$ rpki-client -vvf rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft File: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft (raw, json) Hash identifier: UMjrrXhaVAl8TyRNV5UEwl4QlozeMxe89XPRJLwFBLw= Subject key identifier: 20:C9:DD:93:31:01:7A:DB:FC:B3:54:E9:82:F8:15:51:B3:F8:17:8D Authority key identifier: 68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 Certificate issuer: /CN=A91872ED/serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Certificate serial: 3566 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft Manifest number: 3514 Signing time: Sun 26 Oct 2025 14:17:46 +0000 Manifest this update: Sun 26 Oct 2025 14:17:46 +0000 Manifest next update: Sun 02 Nov 2025 14:17:46 +0000 Files and hashes: 1: aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl (hash: 7qc8HIVoNXAZilUFrBOWssHobcFhMKICb8qL7X7LgB8=) 2: 73E75DA6F94711EF9B713B3AC4F9AE02.roa (hash: jqW67pSJSIsRiaBgE6s/DK3BAL3JeM6fk0sbod9Ihss=) 3: 797B4DEC293B11E8B187196DC4F9AE02.roa (hash: m0T5p+j/9s+rm9D6YdSh//2Alx2Eae+Du8lbaB1hR7Y=) 4: 1921C8926CDF11EAB92A3A24C4F9AE02.roa (hash: IkqW+PwyXlQ+AUTKEJ4fHo5q5mHtKj5Ve8Q8p0ADu48=) 5: 35415D50FA7711EFB598EF54C4F9AE02.roa (hash: tqonfMb2T4kEzGLFTTW3PK/xQqepl87jr8dA78s4VGI=) 6: 749BE0C8F94711EF9B713B3AC4F9AE02.roa (hash: D48/pxU7MzDuerY2hyHqIJz8Ni5AYoPlrPyxeWvQn8M=) 7: 6A18A5B0F88811EF9CB20317C4F9AE02.roa (hash: H76rrDZxK8h/g51b1krAIQ2ulCKuPO82m4joCbnFfEs=) 8: 19ACBFF66CDF11EAB92A3A24C4F9AE02.roa (hash: rb6m6NgtqMNqMVoEYBcUFewdPh6xLzsagwAw8cSDCbE=) 9: EDCDDF00FA7811EFAF0CDF57C4F9AE02.roa (hash: kN3zyoollwJXDugnYM0yHLk48cRpRCSo426eiI4jnbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 14:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13670 (0x3566) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91872ED, serialNumber=68FAF9DACE19768CAC3D4ED7BB24372BFFA6D018 Validity Not Before: Oct 26 14:17:46 2025 GMT Not After : Nov 2 14:17:46 2025 GMT Subject: CN=68fe2d8a-8228 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c6:60:38:e1:d9:91:86:19:1e:86:7c:46:92: 30:cb:91:a3:6b:92:38:72:69:0f:e9:8a:ca:f1:62: c1:b5:7f:a0:b3:6d:87:61:c8:ee:c8:be:10:21:14: 1d:60:64:f3:32:2e:fc:90:28:58:a5:57:ca:f6:fe: df:f3:0b:d6:48:2d:6e:8b:8c:89:fd:97:4f:33:60: bf:e8:4c:b1:e0:6d:f7:0d:d6:01:c0:2f:71:91:91: 1b:d5:d1:36:58:6f:04:b9:2f:21:e7:ec:23:c3:d1: ab:43:77:d2:43:8d:6d:cd:db:30:18:b8:d2:8a:1f: d5:19:c6:1c:b6:20:3a:0b:b1:18:92:f0:07:42:4d: 47:59:33:76:84:74:16:9d:1b:9a:43:38:05:f3:83: 99:8c:d4:63:55:dd:b0:6c:e5:06:c3:70:89:81:22: 07:0f:e2:d5:59:4d:ec:3d:1d:2d:2b:6a:5e:44:93: 0f:32:2d:79:f9:f7:fe:3b:db:19:58:9d:3d:27:9e: 54:51:79:08:1f:39:6a:90:28:c5:27:39:58:3a:32: 0d:b0:d8:a9:66:6c:56:c7:e8:fa:db:ff:00:f6:6d: 1e:46:7f:8c:85:5b:c5:fe:7a:ce:15:02:e9:5b:19: 35:2c:90:b5:be:c5:10:66:3b:4a:16:cc:27:d8:52: 36:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:C9:DD:93:31:01:7A:DB:FC:B3:54:E9:82:F8:15:51:B3:F8:17:8D X509v3 Authority Key Identifier: keyid:68:FA:F9:DA:CE:19:76:8C:AC:3D:4E:D7:BB:24:37:2B:FF:A6:D0:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91872ED/ED8C96901D6C11E28A38A3AD08B02CD2/aPr52s4ZdoysPU7XuyQ3K_-m0Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:6c:d8:e1:af:f1:5d:8e:bb:51:0a:4e:8e:45:6a:72:63:d8: 2c:ef:33:d1:c0:9d:cb:ff:61:a3:5e:4d:ab:3d:44:52:40:6e: f9:b2:c1:71:bf:b6:25:bd:f1:75:71:96:a0:c4:04:77:d9:97: ae:43:ca:93:ba:45:62:52:0b:1b:32:a0:60:8b:b3:69:81:52: ea:ac:81:de:0e:2b:e2:a6:5b:bc:e2:55:d9:29:69:f8:ed:98: 59:b4:8b:80:12:b0:63:cd:13:22:6c:26:44:2f:32:78:db:a6: 2a:f3:10:13:0b:00:df:f6:86:c0:35:ad:85:5f:8a:83:00:77: c9:14:5c:37:c9:ee:92:5c:f1:c3:39:d0:7e:44:06:a8:c3:b8: c7:b6:d0:5b:ea:0c:c2:bb:45:54:2f:d5:62:f1:a3:16:36:43: aa:7a:99:76:5a:d0:c4:b1:47:37:97:1d:d5:97:18:b9:72:6c: 3e:73:40:2f:77:21:3a:a7:06:f4:71:cc:95:6c:21:75:51:fd: 86:59:e3:81:59:da:3b:02:3c:a1:be:4c:23:93:98:40:bf:82: 1f:d9:51:34:51:6c:ad:9d:42:05:ec:8c:2f:ef:49:fe:68:00: 59:da:2c:0e:65:3a:1f:6e:fc:f0:23:71:43:47:6f:c5:cc:59: fc:5c:e0:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcyRUQxMTAvBgNVBAUTKDY4RkFGOURBQ0UxOTc2OENBQzNENEVEN0JCMjQzNzJC RkZBNkQwMTgwHhcNMjUxMDI2MTQxNzQ2WhcNMjUxMTAyMTQxNzQ2WjAYMRYwFAYD VQQDEw02OGZlMmQ4YS04MjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8ZgOOHZkYYZHoZ8RpIwy5Gja5I4cmkP6YrK8WLBtX+gs22HYcjuyL4QIRQd YGTzMi78kChYpVfK9v7f8wvWSC1ui4yJ/ZdPM2C/6Eyx4G33DdYBwC9xkZEb1dE2 WG8EuS8h5+wjw9GrQ3fSQ41tzdswGLjSih/VGcYctiA6C7EYkvAHQk1HWTN2hHQW nRuaQzgF84OZjNRjVd2wbOUGw3CJgSIHD+LVWU3sPR0tK2peRJMPMi15+ff+O9sZ WJ09J55UUXkIHzlqkCjFJzlYOjINsNipZmxWx+j62/8A9m0eRn+MhVvF/nrOFQLp Wxk1LJC1vsUQZjtKFswn2FI2IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDJ3ZMx AXrb/LNU6YL4FVGz+BeNMB8GA1UdIwQYMBaAFGj6+drOGXaMrD1O17skNyv/ptAY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzJFRC9FRDhDOTY5MDFE NkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRveXNQVTdYdXlRM0tfLW0w QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FQcjUyczRaZG95c1BVN1h1eVEzS18tbTBCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzJFRC9FRDhDOTY5MDFENkMxMUUyOEEzOEEzQUQwOEIwMkNEMi9hUHI1MnM0WmRv eXNQVTdYdXlRM0tfLW0wQmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6bNjhr/FdjrtRCk6ORWpyY9gs7zPRwJ3L/2GjXk2rPURSQG75ssFx v7YlvfF1cZagxAR32ZeuQ8qTukViUgsbMqBgi7NpgVLqrIHeDiviplu84lXZKWn4 7ZhZtIuAErBjzRMibCZELzJ426Yq8xATCwDf9obANa2FX4qDAHfJFFw3ye6SXPHD OdB+RAaow7jHttBb6gzCu0VUL9Vi8aMWNkOqepl2WtDEsUc3lx3Vlxi5cmw+c0Av dyE6pwb0ccyVbCF1Uf2GWeOBWdo7Ajyhvkwjk5hAv4If2VE0UWytnUIF7Iwv70n+ aABZ2iwOZTofbvzwI3FDR2/FzFn8XOBU -----END CERTIFICATE-----Generated at Mon Oct 27 04:01:18 2025 by rpki-client