$ rpki-client -vvf rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft File: keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft (raw, json) Hash identifier: 8Oyh5dnh1bXv3i+eyuCnht104ISemd/AjG1e0M7hZ44= Subject key identifier: 99:51:15:1B:62:D0:1D:AA:6E:AB:C6:C9:40:5A:0E:C0:54:C4:67:C1 Authority key identifier: 91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A Certificate issuer: /CN=A911ACAC/serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Certificate serial: 0505 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft Manifest number: 04F9 Signing time: Sun 19 Oct 2025 01:30:43 +0000 Manifest this update: Sun 19 Oct 2025 01:30:42 +0000 Manifest next update: Sun 26 Oct 2025 01:30:42 +0000 Files and hashes: 1: keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl (hash: Ba4GwXme+rFJwkD5ODlrdC2qjhvZkHC+6zCpw1y2UcE=) 2: C52B4E0A3FE011EF88794913C4F9AE02.roa (hash: BHc0YO4uerOV3pChxVjG7O544zd2LrVw+gOJhxCdrB0=) 3: 1295B5943FA611EF94664041C4F9AE02.roa (hash: FuWrvkmDIg3mxhyAWWbi/ukBRQacmBTwsE71FX0nX8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:30:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1285 (0x505) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ACAC, serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Validity Not Before: Oct 19 01:30:42 2025 GMT Not After : Oct 26 01:30:42 2025 GMT Subject: CN=68f43f43-bd5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b9:3a:fe:82:48:01:92:08:e3:43:a5:ad:d0: 40:36:33:ad:40:08:6e:ff:d7:2a:6e:7e:b4:3e:fe: c7:86:da:0f:90:0b:1e:9b:76:94:e6:e4:71:85:e0: 1c:b7:2e:b0:0a:37:23:25:01:94:37:37:d1:b9:61: a0:c5:68:f5:58:82:05:f1:1b:3e:62:b8:46:12:1a: 83:85:84:cb:58:a0:69:6b:04:96:07:03:9c:0c:45: 6f:92:1f:76:c5:f2:03:a7:83:11:e1:57:78:5b:99: 7f:9d:73:5c:3a:a8:af:5c:88:34:f0:40:eb:fe:1c: bf:27:7e:30:2b:44:5d:20:cb:7a:44:80:fb:1b:62: ee:8f:e1:58:4f:ae:41:2a:f8:08:63:d5:b0:e2:4e: e6:0a:36:de:1a:29:d3:cd:62:6d:2f:68:7e:79:ad: ec:7a:e9:61:3d:61:fe:04:7a:91:b8:d7:7e:ff:ed: 88:3c:04:9c:a4:80:9f:ff:14:2e:bf:31:04:23:64: 10:20:c9:0f:46:4f:1e:8e:46:08:18:1b:85:59:cd: ac:fb:ad:6c:22:c5:5e:2b:2d:e1:87:26:cc:54:50: c0:c4:55:6c:36:b6:1f:02:c7:1c:2a:1f:5e:36:48: 64:31:22:90:e1:86:f9:83:43:1b:f0:09:e7:b3:19: 15:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:51:15:1B:62:D0:1D:AA:6E:AB:C6:C9:40:5A:0E:C0:54:C4:67:C1 X509v3 Authority Key Identifier: keyid:91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:4d:5c:b8:d9:d7:9b:04:62:74:fd:ba:d1:f9:37:23:e5:7e: 24:1e:df:7f:78:33:d2:c1:c0:05:51:79:6d:ab:d0:c6:be:37: e8:5c:52:25:08:e3:55:cc:53:0c:c2:12:fe:e5:19:9b:b1:8d: cc:f3:ae:35:6d:9c:45:e3:1e:48:82:ef:4f:98:be:4a:88:3d: fc:7b:64:9c:eb:f7:14:3b:ea:38:90:b4:fc:73:12:6f:4e:63: 19:c9:d7:41:e0:ff:9e:12:24:59:a3:e0:db:ec:6e:10:f5:94: 31:7e:c9:54:2b:c8:93:1e:9a:3e:90:a3:56:ce:1f:24:ec:7f: 0d:40:f7:36:4a:6a:cd:32:57:39:fe:07:e1:cf:0b:c7:2b:dc: 35:bf:fc:87:42:f5:0a:ac:56:e0:e1:dc:a3:75:81:1a:02:03: dc:ea:2d:5e:2f:d0:6b:ac:1a:1c:cf:82:ee:d7:e6:60:e6:8d: 42:dc:20:bf:12:14:81:83:2a:ca:0c:43:7f:e9:52:e7:42:a9: c2:ff:da:17:f4:98:49:86:9a:cf:ca:4f:8c:19:2f:9c:03:8c: 97:af:ff:ad:48:11:29:3a:f4:ae:32:ef:0b:80:70:19:8d:86: 2e:58:34:7a:cc:1e:94:1b:fd:93:ac:d3:56:fa:25:d6:f0:39: 8e:e4:0f:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFDQUMxMTAvBgNVBAUTKDkxRTY3OTcyMUVEMUUwOTI3RUJCN0U0NjFDODA1ODBE MjM5MzU5MkEwHhcNMjUxMDE5MDEzMDQyWhcNMjUxMDI2MDEzMDQyWjAYMRYwFAYD VQQDEw02OGY0M2Y0My1iZDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurk6/oJIAZII40OlrdBANjOtQAhu/9cqbn60Pv7HhtoPkAsem3aU5uRxheAc ty6wCjcjJQGUNzfRuWGgxWj1WIIF8Rs+YrhGEhqDhYTLWKBpawSWBwOcDEVvkh92 xfIDp4MR4Vd4W5l/nXNcOqivXIg08EDr/hy/J34wK0RdIMt6RID7G2Luj+FYT65B KvgIY9Ww4k7mCjbeGinTzWJtL2h+ea3seulhPWH+BHqRuNd+/+2IPAScpICf/xQu vzEEI2QQIMkPRk8ejkYIGBuFWc2s+61sIsVeKy3hhybMVFDAxFVsNrYfAsccKh9e NkhkMSKQ4Yb5g0Mb8AnnsxkVoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJlRFRti 0B2qbqvGyUBaDsBUxGfBMB8GA1UdIwQYMBaAFJHmeXIe0eCSfrt+RhyAWA0jk1kq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUNBQy9CM0JEQTU2NDMx RDMxMUVDOEQzQkJGMzBDNEY5QUUwMi9rZVo1Y2g3UjRKSi11MzVHSElCWURTT1RX U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlWjVjaDdSNEpKLXUzNUdISUJZRFNPVFdTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUNBQy9CM0JEQTU2NDMxRDMxMUVDOEQzQkJGMzBDNEY5QUUwMi9rZVo1Y2g3UjRK Si11MzVHSElCWURTT1RXU28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8TVy42debBGJ0/brR+Tcj5X4kHt9/eDPSwcAFUXltq9DGvjfoXFIl CONVzFMMwhL+5RmbsY3M8641bZxF4x5Igu9PmL5KiD38e2Sc6/cUO+o4kLT8cxJv TmMZyddB4P+eEiRZo+Db7G4Q9ZQxfslUK8iTHpo+kKNWzh8k7H8NQPc2SmrNMlc5 /gfhzwvHK9w1v/yHQvUKrFbg4dyjdYEaAgPc6i1eL9BrrBocz4Lu1+Zg5o1C3CC/ EhSBgyrKDEN/6VLnQqnC/9oX9JhJhprPyk+MGS+cA4yXr/+tSBEpOvSuMu8LgHAZ jYYuWDR6zB6UG/2TrNNW+iXW8DmO5A8L -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:43 2025 by rpki-client