$ rpki-client -vvf rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft File: G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft (raw, json) Hash identifier: vH4Ov2aHbplkdvbJLq6xmi9Zf3iPn3m0Zd33jsgdl7U= Subject key identifier: 3D:45:B0:48:ED:AD:C4:6F:A4:37:52:45:82:4F:74:AB:37:05:01:F1 Authority key identifier: 1B:6E:32:92:C8:35:65:4E:49:14:92:E5:58:4C:F9:93:F0:5B:D9:90 Certificate issuer: /CN=A9110A69/serialNumber=1B6E3292C835654E491492E5584CF993F05BD990 Certificate serial: 0BFE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft Manifest number: 0BF8 Signing time: Sat 18 Oct 2025 19:38:54 +0000 Manifest this update: Sat 18 Oct 2025 19:38:54 +0000 Manifest next update: Sat 25 Oct 2025 19:38:54 +0000 Files and hashes: 1: G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl (hash: /6QqyNGUnd21TUTPDtDDlxjVQ3YQLHCF9jckN15ECSk=) 2: 1407117C216311EA90D74C52C4F9AE02.roa (hash: 2C78FaeQx3m8f9CmVKBPjRPsChYY+d/Ump5Gj8ph3JM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3070 (0xbfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110A69, serialNumber=1B6E3292C835654E491492E5584CF993F05BD990 Validity Not Before: Oct 18 19:38:54 2025 GMT Not After : Oct 25 19:38:54 2025 GMT Subject: CN=68f3ecce-ece6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:27:2b:7a:cc:64:de:8e:34:d6:c3:d5:c0:2c: 08:6e:a2:36:45:bc:dc:38:c9:c5:ba:1e:81:f7:75: c4:51:ae:22:35:19:af:ae:6d:af:f1:1e:fb:17:8b: 8d:89:68:a0:dd:07:6c:f8:bd:85:57:ad:d5:c2:b9: bc:75:9a:64:98:2c:3a:00:6e:d8:51:da:6d:e9:f3: 74:20:d6:4a:10:d0:d9:26:c8:86:3c:de:6f:11:e9: 81:bb:06:ea:53:f5:cc:21:ed:31:6b:d9:c6:8c:d6: 70:34:0a:b0:aa:6e:fe:1a:0f:fb:54:01:64:a4:46: e5:44:ec:90:60:b6:94:c0:d4:16:02:19:2d:dc:da: dd:8e:fe:3d:98:f7:14:7b:f3:cd:13:d7:a0:6e:16: 89:9d:bd:1c:88:a3:d3:63:78:64:8f:a4:b3:8f:38: 4c:71:13:5b:c5:fe:50:d2:de:e4:f8:e2:36:03:19: 79:38:e1:c6:bc:f4:cb:5d:72:54:a7:39:26:91:19: 8c:ae:11:76:3e:0c:4d:4a:ed:bb:a4:39:0e:58:b6: 00:db:62:1e:97:6b:c3:13:7b:7f:9c:8d:57:c0:7f: 7d:a3:b3:81:05:80:30:0c:35:38:b8:79:5e:62:c6: 5c:d2:44:69:81:54:b0:fd:9d:43:3a:70:d1:46:ee: d5:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:45:B0:48:ED:AD:C4:6F:A4:37:52:45:82:4F:74:AB:37:05:01:F1 X509v3 Authority Key Identifier: keyid:1B:6E:32:92:C8:35:65:4E:49:14:92:E5:58:4C:F9:93:F0:5B:D9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:99:6d:6a:e2:90:73:7c:34:46:2c:0f:02:bb:52:09:54:7c: f8:83:97:18:39:39:dc:5c:8a:8c:8c:5a:f7:b4:16:91:d0:9f: d8:6b:1d:6d:c0:b5:4a:4c:3d:c0:d9:fc:9e:9c:a8:38:22:b4: 0a:f4:ba:36:23:fe:11:36:f8:0d:48:0a:36:3c:47:2f:11:22: 02:b1:89:c2:ce:57:11:e9:73:bc:00:fb:8e:e8:c1:4e:93:69: a2:0d:4f:4a:4a:05:06:b2:11:49:18:9f:27:b4:b8:c1:82:7e: f8:39:50:72:8a:88:d4:a4:71:73:b7:0f:99:d8:36:35:50:df: b2:5e:f6:e8:eb:c0:1d:e2:41:56:b3:c5:17:14:c7:97:8d:18: c3:11:14:a1:eb:26:85:1b:33:b0:2f:44:46:1f:14:12:c2:3c: f7:f5:29:89:cc:c6:71:05:22:c0:7c:24:56:f0:e9:a5:75:b4: ee:3e:9d:42:d4:e0:e2:4e:c8:de:f6:3e:51:41:50:55:90:fc: a7:d3:7f:78:80:f7:dc:79:24:d2:14:c6:8f:af:49:49:22:29: 96:ce:84:50:75:94:d0:09:e9:31:78:7c:3b:af:df:1b:eb:fc: 35:5c:85:66:4a:93:53:c9:b2:63:f1:aa:79:d0:a6:78:46:61: 91:15:6e:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBBNjkxMTAvBgNVBAUTKDFCNkUzMjkyQzgzNTY1NEU0OTE0OTJFNTU4NENGOTkz RjA1QkQ5OTAwHhcNMjUxMDE4MTkzODU0WhcNMjUxMDI1MTkzODU0WjAYMRYwFAYD VQQDEw02OGYzZWNjZS1lY2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1icresxk3o401sPVwCwIbqI2RbzcOMnFuh6B93XEUa4iNRmvrm2v8R77F4uN iWig3Qds+L2FV63Vwrm8dZpkmCw6AG7YUdpt6fN0INZKENDZJsiGPN5vEemBuwbq U/XMIe0xa9nGjNZwNAqwqm7+Gg/7VAFkpEblROyQYLaUwNQWAhkt3Nrdjv49mPcU e/PNE9egbhaJnb0ciKPTY3hkj6SzjzhMcRNbxf5Q0t7k+OI2Axl5OOHGvPTLXXJU pzkmkRmMrhF2PgxNSu27pDkOWLYA22Iel2vDE3t/nI1XwH99o7OBBYAwDDU4uHle YsZc0kRpgVSw/Z1DOnDRRu7VTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD1FsEjt rcRvpDdSRYJPdKs3BQHxMB8GA1UdIwQYMBaAFBtuMpLINWVOSRSS5VhM+ZPwW9mQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEE2OS9FM0FCRDA0MjIx NDExMUVBQkRGNjc3NjlDNEY5QUUwMi9HMjR5a3NnMVpVNUpGSkxsV0V6NWtfQmIy WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cyNHlrc2cxWlU1SkZKTGxXRXo1a19CYjJaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEE2OS9FM0FCRDA0MjIxNDExMUVBQkRGNjc3NjlDNEY5QUUwMi9HMjR5a3NnMVpV NUpGSkxsV0V6NWtfQmIyWkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChmW1q4pBzfDRGLA8Cu1IJVHz4g5cYOTncXIqMjFr3tBaR0J/Yax1t wLVKTD3A2fyenKg4IrQK9Lo2I/4RNvgNSAo2PEcvESICsYnCzlcR6XO8APuO6MFO k2miDU9KSgUGshFJGJ8ntLjBgn74OVByiojUpHFztw+Z2DY1UN+yXvbo68Ad4kFW s8UXFMeXjRjDERSh6yaFGzOwL0RGHxQSwjz39SmJzMZxBSLAfCRW8OmldbTuPp1C 1ODiTsje9j5RQVBVkPyn0394gPfceSTSFMaPr0lJIimWzoRQdZTQCekxeHw7r98b 6/w1XIVmSpNTybJj8ap50KZ4RmGRFW7W -----END CERTIFICATE-----Generated at Mon Oct 20 16:06:57 2025 by rpki-client