$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft File: 0qCHG82DdsEajwSaOYVa_NsYMGQ.mft (raw, json) Hash identifier: JcisFYzh52uQZkbaKPlxCl0pFOpJ61JtXmoqvQjsJvw= Subject key identifier: 08:AC:FD:0B:0B:76:71:54:E0:77:7D:32:E7:8A:5B:33:21:BE:6A:26 Authority key identifier: D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 Certificate issuer: /CN=A911CA82/serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Certificate serial: 066E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft Manifest number: 0654 Signing time: Sun 19 Oct 2025 00:26:50 +0000 Manifest this update: Sun 19 Oct 2025 00:26:49 +0000 Manifest next update: Sun 26 Oct 2025 00:26:49 +0000 Files and hashes: 1: 0qCHG82DdsEajwSaOYVa_NsYMGQ.crl (hash: K1rRmJlznozo5LaRCQjTWptw0hGArYgdWhaAK6M0Fow=) 2: CB304C36307111EDB0CBD946C4F9AE02.roa (hash: pfD/CVe6rifI0uuB7MyQhX8gICce4pIQVAo4x+DdB5k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:26:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1646 (0x66e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=D2A0871BCD8376C11A8F049A39855AFCDB183064 Validity Not Before: Oct 19 00:26:49 2025 GMT Not After : Oct 26 00:26:49 2025 GMT Subject: CN=68f43049-79de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e0:d7:42:8a:bf:11:9d:9f:29:c3:7d:0e:f7: 02:71:1d:25:af:a2:75:0e:65:ed:e9:29:47:8d:ca: da:84:38:3b:3c:a4:0e:23:f9:7b:47:1d:c4:45:11: dd:69:9b:47:fa:c6:fe:3a:d9:11:84:30:e4:b7:ac: 76:36:79:70:1b:5c:e1:a0:bc:2b:56:61:1f:cf:c3: c5:a9:9c:df:52:e5:6a:74:50:a2:d9:a7:e4:25:20: eb:89:7e:d8:9a:d0:43:fd:ee:9e:e1:fa:e0:ba:e1: 96:f6:5a:ea:8f:7c:fb:4b:34:a1:65:73:c9:b3:88: 47:a0:0c:97:d6:cc:9c:1f:24:e1:9f:f7:30:fe:3f: c9:f8:69:b6:c6:fb:4c:66:65:ad:94:38:11:d7:27: 98:8c:7b:79:d1:51:41:22:59:09:47:8f:7d:a2:2c: be:02:c7:39:88:75:a4:48:29:5c:c2:30:11:cf:23: ba:4a:23:18:3a:58:38:e0:a8:05:58:4c:6c:29:e0: 73:9c:c0:02:fd:b9:fb:5b:d7:fe:9a:8b:cb:f4:0b: 1a:23:a8:b2:e2:06:92:d1:d2:8c:93:80:a0:64:a1: 86:17:f3:3d:a1:b0:02:f3:12:88:51:08:6e:fb:ca: 7e:ba:f6:c8:69:00:7c:82:3e:b5:ea:bd:f1:5d:0e: 63:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:AC:FD:0B:0B:76:71:54:E0:77:7D:32:E7:8A:5B:33:21:BE:6A:26 X509v3 Authority Key Identifier: keyid:D2:A0:87:1B:CD:83:76:C1:1A:8F:04:9A:39:85:5A:FC:DB:18:30:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0qCHG82DdsEajwSaOYVa_NsYMGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/0BEB375ABE4411EBAE3D4348C4F9AE02/0qCHG82DdsEajwSaOYVa_NsYMGQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:f3:dc:76:15:44:bd:f3:81:bf:42:1f:0b:d5:f0:c9:ff:3a: