$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft File: epYXaVSeCq0Km_mSVoO673M6Lxo.mft (raw, json) Hash identifier: QzQMgQXrlYp8uqLLSWiibtfDjBmSNMzfxOyzZp0eJoc= Subject key identifier: DF:FF:28:64:A6:02:F1:84:42:73:30:C4:C9:DF:90:3B:49:F9:DF:0F Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 3541 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft Manifest number: 3506 Signing time: Sat 18 Oct 2025 14:23:54 +0000 Manifest this update: Sat 18 Oct 2025 14:23:53 +0000 Manifest next update: Sat 25 Oct 2025 14:23:53 +0000 Files and hashes: 1: epYXaVSeCq0Km_mSVoO673M6Lxo.crl (hash: jfAN3Th4uGc7Ko4asfTH4UxWA048d6pufJUp447xApI=) 2: A9B6556E064311F0BA61C549C4F9AE02.roa (hash: 0C6TlHkpuDCz4hvNzUcvUCrXDtcFtiPeiunaW4mmmk0=) 3: 1F5CD892C35111EE9D744F36C4F9AE02.roa (hash: 1gkTF4crGWzpTEQnLV3friPjpJHknrP6i19dnfTKZhs=) 4: 1A83389CC35211EE8CE04C38C4F9AE02.roa (hash: wP5Do/J+7GR346S2KVvf1dpQZtkQwT1BPnhQO5L+JJ4=) 5: DA202262C34F11EE93BC8317C4F9AE02.roa (hash: dcDioS0VFo6S9vVwz+paS1zd6YFHx5bsZVN3a7QsfW4=) 6: 61A65BF2C35011EE95366E18C4F9AE02.roa (hash: Q61bbCPssNF62XMkq5QJdqkEtUeKQLsoUnsJMBUa8ZI=) 7: 1EEE3E0AC35111EE9D744F36C4F9AE02.roa (hash: 5YdHJezTTAq6NbRIi4l4/6Fihe+icCcCreH0PZW2XgQ=) 8: A50EE218C34D11EEBC95A913C4F9AE02.roa (hash: 5q/2MUPjpxwhlN6OCcanacRv9yZj3jDJtQjCybC3W8U=) 9: DC67BC1E8E1A11F08364EF73C4F9AE02.roa (hash: n9kveW6T0zGofNIWBVL2lz5XwTYiSjqFUg+Xl3iNCMQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:23:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13633 (0x3541) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0, serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Oct 18 14:23:53 2025 GMT Not After : Oct 25 14:23:53 2025 GMT Subject: CN=68f3a2fa-c554 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ac:91:2d:d0:4b:76:85:2d:9a:00:71:4c:fb: 9d:15:72:ed:b9:5d:84:bc:1a:da:ab:d9:da:89:3a: dc:29:4f:26:53:c7:8c:33:8f:eb:42:64:9c:f9:b4: f7:c9:28:1e:7b:79:48:8f:0d:69:b4:b7:89:dc:c0: 62:6c:9a:50:7e:af:25:6c:56:1f:14:f6:67:7f:0f: 30:b0:7d:62:d0:ec:e9:da:0b:8d:1a:f2:39:67:4d: f3:eb:2e:dc:e4:9f:5b:cd:21:35:d4:5c:3e:04:ca: 74:3b:5c:71:08:7e:c2:ae:b4:d0:91:04:f2:25:0d: 12:41:bb:aa:dc:be:86:de:7d:31:70:91:3c:2e:d1: e0:e3:ce:54:e4:fa:87:1c:a9:74:a7:98:95:9a:41: d2:4a:2e:c4:5c:5c:8c:92:24:91:12:4f:07:73:ca: 67:be:1e:d1:ef:e9:e9:08:e5:6a:b6:e0:7c:b5:27: 95:b4:cc:3b:22:a5:6a:01:fc:b7:c1:76:75:85:15: 