$ rpki-client -vvf rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft File: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft (raw, json) Hash identifier: B+G6kOz+naBEhwg13YDvPECbRZTEarxGo9QBchYKuZw= Subject key identifier: 69:09:51:91:A2:AA:47:4E:08:9D:D0:D2:AB:10:33:43:19:96:52:D7 Authority key identifier: AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C Certificate issuer: /CN=A912D2CE/serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Certificate serial: 0CB5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft Manifest number: 0CAA Signing time: Sat 18 Oct 2025 18:59:18 +0000 Manifest this update: Sat 18 Oct 2025 18:59:17 +0000 Manifest next update: Sat 25 Oct 2025 18:59:17 +0000 Files and hashes: 1: rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl (hash: I6GKXdJtYJouzeZrBN3Ip/dJgY50HVEFMOSFtTMPwPA=) 2: 25234272DF4311EDA83C7074C4F9AE02.roa (hash: wMSrEY4jFMgUk7xS4t418ohJ7Tj1+1Jik/P+Kog8XB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:59:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3253 (0xcb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D2CE, serialNumber=AE16045872DDDAC3DCF12F0795CAD70E4C09D96C Validity Not Before: Oct 18 18:59:17 2025 GMT Not After : Oct 25 18:59:17 2025 GMT Subject: CN=68f3e385-99a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:52:0a:ad:35:6b:26:8f:13:24:03:19:a4:7b: 38:c6:38:b3:dd:88:06:2d:ab:4e:41:21:62:76:53: 2d:d8:bb:18:c4:b4:32:67:41:a4:01:83:cb:88:5f: 4f:2b:21:e7:71:f3:3e:be:cf:c1:a1:0b:36:de:4b: 4c:1d:24:2b:14:a7:ea:58:a9:99:7d:89:c6:20:98: 5c:a9:f4:56:15:40:03:bc:2e:b3:ee:6c:d0:60:e6: 8c:1e:fc:8a:ab:49:3f:44:f1:14:a1:4c:a8:bb:c4: ad:b3:c1:c5:8b:2b:59:6a:e8:a3:4e:1c:78:f1:35: 48:10:74:2a:1b:e5:bf:2c:97:3e:24:8e:2f:91:85: c1:28:b0:d2:b4:a2:6c:5d:9c:7b:61:a2:74:6c:e9: 39:59:8b:d1:9b:73:17:f5:f9:85:46:c1:45:1c:15: 87:12:4c:97:87:01:0f:51:ae:4f:e3:bd:44:78:cc: 57:99:26:d4:4a:d4:01:4a:4b:64:6c:01:b9:df:5a: 89:75:09:28:4c:9f:d4:cd:5f:68:f3:f3:7e:b7:50: 27:4c:e8:2f:8f:df:81:21:4e:da:8f:ec:28:a7:08: 25:b5:6b:2a:33:71:eb:a8:d2:4d:45:9c:d9:a7:aa: 53:f5:86:74:30:27:78:60:5c:1d:ed:57:e8:d4:4d: a7:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:09:51:91:A2:AA:47:4E:08:9D:D0:D2:AB:10:33:43:19:96:52:D7 X509v3 Authority Key Identifier: keyid:AE:16:04:58:72:DD:DA:C3:DC:F1:2F:07:95:CA:D7:0E:4C:09:D9:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D2CE/2B0E7240013611EAB0006438C4F9AE02/rhYEWHLd2sPc8S8HlcrXDkwJ2Ww.