$ rpki-client -vvf rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft File: thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft (raw, json) Hash identifier: 9SOZStWhu73MM1o1Xa7EgyZnYEQZUYfty2x9dhDRAGQ= Subject key identifier: C1:76:7C:92:DB:B5:B9:11:4F:41:B3:99:B5:A3:E3:00:59:FA:4E:8D Authority key identifier: B6:11:03:A5:C9:CC:60:EA:D1:88:A2:F9:FD:11:E6:3D:52:33:D9:95 Certificate issuer: /CN=A9118B32/serialNumber=B61103A5C9CC60EAD188A2F9FD11E63D5233D995 Certificate serial: 03E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft Manifest number: 03E2 Signing time: Sun 19 Oct 2025 02:30:43 +0000 Manifest this update: Sun 19 Oct 2025 02:30:43 +0000 Manifest next update: Sun 26 Oct 2025 02:30:43 +0000 Files and hashes: 1: thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl (hash: THBC7M5YhjZzVEL/Op32D4iYEcr5OwBIAYwhyw2Y+Go=) 2: 0F291AFE9D2811EC83448E6FC4F9AE02.roa (hash: p2rd5X9PRaHj3dg5SJAK0M8GBgiGK7ul3HPfe5PMkz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:30:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 999 (0x3e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118B32, serialNumber=B61103A5C9CC60EAD188A2F9FD11E63D5233D995 Validity Not Before: Oct 19 02:30:43 2025 GMT Not After : Oct 26 02:30:43 2025 GMT Subject: CN=68f44d53-9f67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:75:bf:e3:5c:d6:bb:0f:6c:6e:81:c2:53:04: 98:0e:e7:2f:a9:49:aa:6d:b9:95:56:e2:79:a6:4a: 53:5a:75:50:9f:ec:28:cb:e7:60:1b:5f:81:2c:fe: f8:8b:6a:be:de:69:7c:02:c0:aa:69:19:01:c5:72: d6:38:41:11:4d:5a:81:89:07:a0:57:78:c4:12:11: 0e:df:2c:61:5b:a9:c2:04:96:48:8e:7d:dd:79:5f: 01:fa:26:1a:56:b1:0a:9f:bc:a2:da:f5:2d:55:72: cd:e1:30:ad:c3:60:2a:ec:1a:e9:04:75:80:56:8a: d5:d2:00:0c:db:3c:c0:b9:36:65:73:1c:25:6b:59: fb:f6:b4:5e:ca:fd:d8:4e:a7:34:d0:2c:ba:6a:ca: 0b:9a:e2:b1:99:46:8e:7f:80:b1:04:18:38:48:42: 2d:5b:39:dd:0e:c9:5c:df:dd:92:87:ef:87:1e:f7: dd:0d:5a:88:5a:9c:92:15:6f:c7:29:56:1a:42:76: 13:48:e2:0b:33:e9:db:78:7c:f2:13:2f:fc:90:a2: 8d:98:19:66:a1:78:eb:89:5d:16:91:b9:c6:1d:0b: ef:bb:ae:e9:1b:9a:db:08:d8:33:1b:16:eb:e2:6d: 7c:c3:ce:48:f7:eb:f6:e7:17:2e:6e:5d:47:a2:9e: 2d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:76:7C:92:DB:B5:B9:11:4F:41:B3:99:B5:A3:E3:00:59:FA:4E:8D X509v3 Authority Key Identifier: keyid:B6:11:03:A5:C9:CC:60:EA:D1:88:A2:F9:FD:11:E6:3D:52:33:D9:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:09:ec:d4:c6:51:63:67:31:5d:78:c1:39:5a:b2:3e:0e:87: 