$ rpki-client -vvf rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft File: aCDlNpQmEvNLA3PdH3ftI0_981w.mft (raw, json) Hash identifier: MFVjUXW9/pYuYHDgF+6FHhaOolkI+NgtfRI0nsKjgls= Subject key identifier: 6B:95:59:5D:DB:0B:A1:A4:C3:44:83:53:44:42:0B:C5:AF:4E:67:E6 Authority key identifier: 68:20:E5:36:94:26:12:F3:4B:03:73:DD:1F:77:ED:23:4F:FD:F3:5C Certificate issuer: /CN=A911F8C9/serialNumber=6820E536942612F34B0373DD1F77ED234FFDF35C Certificate serial: 048E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft Manifest number: 0487 Signing time: Sun 19 Oct 2025 01:55:52 +0000 Manifest this update: Sun 19 Oct 2025 01:55:51 +0000 Manifest next update: Sun 26 Oct 2025 01:55:51 +0000 Files and hashes: 1: aCDlNpQmEvNLA3PdH3ftI0_981w.crl (hash: oe2QhiH+BCii4gbZySFW3OBdTNiKQr78GfLFVbrsdF8=) 2: 0DC4BC0C5CDE11ECB486850FC4F9AE02.roa (hash: 252kB+fX+BBhzn4gsCNSBIXgmIL37+s/mdPS5IK/AQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.crl rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:55:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1166 (0x48e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F8C9, serialNumber=6820E536942612F34B0373DD1F77ED234FFDF35C Validity Not Before: Oct 19 01:55:51 2025 GMT Not After : Oct 26 01:55:51 2025 GMT Subject: CN=68f44528-5767 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5c:65:e9:d8:81:e6:53:d8:76:f5:86:d6:e1: ff:5b:a9:c1:fa:ad:bc:b4:09:fa:9f:8a:bb:5d:8b: a3:35:71:40:69:22:13:e6:04:c8:ef:9f:77:31:ac: 80:37:e0:67:02:da:a9:ae:8d:14:71:93:a6:4d:00: 76:2a:b8:b9:a6:71:da:b6:c4:08:09:a5:13:7b:d9: 2a:3e:2f:48:ec:a4:e1:cd:89:54:07:ac:8b:67:bc: 4b:44:f7:24:9c:91:9d:48:a0:2a:24:38:8c:7e:e6: f1:08:87:0e:f7:bc:dd:2f:66:32:a5:89:b3:49:49: e3:dd:1e:8f:ec:c9:7d:07:74:44:59:ef:b7:20:5e: bc:bb:dc:42:2f:e8:4a:1d:e4:24:05:00:ef:c5:32: da:18:57:26:d7:02:d9:03:a4:14:94:7c:c2:93:a2: 28:26:72:10:14:a8:f4:63:4a:e5:f1:57:c5:eb:02: 5c:1c:70:0d:9c:ac:07:2e:00:f6:02:42:ac:68:14: 4a:2d:e5:28:3b:6a:61:af:3a:12:20:f6:50:f5:02: 3d:b6:7e:42:63:50:a0:7c:a7:d3:0b:77:5d:a7:10: 1a:25:5e:88:aa:ef:f4:1e:eb:e5:b2:eb:fe:14:d4: e2:7e:e4:a3:95:4d:d9:ba:15:9d:da:03:69:17:3b: e1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:95:59:5D:DB:0B:A1:A4:C3:44:83:53:44:42:0B:C5:AF:4E:67:E6 X509v3 Authority Key Identifier: keyid:68:20:E5:36:94:26:12:F3:4B:03:73:DD:1F:77:ED:23:4F:FD:F3:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:ae:4f:f5:7c:d0:fd:d4:58:97:6c:70:80:0a:8e:7f:29:83: bc:18:11:9f:3c:07:24:36:db:5f:bc:34:81:88:a2:32:84:77: 7f:36:69:22:06:b0:28:12:1f:bb:4a:b3:16:86:23:9c:86:0a: ad:03:35:95:dd:0d:a6:69:e8:7c:04:51:5a:78:9c:e0:01:4a: 98:b6:49:4a:74:94:a8:65:a5:b6:fc:a8:63:00:10:2e:77:39: 1e:89:3c:34:b9:7f:5e:ee:bd:a0:76:f9:cf:60:f1:e0:d7:aa: 2e:97:9a:fd:c7:24:7f:71:23:3b:d4:9e:48:54:41:66:90:35: 10:04:17:6c:6b:9f:0c:2f:3b:d0:0e:13:b8:af:ff:a4:12:04: 9b:ba:43:af:31:14:10:4f:11:aa:d0:c4:0a:fa:9f:2d:b3:f5: ec:c9:8d:2f:3a:4b:19:d9:e8:a9:81:fe:78:ce:3d:67:65:9d: 27:e2:be:45:62:fc:79:d6:4d:d0:df:fb:1b:28:b4:13:da:98: 40:a5:fd:72:1b:f0:29:54:e4:eb:8d:e7:cf:10:66:34:55:65: 27:f1:a5:f9:79:1b:ba:e2:c1:78:86:77:6a:80:19:f5:b7:23: 80:d0:29:91:b0:d9:98:9a:78:9a:1b:e8:ee:0c:23:95:e1:15: d7:f4:76:68 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY4QzkxMTAvBgNVBAUTKDY4MjBFNTM2OTQyNjEyRjM0QjAzNzNERDFGNzdFRDIz NEZGREYzNUMwHhcNMjUxMDE5MDE1NTUxWhcNMjUxMDI2MDE1NTUxWjAYMRYwFAYD VQQDEw02OGY0NDUyOC01NzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1xl6diB5lPYdvWG1uH/W6nB+q28tAn6n4q7XYujNXFAaSIT5gTI7593MayA N+BnAtqpro0UcZOmTQB2Kri5pnHatsQICaUTe9kqPi9I7KThzYlUB6yLZ7xLRPck nJGdSKAqJDiMfubxCIcO97zdL2YypYmzSUnj3R6P7Ml9B3REWe+3IF68u9xCL+hK HeQkBQDvxTLaGFcm1wLZA6QUlHzCk6IoJnIQFKj0Y0rl8VfF6wJcHHANnKwHLgD2 AkKsaBRKLeUoO2phrzoSIPZQ9QI9tn5CY1CgfKfTC3ddpxAaJV6Iqu/0Huvlsuv+ FNTifuSjlU3ZuhWd2gNpFzvhDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGuVWV3b C6Gkw0SDU0RCC8WvTmfmMB8GA1UdIwQYMBaAFGgg5TaUJhLzSwNz3R937SNP/fNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjhDOS80QjRENzEyQTVD REIxMUVDQkQ1NEY3MENDNEY5QUUwMi9hQ0RsTnBRbUV2TkxBM1BkSDNmdEkwXzk4 MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FDRGxOcFFtRXZOTEEzUGRIM2Z0STBfOTgxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjhDOS80QjRENzEyQTVDREIxMUVDQkQ1NEY3MENDNEY5QUUwMi9hQ0RsTnBRbUV2 TkxBM1BkSDNmdEkwXzk4MXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMrk/1fND91FiXbHCACo5/KYO8GBGfPAckNttfvDSBiKIyhHd/Nmki BrAoEh+7SrMWhiOchgqtAzWV3Q2maeh8BFFaeJzgAUqYtklKdJSoZaW2/KhjABAu dzkeiTw0uX9e7r2gdvnPYPHg16oul5r9xyR/cSM71J5IVEFmkDUQBBdsa58MLzvQ DhO4r/+kEgSbukOvMRQQTxGq0MQK+p8ts/XsyY0vOksZ2eipgf54zj1nZZ0n4r5F Yvx51k3Q3/sbKLQT2phApf1yG/ApVOTrjefPEGY0VWUn8aX5eRu64sF4hndqgBn1 tyOA0CmRsNmYmniaG+juDCOV4RXX9HZo -----END CERTIFICATE-----Generated at Mon Oct 20 13:34:20 2025 by rpki-client