1f:9b:2a:35:f4:f2:c3:1a:23:8d:01:f6:34:90:b4: 67:36:0c:f6:b7:ba:73:72:f9:6c:48:b1:80:07:13: a6:51:1c:40:a6:d6:13:68:df:18:74:28:eb:5f:db: dd:93:4b:65:bc:91:64:dd:c1:a7:ed:86:db:95:fc: bd:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:FF:28:64:A6:02:F1:84:42:73:30:C4:C9:DF:90:3B:49:F9:DF:0F X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:48:83:80:4c:9d:c2:87:44:93:47:4d:df:9f:ec:11:16:20: eb:8d:88:aa:e4:1d:f0:05:15:12:c4:5b:de:35:44:2d:0c:cc: ca:06:95:5e:42:fb:5d:2e:5d:a0:e7:4a:c0:1e:a8:97:80:db: d7:0e:35:10:34:36:a5:c4:7a:4e:94:6f:52:58:63:ca:07:53: 74:ff:72:36:5b:87:f2:a0:ff:7f:89:42:c8:e3:bb:f3:27:4f: 07:6f:20:2e:cf:63:9e:1d:80:a3:8d:fd:8e:93:cc:18:d6:05: 1c:00:9e:f7:e5:d2:ba:07:81:84:97:4f:2d:ac:9d:08:5e:47: 18:a0:84:a2:ed:54:80:f3:bf:7d:50:65:bc:ff:0c:11:09:57: 3a:41:16:59:3b:16:dd:03:76:1c:13:67:3c:82:d5:fb:9f:79: 63:f3:87:8d:d4:5c:bd:56:2b:9b:b7:cd:df:ea:b8:5a:32:47: ec:4e:e4:a5:b9:2f:8a:18:c8:d5:99:85:14:b7:fa:1a:a6:19: 49:25:22:35:fa:84:58:a2:a1:91:4a:d0:bf:81:87:20:bd:44: 81:dd:7b:e7:f6:03:e1:bc:1a:3a:c4:2f:d6:e1:85:63:d8:b8: 62:04:df:2e:c2:ea:f8:7e:75:28:49:20:82:76:cf:78:5f:f1: b4:63:83:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjUxMDE4MTQyMzUzWhcNMjUxMDI1MTQyMzUzWjAYMRYwFAYD VQQDEw02OGYzYTJmYS1jNTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArayRLdBLdoUtmgBxTPudFXLtuV2EvBraq9naiTrcKU8mU8eMM4/rQmSc+bT3 ySgee3lIjw1ptLeJ3MBibJpQfq8lbFYfFPZnfw8wsH1i0Ozp2guNGvI5Z03z6y7c 5J9bzSE11Fw+BMp0O1xxCH7CrrTQkQTyJQ0SQbuq3L6G3n0xcJE8LtHg485U5PqH HKl0p5iVmkHSSi7EXFyMkiSREk8Hc8pnvh7R7+npCOVqtuB8tSeVtMw7IqVqAfy3 wXZ1hRUfmyo19PLDGiONAfY0kLRnNgz2t7pzcvlsSLGABxOmURxAptYTaN8YdCjr X9vdk0tlvJFk3cGn7Ybblfy9tQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN//KGSm AvGEQnMwxMnfkDtJ+d8PMB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzVCMC80MEM4RDVBNjFEODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNx MEttX21TVm9PNjczTTZMeG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMSIOATJ3Ch0STR03fn+wRFiDrjYiq5B3wBRUSxFveNUQtDMzKBpVe QvtdLl2g50rAHqiXgNvXDjUQNDalxHpOlG9SWGPKB1N0/3I2W4fyoP9/iULI47vz J08HbyAuz2OeHYCjjf2Ok8wY1gUcAJ735dK6B4GEl08trJ0IXkcYoISi7VSA8799 UGW8/wwRCVc6QRZZOxbdA3YcE2c8gtX7n3lj84eN1Fy9Viubt83f6rhaMkfsTuSl uS+KGMjVmYUUt/oaphlJJSI1+oRYoqGRStC/gYcgvUSB3Xvn9gPhvBo6xC/W4YVj 2LhiBN8uwur4fnUoSSCCds94X/G0Y4Nh -----END CERTIFICATE-----Generated at Mon Oct 20 05:20:20 2025 by rpki-client