$ rpki-client -vvf rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft File: 1RCJONILodf7ySo7qZ8tafyPSog.mft (raw, json) Hash identifier: kBvmNeBDBLMTDJCPVAjUPvkmoBFfXm7EktJvNV53wbo= Subject key identifier: FB:B0:5A:97:30:74:EF:0B:FF:AE:F4:90:CF:75:37:5C:6D:58:67:7C Authority key identifier: D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 Certificate issuer: /CN=A91836D8/serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft Manifest number: 77 Signing time: Mon 03 Nov 2025 06:51:51 +0000 Manifest this update: Mon 03 Nov 2025 06:51:51 +0000 Manifest next update: Mon 10 Nov 2025 06:51:51 +0000 Files and hashes: 1: 1RCJONILodf7ySo7qZ8tafyPSog.crl (hash: s5FdvpnsdbAdrAewlK7Ba0AwdtZsHICIGUdk9d0wrfw=) 2: 2A0F594C07B911F0B93D3034C4F9AE02.roa (hash: GVWIdnLcZRWR+tzLNPpcN/HSXmru8qLQTVAk9bkN9LQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:51:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836D8, serialNumber=D5108938D20BA1D7FBC92A3BA99F2D69FC8F4A88 Validity Not Before: Nov 3 06:51:51 2025 GMT Not After : Nov 10 06:51:51 2025 GMT Subject: CN=69085107-83d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:4e:40:06:54:68:8d:2d:11:e9:3f:66:65:a4: 2a:9b:fb:0e:9f:26:b6:a6:56:1d:9d:04:60:bc:b1: 51:98:9c:76:7c:0d:0c:58:8f:f2:c7:67:4e:0e:95: 57:91:61:8f:29:17:0a:7a:f8:f2:8c:73:6b:f2:21: 02:e1:d0:11:b7:12:4f:6a:4a:3d:7b:ed:a4:cd:66: c3:be:cd:c8:a5:dd:d7:61:11:a8:19:15:60:5f:89: 29:b2:7c:38:5c:48:19:fb:52:bd:c0:81:1f:b8:25: 84:c0:18:d4:26:1a:4d:79:ee:73:bf:61:6c:78:49: 23:1f:78:f8:ce:74:cf:98:f4:a8:9a:c6:3e:23:eb: a8:46:6e:3b:ef:4e:3e:86:e3:96:30:5b:10:3f:e9: 63:15:76:df:70:bd:79:5a:23:9f:56:d1:fb:43:c1: 40:65:5e:c3:89:83:de:3c:eb:d8:26:5b:ca:b9:30: 27:5f:b2:9a:c9:c2:a7:b9:3c:f8:a7:5f:57:8b:a8: d0:2a:62:e1:4b:4b:c3:52:b1:28:7f:51:ae:5c:3d: 5b:3a:ac:19:8d:7a:53:b2:04:2d:63:1f:02:50:e2: a0:55:de:ee:39:30:8e:2e:4e:01:91:6f:41:ed:c5: aa:f3:00:50:fd:5f:ac:9d:11:15:31:9f:0f:65:f8: aa:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:B0:5A:97:30:74:EF:0B:FF:AE:F4:90:CF:75:37:5C:6D:58:67:7C X509v3 Authority Key Identifier: keyid:D5:10:89:38:D2:0B:A1:D7:FB:C9:2A:3B:A9:9F:2D:69:FC:8F:4A:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1RCJONILodf7ySo7qZ8tafyPSog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836D8/32DAB29207AF11F09606E534C4F9AE02/1RCJONILodf7ySo7qZ8tafyPSog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:c5:8a:d4:3c:42:23:61:34:b8:39:38:7f:92:4c:96:46:29: 