e3:00:75:19:98:9d:34:75:9a:05:56:0a:f6:21:06:0a:6c:36: 88:88:26:63:b4:b3:20:88:90:7c:10:54:f6:0f:25:5e:8d:29: d1:2b:3b:ba:e3:50:b8:73:54:7e:7d:c9:a0:75:61:ef:20:40: 9b:3d:b0:c0:96:46:82:e8:34:0c:d3:cc:87:cf:4a:7e:ae:e2: 15:97:20:f5:b8:48:f6:16:e3:85:5b:bd:26:34:d1:20:68:34: 9d:f6:9a:47:d9:4f:af:40:d2:0d:af:b3:e3:b6:36:28:a7:da: e8:19:92:73:e8:02:b1:36:57:12:0b:60:cd:2e:f6:3b:cc:03: 6c:a9:63:b1:c0:38:46:71:a4:fc:44:97:04:93:60:b1:d8:02: f4:18:41:6b:9a:ca:e8:5d:b8:4e:0d:1e:17:a6:03:fd:18:61: f3:36:c6:6b:87:a6:5d:3c:5c:10:17:cf:6a:c2:2b:43:1e:11: 94:11:dc:d0:6e:d4:e9:94:76:79:e7:61:cd:28:5a:a5:9e:a0: b8:ec:55:e6:d3:57:33:ec:8a:e1:1c:fd:e9:22:40:8e:70:c8: b0:6a:42:e5:00:0f:9a:ac:ee:81:89:ad:62:c7:b2:c6:87:f6: 04:9d:1f:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKEQyQTA4NzFCQ0Q4Mzc2QzExQThGMDQ5QTM5ODU1QUZD REIxODMwNjQwHhcNMjUxMDE5MDAyNjQ5WhcNMjUxMDI2MDAyNjQ5WjAYMRYwFAYD VQQDEw02OGY0MzA0OS03OWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApuDXQoq/EZ2fKcN9DvcCcR0lr6J1DmXt6SlHjcrahDg7PKQOI/l7Rx3ERRHd aZtH+sb+OtkRhDDkt6x2NnlwG1zhoLwrVmEfz8PFqZzfUuVqdFCi2afkJSDriX7Y mtBD/e6e4frguuGW9lrqj3z7SzShZXPJs4hHoAyX1sycHyThn/cw/j/J+Gm2xvtM ZmWtlDgR1yeYjHt50VFBIlkJR499oiy+Asc5iHWkSClcwjARzyO6SiMYOlg44KgF WExsKeBznMAC/bn7W9f+movL9AsaI6iy4gaS0dKMk4CgZKGGF/M9obAC8xKIUQhu +8p+uvbIaQB8gj616r3xXQ5j1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAis/QsL dnFU4Hd9MueKWzMhvmomMB8GA1UdIwQYMBaAFNKghxvNg3bBGo8EmjmFWvzbGDBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi8wQkVCMzc1QUJF NDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRzRWFqd1NhT1lWYV9Oc1lN R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBxQ0hHODJEZHNFYWp3U2FPWVZhX05zWU1HUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi8wQkVCMzc1QUJFNDQxMUVCQUUzRDQzNDhDNEY5QUUwMi8wcUNIRzgyRGRz RWFqd1NhT1lWYV9Oc1lNR1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL89x2FUS984G/Qh8L1fDJ/zrjAHUZmJ00dZoFVgr2IQYKbDaIiCZj tLMgiJB8EFT2DyVejSnRKzu641C4c1R+fcmgdWHvIECbPbDAlkaC6DQM08yHz0p+ ruIVlyD1uEj2FuOFW70mNNEgaDSd9ppH2U+vQNINr7PjtjYop9roGZJz6AKxNlcS C2DNLvY7zANsqWOxwDhGcaT8RJcEk2Cx2AL0GEFrmsroXbhODR4XpgP9GGHzNsZr h6ZdPFwQF89qwitDHhGUEdzQbtTplHZ552HNKFqlnqC47FXm01cz7IrhHP3pIkCO cMiwakLlAA+arO6Bia1ix7LGh/YEnR+p -----END CERTIFICATE-----Generated at Mon Oct 20 19:25:19 2025 by rpki-client