$ rpki-client -vvf rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft File: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft (raw, json) Hash identifier: pRsMizwNj/f1fovrkbtqhGiUnc+5U68F3gbKbdrdj/Q= Subject key identifier: 66:92:9F:9F:D9:FC:EA:3F:C2:59:51:82:C0:26:93:33:57:4C:EF:C7 Authority key identifier: EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 Certificate issuer: /CN=A91525A9/serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Certificate serial: 0210 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft Manifest number: 0204 Signing time: Wed 05 Nov 2025 02:32:40 +0000 Manifest this update: Wed 05 Nov 2025 02:32:39 +0000 Manifest next update: Wed 12 Nov 2025 02:32:39 +0000 Files and hashes: 1: 68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl (hash: c37Qtqyuqvt4B0VgqGIPpIj2EjdMWFW4gIaaBPIyg/s=) 2: 98152E6C480111EFB2976238C4F9AE02.roa (hash: p8fvqZ7Alg5roEiASszoiJIP01rninX1g3Jc6iC5JJA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91525A9, serialNumber=EBC3D7FCFB134F538FC19F98AD898C0F3F074F20 Validity Not Before: Nov 5 02:32:39 2025 GMT Not After : Nov 12 02:32:39 2025 GMT Subject: CN=690ab748-086f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2b:7c:ba:5f:81:0f:c7:4e:5a:8d:c2:3c:99: 7c:30:61:31:b6:fe:e5:3a:b7:7a:a8:01:52:3a:5b: fa:62:50:88:90:a1:f8:49:3a:c0:9f:6a:9c:40:0d: 06:c8:67:e9:ac:cc:bf:46:25:42:cb:04:1a:05:71: 92:6a:fe:9b:13:1f:6e:6c:8f:00:ab:9c:0e:4d:90: bd:45:f3:93:cf:10:fe:af:df:3a:09:b9:d3:00:e4: 97:d8:bc:5d:cc:82:49:9d:42:21:8e:d0:9d:0a:cc: 77:a6:03:79:f5:53:12:cb:3f:fe:ed:35:cb:f2:f4: 6c:12:0c:94:60:be:d0:c4:c4:ff:6e:7a:f1:38:72: 8a:87:62:fe:75:38:7d:af:fc:e3:5c:99:74:c5:0d: 9f:13:a4:0c:b7:d7:21:78:42:7f:f1:b2:c4:b5:9f: 85:89:9b:de:2a:c9:16:5c:6b:76:11:9b:05:13:eb: a2:de:df:79:9f:2c:5c:b4:31:0d:f4:7f:13:ac:d0: c9:6f:d0:31:72:6c:1c:cf:95:3c:1d:2f:33:7d:e0: 70:07:33:1d:c3:28:35:d7:33:92:dd:c7:c3:b3:e8: c4:9f:9c:b3:2f:f8:09:49:57:2b:f7:ab:7d:98:10: 76:8e:b9:43:bf:58:c4:d2:43:07:51:32:e6:5e:96: b5:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:92:9F:9F:D9:FC:EA:3F:C2:59:51:82:C0:26:93:33:57:4C:EF:C7 X509v3 Authority Key Identifier: keyid:EB:C3:D7:FC:FB:13:4F:53:8F:C1:9F:98:AD:89:8C:0F:3F:07:4F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/68PX_PsTT1OPwZ-YrYmMDz8HTyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91525A9/2618840EB14311ED87D07678C4F9AE02/68PX_PsTT1OPwZ-YrYmMDz8HTyA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:e5:41:49:19:da:90:30:2e:6e:94:d4:7b:b5:74:6c:59:39: 