$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft File: RoxqeSq7PkX-7iIo0o54AxNytFU.mft (raw, json) Hash identifier: rv3SNIbu3meg2A2O56unhvnZBGvzf7FLY8aI5NOSkSI= Subject key identifier: 60:17:F7:5C:22:60:DC:8B:38:94:DF:75:4E:E7:40:C9:C6:E8:BF:6B Authority key identifier: 46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 Certificate issuer: /CN=A912DD15/serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Certificate serial: 01ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft Manifest number: 01E7 Signing time: Sun 19 Oct 2025 05:05:57 +0000 Manifest this update: Sun 19 Oct 2025 05:05:57 +0000 Manifest next update: Sun 26 Oct 2025 05:05:57 +0000 Files and hashes: 1: RoxqeSq7PkX-7iIo0o54AxNytFU.crl (hash: 0jU/ifWLDfZLoZtbvBuxqM6kyB0R7cwQwylQTRJR2wc=) 2: 43CE5D5A236911EEAC33285DC4F9AE02.roa (hash: frHxqt/yG7rr6fCbelfcQdfPa8QFjBnwgHPUnZu57so=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:05:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD15, serialNumber=468C6A792ABB3E45FEEE2228D28E78031372B455 Validity Not Before: Oct 19 05:05:57 2025 GMT Not After : Oct 26 05:05:57 2025 GMT Subject: CN=68f471b5-6b71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:57:df:97:d4:65:ba:e3:3d:7e:6a:87:36:46: fa:10:ff:cc:5c:32:48:89:57:3c:6d:1d:d1:a3:31: c3:fb:c0:a2:04:b6:fa:d3:4c:a8:a9:a5:7c:be:80: c4:61:e3:31:fd:dd:c1:15:d0:b6:e0:9d:54:36:05: 11:c4:d9:cf:9f:96:3b:09:c3:9a:9f:57:1d:73:75: 02:7f:50:45:f8:6b:dc:6b:15:b9:a8:a9:78:13:b6: 08:03:9f:54:b7:ce:a8:8d:5b:03:d8:1b:11:3e:7e: 47:2d:d6:11:3c:33:85:21:be:c1:c6:84:be:79:98: e0:01:14:da:fb:ce:a2:7c:48:ef:6b:ab:af:fa:0d: 68:12:76:1d:56:b3:c2:0b:4e:e1:8d:63:64:d7:c8: 0d:3c:5f:36:0a:78:12:2f:55:b7:65:22:a9:7c:fa: be:b3:1a:88:f3:b2:5c:0a:4b:39:42:d4:78:af:7d: 06:54:79:92:df:17:3f:40:3b:c6:5b:1e:2e:60:a3: 90:ec:eb:31:e7:3a:c4:ee:2f:1f:79:d0:a2:9f:d1: 2d:6f:6d:ec:28:bf:e8:18:0b:dd:91:92:da:36:10: 53:41:8f:0f:7d:34:fc:b0:42:22:e6:4b:74:41:36: 0f:67:0b:97:51:cb:17:3b:89:b9:64:1c:81:c5:aa: 26:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:17:F7:5C:22:60:DC:8B:38:94:DF:75:4E:E7:40:C9:C6:E8:BF:6B X509v3 Authority Key Identifier: keyid:46:8C:6A:79:2A:BB:3E:45:FE:EE:22:28:D2:8E:78:03:13:72:B4:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RoxqeSq7PkX-7iIo0o54AxNytFU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD15/BDADA860CC5211EDA8291D10C4F9AE02/RoxqeSq7PkX-7iIo0o54AxNytFU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:14:15:cf:a2:2c:e7:c2:74:6f:2c:68:87:08:58:03:cb:12: ff:86:98:20:eb:89:0b:14:e3:fb:db:52:c0:99:7d:c5:37:4f: de:4e:c0:25:c1:00:77:5c:f7:15:b0:df:cb:ba:4d:2c:f4:70: ca:bf:b4:d9:83:78:ec:d3:91:08:bc:41:c5:9d:60:f6:70:3b: 98:29:5c:70:71:6b:65:d0:20:86:5e:c8:c0:74:ad:72:bc:9b: 59:5c:70:a0:4e:38:29:c0:04:3b:87:3e:5e:df:8a:f4:c1:be: c3:5a:36:28:6e:f8:95:de:c0:fa:17:fc:c0:f4:ff:5d:b4:3d: 20:ff:48:cd:99:2d:25:cc:1f:37:2b:20:ad:a3:1c:1a:6b:48: aa:d3:eb:74:44:81:dc:35:1a:ae:f5:ac:59:13:9b:9e:4e:f5: 85:29:cc:ef:b0:fb:70:79:e6:05:9a:64:b8:39:cc:af:b3:4c: 56:62:4a:3e:fd:8e:4c:c8:5d:01:34:ca:df:d6:ab:5a:ed:94: c4:28:fa:04:32:38:84:54:96:5c:21:49:b0:ad:fe:c7:42:95: 03:60:ec:fd:6c:05:68:6f:4b:05:63:7a:90:f1:51:15:0d:a4: 4c:d5:98:ad:96:ad:4d:79:c2:eb:30:f9:7a:3a:95:3e:ef:c6: 1a:aa:e4:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMTUxMTAvBgNVBAUTKDQ2OEM2QTc5MkFCQjNFNDVGRUVFMjIyOEQyOEU3ODAz MTM3MkI0NTUwHhcNMjUxMDE5MDUwNTU3WhcNMjUxMDI2MDUwNTU3WjAYMRYwFAYD VQQDEw02OGY0NzFiNS02YjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFffl9RluuM9fmqHNkb6EP/MXDJIiVc8bR3RozHD+8CiBLb600yoqaV8voDE YeMx/d3BFdC24J1UNgURxNnPn5Y7CcOan1cdc3UCf1BF+GvcaxW5qKl4E7YIA59U t86ojVsD2BsRPn5HLdYRPDOFIb7BxoS+eZjgARTa+86ifEjva6uv+g1oEnYdVrPC C07hjWNk18gNPF82CngSL1W3ZSKpfPq+sxqI87JcCks5QtR4r30GVHmS3xc/QDvG Wx4uYKOQ7Osx5zrE7i8fedCin9Etb23sKL/oGAvdkZLaNhBTQY8PfTT8sEIi5kt0 QTYPZwuXUcsXO4m5ZByBxaom9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGAX91wi YNyLOJTfdU7nQMnG6L9rMB8GA1UdIwQYMBaAFEaMankquz5F/u4iKNKOeAMTcrRV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQxNS9CREFEQTg2MEND NTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1BrWC03aUlvMG81NEF4Tnl0 RlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JveHFlU3E3UGtYLTdpSW8wbzU0QXhOeXRGVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REQxNS9CREFEQTg2MENDNTIxMUVEQTgyOTFEMTBDNEY5QUUwMi9Sb3hxZVNxN1Br WC03aUlvMG81NEF4Tnl0RlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbFBXPoiznwnRvLGiHCFgDyxL/hpgg64kLFOP721LAmX3FN0/eTsAl wQB3XPcVsN/Luk0s9HDKv7TZg3js05EIvEHFnWD2cDuYKVxwcWtl0CCGXsjAdK1y vJtZXHCgTjgpwAQ7hz5e34r0wb7DWjYobviV3sD6F/zA9P9dtD0g/0jNmS0lzB83 KyCtoxwaa0iq0+t0RIHcNRqu9axZE5ueTvWFKczvsPtweeYFmmS4Ocyvs0xWYko+ /Y5MyF0BNMrf1qta7ZTEKPoEMjiEVJZcIUmwrf7HQpUDYOz9bAVob0sFY3qQ8VEV DaRM1Zitlq1NecLrMPl6OpU+78YaquTE -----END CERTIFICATE-----Generated at Mon Oct 20 23:36:20 2025 by rpki-client