$ rpki-client -vvf rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft File: C7AFcf321rzGNEbrOmSR-uqpCG8.mft (raw, json) Hash identifier: 5nCGdRn+80oJxxDEiMSqoWOQoXp3dUqtOni9gih1lh8= Subject key identifier: FE:24:97:B5:D7:D4:BC:CF:DC:9E:84:8A:F6:AE:B3:F0:CA:FC:B4:49 Authority key identifier: 0B:B0:05:71:FD:F6:D6:BC:C6:34:46:EB:3A:64:91:FA:EA:A9:08:6F Certificate issuer: /CN=A912AC83/serialNumber=0BB00571FDF6D6BCC63446EB3A6491FAEAA9086F Certificate serial: 0586 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft Manifest number: 0581 Signing time: Sun 19 Oct 2025 00:56:57 +0000 Manifest this update: Sun 19 Oct 2025 00:56:56 +0000 Manifest next update: Sun 26 Oct 2025 00:56:56 +0000 Files and hashes: 1: C7AFcf321rzGNEbrOmSR-uqpCG8.crl (hash: mPdmWWhzK2GORyn+uP/6Bjdnxm6YnRoDyLrupFjkXvA=) 2: 6B191E20F75811EB9C2B5D4DC4F9AE02.roa (hash: gIqEUytD692JqpeV91M06iKGJH68vEW3s4YtICieKE0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.crl rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:56:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1414 (0x586) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AC83, serialNumber=0BB00571FDF6D6BCC63446EB3A6491FAEAA9086F Validity Not Before: Oct 19 00:56:56 2025 GMT Not After : Oct 26 00:56:56 2025 GMT Subject: CN=68f43759-1f8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:94:52:d3:d4:ae:65:42:5e:ed:c8:9f:0f:63: c3:13:e1:99:a0:b5:7c:71:48:e6:5a:fb:64:27:41: 2d:09:a4:3b:c9:21:89:34:aa:57:f7:e3:ee:b4:eb: ae:e5:63:4f:62:54:c4:29:d5:9d:63:f1:ac:2c:eb: 14:78:64:12:05:f8:fb:d5:5e:b9:16:cf:a6:3d:d1: b5:a4:96:78:fa:ec:dc:a8:11:f7:38:41:28:ed:36: 2d:65:81:a0:46:13:b2:e0:2e:5c:02:c3:3f:7d:37: 1c:88:a4:ee:db:a8:d2:19:95:1f:21:1e:41:fb:ed: 4f:7d:5c:10:36:27:f0:78:a6:e9:b4:b7:78:65:f0: de:df:ad:c9:6a:e9:50:f3:dd:a3:40:3a:8d:ea:b2: e9:88:04:c5:98:bb:a0:03:33:ac:ab:0f:ad:6c:d7: c3:d4:e8:09:53:13:f2:54:73:da:a4:a6:94:6c:76: ce:06:6b:38:ca:2d:62:63:30:da:80:c7:1d:28:b0: 3a:5f:6e:aa:76:ae:99:c2:91:22:42:0d:df:83:e5: 3c:37:23:bd:a7:7e:48:39:81:5d:22:f5:9c:8d:64: da:5e:18:be:90:f9:20:8c:a9:e1:29:4e:f4:fb:cb: e8:24:ad:00:a2:53:67:36:d0:16:6d:a6:26:1d:d6: fc:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:24:97:B5:D7:D4:BC:CF:DC:9E:84:8A:F6:AE:B3:F0:CA:FC:B4:49 X509v3 Authority Key Identifier: keyid:0B:B0:05:71:FD:F6:D6:BC:C6:34:46:EB:3A:64:91:FA:EA:A9:08:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7AFcf321rzGNEbrOmSR-uqpCG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AC83/4BAFB118F75611EB99F9104CC4F9AE02/C7AFcf321rzGNEbrOmSR-uqpCG8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:84:a7:9a:30:3d:95:84:aa:dc:f2:6a:3a:9c:fe:d3:f6:37: 