$ rpki-client -vvf rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft File: 6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft (raw, json) Hash identifier: W/y+77c9wMMu+KdZQtwYmryRueOqA+FGsGHwbkREyqE= Subject key identifier: 29:5A:77:93:20:D6:08:59:F0:E9:4E:74:01:3E:D2:C4:72:B0:5A:7F Authority key identifier: E8:2D:10:D2:DA:1C:98:BF:68:CA:4C:64:91:B9:0F:FD:0F:AB:33:94 Certificate issuer: /CN=A912D5C1/serialNumber=E82D10D2DA1C98BF68CA4C6491B90FFD0FAB3394 Certificate serial: 0CCD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft Manifest number: 0CB7 Signing time: Sat 18 Oct 2025 18:56:16 +0000 Manifest this update: Sat 18 Oct 2025 18:56:15 +0000 Manifest next update: Sat 25 Oct 2025 18:56:15 +0000 Files and hashes: 1: 6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl (hash: t9r8Q9H2tVdc3gYbcmeE4fADZk4baI7L9tQXYK4ioF4=) 2: D7F98876520B11EE8B85DB63C4F9AE02.roa (hash: PKoIMzmjFW6opIpuPpXxT7JTsKk8w7rWTXfvOheNJEQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:56:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3277 (0xccd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D5C1, serialNumber=E82D10D2DA1C98BF68CA4C6491B90FFD0FAB3394 Validity Not Before: Oct 18 18:56:15 2025 GMT Not After : Oct 25 18:56:15 2025 GMT Subject: CN=68f3e2d0-853b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:27:c3:5f:b5:44:44:5c:7a:ed:67:59:85:69: 21:b6:ba:6a:e0:35:d6:58:dd:c5:e7:8d:8b:7c:48: a3:2e:66:43:c9:fb:58:28:55:e1:6a:bc:0a:40:fa: bb:d6:64:7b:6f:7f:98:c0:2c:1a:1b:12:2a:7d:54: 40:a4:fd:ed:94:0d:07:fb:78:fb:e4:b8:a2:32:63: ff:3f:26:89:c7:a6:b6:29:32:81:b1:4d:b6:bb:72: 98:49:3f:f9:66:32:42:01:60:f2:ae:48:21:c9:0e: 3e:95:40:79:8c:bc:c2:f1:a9:e4:ad:25:7b:3f:d3: 3e:a7:ab:e3:bc:df:20:3e:f7:63:b8:11:9d:f4:e6: 1b:28:2e:0b:5c:db:53:9e:b7:e0:32:91:72:e3:46: fb:a0:65:75:5e:05:95:71:08:29:25:87:b4:b0:ec: a5:35:11:7c:64:be:e0:60:36:9e:4f:b5:5d:34:3b: 58:cf:63:ec:6c:95:dd:3e:52:94:6b:7d:0a:74:fa: 44:42:d4:06:42:e4:bf:c0:cc:5c:c5:90:c0:dc:7d: d7:43:35:1b:27:62:10:ae:ff:81:7f:39:08:98:84: e4:b7:1d:43:cf:e1:a6:f7:5e:f3:24:0f:db:19:d6: f9:76:cd:91:88:56:26:2e:5f:8d:ae:55:64:48:63: ae:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:5A:77:93:20:D6:08:59:F0:E9:4E:74:01:3E:D2:C4:72:B0:5A:7F X509v3 Authority Key Identifier: keyid:E8:2D:10:D2:DA:1C:98:BF:68:CA:4C:64:91:B9:0F:FD:0F:AB:33:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D5C1/B07DCB44FFCC11E9A5E79784C4F9AE02/6C0Q0tocmL9oykxkkbkP_Q-rM5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:e9:92:65:79:cd:b4:8b:ba:08:11:49:65:de:c6:59:36:b1: 