$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft File: 1Sj61Lh2q_twrziSIg8pPheRtrw.mft (raw, json) Hash identifier: EGba/7j8Dp9a2jvuO9Y3MfNWtShlfy8Cjdk69ScuMiA= Subject key identifier: 9E:4F:19:35:2E:D4:FD:BF:7C:A6:2A:BB:F7:D8:74:CF:B6:16:77:14 Authority key identifier: D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC Certificate issuer: /CN=A91CE6C5/serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Certificate serial: 0389 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft Manifest number: 037D Signing time: Mon 27 Oct 2025 02:17:46 +0000 Manifest this update: Mon 27 Oct 2025 02:17:46 +0000 Manifest next update: Mon 03 Nov 2025 02:17:46 +0000 Files and hashes: 1: 1Sj61Lh2q_twrziSIg8pPheRtrw.crl (hash: U4OrvR4NP2dhOf/bVDgSr5o6A9Nl6YP+LbTpdKZhZhs=) 2: C0E56FB2D56B11EFB540FB53C4F9AE02.roa (hash: WjUHxTEWTF20WZmvNCerm3WpHrjM2Bec4x3sz7dnvmU=) 3: A0841A68D0D511EC81001E73C4F9AE02.roa (hash: 28rk2f2SK8fYlNSOWgKUvbvWyh9sktvms5gVEW96hEM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 02:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 905 (0x389) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6C5, serialNumber=D528FAD4B876ABFB70AF3892220F293E1791B6BC Validity Not Before: Oct 27 02:17:46 2025 GMT Not After : Nov 3 02:17:46 2025 GMT Subject: CN=68fed64a-9fe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0d:10:0c:30:1f:2c:88:26:86:1c:37:b3:98: 83:b1:30:04:0c:1e:62:12:f0:7c:ab:61:d2:8b:71: bf:a8:f8:7d:43:54:6b:3a:cf:d8:9f:b8:07:dd:1c: 0c:54:41:ba:95:77:29:a5:44:68:6a:a4:67:f7:8d: 64:f6:0e:1a:f7:92:42:33:07:c2:18:79:24:5d:a6: ef:11:ca:6e:83:ff:69:a5:70:3e:66:e9:b8:9e:71: 7c:4f:6a:04:70:0a:8c:3b:52:aa:57:d6:cc:8b:87: 6f:56:52:83:24:ee:15:aa:19:c7:5e:f1:ad:91:43: f4:86:d4:df:bc:b6:2d:bb:98:92:b4:51:dc:98:b5: aa:6f:e2:7d:3c:91:3f:3e:8a:de:5d:64:6a:05:6c: 36:95:df:14:2e:41:6d:43:8c:e5:3c:12:15:ba:9b: cc:39:5b:7a:83:e7:00:ee:fc:d0:5c:cb:7c:dd:49: 76:9b:0c:b3:55:a8:16:cf:60:35:e2:84:5d:79:0e: 42:78:48:80:d0:b3:1e:d8:1e:79:62:7f:04:ed:e6: 45:fb:aa:ba:8a:4d:1f:8b:dd:7e:bf:63:d0:2b:99: 45:02:d6:20:b9:00:2d:ac:45:70:35:fd:4f:c4:80: 20:22:78:bf:6f:35:1f:9c:bd:aa:26:7e:24:5f:64: 55:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:4F:19:35:2E:D4:FD:BF:7C:A6:2A:BB:F7:D8:74:CF:B6:16:77:14 X509v3 Authority Key Identifier: keyid:D5:28:FA:D4:B8:76:AB:FB:70:AF:38:92:22:0F:29:3E:17:91:B6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Sj61Lh2q_twrziSIg8pPheRtrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6C5/E8266020C6C011EC8AB7553FC4F9AE02/1Sj61Lh2q_twrziSIg8pPheRtrw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:bd:ca:b3:5d:87:9d:12:5e:db:dd:2c:4f:50:c1:de:a7:8d: