$ rpki-client -vvf rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft File: ReDCzhRgM0N0_BWzcEXXajTd7l0.mft (raw, json) Hash identifier: POWRf2AzbjqgsNIFS6khDTjTFMtY2S9L29oNMddHVjk= Subject key identifier: C3:32:26:7F:29:CC:5A:7C:5B:AA:DE:0D:71:5E:0B:E8:7F:5D:2D:69 Authority key identifier: 45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D Certificate issuer: /CN=A911465D/serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft Manifest number: 5E Signing time: Sun 19 Oct 2025 10:30:51 +0000 Manifest this update: Sun 19 Oct 2025 10:30:51 +0000 Manifest next update: Sun 26 Oct 2025 10:30:51 +0000 Files and hashes: 1: ReDCzhRgM0N0_BWzcEXXajTd7l0.crl (hash: UfDAQMPMSFPAyl/cLSy33iHppGLnvg2xocoizsCquIc=) 2: 8494A0A8202211F091667E59C4F9AE02.roa (hash: 0td0rYY1sI6ZCcrPq8Ekycn5CSJTuG2FeaNe5fiVsgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:30:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911465D, serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Validity Not Before: Oct 19 10:30:51 2025 GMT Not After : Oct 26 10:30:51 2025 GMT Subject: CN=68f4bddb-5279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f6:ef:ee:dd:53:0e:5e:35:e0:0e:66:7e:b2: 5a:43:76:86:b9:6e:f5:ee:9a:9b:5c:15:27:6d:03: 2c:33:4f:b8:50:da:52:a4:5d:bd:d3:b6:ab:72:2d: 87:14:25:37:ac:45:a4:e0:27:ac:73:20:da:79:9a: 67:af:dd:2b:59:e9:08:7d:0a:b8:e8:09:5b:04:39: ee:55:e8:70:f7:a4:76:3c:fe:86:dc:eb:c9:d3:2e: 76:78:8e:bc:9e:40:33:fe:6b:a3:c5:78:65:88:c5: 26:db:0a:99:c9:7c:97:3d:40:da:29:1d:d5:51:c6: aa:64:b7:98:7a:d7:e8:07:18:a8:f4:da:58:af:a7: 30:b3:b9:58:11:6f:0e:ec:53:dd:b7:8b:c8:0c:89: 0d:7e:05:e7:4c:77:10:b0:44:1a:64:65:38:1d:39: d4:f5:75:f7:b0:db:e2:6b:33:ed:7a:6c:11:d7:da: 6f:93:fa:a2:b8:d6:5e:1d:7f:ca:ad:82:cf:ca:e6: c0:a9:ec:53:38:05:be:fe:85:d1:02:85:f8:77:42: 7c:32:6e:be:f6:a2:04:b3:bd:6c:dd:1a:fb:7c:88: 9c:6e:6a:7b:9d:8d:c6:2f:46:55:10:47:41:a4:65: ae:5c:c9:c8:64:68:86:ce:20:31:20:88:bb:05:36: 41:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:32:26:7F:29:CC:5A:7C:5B:AA:DE:0D:71:5E:0B:E8:7F:5D:2D:69 X509v3 Authority Key Identifier: keyid:45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:30:5d:e4:54:46:35:25:b2:ee:8a:e5:fe:86:67:5e:00:7c: af:f2:7e:3d:d4:38:18:82:a2:7a:d9:d7:cf:23:32:37:e2:64: 17:f4:a9:0a:81:2a:ae:78:c3:b5:e6:fd:a7:48:89:c4:a8:ac: 6a:1c:95:d4:8a:d4:fc:f6:d8:60:83:c6:44:55:36:84:5c:2f: be:5d:67:35:d2:a7:cc:5e:9c:11:27:bb:aa:9c:4f:2d:22:d2: 46:a7:5e:59:7f:5f:cd:22:84:7f:9b:e4:60:be:f7:0d:1d:a4: 4f:62:c0:7c:ee:c7:a2:69:58:0f:f0:66:30:ff:b0:15:38:96: 93:17:84:34:ed:5e:dc:8e:a4:fa:b6:7b:65:1f:18:1b:4f:84: eb:0e:d0:45:bc:e8:fa:0e:78:7c:4d:71:1d:d3:c5:02:4a:a3: 52:32:a5:76:4b:d4:d6:53:1b:ee:41:2b:f5:45:d8:2d:3e:5f: 1d:42:20:b7:ed:95:78:e0:52:6c:96:f0:17:a8:77:a9:6f:ea: 5e:bc:7c:12:2b:fb:f8:3d:4d:af:88:a4:74:7f:62:6f:6a:25: b6:5e:cf:4f:e7:1e:9f:de:4d:33:e0:1d:94:ec:b4:3d:23:2a: 8f:c4:2e:bb:bc:96:57:1f:0b:f0:a9:66:88:81:2d:dd:db:76: 6c:6c:da:2d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDY1RDExMC8GA1UEBRMoNDVFMEMyQ0UxNDYwMzM0Mzc0RkMxNUIzNzA0NUQ3NkEz NERERUU1RDAeFw0yNTEwMTkxMDMwNTFaFw0yNTEwMjYxMDMwNTFaMBgxFjAUBgNV BAMTDTY4ZjRiZGRiLTUyNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDR9u/u3VMOXjXgDmZ+slpDdoa5bvXumptcFSdtAywzT7hQ2lKkXb3TtqtyLYcU JTesRaTgJ6xzINp5mmev3StZ6Qh9CrjoCVsEOe5V6HD3pHY8/obc68nTLnZ4jrye QDP+a6PFeGWIxSbbCpnJfJc9QNopHdVRxqpkt5h61+gHGKj02livpzCzuVgRbw7s U923i8gMiQ1+BedMdxCwRBpkZTgdOdT1dfew2+JrM+16bBHX2m+T+qK41l4df8qt gs/K5sCp7FM4Bb7+hdEChfh3Qnwybr72ogSzvWzdGvt8iJxuanudjcYvRlUQR0Gk Za5cychkaIbOIDEgiLsFNkHtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwzImfynM Wnxbqt4NcV4L6H9dLWkwHwYDVR0jBBgwFoAUReDCzhRgM0N0/BWzcEXXajTd7l0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NjVEL0Q0MTlEQzRBMjAx QTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBOMF9CV3pjRVhYYWpUZDds MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUmVEQ3poUmdNME4wX0JXemNFWFhhalRkN2wwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NjVEL0Q0MTlEQzRBMjAxQTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBO MF9CV3pjRVhYYWpUZDdsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACUwXeRURjUlsu6K5f6GZ14AfK/yfj3UOBiConrZ188jMjfiZBf0qQqB Kq54w7Xm/adIicSorGocldSK1Pz22GCDxkRVNoRcL75dZzXSp8xenBEnu6qcTy0i 0kanXll/X80ihH+b5GC+9w0dpE9iwHzux6JpWA/wZjD/sBU4lpMXhDTtXtyOpPq2 e2UfGBtPhOsO0EW86PoOeHxNcR3TxQJKo1IypXZL1NZTG+5BK/VF2C0+Xx1CILft lXjgUmyW8Beod6lv6l68fBIr+/g9Ta+IpHR/Ym9qJbZez0/nHp/eTTPgHZTstD0j Ko/ELru8llcfC/CpZoiBLd3bdmxs2i0= -----END CERTIFICATE-----Generated at Mon Oct 20 00:15:14 2025 by rpki-client