60:f4:da:f2:37:9f:bd:e8:b4:b8:15:2e:ab:c8:66:18:41:77: 67:d3:bd:e4:d5:b5:14:7f:75:71:d1:e8:a0:7e:ab:7b:75:8e: fe:49:34:d7:ab:39:65:71:9a:46:39:48:e7:be:f2:92:20:14: 0d:03:97:21:33:76:04:c8:59:54:23:fc:39:83:4d:34:d5:ff: a0:0d:dc:76:86:75:80:27:35:3c:88:e4:0f:d4:e6:d2:60:24: b0:91:1d:d5:88:69:3c:da:7f:a3:8a:a5:30:3a:75:55:e4:0b: 0e:f8:02:cc:f6:98:b6:bb:68:21:41:13:e6:6a:fc:78:c8:ef: 4b:85:de:bf:e2:b4:1d:d6:04:f1:e8:34:35:76:06:d2:c1:a8: 0c:0a:45:cc:20:58:f6:55:f7:58:6b:7b:54:bc:bf:0e:11:a4: f7:63:5b:79:ef:e6:eb:d7:9d:b6:c0:df:6b:a2:d0:e3:fe:51: 24:61:8b:e8:84:51:a5:31:7f:59:77:47:ff:56:f0:19:bf:39: 75:89:3e:1a:6d:90:72:0c:e0:bd:ff:32:63:67:72:e0:fa:0b: d2:25:fd:11:b1:8d:76:4a:96:de:11:1b:d2:92:79:02:83:71: 3a:39:b2:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThCMzIxMTAvBgNVBAUTKEI2MTEwM0E1QzlDQzYwRUFEMTg4QTJGOUZEMTFFNjNE NTIzM0Q5OTUwHhcNMjUxMDE5MDIzMDQzWhcNMjUxMDI2MDIzMDQzWjAYMRYwFAYD VQQDEw02OGY0NGQ1My05ZjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXW/41zWuw9sboHCUwSYDucvqUmqbbmVVuJ5pkpTWnVQn+woy+dgG1+BLP74 i2q+3ml8AsCqaRkBxXLWOEERTVqBiQegV3jEEhEO3yxhW6nCBJZIjn3deV8B+iYa VrEKn7yi2vUtVXLN4TCtw2Aq7BrpBHWAVorV0gAM2zzAuTZlcxwla1n79rReyv3Y Tqc00Cy6asoLmuKxmUaOf4CxBBg4SEItWzndDslc392Sh++HHvfdDVqIWpySFW/H KVYaQnYTSOILM+nbeHzyEy/8kKKNmBlmoXjriV0WkbnGHQvvu67pG5rbCNgzGxbr 4m18w85I9+v25xcubl1Hop4tkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMF2fJLb tbkRT0GzmbWj4wBZ+k6NMB8GA1UdIwQYMBaAFLYRA6XJzGDq0Yii+f0R5j1SM9mV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEIzMi9GRjc3MUJCQzlE MjUxMUVDODVGREYzNkVDNEY5QUUwMi90aEVEcGNuTVlPclJpS0w1X1JIbVBWSXoy WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RoRURwY25NWU9yUmlLTDVfUkhtUFZJejJaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEIzMi9GRjc3MUJCQzlEMjUxMUVDODVGREYzNkVDNEY5QUUwMi90aEVEcGNuTVlP clJpS0w1X1JIbVBWSXoyWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoCezUxlFjZzFdeME5WrI+Dodg9NryN5+96LS4FS6ryGYYQXdn073k 1bUUf3Vx0eigfqt7dY7+STTXqzllcZpGOUjnvvKSIBQNA5chM3YEyFlUI/w5g000 1f+gDdx2hnWAJzU8iOQP1ObSYCSwkR3ViGk82n+jiqUwOnVV5AsO+ALM9pi2u2gh QRPmavx4yO9Lhd6/4rQd1gTx6DQ1dgbSwagMCkXMIFj2VfdYa3tUvL8OEaT3Y1t5 7+br1522wN9rotDj/lEkYYvohFGlMX9Zd0f/VvAZvzl1iT4abZByDOC9/zJjZ3Lg +gvSJf0RsY12SpbeERvSknkCg3E6ObIC -----END CERTIFICATE-----Generated at Sun Oct 19 23:23:29 2025 by rpki-client