$ rpki-client -vvf rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft File: dQVeDYzbFO-fBPi5XayLiclozd0.mft (raw, json) Hash identifier: cv3w2ifslNPS057pTRQR+KEKA/uchLKoRnmFxZnGyAA= Subject key identifier: F1:76:9A:EC:8A:D4:84:C0:E6:9E:E4:2E:FA:82:31:E4:95:5A:EA:15 Authority key identifier: 75:05:5E:0D:8C:DB:14:EF:9F:04:F8:B9:5D:AC:8B:89:C9:68:CD:DD Certificate issuer: /CN=A912C4DB/serialNumber=75055E0D8CDB14EF9F04F8B95DAC8B89C968CDDD Certificate serial: 0C8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQVeDYzbFO-fBPi5XayLiclozd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft Manifest number: 0C82 Signing time: Mon 20 Oct 2025 19:02:37 +0000 Manifest this update: Mon 20 Oct 2025 19:02:37 +0000 Manifest next update: Mon 27 Oct 2025 19:02:37 +0000 Files and hashes: 1: dQVeDYzbFO-fBPi5XayLiclozd0.crl (hash: Gs+HBS4wNbtedmtB2ySiRwxe5pK5mxMlYBZZPdc0u4k=) 2: 3E0EDBC83E0111ECA3AF5462C4F9AE02.roa (hash: MeK9ET7gmT0HXM7WrsCFabf5Xt6ViCVNKTA3zZ5Z6Ss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.crl rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQVeDYzbFO-fBPi5XayLiclozd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3214 (0xc8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C4DB, serialNumber=75055E0D8CDB14EF9F04F8B95DAC8B89C968CDDD Validity Not Before: Oct 20 19:02:37 2025 GMT Not After : Oct 27 19:02:37 2025 GMT Subject: CN=68f6874d-f858 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:23:f1:76:45:fe:1c:0c:a6:fc:b1:a5:ee:24: cc:66:e3:a6:e3:88:ee:a7:5c:b3:cb:5a:6f:49:ba: 70:a9:f5:2b:55:2d:91:ca:32:62:7b:c6:6c:ca:12: 9a:41:4c:63:3b:a9:39:0e:4d:96:ad:b8:5a:57:ed: c5:ec:65:ca:35:1c:74:e7:30:f6:fd:db:c8:67:07: 48:8e:98:c3:8c:db:ff:d5:45:d8:13:0f:df:ca:1c: 0d:95:2f:d1:e1:22:b7:06:98:ee:a8:82:94:e5:a3: db:56:47:9c:2d:aa:d5:b5:30:81:77:4c:6b:bc:a4: 10:be:81:ba:c5:da:5f:cc:3e:3b:33:ad:f3:c2:43: e0:ed:de:98:71:1d:91:45:91:25:c9:ad:76:6f:64: 96:2f:f7:23:8d:bb:c2:ab:df:2e:bf:37:f4:dd:fe: 7a:7c:7c:f8:18:93:cc:6f:b4:ff:09:dc:85:76:62: 6f:f9:11:12:c5:f0:63:c2:ce:18:2d:95:a6:43:6c: 8f:79:4b:28:b3:5f:cc:e7:33:7b:02:a4:ed:b3:04: b5:49:8a:6f:73:15:25:6f:69:47:0e:9a:b1:97:f2: 50:bd:a5:2b:aa:e4:b9:2b:af:f7:d7:2a:58:8c:cb: e0:aa:34:d3:06:a5:26:cf:d6:66:20:94:2b:2e:a6: 1e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:76:9A:EC:8A:D4:84:C0:E6:9E:E4:2E:FA:82:31:E4:95:5A:EA:15 X509v3 Authority Key Identifier: keyid:75:05:5E:0D:8C:DB:14:EF:9F:04:F8:B9:5D:AC:8B:89:C9:68:CD:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQVeDYzbFO-fBPi5XayLiclozd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:a4:f0:13:56:da:2e:8c:68:76:f2:89:eb:d5:a5:3a:ae:ef: d1:60:df:a1:e2:d4:7b:27:78:22:65:cc:a9:33:5f:e5:46:ab: 17:b6:78:17:5a:91:89:53:82:06:03:fc:af:71:22:41:f1:37: 64:88:21:8a:e7:47:24:47:b8:54:91:f0:ca:bf:60:26:33:c5: 39:c5:4d:47:fd:d5:44:5e:14:f5:6f:51:bd:01:de:de:d8:7e: 71:eb:e3:6c:05:8a:a8:c5:32:11:f0:f4:75:25:7a:c0:dc:35: 9b:a2:8e:ff:76:a8:28:75:05:e8:c7:0a:60:3b:bd:31:39:53: 80:13:a3:7d:f5:f6:9e:9f:92:86:34:70:2f:03:3b:7d:c1:f8: da:07:d8:65:0d:40:1e:13:2d:2e:30:84:bf:b5:7d:17:22:6d: 21:d5:0c:76:11:ec:12:59:94:50:3f:fd:e1:01:98:db:d5:dd: 4d:c2:c0:10:d4:25:b2:d7:e6:6d:49:5f:12:ff:ee:77:24:5d: 87:13:df:82:05:af:50:89:be:0e:fe:0c:7a:46:57:49:74:a1: e2:00:42:94:d8:9d:f9:9d:fc:34:32:23:9e:26:c7:09:cb:41: 32:bd:55:c1:b1:4b:80:bd:1b:a5:ad:d5:06:b7:d2:d8:96:24: 26:02:bf:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM0REIxMTAvBgNVBAUTKDc1MDU1RTBEOENEQjE0RUY5RjA0RjhCOTVEQUM4Qjg5 Qzk2OENEREQwHhcNMjUxMDIwMTkwMjM3WhcNMjUxMDI3MTkwMjM3WjAYMRYwFAYD VQQDEw02OGY2ODc0ZC1mODU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2CPxdkX+HAym/LGl7iTMZuOm44jup1yzy1pvSbpwqfUrVS2RyjJie8ZsyhKa QUxjO6k5Dk2WrbhaV+3F7GXKNRx05zD2/dvIZwdIjpjDjNv/1UXYEw/fyhwNlS/R 4SK3BpjuqIKU5aPbVkecLarVtTCBd0xrvKQQvoG6xdpfzD47M63zwkPg7d6YcR2R RZElya12b2SWL/cjjbvCq98uvzf03f56fHz4GJPMb7T/CdyFdmJv+RESxfBjws4Y LZWmQ2yPeUsos1/M5zN7AqTtswS1SYpvcxUlb2lHDpqxl/JQvaUrquS5K6/31ypY jMvgqjTTBqUmz9ZmIJQrLqYenwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPF2muyK 1ITA5p7kLvqCMeSVWuoVMB8GA1UdIwQYMBaAFHUFXg2M2xTvnwT4uV2si4nJaM3d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzREQi9EN0RGRDZDQTA4 RjgxMUVBOUQxOEFFNjhDNEY5QUUwMi9kUVZlRFl6YkZPLWZCUGk1WGF5TGljbG96 ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRVmVEWXpiRk8tZkJQaTVYYXlMaWNsb3pkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzREQi9EN0RGRDZDQTA4RjgxMUVBOUQxOEFFNjhDNEY5QUUwMi9kUVZlRFl6YkZP LWZCUGk1WGF5TGljbG96ZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVpPATVtoujGh28onr1aU6ru/RYN+h4tR7J3giZcypM1/lRqsXtngX WpGJU4IGA/yvcSJB8TdkiCGK50ckR7hUkfDKv2AmM8U5xU1H/dVEXhT1b1G9Ad7e 2H5x6+NsBYqoxTIR8PR1JXrA3DWboo7/dqgodQXoxwpgO70xOVOAE6N99faen5KG NHAvAzt9wfjaB9hlDUAeEy0uMIS/tX0XIm0h1Qx2EewSWZRQP/3hAZjb1d1NwsAQ 1CWy1+ZtSV8S/+53JF2HE9+CBa9Qib4O/gx6RldJdKHiAEKU2J35nfw0MiOeJscJ y0EyvVXBsUuAvRulrdUGt9LYliQmAr9T -----END CERTIFICATE-----Generated at Tue Oct 21 01:02:48 2025 by rpki-client