e3:6e:0c:83:31:ca:63:23:74:90:fc:28:cb:1f:42:27:ca:7b: e2:2a:29:dd:10:5b:ae:63:d7:43:c6:2a:c0:00:a6:18:11:3b: 11:29:bf:cb:7c:8c:6e:e0:f9:44:40:4f:49:f6:38:72:7a:37: 87:5f:e8:05:9e:e3:e0:85:d9:f1:b8:9a:0d:77:fa:26:ae:ab: fd:18:d7:7c:38:1d:7e:9e:11:a6:74:d0:6a:5b:c3:61:d1:74: 9e:1b:bb:25:e6:94:59:79:5f:5d:6d:2b:9e:d0:6d:bf:48:00: 64:28:3c:ae:40:d2:f8:a7:02:63:ae:40:a4:ce:0d:18:3e:a2: ea:86:e8:08:a4:68:19:e7:b5:44:69:b4:d3:40:40:13:e8:a9: e9:c7:dc:b2:59:25:3c:91:0a:94:65:90:56:b1:34:c9:4a:e4: 99:54:b8:46:8f:da:2c:1e:07:fb:71:9f:6e:7c:64:4d:e0:f1: 91:5b:a4:6e:12:1c:7a:aa:99:17:d4:8a:d5:ec:9e:80:94:48: 77:16:80:e6:89:2d:85:dc:42:2a:27:ed:c3:4a:8f:2b:10:c0: cc:22:2d:87:3b:4a:60:34:79:f4:96:b9:12:8a:73:21:68:2d: 9a:53:02:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2QzUxMTAvBgNVBAUTKEQ1MjhGQUQ0Qjg3NkFCRkI3MEFGMzg5MjIyMEYyOTNF MTc5MUI2QkMwHhcNMjUxMDI3MDIxNzQ2WhcNMjUxMTAzMDIxNzQ2WjAYMRYwFAYD VQQDEw02OGZlZDY0YS05ZmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1A0QDDAfLIgmhhw3s5iDsTAEDB5iEvB8q2HSi3G/qPh9Q1RrOs/Yn7gH3RwM VEG6lXcppURoaqRn941k9g4a95JCMwfCGHkkXabvEcpug/9ppXA+Zum4nnF8T2oE cAqMO1KqV9bMi4dvVlKDJO4VqhnHXvGtkUP0htTfvLYtu5iStFHcmLWqb+J9PJE/ PoreXWRqBWw2ld8ULkFtQ4zlPBIVupvMOVt6g+cA7vzQXMt83Ul2mwyzVagWz2A1 4oRdeQ5CeEiA0LMe2B55Yn8E7eZF+6q6ik0fi91+v2PQK5lFAtYguQAtrEVwNf1P xIAgIni/bzUfnL2qJn4kX2RV3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ5PGTUu 1P2/fKYqu/fYdM+2FncUMB8GA1UdIwQYMBaAFNUo+tS4dqv7cK84kiIPKT4Xkba8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZDNS9FODI2NjAyMEM2 QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFfdHdyemlTSWc4cFBoZVJ0 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFTajYxTGgycV90d3J6aVNJZzhwUGhlUnRydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTZDNS9FODI2NjAyMEM2QzAxMUVDOEFCNzU1M0ZDNEY5QUUwMi8xU2o2MUxoMnFf dHdyemlTSWc4cFBoZVJ0cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzvcqzXYedEl7b3SxPUMHep43jbgyDMcpjI3SQ/CjLH0InynviKind EFuuY9dDxirAAKYYETsRKb/LfIxu4PlEQE9J9jhyejeHX+gFnuPghdnxuJoNd/om rqv9GNd8OB1+nhGmdNBqW8Nh0XSeG7sl5pRZeV9dbSue0G2/SABkKDyuQNL4pwJj rkCkzg0YPqLqhugIpGgZ57VEabTTQEAT6Knpx9yyWSU8kQqUZZBWsTTJSuSZVLhG j9osHgf7cZ9ufGRN4PGRW6RuEhx6qpkX1IrV7J6AlEh3FoDmiS2F3EIqJ+3DSo8r EMDMIi2HO0pgNHn0lrkSinMhaC2aUwKJ -----END CERTIFICATE-----Generated at Mon Oct 27 17:48:55 2025 by rpki-client