$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft File: D9Qkj9SLoa4LYNjPakPbM7b09ro.mft (raw, json) Hash identifier: DrEW8NeLSowCt+OVQ5pfY0cXRoIyZyO+ZJhl/5Fksa4= Subject key identifier: A7:25:66:B6:84:3E:E5:1F:72:AC:18:30:F2:A1:EB:A8:CA:AB:88:65 Authority key identifier: 0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA Certificate issuer: /CN=A911B5AC/serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Certificate serial: 0218 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft Manifest number: 0215 Signing time: Sun 19 Oct 2025 04:27:58 +0000 Manifest this update: Sun 19 Oct 2025 04:27:57 +0000 Manifest next update: Sun 26 Oct 2025 04:27:57 +0000 Files and hashes: 1: D9Qkj9SLoa4LYNjPakPbM7b09ro.crl (hash: 4pYPJt2aqsPTcyNb33zyjOvhn0pYFje06YzAQqsIg7k=) 2: CA181F42791211ED9D926781C4F9AE02.roa (hash: zvSljqq8u0aCswP8WadYkts+Ql8DETe3wBjOyVuGUoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:27:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5AC, serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Validity Not Before: Oct 19 04:27:57 2025 GMT Not After : Oct 26 04:27:57 2025 GMT Subject: CN=68f468ce-3143 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:42:ae:42:80:3d:40:84:32:5e:c3:1a:27:aa: 82:5c:25:8e:51:42:71:01:3d:3a:6e:39:13:97:60: ee:ec:70:97:73:38:35:a6:a3:2f:fa:04:78:ff:1d: fd:e3:bb:6d:b6:64:10:7c:27:6c:72:d4:4e:51:b6: 97:d0:8d:5d:74:22:96:85:14:fb:c2:56:16:51:1e: 04:73:96:f8:4f:e4:86:ee:4d:15:f9:26:c7:9f:45: 53:21:df:aa:25:42:e8:ef:68:23:81:51:2c:eb:1d: ad:9b:d8:2f:0e:bd:c1:4b:b9:31:97:6f:4a:10:d6: 79:e8:da:fc:b1:bd:f0:31:77:fa:d0:4f:0c:62:eb: a9:cb:0f:ad:7d:3d:85:5e:53:fd:64:9c:cc:08:22: 98:74:ec:af:65:86:b7:0b:90:d4:d7:9e:2f:14:d3: dc:f2:71:68:7e:e9:85:4e:9c:6d:a9:64:f2:53:de: 38:43:17:45:9f:41:dd:5d:08:af:d2:fa:bb:db:ff: ec:e4:ad:e8:2c:04:b1:fb:9e:af:69:89:09:8f:28: c2:e9:35:35:a9:1f:8d:bc:5c:4c:82:26:66:47:55: f2:35:c8:f5:76:a6:e5:f0:8a:81:1f:eb:f6:5f:a6: d5:68:2e:65:22:78:61:37:94:e8:03:d6:3a:14:16: 57:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:25:66:B6:84:3E:E5:1F:72:AC:18:30:F2:A1:EB:A8:CA:AB:88:65 X509v3 Authority Key Identifier: keyid:0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:79:39:9f:cc:34:61:82:cb:ee:62:4b:68:65:8f:3c:99:05: dd:0d:8f:26:55:a2:de:40:9c:37:2b:f8:a2:53:71:1c:1a:3f: 43:6a:d0:cd:69:52:22:9e:d0:75:3d:d4:e4:a0:02:33:cd:cd: 56:7f:46:da:aa:91:b9:6b:c1:ba:08:fd:6f:b0:01:d5:e7:26: 48:4e:5c:25:52:44:5a:78:4d:70:d3:46:39:d9:22:67:9a:d4: 47:1a:2a:e8:45:dc:0e:6d:b6:f9:cf:37:01:14:96:6f:a8:22: 2e:a1:50:98:af:a4:c9:33:37:fd:5a:8a:fb:db:ed:8f:db:fa: a7:98:fb:5f:4a:ee:b7:50:d0:68:79:a2:0b:41:6d:c1:a1:d6: 5c:8f:09:69:d5:83:31:37:7a:43:1a:3d:f7:38:b7:2b:f1:ee: 67:b5:c8:b0:c7:63:78:6b:28:9d:8a:64:24:07:b9:0b:dd:ec: f7:52:ba:dd:76:4f:62:e7:63:08:a5:19:50:d7:37:50:3b:3e: 72:29:bb:f4:3f:41:17:b9:e9:ff:7a:12:dc:15:aa:9e:50:c1: ee:d3:5e:f0:45:b1:88:ea:18:b6:50:3c:23:a0:34:7c:0d:ae: 07:c9:16:5b:cb:b0:9e:a7:81:53:82:c6:1d:dd:75:16:1b:82: 90:33:ee:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QUMxMTAvBgNVBAUTKDBGRDQyNDhGRDQ4QkExQUUwQjYwRDhDRjZBNDNEQjMz QjZGNEY2QkEwHhcNMjUxMDE5MDQyNzU3WhcNMjUxMDI2MDQyNzU3WjAYMRYwFAYD VQQDEw02OGY0NjhjZS0zMTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEKuQoA9QIQyXsMaJ6qCXCWOUUJxAT06bjkTl2Du7HCXczg1pqMv+gR4/x39 47tttmQQfCdsctROUbaX0I1ddCKWhRT7wlYWUR4Ec5b4T+SG7k0V+SbHn0VTId+q JULo72gjgVEs6x2tm9gvDr3BS7kxl29KENZ56Nr8sb3wMXf60E8MYuupyw+tfT2F XlP9ZJzMCCKYdOyvZYa3C5DU154vFNPc8nFofumFTpxtqWTyU944QxdFn0HdXQiv 0vq72//s5K3oLASx+56vaYkJjyjC6TU1qR+NvFxMgiZmR1XyNcj1dqbl8IqBH+v2 X6bVaC5lInhhN5ToA9Y6FBZXcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKclZraE PuUfcqwYMPKh66jKq4hlMB8GA1UdIwQYMBaAFA/UJI/Ui6GuC2DYz2pD2zO29Pa6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVBQy81RkFGNTY0Mjc5 MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9hNExZTmpQYWtQYk03YjA5 cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5UWtqOVNMb2E0TFlOalBha1BiTTdiMDlyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVBQy81RkFGNTY0Mjc5MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9h NExZTmpQYWtQYk03YjA5cm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjeTmfzDRhgsvuYktoZY88mQXdDY8mVaLeQJw3K/iiU3EcGj9DatDN aVIintB1PdTkoAIzzc1Wf0baqpG5a8G6CP1vsAHV5yZITlwlUkRaeE1w00Y52SJn mtRHGiroRdwObbb5zzcBFJZvqCIuoVCYr6TJMzf9Wor72+2P2/qnmPtfSu63UNBo eaILQW3BodZcjwlp1YMxN3pDGj33OLcr8e5ntciwx2N4ayidimQkB7kL3ez3Urrd dk9i52MIpRlQ1zdQOz5yKbv0P0EXuen/ehLcFaqeUMHu017wRbGI6hi2UDwjoDR8 Da4HyRZby7Cep4FTgsYd3XUWG4KQM+55 -----END CERTIFICATE-----Generated at Mon Oct 20 16:18:10 2025 by rpki-client