6d:fb:f9:35:fd:f1:99:7e:eb:23:11:ac:a5:cc:dc:75:02:f5: 6d:59:f2:26:de:78:f7:bc:37:41:56:02:1f:18:8a:7a:36:e9: d4:da:c6:a2:fb:09:1e:f2:bb:7d:48:b0:19:31:92:1a:93:fb: e8:55:04:0c:84:43:63:52:4e:5d:b0:f4:63:aa:ab:30:63:9a: 9e:45:b8:7a:66:1d:eb:e1:a6:29:09:bb:ce:7a:08:c5:71:0f: ab:c9:29:be:57:8f:08:d4:e1:44:12:08:5d:1f:de:ff:0e:fb: c0:08:83:62:d7:4e:94:e9:2a:b8:97:cf:3e:75:6d:b4:5b:53: a4:38:3e:43:3d:98:49:24:24:6a:6d:de:14:82:52:ee:f4:4d: a7:c3:e7:72:c7:a8:60:2f:0b:12:1b:aa:c0:cd:7a:92:55:bb: 6b:47:bf:b9:9b:74:dd:d8:76:b6:be:7b:d7:cb:16:8b:b2:7a: 5e:07:6f:2d:b4:c1:e8:6b:64:5c:e7:a9:ac:33:51:1c:dd:bd: 73:13:f8:45:e2:20:7e:6d:f8:32:61:e5:80:39:d0:8c:3d:f2: ce:96:41:71:46:35:c3:a9:bd:0a:50:fd:4d:04:a0:bc:f3:01: 97:79:87:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFDODMxMTAvBgNVBAUTKDBCQjAwNTcxRkRGNkQ2QkNDNjM0NDZFQjNBNjQ5MUZB RUFBOTA4NkYwHhcNMjUxMDE5MDA1NjU2WhcNMjUxMDI2MDA1NjU2WjAYMRYwFAYD VQQDEw02OGY0Mzc1OS0xZjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnJRS09SuZUJe7cifD2PDE+GZoLV8cUjmWvtkJ0EtCaQ7ySGJNKpX9+PutOuu 5WNPYlTEKdWdY/GsLOsUeGQSBfj71V65Fs+mPdG1pJZ4+uzcqBH3OEEo7TYtZYGg RhOy4C5cAsM/fTcciKTu26jSGZUfIR5B++1PfVwQNifweKbptLd4ZfDe363JaulQ 892jQDqN6rLpiATFmLugAzOsqw+tbNfD1OgJUxPyVHPapKaUbHbOBms4yi1iYzDa gMcdKLA6X26qdq6ZwpEiQg3fg+U8NyO9p35IOYFdIvWcjWTaXhi+kPkgjKnhKU70 +8voJK0AolNnNtAWbaYmHdb8DQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP4kl7XX 1LzP3J6Eivaus/DK/LRJMB8GA1UdIwQYMBaAFAuwBXH99ta8xjRG6zpkkfrqqQhv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUM4My80QkFGQjExOEY3 NTYxMUVCOTlGOTEwNENDNEY5QUUwMi9DN0FGY2YzMjFyekdORWJyT21TUi11cXBD RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M3QUZjZjMyMXJ6R05FYnJPbVNSLXVxcENHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QUM4My80QkFGQjExOEY3NTYxMUVCOTlGOTEwNENDNEY5QUUwMi9DN0FGY2YzMjFy ekdORWJyT21TUi11cXBDRzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANhKeaMD2VhKrc8mo6nP7T9jdt+/k1/fGZfusjEaylzNx1AvVtWfIm 3nj3vDdBVgIfGIp6NunU2sai+wke8rt9SLAZMZIak/voVQQMhENjUk5dsPRjqqsw Y5qeRbh6Zh3r4aYpCbvOegjFcQ+rySm+V48I1OFEEghdH97/DvvACINi106U6Sq4 l88+dW20W1OkOD5DPZhJJCRqbd4UglLu9E2nw+dyx6hgLwsSG6rAzXqSVbtrR7+5 m3Td2Ha2vnvXyxaLsnpeB28ttMHoa2Rc56msM1Ec3b1zE/hF4iB+bfgyYeWAOdCM PfLOlkFxRjXDqb0KUP1NBKC88wGXeYcg -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:55 2025 by rpki-client