61:26:59:11:f2:66:78:08:f0:fc:6e:68:f7:5d:87:5c:f2:f8: f9:53:55:87:26:32:97:f1:ee:84:62:51:54:20:dc:4d:0a:ed: 62:6d:84:8f:54:d4:0f:a5:2f:f4:9c:ee:30:bb:dc:4f:ae:73: e8:31:fd:f5:63:e7:0a:9e:f4:6d:84:da:7a:97:14:d2:77:9d: 8e:c3:a0:dc:c0:26:7c:70:c3:0a:36:33:38:35:e5:91:3b:12: 7a:e3:91:80:01:d3:ec:18:2c:64:81:27:5d:7a:95:76:39:6f: b1:55:e4:a9:8d:27:a6:a5:78:5d:7f:02:f6:c4:00:0e:3a:8f: 53:50:d7:33:fe:c1:97:b6:bb:55:72:bd:85:41:70:c9:81:92: 25:2c:01:3d:72:0f:61:da:02:5a:90:2c:33:ef:61:11:b7:ad: 64:ed:2d:a7:13:6c:f9:b1:07:e0:fc:f5:9d:2f:73:53:9d:6f: a8:7a:29:d5:4e:9f:f4:68:51:10:42:d1:fa:f5:51:01:fe:a4: 30:ce:25:8e:90:73:65:60:81:07:44:d0:61:6b:6e:8b:e6:2c: 89:be:2c:5f:d1:f1:8a:98:17:17:2f:8b:2b:4b:3f:50:70:4d: 01:59:9f:60 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MzZEODExMC8GA1UEBRMoRDUxMDg5MzhEMjBCQTFEN0ZCQzkyQTNCQTk5RjJENjlG QzhGNEE4ODAeFw0yNTExMDMwNjUxNTFaFw0yNTExMTAwNjUxNTFaMBgxFjAUBgNV BAMTDTY5MDg1MTA3LTgzZDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZTkAGVGiNLRHpP2ZlpCqb+w6fJramVh2dBGC8sVGYnHZ8DQxYj/LHZ04OlVeR YY8pFwp6+PKMc2vyIQLh0BG3Ek9qSj177aTNZsO+zcil3ddhEagZFWBfiSmyfDhc SBn7Ur3AgR+4JYTAGNQmGk157nO/YWx4SSMfePjOdM+Y9Kiaxj4j66hGbjvvTj6G 45YwWxA/6WMVdt9wvXlaI59W0ftDwUBlXsOJg94869gmW8q5MCdfsprJwqe5PPin X1eLqNAqYuFLS8NSsSh/Ua5cPVs6rBmNelOyBC1jHwJQ4qBV3u45MI4uTgGRb0Ht xarzAFD9X6ydERUxnw9l+Kq9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+7BalzB0 7wv/rvSQz3U3XG1YZ3wwHwYDVR0jBBgwFoAU1RCJONILodf7ySo7qZ8tafyPSogw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgzNkQ4LzMyREFCMjkyMDdB RjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2RmN3lTbzdxWjh0YWZ5UFNv Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVJDSk9OSUxvZGY3eVNvN3FaOHRhZnlQU29nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgz NkQ4LzMyREFCMjkyMDdBRjExRjA5NjA2RTUzNEM0RjlBRTAyLzFSQ0pPTklMb2Rm N3lTbzdxWjh0YWZ5UFNvZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAATFitQ8QiNhNLg5OH+STJZGKWEmWRHyZngI8PxuaPddh1zy+PlTVYcm Mpfx7oRiUVQg3E0K7WJthI9U1A+lL/Sc7jC73E+uc+gx/fVj5wqe9G2E2nqXFNJ3 nY7DoNzAJnxwwwo2Mzg15ZE7EnrjkYAB0+wYLGSBJ116lXY5b7FV5KmNJ6aleF1/ AvbEAA46j1NQ1zP+wZe2u1VyvYVBcMmBkiUsAT1yD2HaAlqQLDPvYRG3rWTtLacT bPmxB+D89Z0vc1Odb6h6KdVOn/RoURBC0fr1UQH+pDDOJY6Qc2VggQdE0GFrbovm LIm+LF/R8YqYFxcviytLP1BwTQFZn2A= -----END CERTIFICATE-----Generated at Wed Nov 5 07:29:31 2025 by rpki-client