$ rpki-client -vvf rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft File: 23zlI-hAt3_J4Zb1jxSXas5BVL4.mft (raw, json) Hash identifier: 29AEj1wkwx51z67aM0DjVVqpo6tQ5VWjfZRDF2ekNMo= Subject key identifier: 8C:E7:2E:2F:A4:19:60:88:01:25:4E:AE:55:A3:2F:3E:6F:C8:EB:34 Authority key identifier: DB:7C:E5:23:E8:40:B7:7F:C9:E1:96:F5:8F:14:97:6A:CE:41:54:BE Certificate issuer: /CN=A912542C/serialNumber=DB7CE523E840B77FC9E196F58F14976ACE4154BE Certificate serial: 06BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft Manifest number: 06A2 Signing time: Sat 18 Oct 2025 23:52:34 +0000 Manifest this update: Sat 18 Oct 2025 23:52:34 +0000 Manifest next update: Sat 25 Oct 2025 23:52:34 +0000 Files and hashes: 1: 23zlI-hAt3_J4Zb1jxSXas5BVL4.crl (hash: RcCeno+1snSGYfa7LAdvH3JDxbLmwbPjbF3mcZhR1AQ=) 2: F0FFCBCCF9C911EDAF704E7FC4F9AE02.roa (hash: xD+NCFUusyV8948kjGogzh90vclALi1BI0w1G6upBJY=) 3: 1E9D1268B3E011ED98356A75C4F9AE02.roa (hash: q2NpAKCFs4OqUi3rj9uEiN/8qjO9vGuIBeFLXS5ulLQ=) 4: 36A82D708CAA11EB9ED48C70C4F9AE02.roa (hash: LYI+Uxituq3xp6IH8KDfFMmbgDovt1mhBIYkZG0TTig=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.crl rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1724 (0x6bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912542C, serialNumber=DB7CE523E840B77FC9E196F58F14976ACE4154BE Validity Not Before: Oct 18 23:52:34 2025 GMT Not After : Oct 25 23:52:34 2025 GMT Subject: CN=68f42842-4541 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:28:df:84:02:22:06:d3:b9:11:0c:33:fe:70: 62:83:3e:5b:61:20:d7:23:62:ee:2f:37:d6:ef:a6: 38:25:09:41:52:d2:73:48:ce:69:92:c2:09:8f:46: 06:e7:40:0a:e4:f5:03:0a:65:a1:3e:c4:98:3d:5b: db:f4:19:4e:50:7f:e5:36:e3:50:bc:33:ca:95:03: fd:37:df:24:bf:29:ae:67:a8:c0:11:49:ef:0a:e9: 2f:68:96:9e:21:72:e4:22:54:73:8c:3b:25:cd:73: 33:33:0d:98:12:87:e8:50:6c:9f:1b:f2:8c:81:84: 3d:d8:d7:45:81:65:10:35:e2:d9:43:70:e8:ea:34: 04:27:85:43:fe:b6:fd:25:3b:55:17:6e:98:f0:01: fe:72:ff:c5:04:1a:eb:4f:21:d9:b9:37:52:d0:62: f1:8a:2b:3a:d1:4f:30:9b:4e:76:fe:71:3e:1d:02: 7f:c3:2d:cf:15:a9:ba:b6:91:ac:e0:7d:0b:38:da: 0a:f1:43:6b:9d:e3:bc:ff:55:63:f0:9c:14:a8:6d: 1a:cf:7b:82:20:9f:b2:6e:84:26:b4:fd:33:81:bf: d7:5d:f7:f2:ce:6d:07:33:8a:8e:03:e9:fd:8c:a3: 68:9c:c2:82:e3:ec:4f:b7:27:c8:48:24:3c:98:b4: 69:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:E7:2E:2F:A4:19:60:88:01:25:4E:AE:55:A3:2F:3E:6F:C8:EB:34 X509v3 Authority Key Identifier: keyid:DB:7C:E5:23:E8:40:B7:7F:C9:E1:96:F5:8F:14:97:6A:CE:41:54:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:d4:7d:ab:1f:97:b3:6e:2a:4f:c8:7d:4f:f0:38:5e:3a:40: 01:bb:86:e6:9c:be:a0:48:8e:16:5b:55:c8:5f:41:48:02:22: 0c:82:31:ae:39:0f:66:4c:37:d1:3d:9f:70:18:07:5c:5e:d6: c9:95:9b:bd:6b:ea:92:bf:d5:e3:bc:e7:db:98:ce:dd:d2:41: c7:95:69:25:4a:03:59:f1:56:70:cc:53:8b:a4:ff:6b:02:78: e6:ad:33:fa:e8:52:3d:d3:cc:66:11:9f:ba:2f:09:ab:b7:2e: 5c:4d:98:83:8a:0d:10:ae:05:31:28:0e:87:cb:92:b9:0f:da: 33:ab:5c:78:c2:62:d9:ba:cf:c8:be:3f:94:53:71:ee:fe:ae: fa:d7:08:3e:d3:5c:36:9b:64:83:bf:20:87:e1:5b:65:a3:a7: 51:49:d3:77:d9:19:60:00:a9:1c:8f:3d:74:67:80:a7:23:13: 5c:5e:c7:d0:67:5d:ef:ad:ac:dc:8e:1d:bd:21:d5:86:73:58: 79:e5:84:23:3b:f1:7b:42:0f:65:01:bd:3e:4b:d5:bf:4f:91: 64:56:d3:8d:52:7b:30:6f:38:26:d1:56:55:b5:96:de:55:7d: 23:2a:92:69:23:66:36:f1:6c:64:3d:39:43:e9:29:d5:89:5c: 02:bd:f8:97 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0MkMxMTAvBgNVBAUTKERCN0NFNTIzRTg0MEI3N0ZDOUUxOTZGNThGMTQ5NzZB Q0U0MTU0QkUwHhcNMjUxMDE4MjM1MjM0WhcNMjUxMDI1MjM1MjM0WjAYMRYwFAYD VQQDEw02OGY0Mjg0Mi00NTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCjfhAIiBtO5EQwz/nBigz5bYSDXI2LuLzfW76Y4JQlBUtJzSM5pksIJj0YG 50AK5PUDCmWhPsSYPVvb9BlOUH/lNuNQvDPKlQP9N98kvymuZ6jAEUnvCukvaJae IXLkIlRzjDslzXMzMw2YEofoUGyfG/KMgYQ92NdFgWUQNeLZQ3Do6jQEJ4VD/rb9 JTtVF26Y8AH+cv/FBBrrTyHZuTdS0GLxiis60U8wm052/nE+HQJ/wy3PFam6tpGs 4H0LONoK8UNrneO8/1Vj8JwUqG0az3uCIJ+yboQmtP0zgb/XXffyzm0HM4qOA+n9 jKNonMKC4+xPtyfISCQ8mLRpZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIznLi+k GWCIASVOrlWjLz5vyOs0MB8GA1UdIwQYMBaAFNt85SPoQLd/yeGW9Y8Ul2rOQVS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQyQy8xQjYzNDY2RThD QTgxMUVCQTJCRDBBNkJDNEY5QUUwMi8yM3psSS1oQXQzX0o0WmIxanhTWGFzNUJW TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzemxJLWhBdDNfSjRaYjFqeFNYYXM1QlZMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTQyQy8xQjYzNDY2RThDQTgxMUVCQTJCRDBBNkJDNEY5QUUwMi8yM3psSS1oQXQz X0o0WmIxanhTWGFzNUJWTDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAp1H2rH5ezbipPyH1P8DheOkABu4bmnL6gSI4WW1XIX0FIAiIMgjGu OQ9mTDfRPZ9wGAdcXtbJlZu9a+qSv9XjvOfbmM7d0kHHlWklSgNZ8VZwzFOLpP9r AnjmrTP66FI908xmEZ+6Lwmrty5cTZiDig0QrgUxKA6Hy5K5D9ozq1x4wmLZus/I vj+UU3Hu/q761wg+01w2m2SDvyCH4Vtlo6dRSdN32RlgAKkcjz10Z4CnIxNcXsfQ Z13vrazcjh29IdWGc1h55YQjO/F7Qg9lAb0+S9W/T5FkVtONUnswbzgm0VZVtZbe VX0jKpJpI2Y28WxkPTlD6SnViVwCvfiX -----END CERTIFICATE-----Generated at Mon Oct 20 16:37:31 2025 by rpki-client