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:b6:8a:ca:95:9b:a2:3c:05:b1:31:d7:ab:45:0c:7b:94:23: 8e:3e:79:ba:f2:93:eb:35:0a:58:df:e3:0a:fe:8c:21:a2:fd: 06:b8:f5:25:58:25:6d:fc:fe:0c:3f:7e:59:14:45:f0:90:e4: 1c:14:ed:a8:0a:64:97:5e:3d:9f:f7:61:ab:67:8f:88:1b:03: a3:f3:e4:84:40:fe:95:b3:6e:e8:b4:be:7b:01:a5:28:7e:af: 1f:ae:27:34:b8:c8:2b:ae:bf:d6:fe:b8:35:62:0e:a3:41:5c: 36:06:bd:fb:25:bc:99:c1:c8:70:b6:23:8f:b6:40:20:21:78: 07:66:6a:ff:07:34:3d:3f:8f:8c:1c:ae:aa:79:12:04:9b:92: 21:59:10:d4:4c:34:91:d9:6c:ca:f7:05:59:23:9f:01:f8:8c: 0b:d1:02:80:b5:81:df:dc:18:3f:c2:b0:e6:68:ec:c8:a8:d7: 05:2b:47:5e:f6:3f:dd:fe:2f:e2:57:9e:5c:ad:78:1d:a4:a0: 6b:42:7e:55:9f:98:49:38:36:cc:2a:72:46:c7:fa:bd:4a:d5: 86:ec:80:9d:89:c4:fc:f5:c2:c5:40:da:09:c2:f3:08:1f:80: df:54:72:a7:37:8d:c6:b4:2b:7e:e3:27:9a:9e:44:7e:3b:fd: 6a:02:17:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQyQ0UxMTAvBgNVBAUTKEFFMTYwNDU4NzJERERBQzNEQ0YxMkYwNzk1Q0FENzBF NEMwOUQ5NkMwHhcNMjUxMDE4MTg1OTE3WhcNMjUxMDI1MTg1OTE3WjAYMRYwFAYD VQQDEw02OGYzZTM4NS05OWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFIKrTVrJo8TJAMZpHs4xjiz3YgGLatOQSFidlMt2LsYxLQyZ0GkAYPLiF9P KyHncfM+vs/BoQs23ktMHSQrFKfqWKmZfYnGIJhcqfRWFUADvC6z7mzQYOaMHvyK q0k/RPEUoUyou8Sts8HFiytZauijThx48TVIEHQqG+W/LJc+JI4vkYXBKLDStKJs XZx7YaJ0bOk5WYvRm3MX9fmFRsFFHBWHEkyXhwEPUa5P471EeMxXmSbUStQBSktk bAG531qJdQkoTJ/UzV9o8/N+t1AnTOgvj9+BIU7aj+wopwgltWsqM3HrqNJNRZzZ p6pT9YZ0MCd4YFwd7Vfo1E2nNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkJUZGi qkdOCJ3Q0qsQM0MZllLXMB8GA1UdIwQYMBaAFK4WBFhy3drD3PEvB5XK1w5MCdls MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDJDRS8yQjBFNzI0MDAx MzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJzUGM4UzhIbGNyWERrd0oy V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JoWUVXSExkMnNQYzhTOEhsY3JYRGt3SjJXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDJDRS8yQjBFNzI0MDAxMzYxMUVBQjAwMDY0MzhDNEY5QUUwMi9yaFlFV0hMZDJz UGM4UzhIbGNyWERrd0oyV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARtorKlZuiPAWxMderRQx7lCOOPnm68pPrNQpY3+MK/owhov0GuPUl WCVt/P4MP35ZFEXwkOQcFO2oCmSXXj2f92GrZ4+IGwOj8+SEQP6Vs27otL57AaUo fq8fric0uMgrrr/W/rg1Yg6jQVw2Br37JbyZwchwtiOPtkAgIXgHZmr/BzQ9P4+M HK6qeRIEm5IhWRDUTDSR2WzK9wVZI58B+IwL0QKAtYHf3Bg/wrDmaOzIqNcFK0de 9j/d/i/iV55crXgdpKBrQn5Vn5hJODbMKnJGx/q9StWG7ICdicT89cLFQNoJwvMI H4DfVHKnN43GtCt+4yeankR+O/1qAhds -----END CERTIFICATE-----Generated at Mon Oct 20 09:36:39 2025 by rpki-client