1b:f3:10:ce:ce:d0:a5:b7:1a:e3:fc:7f:3c:55:0b:99:11:3a: a4:18:62:c4:3c:d8:f6:52:6e:eb:88:97:6c:c8:91:17:ec:ce: 04:5a:34:25:cf:cb:d5:58:8f:4c:1e:f6:b7:de:51:9b:5d:17: 53:90:e0:88:b1:d7:3c:8b:6e:8d:7d:9d:97:60:25:fd:d8:6d: b5:63:fe:6c:d7:15:dc:88:f1:ea:d8:85:56:d7:30:e3:1c:dd: 09:1b:9f:f0:e1:f1:85:1a:85:84:b4:79:b7:fb:cb:21:01:1f: c9:aa:b3:39:ec:47:f6:e5:08:fb:a7:7a:f9:8b:87:ea:3b:9d: 91:7e:28:77:cc:62:02:f8:42:5c:db:b7:5e:62:56:2f:27:bc: e8:67:ab:ee:c2:83:7b:a5:13:a6:00:47:6d:d1:22:21:e5:f9: 36:9d:02:1f:12:0e:e3:0c:ab:00:8b:ee:f2:78:98:e8:d4:de: 8a:07:36:7f:14:4d:79:fa:bd:3a:b5:a8:a0:9d:1d:c7:38:c6: e1:56:ed:69:3d:83:22:16:dc:c8:86:f4:0a:4c:63:0f:58:bb: 37:d7:55:c0:f4:dd:3f:2e:9c:ec:71:cc:4a:1c:47:1e:b4:7c: 91:ec:ed:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ1QzExMTAvBgNVBAUTKEU4MkQxMEQyREExQzk4QkY2OENBNEM2NDkxQjkwRkZE MEZBQjMzOTQwHhcNMjUxMDE4MTg1NjE1WhcNMjUxMDI1MTg1NjE1WjAYMRYwFAYD VQQDEw02OGYzZTJkMC04NTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9ifDX7VERFx67WdZhWkhtrpq4DXWWN3F542LfEijLmZDyftYKFXharwKQPq7 1mR7b3+YwCwaGxIqfVRApP3tlA0H+3j75LiiMmP/PyaJx6a2KTKBsU22u3KYST/5 ZjJCAWDyrkghyQ4+lUB5jLzC8ankrSV7P9M+p6vjvN8gPvdjuBGd9OYbKC4LXNtT nrfgMpFy40b7oGV1XgWVcQgpJYe0sOylNRF8ZL7gYDaeT7VdNDtYz2PsbJXdPlKU a30KdPpEQtQGQuS/wMxcxZDA3H3XQzUbJ2IQrv+BfzkImITktx1Dz+Gm917zJA/b Gdb5ds2RiFYmLl+NrlVkSGOu6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClad5Mg 1ghZ8OlOdAE+0sRysFp/MB8GA1UdIwQYMBaAFOgtENLaHJi/aMpMZJG5D/0PqzOU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDVDMS9CMDdEQ0I0NEZG Q0MxMUU5QTVFNzk3ODRDNEY5QUUwMi82QzBRMHRvY21MOW95a3hra2JrUF9RLXJN NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZDMFEwdG9jbUw5b3lreGtrYmtQX1Etck01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RDVDMS9CMDdEQ0I0NEZGQ0MxMUU5QTVFNzk3ODRDNEY5QUUwMi82QzBRMHRvY21M OW95a3hra2JrUF9RLXJNNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC86ZJlec20i7oIEUll3sZZNrEb8xDOztCltxrj/H88VQuZETqkGGLE PNj2Um7riJdsyJEX7M4EWjQlz8vVWI9MHva33lGbXRdTkOCIsdc8i26NfZ2XYCX9 2G21Y/5s1xXciPHq2IVW1zDjHN0JG5/w4fGFGoWEtHm3+8shAR/JqrM57Ef25Qj7 p3r5i4fqO52Rfih3zGIC+EJc27deYlYvJ7zoZ6vuwoN7pROmAEdt0SIh5fk2nQIf Eg7jDKsAi+7yeJjo1N6KBzZ/FE15+r06taignR3HOMbhVu1pPYMiFtzIhvQKTGMP WLs311XA9N0/LpzsccxKHEcetHyR7O3S -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:05 2025 by rpki-client