$ rpki-client -vvf rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft File: diAma5iRohjA5fLvKI94LVcX8rw.mft (raw, json) Hash identifier: HoRKlMryZQY0FODAkPLIsfGolbNpftklLw7nFcBkzvY= Subject key identifier: D6:29:FE:69:36:A9:AD:B7:EB:4F:13:1B:9F:44:22:C4:AE:45:3A:0B Authority key identifier: 76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC Certificate issuer: /CN=A911E660/serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft Manifest number: 8F Signing time: Sun 19 Oct 2025 09:46:27 +0000 Manifest this update: Sun 19 Oct 2025 09:46:26 +0000 Manifest next update: Sun 26 Oct 2025 09:46:26 +0000 Files and hashes: 1: diAma5iRohjA5fLvKI94LVcX8rw.crl (hash: pQv17epeZqAlhP0JjsRAsNan8ZHn9yd5bl/uqrl/JmE=) 2: 4ECE44B0D24311EF919B6D12C4F9AE02.roa (hash: HTX8AzlBVBkYFaGVRN5GWHgC9HxdFLqil4uBj/GLN6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:46:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E660, serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Validity Not Before: Oct 19 09:46:26 2025 GMT Not After : Oct 26 09:46:26 2025 GMT Subject: CN=68f4b372-71a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fd:71:f3:fd:10:1a:a7:20:85:40:f9:1b:e9: 42:bf:78:67:6a:60:f2:fb:5d:65:21:8b:c5:02:85: d7:ed:03:2c:c9:8a:b8:3a:14:56:7f:f7:51:40:7c: d7:27:75:36:7d:c5:31:50:b7:5a:22:ac:0c:59:a3: b2:96:b4:6e:3c:4a:19:21:c1:f7:6b:fd:4a:56:d6: c8:ac:a9:65:6f:3c:f4:88:64:02:ca:df:32:a1:62: f8:22:8f:85:67:ba:8d:5a:68:b5:65:e6:ca:b2:be: 52:16:5a:24:cc:de:7c:53:89:31:2d:15:9f:e9:5c: c2:00:a8:c8:cd:d6:65:85:92:45:ad:67:20:11:65: eb:ea:4b:6d:19:ee:9a:00:c0:3c:f6:38:8e:c5:89: 46:17:41:5d:a0:af:f4:93:c0:79:8f:4a:be:0d:c7: 84:07:ea:21:2f:2a:92:17:4e:a5:7b:57:34:8f:0e: 2a:bc:26:bf:25:eb:c1:ed:e2:07:a2:1b:06:66:df: e4:b7:7e:8d:2e:e4:65:cd:47:e9:81:cb:e7:f9:a8: 4f:ce:f2:4f:68:b2:ec:23:70:09:e7:5c:0f:82:5e: b3:29:8a:f3:a9:70:cf:5e:fc:c3:d2:4f:f3:72:d5: 0b:5c:94:56:60:a3:b6:5d:40:0e:c6:ae:24:ef:14: f6:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:29:FE:69:36:A9:AD:B7:EB:4F:13:1B:9F:44:22:C4:AE:45:3A:0B X509v3 Authority Key Identifier: keyid:76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:73:f3:07:25:01:45:6a:ca:86:45:40:88:48:7e:22:54:a6: 0e:7d:c8:2c:37:8d:75:d0:56:89:6d:81:92:5a:e1:aa:3b:f5: fc:61:9a:61:99:77:16:56:6b:81:3f:db:c9:76:ab:07:d7:af: 90:73:58:db:fb:f0:cd:47:93:81:56:67:e7:27:d7:89:96:d1: e0:0e:f1:47:f1:63:a5:fc:c1:62:24:e0:81:ff:77:fd:fe:23: ba:4f:02:90:55:4f:10:83:4e:82:15:c0:b0:0d:f3:50:c6:30: c6:01:87:59:b2:43:ad:c1:06:18:78:d8:78:f1:67:40:d3:c2: c3:dd:8e:b7:85:58:f0:f4:62:93:af:97:25:7a:ae:b4:c0:8a: 5e:cb:ca:40:c0:9a:1f:50:09:b8:e2:c8:38:7d:9b:31:d4:e9: 5d:ed:76:40:c9:ea:f3:15:e0:98:e0:83:d7:12:0b:38:3e:f9: b7:65:ec:19:aa:0c:fb:e1:52:8a:20:97:2a:d9:32:c7:1a:f4: e0:16:0d:8c:68:26:c4:b9:e9:2d:85:44:00:7a:ee:dc:2d:3d: ba:23:a1:9d:82:ce:23:aa:41:49:9a:71:9a:f1:76:55:3d:17: 33:8f:6e:e1:c5:c6:c7:72:d4:60:49:ef:41:82:aa:5f:e4:84: 13:44:b2:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2NjAxMTAvBgNVBAUTKDc2MjAyNjZCOTg5MUEyMThDMEU1RjJFRjI4OEY3ODJE NTcxN0YyQkMwHhcNMjUxMDE5MDk0NjI2WhcNMjUxMDI2MDk0NjI2WjAYMRYwFAYD VQQDEw02OGY0YjM3Mi03MWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArv1x8/0QGqcghUD5G+lCv3hnamDy+11lIYvFAoXX7QMsyYq4OhRWf/dRQHzX J3U2fcUxULdaIqwMWaOylrRuPEoZIcH3a/1KVtbIrKllbzz0iGQCyt8yoWL4Io+F Z7qNWmi1ZebKsr5SFlokzN58U4kxLRWf6VzCAKjIzdZlhZJFrWcgEWXr6kttGe6a AMA89jiOxYlGF0FdoK/0k8B5j0q+DceEB+ohLyqSF06le1c0jw4qvCa/JevB7eIH ohsGZt/kt36NLuRlzUfpgcvn+ahPzvJPaLLsI3AJ51wPgl6zKYrzqXDPXvzD0k/z ctULXJRWYKO2XUAOxq4k7xT24wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNYp/mk2 qa23608TG59EIsSuRToLMB8GA1UdIwQYMBaAFHYgJmuYkaIYwOXy7yiPeC1XF/K8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTY2MC9GOTg3MTFEQUQy NDIxMUVGODhDNUJDMTFDNEY5QUUwMi9kaUFtYTVpUm9oakE1Zkx2S0k5NExWY1g4 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RpQW1hNWlSb2hqQTVmTHZLSTk0TFZjWDhydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTY2MC9GOTg3MTFEQUQyNDIxMUVGODhDNUJDMTFDNEY5QUUwMi9kaUFtYTVpUm9o akE1Zkx2S0k5NExWY1g4cncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsc/MHJQFFasqGRUCISH4iVKYOfcgsN4110FaJbYGSWuGqO/X8YZph mXcWVmuBP9vJdqsH16+Qc1jb+/DNR5OBVmfnJ9eJltHgDvFH8WOl/MFiJOCB/3f9 /iO6TwKQVU8Qg06CFcCwDfNQxjDGAYdZskOtwQYYeNh48WdA08LD3Y63hVjw9GKT r5cleq60wIpey8pAwJofUAm44sg4fZsx1Old7XZAyerzFeCY4IPXEgs4Pvm3ZewZ qgz74VKKIJcq2TLHGvTgFg2MaCbEuekthUQAeu7cLT26I6Gdgs4jqkFJmnGa8XZV PRczj27hxcbHctRgSe9Bgqpf5IQTRLIG -----END CERTIFICATE-----Generated at Mon Oct 20 19:48:04 2025 by rpki-client