7IC Cpor6W0zUZYR3SPZMnXuutP8BDbL3mWxPtJ19TMG25cII6aXRF2kL1ZXWeJ22ZiL 15IgcsT6Mt8CtlwtDZUt02XJr1yqoGE= -----END CERTIFICATE-----Generated at Fri Sep 19 13:05:27 2025 by rpki-client