$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: BWdlPHptd3B2z8lhYZGxk2gtz4wkkDSKHqDrQnse5b0= Subject key identifier: 97:D6:0F:A6:D0:D3:0C:AB:34:47:02:65:8C:D1:2F:DE:9F:57:71:C9 Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 01BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: 01B6 Signing time: Sun 19 Oct 2025 05:35:49 +0000 Manifest this update: Sun 19 Oct 2025 05:35:48 +0000 Manifest next update: Sun 26 Oct 2025 05:35:48 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: zWQ2VWyFbHWd26vlqoddw3hd4BuUYBAMv6mIm4QDQkQ=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: feRFh9Ht2rEY2jS2ePhZA2T4F0vbXp37hvleoPM6Wus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:35:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: Oct 19 05:35:48 2025 GMT Not After : Oct 26 05:35:48 2025 GMT Subject: CN=68f478b5-d483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c2:d6:1f:46:68:28:7c:28:73:51:cb:8b:f1: 3e:b3:b0:a1:fe:31:f8:a3:97:be:8b:40:71:78:94: dd:13:c3:a5:59:94:aa:ba:06:af:f0:76:7c:4a:31: 92:06:04:5f:d2:f9:4b:a6:92:f8:b4:23:d1:7f:f4: 8c:63:23:66:dc:88:39:fa:25:d0:6b:a4:bd:7a:75: 8c:65:4d:47:e9:9c:04:23:4d:d4:f9:0f:69:78:ae: 8a:ca:ed:62:cb:61:be:40:75:3c:25:4b:7b:05:58: 0e:b9:7b:9d:6a:2a:cf:43:71:78:86:c9:3a:74:72: 61:55:8a:9c:4a:c8:29:d1:81:03:20:a9:e7:35:01: ae:94:8d:2a:5d:83:51:01:e0:f0:5c:b7:5b:a2:e2: 0d:ee:1d:9f:29:8c:ed:ae:9a:91:ca:fb:c1:a4:e8: 07:b7:d1:f1:bb:3c:06:ef:6e:e8:f2:63:41:bb:b0: 38:ea:fe:57:8d:a2:f2:3e:eb:6b:45:d9:34:c6:a6: 6c:f5:13:b1:ef:ba:9b:53:40:bf:9f:e7:3d:9f:db: ee:84:95:bd:60:bc:d0:6f:7f:65:04:db:ff:4d:28: 50:21:d5:25:69:2f:9c:20:9e:b4:cf:ee:35:6e:e8: e9:44:c7:5e:90:20:89:b2:f2:4c:a0:35:4e:aa:9f: 60:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:D6:0F:A6:D0:D3:0C:AB:34:47:02:65:8C:D1:2F:DE:9F:57:71:C9 X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:bb:2d:d4:d4:23:b5:d6:1c:83:85:84:5c:87:60:28:0f:50: 5c:50:e9:29:3d:4b:1a:97:b1:e7:23:53:e4:9d:99:fa:89:41: 07:dc:87:90:74:d0:cd:18:1a:d4:50:34:2d:a8:82:26:7c:14: 1d:78:7c:08:86:32:cf:4d:7d:b2:88:94:16:ad:62:0e:97:20: f0:2e:13:03:f0:d9:ce:ed:6b:6e:8f:f6:44:25:48:bd:95:c7: 86:c5:ba:b8:ab:f0:8c:91:2d:25:26:21:af:c6:3b:84:54:bf: 99:ba:1a:38:db:37:4c:b9:4f:f8:ad:40:be:bf:80:10:cb:15: 4c:c8:e5:e3:b5:cb:b0:0a:15:31:dc:d3:ca:7c:30:19:49:e8: 87:99:80:c4:63:52:5c:3a:00:86:b2:f4:52:47:b0:75:11:11: 84:bb:58:9c:c8:42:c5:39:ff:7b:a2:5d:58:03:0b:ed:e3:af: cf:a2:70:6a:4e:44:18:38:fe:a2:6e:81:ed:46:b0:34:bb:af: bd:69:c5:68:26:77:ac:12:fe:42:22:cc:3b:f0:ff:b0:ef:81: 6c:00:21:ff:6a:6e:4e:5d:20:70:72:81:5d:18:ad:83:ff:9b: eb:3b:7b:8a:ab:3e:ea:8e:75:af:87:7c:f6:c2:51:3c:b6:b4: 3e:a1:35:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjUxMDE5MDUzNTQ4WhcNMjUxMDI2MDUzNTQ4WjAYMRYwFAYD VQQDEw02OGY0NzhiNS1kNDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsMLWH0ZoKHwoc1HLi/E+s7Ch/jH4o5e+i0BxeJTdE8OlWZSqugav8HZ8SjGS BgRf0vlLppL4tCPRf/SMYyNm3Ig5+iXQa6S9enWMZU1H6ZwEI03U+Q9peK6Kyu1i y2G+QHU8JUt7BVgOuXudairPQ3F4hsk6dHJhVYqcSsgp0YEDIKnnNQGulI0qXYNR AeDwXLdbouIN7h2fKYztrpqRyvvBpOgHt9HxuzwG727o8mNBu7A46v5XjaLyPutr Rdk0xqZs9ROx77qbU0C/n+c9n9vuhJW9YLzQb39lBNv/TShQIdUlaS+cIJ60z+41 bujpRMdekCCJsvJMoDVOqp9ggwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJfWD6bQ 0wyrNEcCZYzRL96fV3HJMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEuy3U1CO11hyDhYRch2AoD1BcUOkpPUsal7HnI1PknZn6iUEH3IeQ dNDNGBrUUDQtqIImfBQdeHwIhjLPTX2yiJQWrWIOlyDwLhMD8NnO7Wtuj/ZEJUi9 lceGxbq4q/CMkS0lJiGvxjuEVL+Zuho42zdMuU/4rUC+v4AQyxVMyOXjtcuwChUx 3NPKfDAZSeiHmYDEY1JcOgCGsvRSR7B1ERGEu1icyELFOf97ol1YAwvt46/PonBq TkQYOP6iboHtRrA0u6+9acVoJnesEv5CIsw78P+w74FsACH/am5OXSBwcoFdGK2D /5vrO3uKqz7qjnWvh3z2wlE8trQ+oTWK -----END CERTIFICATE-----Generated at Mon Oct 20 19:31:21 2025 by rpki-client