5a:5a:d5:f0:b6:8f:5d:22:4c:1e:35:ef:6d:c7:a8:e1:99:ae: bf:92:84:f4:dd:ee:af:24:18:56:96:83:5a:de:8b:ee:32:f0: 6a:9a:7a:15:20:ae:0a:eb:24:29:7f:64:80:aa:77:33:a6:95: 8a:30:0c:f5:4e:fb:76:6c:68:a3:90:94:14:25:95:45:e6:a5: cb:31:c7:f4:98:6e:d0:96:9b:ea:be:fb:51:e9:f5:e7:ff:3c: d6:46:48:bb:24:ba:81:06:b0:b1:0a:39:a4:c5:ba:64:92:34: 90:3c:4b:06:f3:2e:a7:7a:0b:e1:78:9b:e2:7a:b8:38:a0:51: e2:2d:22:4b:a4:bc:a9:05:f4:8f:1a:ed:a4:23:0c:1c:19:41: 62:8b:cf:0a:68:b3:8c:61:2f:a3:f0:82:7d:28:4d:f6:32:b9: 89:d1:84:fe:8a:d4:fb:bf:87:0e:82:13:98:ed:e8:b1:3c:7a: 02:b6:fd:af:e8:cf:d6:0e:e1:67:b0:3a:1f:48:3b:ae:b9:35: bb:54:52:96:08:65:72:37:ad:c9:50:d8:4d:a8:3b:39:60:cc: 32:ce:97:c9:5c:55:3b:9c:ae:70:77:82:50:21:28:e9:ba:98: 07:d1:80:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI1QTkxMTAvBgNVBAUTKEVCQzNEN0ZDRkIxMzRGNTM4RkMxOUY5OEFEODk4QzBG M0YwNzRGMjAwHhcNMjUxMTA1MDIzMjM5WhcNMjUxMTEyMDIzMjM5WjAYMRYwFAYD VQQDEw02OTBhYjc0OC0wODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyt8ul+BD8dOWo3CPJl8MGExtv7lOrd6qAFSOlv6YlCIkKH4STrAn2qcQA0G yGfprMy/RiVCywQaBXGSav6bEx9ubI8Aq5wOTZC9RfOTzxD+r986CbnTAOSX2Lxd zIJJnUIhjtCdCsx3pgN59VMSyz/+7TXL8vRsEgyUYL7QxMT/bnrxOHKKh2L+dTh9 r/zjXJl0xQ2fE6QMt9cheEJ/8bLEtZ+FiZveKskWXGt2EZsFE+ui3t95nyxctDEN 9H8TrNDJb9Axcmwcz5U8HS8zfeBwBzMdwyg11zOS3cfDs+jEn5yzL/gJSVcr96t9 mBB2jrlDv1jE0kMHUTLmXpa1qQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGaSn5/Z /Oo/wllRgsAmkzNXTO/HMB8GA1UdIwQYMBaAFOvD1/z7E09Tj8GfmK2JjA8/B08g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjVBOS8yNjE4ODQwRUIx NDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQxT1B3Wi1ZclltTUR6OEhU eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY4UFhfUHNUVDFPUHdaLVlyWW1NRHo4SFR5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjVBOS8yNjE4ODQwRUIxNDMxMUVEODdEMDc2NzhDNEY5QUUwMi82OFBYX1BzVFQx T1B3Wi1ZclltTUR6OEhUeUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc5UFJGdqQMC5ulNR7tXRsWTlaWtXwto9dIkweNe9tx6jhma6/koT0 3e6vJBhWloNa3ovuMvBqmnoVIK4K6yQpf2SAqnczppWKMAz1Tvt2bGijkJQUJZVF 5qXLMcf0mG7QlpvqvvtR6fXn/zzWRki7JLqBBrCxCjmkxbpkkjSQPEsG8y6negvh eJvierg4oFHiLSJLpLypBfSPGu2kIwwcGUFii88KaLOMYS+j8IJ9KE32MrmJ0YT+ itT7v4cOghOY7eixPHoCtv2v6M/WDuFnsDofSDuuuTW7VFKWCGVyN63JUNhNqDs5 YMwyzpfJXFU7nK5wd4JQISjpupgH0YB/ -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:45 2025 by rpki-client