$ rpki-client -vvf rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft File: 7dKmloaGUlbJsP3da3FJZtU3jzM.mft (raw, json) Hash identifier: EZBbzz66p/7JW/AqRRFYRUI1VqlRRci0ffKe0zmYt0Y= Subject key identifier: 10:13:DA:D2:B8:20:64:08:5C:E3:6A:24:5F:4B:99:45:12:0B:37:F6 Authority key identifier: ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 Certificate issuer: /CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Certificate serial: 0AAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft Manifest number: 0A95 Signing time: Mon 20 Oct 2025 20:20:55 +0000 Manifest this update: Mon 20 Oct 2025 20:20:54 +0000 Manifest next update: Mon 27 Oct 2025 20:20:54 +0000 Files and hashes: 1: 7dKmloaGUlbJsP3da3FJZtU3jzM.crl (hash: ahdMUFveXDAjLZ7PDhD+Z/DrqVRLpbtWd88ppAa2G48=) 2: 923B6404466B11EE8B37E13CC4F9AE02.roa (hash: horX5P75gumDA8WyF+ghzmHcSe0CjNBHMfSInHVl7ao=) 3: C2E32E34466B11EE988B243DC4F9AE02.roa (hash: hBn0Qcv2Wj2OFO1BXPRpxsQ8U4zswJ2i/kTyMm1Zr1Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 20:20:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2730 (0xaaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D3CB, serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Validity Not Before: Oct 20 20:20:54 2025 GMT Not After : Oct 27 20:20:54 2025 GMT Subject: CN=68f699a6-797a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:13:89:f0:e1:ff:83:51:91:22:37:f2:3a:af: 85:04:30:c8:5e:13:82:93:bf:ce:9b:67:47:62:97: 53:d2:78:ff:f0:60:c4:44:d7:10:3f:41:6a:17:3d: 4c:f0:04:84:54:01:d2:13:ec:86:a3:96:24:d0:7d: e2:d6:19:60:d1:68:98:c3:92:55:9c:67:43:1b:3f: da:01:18:75:dd:5c:e3:1a:ae:e7:4c:35:86:b6:cb: 8e:aa:e3:e9:e7:aa:b4:3a:77:ff:d5:e5:6a:73:31: ca:82:4e:bd:c3:d9:c5:d5:58:42:04:26:34:7b:2b: 18:c5:79:c1:b3:75:ea:9e:03:a2:36:5d:ee:6d:7a: c7:44:2a:aa:ad:54:6d:dc:d9:70:18:f6:a1:a2:1b: a7:36:d8:1f:0b:41:63:5e:9c:9e:54:d6:29:06:b6: 68:4d:62:04:96:a9:6b:84:11:72:c9:3f:e2:96:07: e5:eb:78:60:14:34:f0:96:27:45:8e:80:b6:4b:6a: 98:3d:8c:7f:c6:ff:ee:a0:7b:57:c2:92:27:9f:da: dc:f0:d2:9f:a7:9c:e7:a5:92:20:cd:97:e7:09:4b: fd:b7:71:c4:8e:95:66:c9:db:d2:9f:c6:5e:43:8a: 22:b1:ae:f2:2f:ed:67:cc:e6:0d:85:b7:95:ce:44: b6:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:13:DA:D2:B8:20:64:08:5C:E3:6A:24:5F:4B:99:45:12:0B:37:F6 X509v3 Authority Key Identifier: keyid:ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:07:24:92:58:cc:3f:3f:e1:a0:04:79:53:9a:15:04:00:7c: fd:80:ec:0c:3e:7f:09:ef:b2:7b:82:2c:61:8a:b5:b9:1d:0e: 73:29:b5:20:bf:48:08:2d:91:ed:49:6c:29:54:1b:9e:d3:35: b4:94:e4:53:2b:6a:23:43:9f:e7:8d:69:bf:65:36:ed:36:c6: e8:e7:14:37:64:b0:d6:b1:66:69:4e:a5:75:b2:71:f1:39:67: e0:91:75:40:c6:a3:35:c6:c9:d9:00:f4:96:c2:75:c6:2a:8d: 09:2c:04:61:e6:10:eb:56:f5:9b:e6:b5:35:ff:2e:d6:ea:fb: c4:82:db:15:e5:c1:6b:39:f8:d8:9e:a0:d3:a7:00:16:4b:90: 5e:92:a9:a5:6c:bd:5f:59:05:ab:24:c2:bb:97:6a:96:89:fd: ae:65:de:7a:64:da:69:b7:16:eb:fd:16:9c:33:86:fb:72:27: e5:e0:a8:a4:74:c4:85:44:63:1d:98:08:cb:41:45:25:cd:08: 41:e3:82:70:5a:2d:4a:f4:33:df:dd:9c:65:29:f0:3d:c3:7a: 9b:81:fa:31:94:15:df:4a:7b:02:d8:a8:90:c7:78:99:91:32: c1:a9:ed:6b:ad:b9:b1:77:62:5d:29:28:b4:7f:44:e9:4a:b2: 14:54:3f:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQzQ0IxMTAvBgNVBAUTKEVERDJBNjk2ODY4NjUyNTZDOUIwRkRERDZCNzE0OTY2 RDUzNzhGMzMwHhcNMjUxMDIwMjAyMDU0WhcNMjUxMDI3MjAyMDU0WjAYMRYwFAYD VQQDEw02OGY2OTlhNi03OTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzROJ8OH/g1GRIjfyOq+FBDDIXhOCk7/Om2dHYpdT0nj/8GDERNcQP0FqFz1M 8ASEVAHSE+yGo5Yk0H3i1hlg0WiYw5JVnGdDGz/aARh13VzjGq7nTDWGtsuOquPp 56q0Onf/1eVqczHKgk69w9nF1VhCBCY0eysYxXnBs3XqngOiNl3ubXrHRCqqrVRt 3NlwGPahohunNtgfC0FjXpyeVNYpBrZoTWIElqlrhBFyyT/ilgfl63hgFDTwlidF joC2S2qYPYx/xv/uoHtXwpInn9rc8NKfp5znpZIgzZfnCUv9t3HEjpVmydvSn8Ze Q4oisa7yL+1nzOYNhbeVzkS2fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBAT2tK4 IGQIXONqJF9LmUUSCzf2MB8GA1UdIwQYMBaAFO3SppaGhlJWybD93WtxSWbVN48z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDNDQi9BOUE0MzlGQzY5 QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1VsYkpzUDNkYTNGSlp0VTNq ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdkS21sb2FHVWxiSnNQM2RhM0ZKWnRVM2p6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDNDQi9BOUE0MzlGQzY5QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1Vs YkpzUDNkYTNGSlp0VTNqek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtBySSWMw/P+GgBHlTmhUEAHz9gOwMPn8J77J7gixhirW5HQ5zKbUg v0gILZHtSWwpVBue0zW0lORTK2ojQ5/njWm/ZTbtNsbo5xQ3ZLDWsWZpTqV1snHx OWfgkXVAxqM1xsnZAPSWwnXGKo0JLARh5hDrVvWb5rU1/y7W6vvEgtsV5cFrOfjY nqDTpwAWS5BekqmlbL1fWQWrJMK7l2qWif2uZd56ZNpptxbr/RacM4b7cifl4Kik dMSFRGMdmAjLQUUlzQhB44JwWi1K9DPf3ZxlKfA9w3qbgfoxlBXfSnsC2KiQx3iZ kTLBqe1rrbmxd2JdKSi0f0TpSrIUVD8P -----END CERTIFICATE-----Generated at Tue Oct 21 00:59:33 2025 by rpki-client